Portatil muy lento

elmulos

Miembro
Miembro
Un saludo a tod@s, os pido ayuda por si me podeis ayudar, ya que el portatil funciona muy lento......

Os paso el log:
Insertar CODE, HTML o PHP:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform:  x64 Windows 10 (Home), 10.0.17134.829 (ReleaseId: 1803), Service Pack: 0
Time:      14.08.2019 - 19:26 (UTC+02:00)
Language:  OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated:  No
Ran by:    paula    (group: Limited User) on PORTATIL, FirstRun: yes

Chrome:  76.0.3809.100
Edge:    11.0.17134.799
Internet Explorer: 11.0.17134.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
   1  AVGSvc.exe
   1  AdminService.exe
   1  AgentSvc.exe
   1  C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
   1  C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
   1  C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
   1  C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
   1  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
   1  C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
   2  C:\Program Files (x86)\Dropbox\Client\78.4.119\QtWebEngineProcess.exe
   3  C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
   9  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
   4  C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
   1  C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
   1  C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
   1  C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
   1  C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
   1  C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
   1  C:\Program Files\Elantech\ETDCtrl.exe
   1  C:\Program Files\Elantech\ETDCtrlHelper.exe
   1  C:\Program Files\Intel\iCLS Client\HeciServer.exe
   1  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
   1  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
   1  C:\Program Files\Windows Defender\MSASCuiL.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeApp.exe
   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
   1  C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
   1  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
   1  C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe
   1  C:\Users\paula\Downloads\HiJackThis.exe
   1  C:\WINDOWS\system32\DbxSvc.exe
   1  C:\WINDOWS\system32\SearchIndexer.exe
   1  C:\WINDOWS\system32\SecurityHealthService.exe
   1  C:\WINDOWS\system32\SgrmBroker.exe
   1  C:\WINDOWS\system32\conhost.exe
   2  C:\WINDOWS\system32\csrss.exe
   1  C:\WINDOWS\system32\dasHost.exe
   1  C:\WINDOWS\system32\dwm.exe
   2  C:\WINDOWS\system32\fontdrvhost.exe
   1  C:\WINDOWS\system32\igfxCUIService.exe
   1  C:\WINDOWS\system32\lsass.exe
   1  C:\WINDOWS\system32\mfevtps.exe
   1  C:\WINDOWS\system32\services.exe
   1  C:\WINDOWS\system32\smss.exe
   1  C:\WINDOWS\system32\spoolsv.exe
  74  C:\WINDOWS\system32\svchost.exe
   1  C:\WINDOWS\system32\wininit.exe
   1  C:\WINDOWS\system32\winlogon.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   2  C:\Windows\System32\OpenWith.exe
   8  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SettingSyncHost.exe
   1  C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
   1  C:\Windows\System32\Wbem\WmiApSrv.exe
   2  C:\Windows\System32\Wbem\WmiPrvSE.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\ctfmon.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\igfxEM.exe
   1  C:\Windows\System32\igfxHK.exe
   1  C:\Windows\System32\igfxTray.exe
   1  C:\Windows\System32\igfxext.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\taskhostw.exe
   4  C:\Windows\System32\wbem\unsecapp.exe
   1  C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
   1  C:\Windows\explorer.exe
   1  DropboxUpdate.exe
   1  ETDService.exe
   1  E_S40RPB.EXE
   1  E_S40STB.EXE
   1  GamesAppIntegrationService.exe
   1  LMEvent.exe
   1  LMS.exe
   1  LMSvc.exe
   1  Memory Compression
   1  NVDisplay.Container.exe
   1  OSPPSVC.EXE
   1  PSANHost.exe
   1  PSUAService.exe
   1  Panda_URL_Filteringb.exe
   1  PresentationFontCache.exe
   1  QAEvent.exe
   1  QASvc.exe
   1  Registry
   1  ToolbarUpdater.exe
   1  WtuSystemSupport.exe
   1  YSearchUtilSVC.exe
   1  aswidsagent.exe
   1  ePowerEvent.exe
   1  ePowerSvc.exe
   1  mDNSResponder.exe
   1  mfefire.exe
   1  nvxdsync.exe
   1  sedlauncher.exe
   1  sedsvc.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias y horóscopo en MSN España y Microsoft News
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Search{C2A5974E-F9CC-4E86-B189-FA0EF6AA52C0}&mid=778bd9cf193047cda1e67592761af261-1744691f6d6609ee1ad0bbba2b0fd26f143888df&lang=es&ds=AVG&coid=avgtbavg&cmpid=0916av&pr=fr&d=2015-07-18 18:40:51&v=4.3.5.160&pid=wtu&sg=&sap=hp
R3 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002: Default URLSearchHook is missing
R3 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500: Default URLSearchHook is missing
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: [SuggestionsURL_JSON] = https://toolbar.avg.com/acp?q={searchTerms}&o=1 - AVG Secure Search
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: = https://mysearch.avg.com/search?cid={C2A5974E-F9CC-4E86-B189-FA0EF6AA52C0}&mid=778bd9cf193047cda1e67592761af261-1744691f6d6609ee1ad0bbba2b0fd26f143888df&lang=es&ds=AVG&coid=avgtbavg&cmpid=0318tb&pr=fr&d=2015-07-18 18:40:51&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms} - AVG Secure Search 
O2 - HKLM\..\BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll 
O2 - HKLM\..\BHO: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll 
O3 - HKLM\..\Toolbar: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll 
O4 - HKCU\..\Run: [EPSON Stylus SX100] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S9207.tmp" /EF "HKCU" 
O4 - HKCU\..\Run: [OneDrive] = C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft) 
O4 - HKCU\..\Run: [Skype for Desktop] = C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe 
O4 - HKCU\..\Run: [Spotify] = C:\Users\paula\AppData\Roaming\Spotify\Spotify.exe --autostart 
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (file missing) 
O4 - HKLM\..\Run: [AVGUI.exe] = C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe /gui 
O4 - HKLM\..\Run: [ETDCtrl] = C:\Program Files\Elantech\ETDCtrl.exe 
O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe 
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s 
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing) 
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\Environment: [TEMP] = (not exist) 
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\Environment: [TMP] = (not exist)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#10 in chain of 14 missing)
 O10 - Broken Internet access because of LSP chain gap (#11 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#12 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#13 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#14 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 7 missing) 
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 7 missing) 
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 7 missing) 
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 7 missing) 
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 7 missing) 
O10 - Broken Internet access because of LSP chain gap (#8 in chain of 14 missing) 
O10 - Broken Internet access because of LSP chain gap (#9 in chain of 14 missing)
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [@ivt] protocol is in Unknown Zone, should be Intranet Zone (User: 'Tino') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [file] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [ftp] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [http] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [https] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [knownfolder] protocol is in Unknown Zone, should be My Computer Zone (User: 'Tino') O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [shell] protocol is in Unknown Zone, should be My Computer Zone (User: 'Tino') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [@ivt] protocol is in Unknown Zone, should be Intranet Zone (User: 'Administrador') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [file] protocol is in Unknown Zone, should be Internet Zone (User: 'Administrador') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [ftp] protocol is in Unknown Zone, should be Internet Zone (User: 'Administrador') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [http] protocol is in Unknown Zone, should be Internet Zone (User: 'Administrador') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [https] protocol is in Unknown Zone, should be Internet Zone (User: 'Administrador') 
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [knownfolder] protocol is in Unknown Zone, should be My Computer Zone (User: 'Administrador')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-500\..\ProtocolDefaults: - [shell] protocol is in Unknown Zone, should be My Computer Zone (User: 'Administrador') 
O17 - DHCP DNS 1: 80.58.61.254 O17 - DHCP DNS 2: 80.58.61.250
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-mfe-ipt: [CLSID] = {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\MCSNIE~1.DLL O18 - HKLM\Software\Classes\Protocols\Handler\ms-help: [CLSID] = {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSynced: ACloudSynced Class - {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSyncing: ACloudSyncing Class - {C1E1456F-C2D8-4C96-870D-35F1E13941EE} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudToBeSynced: ACloudToBeSynced Class - {307523FA-DDC0-4068-983F-2A6B34627744} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task (.job): (disabled) DropboxUpdateTaskMachineCore.job - (no file)
O22 - Task (.job): (disabled) DropboxUpdateTaskMachineUA.job - (no file)
O22 - Task (.job): G2MUpdateTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\13761\g2mupdate.exe
O22 - Task (.job): G2MUploadTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\13761\g2mupload.exe
O23 - Service R2: AVG Antivirus - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service R2: AtherosSvc - C:\WINDOWS\system32\DRIVERS\AdminService.exe
O23 - Service R2: DbxSvc - C:\WINDOWS\system32\DbxSvc.exe
O23 - Service R2: EPSON V3 Service4(01) - (EPSON_PM_RPCV4_01) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE 
O23 - Service R2: EPSON V5 Service4(01) - (EPSON_EB_RPCV4_01) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service R2: Elan Service - (ETDService) - C:\Program Files\Elantech\ETDService.exe
O23 - Service R2: GamesAppIntegrationService - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service R2: Intel(R) Capability Licensing Service Interface - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service R2: Launch Manager Service - (LMSvc) - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe O23 - Service R2: McAfee Firewall Core Service - (mfefire) - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe 
O23 - Service R2: McAfee Validation Trust Protection Service - (mfevtp) - C:\Windows\system32\mfevtps.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
O23 - Service R2: Panda Devices Agent - (PandaAgent) - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service R2: Panda Product Service - (PSUAService) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service R2: Panda Protection Service - (NanoServiceMain) - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe 
O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe 
O23 - Service R2: WtuSystemSupport - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
O23 - Service R2: YSearchUtilSvc - C:\Program Files (x86)\Yahoo!\yset\{3052669E-883B-E841-9501-7E7B90745035}\YSearchUtilSvc.exe
O23 - Service R2: panda_url_filtering Service - (panda_url_filtering) - C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe --
O23 - Service R2: vToolbarUpdater40.3.8 - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
O23 - Service R3: Quick Access Service - (QASvc) - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service R3: avgbIDSAgent - C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
O23 - Service R3: ePower Service - (ePowerSvc) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service S2: McAfee CSP Service - (mccspsvc) - C:\Program Files\Common Files\McAfee\CSP\1.3.374.0\McCSPServiceHost.exe
O23 - Service S2: Servicio Actualización de Dropbox (dbupdate) - (dbupdate) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /svc
O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: AvgWscReporter - C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe /runassvc
O23 - Service S3: GamesAppService - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\elevation_service.exe O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service S3: Microsoft SharePoint Workspace Audit Service - C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE /auditservice
O23 - Service S3: Panda VPN Service - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service S3: Servicio Actualización de Dropbox (dbupdatem) - (dbupdatem) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /medsvc
O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc Debug information: - 14.08.2019 19:25:50 - LoadFileToStream - #0 LastDllError = 5 (Acceso denegado.) CreateFile C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job - 14.08.2019 19:25:50 - ParseJob. Unable to open file: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job - #0 LastDllError = 0 - 14.08.2019 19:25:50 - LoadFileToStream - #0 LastDllError = 5 (Acceso denegado.) CreateFile C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job - 14.08.2019 19:25:50 - ParseJob. Unable to open file: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job - #0 LastDllError = 0
-- End of file - Time spent: 74,3 sec. - 43584 bytes, CRC32: FFFFFFFF. Sign: ꀯ걔
Muchas gracias. Un saludo
 

Kbite

Aprender y compartir
Administrador
Hola elmulos.
Debes realizar estos pasos previos para limpiar tu sistema y devolvernos los informes para su análisis: Limpieza de spyware

En los procesos activos observo instalados dos antivirus, el AVG y el Panda, nada peor para causar problemas y lentitud, desinstala uno de ellos y prueba el resultado.

También tienes muchos programas en segundo plano que inician con Windows, solo el antivirus en necesario, deberías desactivar del arranque todo lo que no te sea necesario que corra en segundo plano:, hace referencia a Windows 7 pero es igual en Windows 10: Eliminar programas del arranque de Windows

Saludos, Kbite
 

elmulos

Miembro
Miembro
Hola, lo primero darte las gracias por la ayuda, he realizado lo propuesto, y el portatil, aun funciona bastante lento, he desinstalado los antivirus y he instalado Avast, el resto, lo he hecho, y adjunto los logs:
Insertar CODE, HTML o PHP:
# AdwCleaner v5.201 - Registro generado 01/08/2016 en 17:04:56

# Actualizado 30/06/2016 por ToolsLib

# Base de datos : 2016-07-31.4 [Servidor]

# Sistema operativo : Windows 10 Home  (X64)

# Nombre de usuario : Tino - PORTATIL

# Ejecutado desde : C:\Users\paula\AppData\Local\Microsoft\Windows\INetCache\IE\Q9ILT0N7\AdwCleaner.exe

# Opción : Limpiar

# Apoyo : ToolsLib


***** [ Servicios ] *****


[-]  eliminar : WtuSystemSupport

[-]  eliminar : vToolbarUpdater40.3.2


***** [ Carpetas ] *****


[-] Carpeta eliminar : C:\ProgramData\AVG Secure Search

[-] Carpeta eliminar : C:\ProgramData\AVG Security Toolbar

[-] Carpeta eliminar : C:\ProgramData\avg web tuneup

[-] Carpeta eliminar : C:\ProgramData\Avg_Update_0116av

[-] Carpeta eliminar : C:\ProgramData\Avg_Update_0816tb

[-] Carpeta eliminar : C:\ProgramData\Avg_Update_1215avt

[-] Carpeta eliminar : C:\Program Files (x86)\avg web tuneup

[-] Carpeta eliminar : C:\Program Files (x86)\Common Files\AVG Secure Search

[-] Carpeta eliminar : C:\Users\Tino\AppData\Local\pokki

[-] Carpeta eliminar : C:\Users\Tino\AppData\Local\avg web tuneup

[-] Carpeta eliminar : C:\Users\paula\AppData\Local\pokki

[-] Carpeta eliminar : C:\Users\paula\AppData\Local\avg web tuneup

[-] Carpeta eliminar : C:\Users\Administrador\AppData\Local\pokki

[-] Carpeta eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn

[-] Carpeta eliminar : C:\Program Files\avg web tuneup

[-] Carpeta eliminar : C:\Program Files\Common Files\AVG Secure Search

[-] Carpeta eliminar : \Users\Default User\AppData\Local\Pokki

[#] Carpeta eliminar : \Users\Default\AppData\Local\Pokki


***** [ Archivos ] *****


[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_mysearch.avg.com_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_mysearch.avg.com_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_land.pckeeper.software_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.searchinsocial.com_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.searchinsocial.com_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage

[-] Archivo eliminar : C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.coupontime00.coupontime.co_0.localstorage-journal


***** [ DLLs ] *****



***** [ WMI ] *****



***** [ Accesos directos ] *****



***** [ Tareas programadas ] *****



***** [ Registro ] *****


[-] Llave eliminar : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh

[-] Llave eliminar : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin

[-] Llave eliminar : HKLM\SOFTWARE\Classes\s

[-] Llave eliminar : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi

[-] Llave eliminar : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1

[-] Llave eliminar : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj

[-] Llave eliminar : HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1

[-] Llave eliminar : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}

[-] Llave eliminar : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}

[-] Llave eliminar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Llave eliminar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Llave eliminar : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Llave eliminar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Llave eliminar : HKCU\Software\Pokki

[-] Llave eliminar : HKLM\SOFTWARE\AVG Tuneup

[-] Llave eliminar : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

[-] Llave eliminar : [x64] HKLM\SOFTWARE\AVG Secure Search

[-] Llave eliminar : HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Pokki

[-] Llave eliminar : HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

[-] Llave eliminar : HKU\S-1-5-21-3477035921-1181801927-1372957898-500\Software\Pokki

[-] Llave eliminar : HKU\S-1-5-21-3477035921-1181801927-1372957898-500\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

[-] Datos Restauró : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]

[-] Datos Restauró : HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]

[-] Datos Restauró : HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Microsoft\Internet Explorer\Main [Start Page]

[-] Llave eliminar : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Llave eliminar : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Llave eliminar : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Llave eliminar : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}

[-] Llave eliminar : HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Llave eliminar : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com

[-] Llave eliminar : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\st.chatango.com

[-] Valor eliminar : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]


***** [ Navegadores Web ] *****


[-] [C:\Users\paula\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] eliminar : chfdnecihphmhljaaejmgoiahnihplgn


*************************


:: Llaves "Tracing" removidas

:: Winsock Configuración borrada


*************************


\AdwCleaner\AdwCleaner[C1].txt - [8896 bytes] - [01/08/2016 17:04:56]

\AdwCleaner\AdwCleaner[S1].txt - [10037 bytes] - [01/08/2016 16:53:02]


########## EOF - \AdwCleaner\AdwCleaner[C1].txt - [9039 bytes] ##########
Insertar CODE, HTML o PHP:
Malwarebytes
www.malwarebytes.com

-Detalles del registro-

Fecha del análisis: 18/8/19

Hora del análisis: 12:01

Archivo de registro: 3210a12a-c19f-11e9-8baa-201a06b32180.json


-Información del software-

Versión: 3.8.3.2965

Versión de los componentes: 1.0.613

Versión del paquete de actualización: 1.0.11804

Licencia: Prueba


-Información del sistema-

SO: Windows 10 (Build 17134.885)

CPU: x64

Sistema de archivos: NTFS

Usuario: PORTATIL\paula


-Resumen del análisis-

Tipo de análisis: Análisis de amenazas

Análisis iniciado por:: Manual

Resultado: Completado

Objetos analizados: 387092

Amenazas detectadas: 1

Amenazas en cuarentena: 1

Tiempo transcurrido: 47 min, 9 seg


-Opciones de análisis-

Memoria: Activado

Inicio: Activado

Sistema de archivos: Activado

Archivo: Activado

Rootkits: Desactivado

Heurística: Activado

PUP: Detectar

PUM: Detectar

-Detalles del análisis-

Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0

(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 1
PUP.Optional.TerraClicks.ShrtCln, C:\USERS\TINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCOOKIES\LOW\0740T55J.TXT, En cuarentena, [14826], [302487],1.0.11804

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)

(end)
Insertar CODE, HTML o PHP:
Rkill 2.9.1 by Lawrence Abrams (Grinler)

Copyright 2008-2019 BleepingComputer.com

More Information about Rkill can be found at this link:

RKill - What it does and What it Doesn't - A brief introduction to the program - Anti-Virus, Anti-Malware, and Privacy Software

Program started at: 08/18/2019 01:08:29 PM in x64 mode. (Safe Mode)

Windows Version: Windows 10 Home

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.


Performing miscellaneous checks:
* Reparse Point/Junctions Found (Most likely legitimate)!
* C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 => C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\INetCache\IE [Dir]
* No issues found.

Searching for Missing Digital Signatures:
* No issues found.

Checking HOSTS File:
* No issues found.

Program finished at: 08/18/2019 01:14:00 PM
Execution time: 0 hours(s), 5 minute(s), and 30 seconds(s)
Insertar CODE, HTML o PHP:
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18
Platform:  x64 Windows 10 (Home), 10.0.17134.885 (ReleaseId: 1803), Service Pack: 0
Time:      18.08.2019 - 20:23 (UTC+02:00)
Language:  OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated:  Yes
Ran by:    Tino    (group: Administrator) on PORTATIL, FirstRun: yes
Chrome:  76.0.3809.100
Edge:    11.0.17134.858
Internet Explorer: 11.0.17134.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)
Boot mode: Normal
Running processes:
Number | Path

   1  C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe

   2  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

   2  C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

   1  C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

  12  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

   1  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

   4  C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

   2  C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

   1  C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe

   1  C:\Program Files\AVAST Software\Avast\AvastSvc.exe

   2  C:\Program Files\AVAST Software\Avast\AvastUI.exe

   1  C:\Program Files\AVAST Software\Avast\aswEngSrv.exe

   1  C:\Program Files\AVAST Software\Avast\aswidsagent.exe

   1  C:\Program Files\AVAST Software\Avast\wsc_proxy.exe

   2  C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe

   1  C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe

   2  C:\Program Files\Acer\Acer Launch Manager\LMTray.exe

   2  C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe

   1  C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

   2  C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

   2  C:\Program Files\Acer\Acer Quick Access\QAEvent.exe

   2  C:\Program Files\Acer\Acer Quick Access\QAMsg.exe

   1  C:\Program Files\Acer\Acer Quick Access\QASvc.exe

   1  C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe

   1  C:\Program Files\Bonjour\mDNSResponder.exe

   1  C:\Program Files\Common Files\mcafee\CSP\1.3.374.0\McCSPServiceHost.exe

   1  C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe

   2  C:\Program Files\Elantech\ETDCtrl.exe

   2  C:\Program Files\Elantech\ETDCtrlHelper.exe

   1  C:\Program Files\Elantech\ETDService.exe

   1  C:\Program Files\Intel\iCLS Client\HeciServer.exe

   1  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

   2  C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

   1  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe

   1  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

   2  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

   1  C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe

   2  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

   2  C:\Program Files\Windows Defender\MSASCuiL.exe

   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe

   1  C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

   1  C:\Program Files\rempl\sedsvc.exe

   1  C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE

   1  C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE

   1  C:\Users\Tino\Desktop\mbar\mbar.exe

   1  C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe

   1  C:\Users\paula\Desktop\HiJackThis.exe

   1  C:\Users\paula\Desktop\mbar-1.10.3.1001.exe

   1  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

   1  C:\Windows\SysWOW64\cmd.exe

   2  C:\Windows\System32\ApplicationFrameHost.exe

   2  C:\Windows\System32\CompatTelRunner.exe

   1  C:\Windows\System32\DbxSvc.exe

   1  C:\Windows\System32\LogonUI.exe

  10  C:\Windows\System32\RuntimeBroker.exe

   1  C:\Windows\System32\SearchFilterHost.exe

   1  C:\Windows\System32\SearchIndexer.exe

   2  C:\Windows\System32\SearchProtocolHost.exe

   1  C:\Windows\System32\SecurityHealthService.exe

   1  C:\Windows\System32\SettingSyncHost.exe

   1  C:\Windows\System32\SgrmBroker.exe

   1  C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe

   1  C:\Windows\System32\audiodg.exe

   2  C:\Windows\System32\backgroundTaskHost.exe

   2  C:\Windows\System32\browser_broker.exe

   2  C:\Windows\System32\conhost.exe

   3  C:\Windows\System32\csrss.exe

   2  C:\Windows\System32\ctfmon.exe

   1  C:\Windows\System32\dasHost.exe

   4  C:\Windows\System32\dllhost.exe

   1  C:\Windows\System32\drivers\AdminService.exe

   2  C:\Windows\System32\dwm.exe

   3  C:\Windows\System32\fontdrvhost.exe

   1  C:\Windows\System32\igfxCUIService.exe

   2  C:\Windows\System32\igfxEM.exe

   2  C:\Windows\System32\igfxHK.exe

   1  C:\Windows\System32\igfxTray.exe

   2  C:\Windows\System32\igfxext.exe

   1  C:\Windows\System32\lsass.exe

   1  C:\Windows\System32\mfevtps.exe

   1  C:\Windows\System32\services.exe

   2  C:\Windows\System32\sihost.exe

   2  C:\Windows\System32\smartscreen.exe

   1  C:\Windows\System32\smss.exe

   1  C:\Windows\System32\spoolsv.exe

  76  C:\Windows\System32\svchost.exe

   3  C:\Windows\System32\taskhostw.exe

   2  C:\Windows\System32\wbem\WmiPrvSE.exe

   7  C:\Windows\System32\wbem\unsecapp.exe

   1  C:\Windows\System32\wininit.exe

   2  C:\Windows\System32\winlogon.exe

   2  C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

   2  C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

   2  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

   2  C:\Windows\explorer.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias y horóscopo en MSN España y Microsoft News

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Yahoo

R0 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias y horóscopo en MSN España y Microsoft News

R0 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\Software\Microsoft\Internet Explorer\Main: [Start Page] = Google

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{286C90C3-DC68-4D55-8B43-B7F889F8DE7B}: = Yahoo Search - Búsqueda en la Web{searchTerms}&intl=es&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle - Yahoo Search O2 - HKLM\..\BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll (file missing) O2 - HKLM\..\BHO: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll (file missing) O2-32 - HKLM\..\BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll (file missing) O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll O2-32 - HKLM\..\BHO: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll (file missing) O3 - HKLM\..\Toolbar: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll (file missing) O3-32 - HKLM\..\Toolbar: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll (file missing) O4 - HKCU\..\StartupApproved\Run: [BingSvc] = C:\Users\Tino\AppData\Local\Microsoft\BingSvc\BingSvc.exe (2019/08/18) O4 - HKCU\..\StartupApproved\Run: [OneDrive] = C:\Users\Tino\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (2019/08/18) O4 - HKCU\..\StartupApproved\Run: [Spotify Web Helper] = C:\Users\Tino\AppData\Roaming\Spotify\SpotifyWebHelper.exe (2019/08/18) O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (file missing) O4 - HKLM\..\Run: [AvastUI.exe] = C:\Program Files\AVAST Software\Avast\AvLaunch.exe /gui O4 - HKLM\..\Run: [ETDCtrl] = C:\Program Files\Elantech\ETDCtrl.exe O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing) O4 - HKLM\..\StartupApproved\Run32: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices (2019/08/18) O4 - HKLM\..\StartupApproved\Run32: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup (2019/08/18) O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade O4 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\..\Run: [EPSON Stylus SX100] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S9207.tmp" /EF "HKCU" (User 'paula') O4 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\..\Run: [OneDrive] = C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft) (User 'paula') O4 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\..\Run: [Skype for Desktop] = C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (User 'paula') O4 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1003\..\Run: [Spotify] = C:\Users\paula\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized (User 'paula') O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4-32 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4-32 - HKLM\..\Run: [vProt] = C:\Program Files (x86)\AVG Web TuneUp\vprot.exe (file missing) O17 - DHCP DNS 1: 80.58.61.254 O17 - DHCP DNS 2: 80.58.61.250 O18 - HKLM\Software\Classes\Protocols\Filter\application/x-mfe-ipt: [CLSID] = {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\MCSNIE~1.DLL O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSynced: ACloudSynced Class - {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSyncing: ACloudSyncing Class - {C1E1456F-C2D8-4C96-870D-35F1E13941EE} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudToBeSynced: ACloudToBeSynced Class - {307523FA-DDC0-4068-983F-2A6B34627744} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: avast - {472083B0-C522-11CF-8763-00608CC02F24} - C:\Program Files\AVAST Software\Avast\ashShell.dll O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: avast - {472083B0-C522-11CF-8763-00608CC02F24} - C:\Program Files\AVAST Software\Avast\ashShell.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.0.dll O22 - Task (.job): (Not scheduled) G2MUpdateTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\14074\g2mupdate.exe O22 - Task (.job): (Not scheduled) G2MUploadTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\14074\g2mupload.exe O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK O22 - Task (.job): (disabled) (Not scheduled) DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c O22 - Task (.job): (disabled) (Not scheduled) DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler O23 - Service R2: AtherosSvc - C:\WINDOWS\system32\DRIVERS\AdminService.exe O23 - Service R2: Avast Antivirus - (avast! Antivirus) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service R2: AvastWscReporter - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe /runassvc /rpcserver O23 - Service R2: DbxSvc - C:\WINDOWS\system32\DbxSvc.exe O23 - Service R2: EPSON V3 Service4(01) - (EPSON_PM_RPCV4_01) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE O23 - Service R2: EPSON V5 Service4(01) - (EPSON_EB_RPCV4_01) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE O23 - Service R2: Elan Service - (ETDService) - C:\Program Files\Elantech\ETDService.exe O23 - Service R2: GamesAppIntegrationService - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service R2: Intel(R) Capability Licensing Service Interface - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service R2: Launch Manager Service - (LMSvc) - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe O23 - Service R2: McAfee CSP Service - (mccspsvc) - C:\Program Files\Common Files\McAfee\CSP\1.3.374.0\McCSPServiceHost.exe O23 - Service R2: McAfee Firewall Core Service - (mfefire) - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service R2: McAfee Validation Trust Protection Service - (mfevtp) - C:\Windows\system32\mfevtps.exe O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" O23 - Service R2: Servicio Bonjour - (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe O23 - Service R2: panda_url_filtering Service - (panda_url_filtering) - C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe -- O23 - Service R3: Quick Access Service - (QASvc) - C:\Program Files\Acer\Acer Quick Access\QASvc.exe O23 - Service R3: aswbIDSAgent - C:\Program Files\AVAST Software\Avast\aswidsagent.exe O23 - Service R3: ePower Service - (ePowerSvc) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service S2: Servicio Actualización de Dropbox (dbupdate) - (dbupdate) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /svc O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc O23 - Service S3: GamesAppService - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\elevation_service.exe O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service S3: Microsoft SharePoint Workspace Audit Service - C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE /auditservice O23 - Service S3: Servicio Actualización de Dropbox (dbupdatem) - (dbupdatem) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /medsvc O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc -- End of file - Time spent: 401,9 sec. - 40786 bytes, CRC32: FFFFFFFF. Sign: м㓻
Muchas gracias por todo Un saludo
 

Kbite

Aprender y compartir
Administrador
Continuas teniendo muchísimos programas que corren en segundo plano, si no desactivas los que no te sean necesarios no notarás mejoría.

El log de HijackThis está desordenado, no se puede analizar debidamente ya que las entradas están una tras otra sin separación, este sería un log legible, saca uno nuevo pero ordenado.

Saludos, Kbite
 
Última edición:

elmulos

Miembro
Miembro
Hola de nuevo, pues no se que ha podido pasar en el log, ya que lo he copiado como ha salido.

Del inicio he eliminado muchos programas, creo que no me dejo ninguno, ya que hay los del propio portatil, la tarjeta grafica.........

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform: x64 Windows 10 (Home), 10.0.17134.885 (ReleaseId: 1803), Service Pack: 0
Time: 20.08.2019 - 16:52 (UTC+02:00)
Language: OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated: No
Ran by: paula (group: Limited User) on PORTATIL, FirstRun: no

Chrome: 76.0.3809.100
Edge: 11.0.17134.858
Internet Explorer: 11.0.17134.1
Default: "C:\WINDOWS\system32\LaunchWinApp.exe" "%1" (Microsoft Edge)

Boot mode: Normal

Running processes:
Number | Path
1 AdminService.exe
1 AvastSvc.exe
1 C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
1 C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
8 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
4 C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
1 C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
1 C:\Program Files\AVAST Software\Avast\AvastUI.exe
1 C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
1 C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
1 C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
1 C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
1 C:\Program Files\Elantech\ETDCtrl.exe
1 C:\Program Files\Elantech\ETDCtrlHelper.exe
1 C:\Program Files\Intel\iCLS Client\HeciServer.exe
1 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
1 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
1 C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1 C:\Users\paula\Desktop\HiJackThis.exe
1 C:\WINDOWS\system32\SearchIndexer.exe
1 C:\WINDOWS\system32\SecurityHealthService.exe
1 C:\WINDOWS\system32\SgrmBroker.exe
2 C:\WINDOWS\system32\csrss.exe
1 C:\WINDOWS\system32\dasHost.exe
3 C:\WINDOWS\system32\dllhost.exe
1 C:\WINDOWS\system32\dwm.exe
2 C:\WINDOWS\system32\fontdrvhost.exe
1 C:\WINDOWS\system32\igfxCUIService.exe
1 C:\WINDOWS\system32\lsass.exe
1 C:\WINDOWS\system32\mfevtps.exe
1 C:\WINDOWS\system32\services.exe
1 C:\WINDOWS\system32\smss.exe
1 C:\WINDOWS\system32\spoolsv.exe
72 C:\WINDOWS\system32\svchost.exe
1 C:\WINDOWS\system32\wininit.exe
1 C:\WINDOWS\system32\winlogon.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
4 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SettingSyncHost.exe
1 C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
1 C:\Windows\System32\Wbem\WmiApSrv.exe
2 C:\Windows\System32\Wbem\WmiPrvSE.exe
4 C:\Windows\System32\Wbem\unsecapp.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\browser_broker.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\igfxEM.exe
1 C:\Windows\System32\igfxHK.exe
1 C:\Windows\System32\igfxTray.exe
1 C:\Windows\System32\igfxext.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
2 C:\Windows\explorer.exe
1 DropboxUpdate.exe
1 ETDService.exe
1 E_S40RPB.EXE
1 E_S40STB.EXE
1 GamesAppIntegrationService.exe
1 LMEvent.exe
1 LMS.exe
1 LMSvc.exe
1 Memory Compression
1 NVDisplay.Container.exe
1 PresentationFontCache.exe
1 QAEvent.exe
1 QASvc.exe
1 Registry
1 aswidsagent.exe
1 ePowerEvent.exe
1 ePowerSvc.exe
1 mfefire.exe
1 nvxdsync.exe
1 sedsvc.exe
1 wsc_proxy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = Hotmail, Outlook, noticias y horóscopo en MSN España y Microsoft News
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = Google
R3 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002: Default URLSearchHook is missing
O2 - HKLM\..\BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll (file missing)
O2 - HKLM\..\BHO: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll (file missing)
O3 - HKLM\..\Toolbar: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll (file missing)
O4 - HKCU\..\Run: [EPSON Stylus SX100] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S9207.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [OneDrive] = C:\Users\paula\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\Run: [Skype for Desktop] = C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [Spotify] = C:\Users\paula\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (file missing)
O4 - HKLM\..\Run: [AvastUI.exe] = C:\Program Files\AVAST Software\Avast\AvLaunch.exe /gui
O4 - HKLM\..\Run: [ETDCtrl] = C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [NvBackend] = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing)
O4 - HKLM\..\StartupApproved\Run32: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices (2019/08/18)
O4 - HKLM\..\StartupApproved\Run32: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup (2019/08/18)
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\Environment: [TMP] = (not exist)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#10 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#11 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#12 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#13 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#14 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#8 in chain of 14 missing)
O10 - Broken Internet access because of LSP chain gap (#9 in chain of 14 missing)
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [@ivt] protocol is in Unknown Zone, should be Intranet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [file] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [ftp] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [http] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [https] protocol is in Unknown Zone, should be Internet Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [knownfolder] protocol is in Unknown Zone, should be My Computer Zone (User: 'Tino')
O15 - HKU\S-1-5-21-3477035921-1181801927-1372957898-1002\..\ProtocolDefaults: - [shell] protocol is in Unknown Zone, should be My Computer Zone (User: 'Tino')
O17 - DHCP DNS 1: 80.58.61.254
O17 - DHCP DNS 2: 80.58.61.250
O18 - HKLM\Software\Classes\Protocols\Filter\application/x-mfe-ipt: [CLSID] = {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\MCSNIE~1.DLL
O18 - HKLM\Software\Classes\Protocols\Handler\ms-help: [CLSID] = {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt01: DropboxExt1 Class - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt02: DropboxExt7 Class - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt03: DropboxExt9 Class - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt04: DropboxExt3 Class - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt05: DropboxExt2 Class - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt06: DropboxExt4 Class - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt07: DropboxExt5 Class - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt08: DropboxExt8 Class - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt09: DropboxExt10 Class - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ DropboxExt10: DropboxExt6 Class - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} - C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSynced: ACloudSynced Class - {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudSyncing: ACloudSyncing Class - {C1E1456F-C2D8-4C96-870D-35F1E13941EE} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ ACloudToBeSynced: ACloudToBeSynced Class - {307523FA-DDC0-4068-983F-2A6B34627744} - C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: avast - {472083B0-C522-11CF-8763-00608CC02F24} - C:\Program Files\AVAST Software\Avast\ashShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: avast - {472083B0-C522-11CF-8763-00608CC02F24} - C:\Program Files\AVAST Software\Avast\ashShell.dll
O22 - Task (.job): (Not scheduled) G2MUpdateTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\14074\g2mupdate.exe
O22 - Task (.job): (Not scheduled) G2MUploadTask-S-1-5-21-3477035921-1181801927-1372957898-1003.job - C:\Users\paula\AppData\Local\GoToMeeting\14074\g2mupload.exe
O22 - Task (.job): (disabled) CreateExplorerShellUnelevatedTask.job - (no file)
O22 - Task (.job): (disabled) DropboxUpdateTaskMachineCore.job - (no file)
O22 - Task (.job): (disabled) DropboxUpdateTaskMachineUA.job - (no file)
O23 - Service R2: AtherosSvc - C:\WINDOWS\system32\DRIVERS\AdminService.exe
O23 - Service R2: Avast Antivirus - (avast! Antivirus) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service R2: AvastWscReporter - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe /runassvc /rpcserver
O23 - Service R2: Elan Service - (ETDService) - C:\Program Files\Elantech\ETDService.exe
O23 - Service R2: GamesAppIntegrationService - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service R2: Intel(R) Capability Licensing Service Interface - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Launch Manager Service - (LMSvc) - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service R2: McAfee Firewall Core Service - (mfefire) - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service R2: McAfee Validation Trust Protection Service - (mfevtp) - C:\Windows\system32\mfevtps.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
O23 - Service R2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service R3: Quick Access Service - (QASvc) - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service R3: aswbIDSAgent - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service R3: ePower Service - (ePowerSvc) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service S2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: GamesAppService - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\elevation_service.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service S3: Microsoft SharePoint Workspace Audit Service - C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE /auditservice
O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc



Debug information:

- 20.08.2019 16:52:05 - LoadFileToStream - #0 LastDllError = 5 (Acceso denegado.) CreateFile C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
- 20.08.2019 16:52:05 - ParseJob. Unable to open file: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job - #0 LastDllError = 0
- 20.08.2019 16:52:05 - LoadFileToStream - #0 LastDllError = 5 (Acceso denegado.) CreateFile C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
- 20.08.2019 16:52:05 - ParseJob. Unable to open file: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job - #0 LastDllError = 0
- 20.08.2019 16:52:05 - LoadFileToStream - #0 LastDllError = 5 (Acceso denegado.) CreateFile C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
- 20.08.2019 16:52:05 - ParseJob. Unable to open file: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job - #0 LastDllError = 0

--
End of file - Time spent: 35,7 sec. - 35344 bytes, CRC32: FFFFFFFF. Sign: ໔擒
 

jbex

El que peca y reza empata
Administrador
Hola elmulos, tienes esto en el arranque de Windows
Insertar CODE, HTML o PHP:
O4 - HKCU\..\Run: [EPSON Stylus SX100] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S9207.tmp" /EF "HKCU"
OneDrive\OneDrive.exe /background (Microsoft)
Que yo eliminaría sin mas y si luego necesitas instalar los drivers de la impresora nuevamente hazlo, pero esa ruta es sospechosa.
Y luego todo esto, de verdad necesitas inicien con Windows?
Insertar CODE, HTML o PHP:
O4 - HKCU\..\Run: [Skype for Desktop] = C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [Spotify] = C:\Users\paula\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (file missing)
O4 - HKLM\..\StartupApproved\Run32: [BCSSync] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices (2019/08/18)
O4 - HKLM\..\StartupApproved\Run32: [Dropbox] = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup (2019/08/18)
Wondershare es una parte del producto, Wondershare Video Converter . Ya tu veras si lo dejas activo o lo eliminas, yo lo quitaría del inicio de Windows.
Luego tienes activos los servicios de: McAfee Firewall, Malwarebytes, Avast Antivirus.
El servicio de Malwarebytes pásalo a manual, para que solo inicie cuando tu abras el programa.
Un saludo
 
Arriba Pie