• Registrarse
  • Iniciar sesión


  • Resultados 1 al 9 de 9

    mi portatil va super lento (Solucionado)

    ...

          
    1. #1
      Usuario Avatar de saijem
      Registrado
      may 2005
      Ubicación
      españa
      Mensajes
      72

      mi portatil va super lento (Solucionado)

      Hola como digo en el titulo mi portatil, un amd turion de HP va lentisimo, he pasado el hijackthis y s me ha parado en un momento del analisis y me ha dicho que el archivo hosts esta bloqueado y no puede escribir que lo haga yo de manera manual pero cuando lo he abierto solo hay una linea de encabezamiento y nada mas, aun asi me ha dado el informe del analisis el cual os adjunto. Muchas gracias por vuestra ayuda.

      Logfile of Trend Micro HijackThis v2.0.5
      Scan saved at 19:40:31, on 25.12.2017
      Platform: Unknown Windows (WinNT 6.02.1008)
      MSIE: Internet Explorer v11.0 (11.00.9600.18817)

      FIREFOX: 57.0.2 (x86 es-ES)
      Boot mode: Normal

      Running processes:
      C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\Rohos\agent.exe
      C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
      C:\Program Files (x86)\Skype\Phone\Skype.exe
      C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      C:\Users\Francis\Downloads\HijackThis(1).exe
      C:\Windows\SysWOW64\DllHost.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      F2 - REG:system.ini: UserInit=userinit.exe,
      O1 - Hosts: ÿþ127.0.0.1 localhost
      O1 - Hosts: ::1 localhost
      O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
      O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
      O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
      O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKCU\..\Run: [Rohos] C:\Program Files (x86)\Rohos\agent.exe
      O4 - HKCU\..\Run: [Google Update] C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
      O4 - HKCU\..\Run: [BingSvc] C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
      O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
      O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
      O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
      O9 - Extra button: Cliquer pour appeler Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O9 - Extra 'Tools' menuitem: Cliquer pour appeler Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
      O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
      O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
      O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\BthHFSrv.dll,-103 (BthHFSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\UtcResources.dll,-3001 (DiagTrack) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
      O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\GeofenceMonitorService.dll,-1 (lfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
      O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Rohos Disk service (Rohos Disk) - Tesline-Service SRL - C:\Program Files (x86)\Rohos\agent.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
      O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
      O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBroker) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
      O23 - Service: @%systemroot%\system32\vmicres.dll,-801 (vmicguestinterface) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-101 (vmicheartbeat) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-201 (vmickvpexchange) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-601 (vmicrdv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-301 (vmicshutdown) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-401 (vmictimesync) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vmicres.dll,-501 (vmicvss) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
      O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
      O23 - Service: @%SystemRoot%\system32\WSService.dll,-103 (WSService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 26196 bytes

    2. #2
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      12.254

      Re: mi portatil va super lento

      Saludos saijem


      Vamos a llevar a cabo el siguiente procedimiento:


      Paso 1- Vamos a descargar en TU ESCRITORIO todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía):




      Paso 2- Ahora vamos a ejecutar las herramientas de una en una (cuando haya finalizado una, ejecutas la siguiente), y debes ejecutarlas en el mismo orden que te indico:


      AdwCleaner

      • El primer paso sería cerrar todos los programas que tengas abiertos.
      • Ejecutas Adwcleaner.exe. (Si usas Windows Vista/7 u 8 presionas clic derecho y seleccionas "Ejecutar como Administrador.")
      • A continuación, debes pulsar sobre el botón Escanear; el proceso de análisis se iniciará; esperas tranquilamente a que finalice.
      • Cuando termine, pulsas sobre el botón Limpiar.
      • Por último, te va a solicitar Reiniciar el sistema; como es evidente, debes Aceptar.
      • Ya solo queda, guardar el reporte que te aparecerá una vez que reinicies, para copiarlo y pegarlo en tu próxima respuesta.



      JRT.exe

      • Ejecutas Junkware Removal Tool (JRT.exe). (Si usas Windows Vista/7 u 8 presionas clic derecho y seleccionas "Ejecutar como Administrador.")
      • Ahora tienes que pulsar cualquier tecla para que el proceso continúe y esperas a que termine.
      • Cuando finalice, un registro (JRT.txt) se guardará en el escritorio y se abrirá automáticamente.
      • Este reporte debes copiarlo, para pegarlo también en tu próxima respuesta.



      Malwarebytes

      Es conveniente que inviertas unos minutos en leer con detalle su manual, para Configurarlo, Actualizarlo y Usarlo Correctamente.

      • Pulsa sobre Análisis y seleccionas Análisis Personalizado; a continuación pulsas sobre Configurar Análisis: seleccionas todas la unidades que tengas y pulsas sobre Analizar ahora.
      • Cuando Termine el análisis, Seleccionas "Eliminar Seleccionados".
      • Reinicias el sistema.
      • En el apartado "Historial" encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.



      CCleaner

      Debes usar, sus dos opciones principales, de acuerdo a su Manual:

      • "Limpiador": para borrar cookies, temporales de internet y todos los archivos que éste te muestre como obsoletos.
      • "Registro" para limpiar todo el Registro de Windows (haciendo copia de seguridad).
      • NO necesitamos este reporte.




      Paso 3.-: En tu próxima respuesta, pegas los reportes de las 3 Herramientas y no olvides comentar como sigue el problema.




      Saludos
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de saijem
      Registrado
      may 2005
      Ubicación
      españa
      Mensajes
      72

      Re: mi portatil va super lento

      Hola muchas gracias por vuestra respuesta, he realizado todo lo que me indicais pero observo que no hay mejora, el portatil tarda mucho en arrancar, en abrir carpetas, en abrir documentos en entrar en internet, en fin en todo. a continuacion os pongo los reportes que me pedis. Muchas gracias de nuevo y un saludo.# AdwCleaner 7.0.6.0 - Logfile created on Wed Dec 27 21:54:16 2017
      # Updated on 2017/21/12 by Malwarebytes
      # Running on Windows 8.1 Pro (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      No malicious folders deleted.

      ***** [ Files ] *****

      Deleted: C:\Windows\System32\drivers\DRVAGENT64.SYS


      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      No malicious registry entries deleted.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[C1].txt - [1874 B] - [2016/6/26 10:20:22]
      C:/AdwCleaner/AdwCleaner[S1].txt - [1125 B] - [2016/6/26 8:56:50]

      # AdwCleaner 7.0.6.0 - Logfile created on Wed Dec 27 21:44:59 2017
      # Updated on 2017/21/12 by Malwarebytes
      # Database: 12-26-2017.1
      # Running on Windows 8.1 Pro (X64)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services found.

      ***** [ Folders ] *****

      No malicious folders found.

      ***** [ Files ] *****

      PUP.Optional.DriverAgent, C:\Windows\System32\drivers\DRVAGENT64.SYS


      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      No malicious registry entries found.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries.

      *************************

      C:/AdwCleaner/AdwCleaner[C1].txt - [1874 B] - [2016/6/26 10:20:22]
      C:/AdwCleaner/AdwCleaner[S1].txt - [1893 B] - [2016/6/26 8:56:50]


      ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 8.1 Pro x64
      Ran by Francis (Administrator) on 27.12.2017 at 22:58:50,40
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 0




      Registry: 0





      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 27.12.2017 at 23:05:51,31
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 25/12/17
      Hora del análisis: 18:53
      Archivo de registro: 77e30c38-e99c-11e7-83ac-001e68052966.json
      Administrador: Sí

      -Información del software-
      Versión: 3.3.1.2183
      Versión de los componentes: 1.0.262
      Versión del paquete de actualización: 1.0.3560
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 8.1
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: PERSONAL\Francis

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 256230
      Amenazas detectadas: 1
      Amenazas en cuarentena: 1
      Tiempo transcurrido: 19 min, 52 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 1
      PUP.Optional.MindSpark, C:\USERS\FRANCIS\DOWNLOADS\MAPSGALAXY.F781644FBE174C0EB407574949EA17C1.EXE, En cuarentena, [236], [365288],1.0.3560

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

    4. #4
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      12.254

      Re: mi portatil va super lento

      Con respecto a Malwarebytes, me hubiese gustado más que hubieras realizado un Análisis Pesonalizado, tal y como te sugerí ya que realiza un escaner mucho más profundo del sistema que el Análisis de Amenazas que realiza el software por defecto.

      ya que persiste la lentitud, vamos a ver si podemos analizar el sistema un poco más profundo. Para ello, realiza el siguiente procedimeinto:


      1º paso.- Descarga en el escritorio las siguientes herramientas, pero no las ejecutes todavía:



      2º paso.- Reinicia en "Modo Seguro" (si no puedes iniciar en Modo Seguro, omites este paso).

      3º paso.- Ejecuta ahora DrWebCureIt. Para hacerlo correctamente, dedica unos segundos a leer su manual. Esta herramienta puede tardar muchííííísimo en realizar su escaner, pero ármate de paciencia y déjala que termine su trabajo.

      Su reporte también es muy largo. Para que no sea tan inmenso y me lo puedas adjuntar en tu próxima respuesta (para que pueda analizarlo y evaluar la importancia de las infecciones encontradas ), realiza lo siguiente:

      Antes de comenzar el escaneo se recomienda presionar el icono en forma de llave inglesa y de las opciones elegirá Configuración:
      En la ventana ira a Log y pondrá el nivel en mínimo y deberá dar en OK para guardar los cambios.


      Advertencia. Si esta sección se deja en Máximo o Medio el reporte será innecesariamente extenso y no podrá publicarlo en el tema del foro en donde lo estén ayudando. Si aún así el reporte sigue siendo muy extenso, ponga en el foro solo la parte correspondiente a las infecciones eliminadas/curadas.
      Si aún así el reporte sigue siendo demasiado largo, pegue en el foro solo la última parte del reporte donde dice las infecciones que ha localizado y eliminado. Con esa parte es suficiente: a partir de donde dice Start Curing. El resto del reporte es totalmente innecesario.

      4º paso.- Ahora reinicias en modo normal y ejecutas Eset Smart Installer:

      Ejecutar y marcar, las casillas Eliminar las amenazas detectadas y analizar archivos.
      • Dar en Configuración adicional, marcar las casillas de Analizar en busca de aplicaciones potencialmente indeseables, Analizar en busca de aplicaciones potencialmente peligrosas y Activar la tecnoligía Anti-Stealth.
      • Dar en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.
      • Acabado el scan dar en Finalizar. El reporte se puede localizar en C:\Archivos de programa\ESET\ESET Online Scanner\log. Me dejas este reporter en tu próxima contestación.


      5º paso.- Por último vamos a ejecutar Farbar Recovery Scan Tool (FRST) que lo debes de tener descargado en tu escritorio:

      • La guardas en el Escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe/Frst64.exe según el caso.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.
      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta.
      • Utiliza dos mensajes si te dice que es muy largo.


      En tu próxima respuesta, me dejas los reportes de Eset Smart Installer, DrWebCureIt y FRST, y me comentas como sigue funcionando el equipo.

      Saludos y buenas fiestas
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de saijem
      Registrado
      may 2005
      Ubicación
      españa
      Mensajes
      72

      Re: mi portatil va super lento

      Hola @MiguelRiaguel de nuevo, ante todo poder disculpas por no haber hecho el análisis personalizado del Malwarebites como me indico pero vi que decía todos los discos y como solamente tengo uno entendí que la personalización era solo eso por eso no lo hice así. Respecto al tema del portátil va bastante mejor, no obstante el Mozilla Firefox esta lento, si hubiera que prescindir de el no me importaría, adjunto le envío los reportes de los diferentes programas antivirus que me indico. No encuentro en el reporte del cure it el apartado Start curling que me indica porque enviarlo no se puede ni en dos veces a pasear de haber hecho el ajuste del archivo pequeño, he leído el final del reporte y dice lo siguiente:
      Total 9146102614 bytes in 50490 files scanned (54422 objects)
      Total 50480 files (54385 objects) are clean
      There are no infected objects detected
      Total 35 files (37 objects) are raised error condition
      Scan time is 00:31:01.970

      No se si tendrá suficiente con esto, sino fuese así por favor me indica otra opción. El resto de los reportes se los pongo a continuación:

      [email protected] as downloader log:
      Can not open [email protected] as downloader log:
      Can not open internetCan not open [email protected] as downloader log:
      Can not open internetCan not open [email protected] as downloader log:
      all ok
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=init
      # utc_time=2017-12-28 09:09:49
      # local_time=2017-12-28 10:09:49 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      Update Init
      Update Download
      Update Init
      Update Download
      Update Finalize
      Updated modules version: 35883
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=updated
      # utc_time=2017-12-28 09:14:58
      # local_time=2017-12-28 10:14:58 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.7777
      # api_version=3.1.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # engine=35883
      # end=stopped
      # remove_checked=false
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2017-12-29 05:03:14
      # local_time=2017-12-29 06:03:14 (+0100, Paris, Madrid)
      # country="Switzerland"
      # lang=3082
      # osver=6.2.9200 NT
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776574 100 94 313620 30287516 0 0
      # scanned=107622
      # found=13
      # cleaned=0
      # scan_time=28092
      sh=58C7139D5257AFCFFB2EA4056A1E0F424381DED8 ft=1 fh=7c7d1b7174339564 vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa" ac=I fn="C:\$Recycle.Bin\S-1-5-21-3991337843-804343502-1807504109-1001\$RT12I37.exe"
      sh=7E40AB8EF0F971B38F01478B77892C838817D944 ft=1 fh=216988b3d6c73729 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller.exe.vir"
      sh=6B2FB5C8511B8AF9BDDBC798B9BC7C15B614396A ft=1 fh=5f9d44942d32f728 vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller64.exe.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.dll.vir"
      sh=913A2C9B8BBF0D9F5B89AD5AE3D56D6D3E5171A3 ft=1 fh=75e6aeed046b5a7c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.exe.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService64.dll.vir"
      sh=7AF42B256455D663551CDD5DBAA787659FC40B30 ft=1 fh=86976cb4f993f315 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpServiceCert.dll.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysNative\LavasoftTcpService64.dll.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysWOW64\lavasofttcpservice.dll.vir"
      sh=64F5F422ECF4356DC28AC94FBE39D3337D6F658F ft=1 fh=5cf6e7942616c185 vn="una variante de Win32/Toolbar.MyWebSearch.BA aplicación potencialmente indeseable" ac=I fn="C:\AdwCleaner\Quarantine\1xVPfvJcrg\TooltabExtension.dll"
      sh=40F6CA5EF25B7DBD42AE8B4FDA5F98144B1AD360 ft=1 fh=08965c270c124c2f vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa" ac=I fn="C:\Users\Francis\Downloads\ccsetup519.exe"
      sh=F1EEBA9E906322A37AA1EFB1D2FAAAD78E217587 ft=1 fh=0c2952aae1428178 vn="una variante de MSIL/HackKMS.H aplicación potencialmente peligrosa" ac=I fn="C:\Windows\AutoKMS\AutoKMS.exe"
      sh=B97CCC346835D8467F5DA9CF675EC0F18BCB1B81 ft=0 fh=0000000000000000 vn="múltiples amenazas" ac=I fn="C:\Windows\Installer\604bb3.msi"
      [email protected] as downloader log:
      all ok
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=init
      # utc_time=2017-12-29 08:50:26
      # local_time=2017-12-29 09:50:26 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      Update Init
      Update Download
      Update Finalize
      Updated modules version: 35895
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=updated
      # utc_time=2017-12-29 08:53:29
      # local_time=2017-12-29 09:53:29 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.7777
      # api_version=3.1.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # engine=35895
      # end=stopped
      # remove_checked=false
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2017-12-30 12:09:49
      # local_time=2017-12-30 01:09:49 (+0100, Paris, Madrid)
      # country="Switzerland"
      # lang=3082
      # osver=6.2.9200 NT
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776574 100 94 382416 30356312 0 0
      # scanned=294420
      # found=13
      # cleaned=0
      # scan_time=11779
      sh=58C7139D5257AFCFFB2EA4056A1E0F424381DED8 ft=1 fh=7c7d1b7174339564 vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa" ac=I fn="C:\$Recycle.Bin\S-1-5-21-3991337843-804343502-1807504109-1001\$RT12I37.exe"
      sh=7E40AB8EF0F971B38F01478B77892C838817D944 ft=1 fh=216988b3d6c73729 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller.exe.vir"
      sh=6B2FB5C8511B8AF9BDDBC798B9BC7C15B614396A ft=1 fh=5f9d44942d32f728 vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller64.exe.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.dll.vir"
      sh=913A2C9B8BBF0D9F5B89AD5AE3D56D6D3E5171A3 ft=1 fh=75e6aeed046b5a7c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.exe.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService64.dll.vir"
      sh=7AF42B256455D663551CDD5DBAA787659FC40B30 ft=1 fh=86976cb4f993f315 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpServiceCert.dll.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysNative\LavasoftTcpService64.dll.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa" ac=I fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysWOW64\lavasofttcpservice.dll.vir"
      sh=64F5F422ECF4356DC28AC94FBE39D3337D6F658F ft=1 fh=5cf6e7942616c185 vn="una variante de Win32/Toolbar.MyWebSearch.BA aplicación potencialmente indeseable" ac=I fn="C:\AdwCleaner\Quarantine\1xVPfvJcrg\TooltabExtension.dll"
      sh=40F6CA5EF25B7DBD42AE8B4FDA5F98144B1AD360 ft=1 fh=08965c270c124c2f vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa" ac=I fn="C:\Users\Francis\Downloads\ccsetup519.exe"
      sh=F1EEBA9E906322A37AA1EFB1D2FAAAD78E217587 ft=1 fh=0c2952aae1428178 vn="una variante de MSIL/HackKMS.H aplicación potencialmente peligrosa" ac=I fn="C:\Windows\AutoKMS\AutoKMS.exe"
      sh=B97CCC346835D8467F5DA9CF675EC0F18BCB1B81 ft=0 fh=0000000000000000 vn="múltiples amenazas" ac=I fn="C:\Windows\Installer\604bb3.msi"
      [email protected] as downloader log:
      all ok
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=init
      # utc_time=2017-12-30 08:46:29
      # local_time=2017-12-30 09:46:29 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      Update Init
      Update Download
      Update Finalize
      Updated modules version: 35899
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # end=updated
      # utc_time=2017-12-30 08:48:06
      # local_time=2017-12-30 09:48:06 (+0100, Paris, Madrid)
      # country="Switzerland"
      # osver=6.2.9200 NT
      # product=EOS
      # version=8
      # OnlineScannerApp.exe=1.0.0.1
      # OnlineScanner.ocx=1.0.0.7777
      # api_version=3.1.1
      # EOSSerial=41d3d85977771c40995aedd4ad51f8d0
      # engine=35899
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # utc_time=2017-12-30 12:36:37
      # local_time=2017-12-30 01:36:37 (+0100, Paris, Madrid)
      # country="Switzerland"
      # lang=3082
      # osver=6.2.9200 NT
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776574 100 94 427224 30401120 0 0
      # scanned=316214
      # found=13
      # cleaned=13
      # scan_time=13711
      sh=58C7139D5257AFCFFB2EA4056A1E0F424381DED8 ft=1 fh=7c7d1b7174339564 vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\$Recycle.Bin\S-1-5-21-3991337843-804343502-1807504109-1001\$RT12I37.exe"
      sh=7E40AB8EF0F971B38F01478B77892C838817D944 ft=1 fh=216988b3d6c73729 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller.exe.vir"
      sh=6B2FB5C8511B8AF9BDDBC798B9BC7C15B614396A ft=1 fh=5f9d44942d32f728 vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftLSPInstaller64.exe.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.dll.vir"
      sh=913A2C9B8BBF0D9F5B89AD5AE3D56D6D3E5171A3 ft=1 fh=75e6aeed046b5a7c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService.exe.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpService64.dll.vir"
      sh=7AF42B256455D663551CDD5DBAA787659FC40B30 ft=1 fh=86976cb4f993f315 vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Program Files (x86)\lavasoft\web companion\TcpService\2.2.9.5\LavasoftTcpServiceCert.dll.vir"
      sh=CC1EABC5B8AF0D6053F68C0B23ED95AB02086B4C ft=1 fh=24b45030fc329ffb vn="una variante de Win64/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysNative\LavasoftTcpService64.dll.vir"
      sh=E876B543B70E7C6D8DA821F7301B0F965A69E8DE ft=1 fh=55aa2e0f8023924c vn="una variante de Win32/Packed.Komodia.A aplicación sospechosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\FileQuarantine\C\Windows\SysWOW64\lavasofttcpservice.dll.vir"
      sh=64F5F422ECF4356DC28AC94FBE39D3337D6F658F ft=1 fh=5cf6e7942616c185 vn="una variante de Win32/Toolbar.MyWebSearch.BA aplicación potencialmente indeseable (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\AdwCleaner\Quarantine\1xVPfvJcrg\TooltabExtension.dll"
      sh=40F6CA5EF25B7DBD42AE8B4FDA5F98144B1AD360 ft=1 fh=08965c270c124c2f vn="Win32/Bundled.Toolbar.Google.D aplicación potencialmente peligrosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\Users\Francis\Downloads\ccsetup519.exe"
      sh=F1EEBA9E906322A37AA1EFB1D2FAAAD78E217587 ft=1 fh=0c2952aae1428178 vn="una variante de MSIL/HackKMS.H aplicación potencialmente peligrosa (no se ha podido desinfectar - archivo eliminado)" ac=C fn="C:\Windows\AutoKMS\AutoKMS.exe"
      sh=B97CCC346835D8467F5DA9CF675EC0F18BCB1B81 ft=0 fh=0000000000000000 vn="múltiples amenazas (eliminado)" ac=C fn="C:\Windows\Installer\604bb3.msi"

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
      Ran by Francis (administrator) on PERSONAL (30-12-2017 14:09:02)
      Running from C:\Users\Francis\Desktop
      Loaded Profiles: Francis (Available Profiles: Francis)
      Platform: Windows 8.1 Pro (Update) (X64) Language: Espagnol (International)
      Internet Explorer Version 11 (Default browser: FF)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
      (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
      (Tesline-Service SRL) C:\Program Files (x86)\Rohos\agent.exe
      () C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      () C:\Windows\runSW.exe
      (Realtek) C:\Windows\SwUSB.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
      (Tesline-Service SRL) C:\Program Files (x86)\Rohos\agent.exe
      (© 2015 Microsoft Corporation) C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe
      (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
      (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
      HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2350880 2014-05-30] (NVIDIA Corporation)
      HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
      HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
      HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [Rohos] => C:\Program Files (x86)\Rohos\agent.exe [5159064 2017-06-28] (Tesline-Service SRL)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [Google Update] => C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-15] (Google Inc.)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [BingSvc] => C:\Users\Francis\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-04-04] (© 2015 Microsoft Corporation)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27784672 2017-06-27] (Skype Technologies S.A.)
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Policies\Explorer: []
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\Policies\Explorer: [TaskbarNoNotification] 0
      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\...\MountPoints2: {19dbe3ed-a97c-11e6-8657-001e68052966} - "E:\autorun.exe"
      BootExecute: autocheck autochk /m /P \Device\R:0001AE95autocheck autochk /m /P \Device\R:0001B19Bautocheck autochk /m /P \Device\R:00058DEDautocheck autochk /m /P \Device\R:00005358autocheck autochk /m /P \Device\R:00049A0Eautocheck autochk /m /P \Device\R:000141D2autocheck autochk /m /P \Device\R:00005286autocheck autochk /m /P \Device\R:0002E636autocheck autochk /m /P \Device\R:00017271autocheck autochk *

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{F417343D-F2C7-4B68-BDD9-DB4F81143568}: [DhcpNameServer] 192.168.1.1

      Internet Explorer:
      ==================
      BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation)
      BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
      BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-12-25] (Google Inc.)
      BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
      BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
      BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
      BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-12-25] (Google Inc.)
      BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
      Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-12-25] (Google Inc.)
      Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-12-25] (Google Inc.)
      Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)

      FireFox:
      ========
      FF ProfilePath: C:\Users\Francis\AppData\Roaming\Mozilla\Firefox\Profiles\oqnb4d62.default-1439313933067 [2017-12-30]
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-16] ()
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-16] ()
      FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-25] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-25] (Google Inc.)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
      FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Francis\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
      FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @talk.google.com/O1DPlugin -> C:\Users\Francis\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
      FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-19] (Google Inc.)
      FF Plugin HKU\S-1-5-21-3991337843-804343502-1807504109-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-19] (Google Inc.)
      FF Plugin ProgramFiles/Appdata: C:\Users\Francis\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
      FF Plugin ProgramFiles/Appdata: C:\Users\Francis\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

      Chrome:
      =======
      CHR Profile: C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default [2017-12-30]
      CHR Extension: (Slides) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-25]
      CHR Extension: (Docs) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-25]
      CHR Extension: (Google*Drive) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-25]
      CHR Extension: (YouTube) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-25]
      CHR Extension: (Sheets) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-25]
      CHR Extension: (Google*Docs hors connexion) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-28]
      CHR Extension: (Skype) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-25]
      CHR Extension: (Paiements via le Chrome*Web*Store) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-25]
      CHR Extension: (Gmail) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-25]
      CHR Extension: (Chrome Media Router) - C:\Users\Francis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-25]
      CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
      R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
      R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
      R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
      R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
      R2 Rohos Disk; C:\Program Files (x86)\Rohos\agent.exe [5159064 2017-06-28] (Tesline-Service SRL)
      R2 RunSwUSB; C:\Windows\runSW.exe [44760 2017-12-28] ()
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
      S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
      R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
      R3 HpqRemHid; C:\Windows\system32\DRIVERS\HpqRemHid.sys [9088 2007-07-11] (Hewlett-Packard Development Company, L.P.)
      R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-28] (Malwarebytes)
      R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2017-12-30] (Malwarebytes)
      R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [46008 2017-12-30] (Malwarebytes)
      R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-30] (Malwarebytes)
      R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2017-12-30] (Malwarebytes)
      R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
      R2 RHDISK_AMD64; C:\Program Files (x86)\Rohos\RHDISK_AMD64.SYS [45120 2016-08-05] (Tesline-Service SRL)
      S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
      S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
      S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
      U3 DfSdkS; no ImagePath
      S1 MpKsla23e53c4; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B40A4F3B-4C36-4A69-9A73-702271638A6C}\MpKsla23e53c4.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-30 14:09 - 2017-12-30 14:11 - 000014834 _____ C:\Users\Francis\Desktop\FRST.txt
      2017-12-28 22:00 - 2017-12-28 22:00 - 000000000 ____D C:\Program Files (x86)\ESET
      2017-12-28 17:30 - 2017-12-28 21:00 - 000000000 ____D C:\Users\Francis\Doctor Web
      2017-12-28 17:30 - 2017-12-28 17:30 - 000000000 ____D C:\ProgramData\Doctor Web
      2017-12-28 17:26 - 2017-12-30 14:09 - 000000000 ____D C:\FRST
      2017-12-28 17:18 - 2017-12-28 17:17 - 002391552 _____ (Farbar) C:\Users\Francis\Desktop\FRST64.exe
      2017-12-28 17:18 - 2016-06-26 09:53 - 002870984 _____ (ESET) C:\Users\Francis\Desktop\esetsmartinstaller_esn.exe
      2017-12-28 17:16 - 2017-12-28 17:17 - 002391552 _____ (Farbar) C:\Users\Francis\Downloads\FRST64.exe
      2017-12-28 17:15 - 2017-12-28 17:17 - 163699048 _____ C:\Users\Francis\Desktop\cureit.exe
      2017-12-28 17:15 - 2017-12-28 17:15 - 002870984 _____ (ESET) C:\Users\Francis\Downloads\esetsmartinstaller_esn (2).exe
      2017-12-28 17:15 - 2017-12-28 17:15 - 002870984 _____ (ESET) C:\Users\Francis\Downloads\esetsmartinstaller_esn (1).exe
      2017-12-28 12:29 - 2017-12-28 12:54 - 000500736 _____ (Realtek) C:\Windows\SwUSB.exe
      2017-12-28 12:29 - 2017-12-28 12:54 - 000044760 _____ () C:\Windows\runSW.exe
      2017-12-28 12:29 - 2017-04-06 03:33 - 001139416 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
      2017-12-27 23:11 - 2017-12-30 11:51 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
      2017-12-27 23:11 - 2017-12-30 09:45 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
      2017-12-27 23:11 - 2017-12-30 09:45 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
      2017-12-27 23:11 - 2017-12-28 17:24 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
      2017-12-27 23:09 - 2017-12-30 09:45 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
      2017-12-27 23:09 - 2017-12-27 23:09 - 000001883 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-12-27 23:09 - 2017-12-27 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-12-27 23:09 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
      2017-12-27 23:08 - 2017-12-27 23:08 - 000000000 ____D C:\ProgramData\MB3CoreBackup
      2017-12-25 19:31 - 2017-12-25 19:31 - 000388608 _____ (Trend Micro Inc.) C:\Users\Francis\Downloads\HijackThis(1).exe
      2017-12-25 18:48 - 2017-12-25 18:48 - 000000000 ____D C:\Program Files\Malwarebytes
      2017-12-25 16:42 - 2017-12-28 11:33 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
      2017-12-25 16:41 - 2017-12-25 16:44 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-12-25 16:41 - 2017-12-25 16:44 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-12-25 16:40 - 2017-12-25 16:40 - 000000000 ____D C:\Program Files\Google
      2017-12-25 16:39 - 2017-12-25 16:44 - 000003532 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-12-25 16:39 - 2017-12-25 16:44 - 000003404 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-12-25 16:39 - 2017-12-25 16:41 - 000000000 ____D C:\Program Files (x86)\Google
      2017-12-25 16:39 - 2017-12-25 16:40 - 000000000 ____D C:\ProgramData\Google
      2017-12-25 13:27 - 2017-12-30 14:07 - 000000000 ____D C:\Users\Francis\AppData\LocalLow\Mozilla
      2017-12-25 13:27 - 2017-12-25 13:27 - 000001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-12-25 13:27 - 2017-12-25 13:27 - 000001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
      2017-12-14 21:02 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
      2017-12-14 21:02 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
      2017-12-14 21:01 - 2017-11-17 16:37 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
      2017-12-14 21:01 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
      2017-12-14 21:01 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
      2017-12-14 21:01 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
      2017-12-14 21:01 - 2017-11-14 03:55 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
      2017-12-14 21:01 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
      2017-12-14 21:01 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
      2017-12-14 21:01 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
      2017-12-14 21:01 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
      2017-12-14 21:01 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
      2017-12-14 21:01 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
      2017-12-14 21:01 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
      2017-12-14 21:01 - 2017-11-08 16:55 - 000032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
      2017-12-14 21:01 - 2017-11-07 22:15 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
      2017-12-14 21:01 - 2017-11-07 21:49 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
      2017-12-14 21:01 - 2017-11-07 21:46 - 000285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
      2017-12-14 21:01 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
      2017-12-14 21:01 - 2017-11-07 21:29 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
      2017-12-14 21:01 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
      2017-12-14 21:01 - 2017-11-07 21:27 - 000151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
      2017-12-14 21:01 - 2017-11-07 21:22 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
      2017-12-14 21:01 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
      2017-12-14 21:01 - 2017-11-07 21:08 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
      2017-12-14 21:01 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
      2017-12-14 21:01 - 2017-11-07 21:02 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
      2017-12-14 21:01 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
      2017-12-14 21:01 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
      2017-12-14 21:01 - 2017-10-18 18:14 - 000136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
      2017-12-14 21:01 - 2017-10-14 08:55 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
      2017-12-14 21:01 - 2017-10-14 08:29 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
      2017-12-14 21:01 - 2017-10-14 08:23 - 000963072 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
      2017-12-14 21:01 - 2017-10-14 08:17 - 003717632 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
      2017-12-14 21:01 - 2017-10-14 07:41 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
      2017-12-14 21:01 - 2017-10-14 07:19 - 000780800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
      2017-12-14 21:01 - 2017-10-10 17:39 - 001192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
      2017-12-14 21:01 - 2017-10-10 17:29 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
      2017-12-14 21:01 - 2017-10-10 16:42 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
      2017-12-14 21:01 - 2017-10-10 15:58 - 000949760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
      2017-12-11 20:04 - 2017-12-11 20:04 - 000394880 _____ C:\Users\Francis\Desktop\claire.roger_11.12.2017_15-13-58 senseur escalier.pdf
      2017-12-10 20:41 - 2017-12-10 20:41 - 000073332 _____ C:\Users\Francis\Desktop\Senseur lumière escalier.pdf
      2017-12-10 20:39 - 2017-12-10 20:39 - 000082677 _____ C:\Users\Francis\Desktop\Divers points.pdf
      2017-12-02 12:11 - 2017-12-02 12:11 - 000000000 ____D C:\Users\Francis\AppData\Roaming\Migros Bank
      2017-12-02 12:11 - 2017-12-02 12:11 - 000000000 ____D C:\Users\Francis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\E-banking Banque Migros

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-30 14:00 - 2014-10-05 14:27 - 000003986 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{248E5E0E-10DB-45F1-91AA-6FB92B16DEC3}
      2017-12-30 13:55 - 2014-10-05 14:49 - 000000838 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
      2017-12-30 13:37 - 2014-10-05 14:01 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991337843-804343502-1807504109-1001
      2017-12-30 13:35 - 2014-10-05 16:48 - 000000000 ____D C:\Windows\AutoKMS
      2017-12-30 09:49 - 2014-10-08 22:24 - 000000000 ____D C:\Users\Francis\AppData\Roaming\Skype
      2017-12-30 09:45 - 2014-10-10 14:51 - 000000000 __RDO C:\Users\Francis\SkyDrive
      2017-12-30 09:44 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2017-12-30 01:12 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
      2017-12-28 17:30 - 2014-10-05 13:56 - 000000000 ____D C:\Users\Francis
      2017-12-28 17:19 - 2014-10-05 17:23 - 002946110 _____ C:\Windows\system32\perfh00C.dat
      2017-12-28 17:19 - 2014-10-05 17:23 - 002237754 _____ C:\Windows\system32\perfc00C.dat
      2017-12-28 17:19 - 2013-09-30 05:07 - 000004380 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-12-28 17:19 - 2013-09-30 04:49 - 008498546 _____ C:\Windows\system32\perfh00A.dat
      2017-12-28 17:19 - 2013-09-30 04:49 - 002589100 _____ C:\Windows\system32\perfc00A.dat
      2017-12-28 12:58 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
      2017-12-28 12:30 - 2014-10-05 17:49 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
      2017-12-28 12:10 - 2016-11-06 18:37 - 000000000 ____D C:\Users\Francis\Desktop\Location
      2017-12-28 11:59 - 2016-06-26 09:56 - 000000000 ____D C:\AdwCleaner
      2017-12-28 11:50 - 2014-10-21 20:33 - 000000000 ____D C:\Users\Francis\AppData\Local\Google
      2017-12-28 11:33 - 2016-06-26 11:48 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-12-27 23:09 - 2016-06-27 12:24 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-12-25 18:17 - 2013-08-22 15:44 - 000481592 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-12-25 18:05 - 2014-12-06 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
      2017-12-25 17:21 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
      2017-12-25 17:16 - 2014-12-06 13:24 - 000000000 ____D C:\Users\Francis\AppData\Local\PDFCreator
      2017-12-25 17:01 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
      2017-12-25 16:42 - 2016-06-26 11:47 - 000000000 ____D C:\Program Files\CCleaner
      2017-12-25 13:27 - 2016-11-28 18:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
      2017-12-25 13:27 - 2014-10-05 20:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2017-12-25 13:27 - 2014-10-05 14:30 - 000000000 ____D C:\Users\Francis\AppData\Roaming\Mozilla
      2017-12-25 12:28 - 2014-11-27 22:24 - 000000000 ____D C:\Users\Francis\Documents\Fichiers Outlook
      2017-12-25 12:15 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
      2017-12-14 21:29 - 2014-10-05 19:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
      2017-12-14 20:55 - 2014-10-08 17:07 - 000000000 ____D C:\Windows\system32\MRT
      2017-12-14 20:51 - 2017-10-15 12:08 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
      2017-12-14 20:50 - 2014-10-08 17:07 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2017-12-12 20:19 - 2013-08-22 14:25 - 000000202 _____ C:\Windows\win.ini
      2017-12-10 17:55 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
      2017-12-04 17:23 - 2017-06-18 16:36 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
      2017-12-04 17:23 - 2017-06-18 16:36 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
      2017-12-03 11:34 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-12-02 12:18 - 2016-02-28 20:52 - 000000000 ____D C:\ProgramData\CanonIJPLM
      2017-12-02 12:11 - 2017-09-12 16:21 - 000000000 ____D C:\Users\Francis\AppData\Roaming\UninstallData
      2017-12-02 12:11 - 2017-03-27 19:21 - 000002102 _____ C:\Users\Francis\Desktop\E-banking Banque Migros.lnk
      2017-12-02 12:11 - 2017-03-27 19:21 - 000002082 _____ C:\Users\Francis\AppData\Roaming\Microsoft\Windows\Start Menu\E-banking Banque Migros.lnk
      2017-11-30 21:57 - 2017-04-15 10:46 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-12-27 22:47

      ==================== End of FRST.txt ============================

      Percentage of memory in use: 56%
      Total physical RAM: 2046.98 MB
      Available physical RAM: 900.33 MB
      Total Virtual: 3070.98 MB
      Available Virtual: 1710.91 MB

      ==================== Drives ================================

      Drive c: () (Fixed) (Total:139.35 GB) (Free:49.99 GB) NTFS
      Drive d: (HP_RECOVERY) (Fixed) (Total:9.35 GB) (Free:2.8 GB) NTFS ==>[system with boot components (obtained from drive)]

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 70B24966)
      Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=139.4 GB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=9.4 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================

    6. #6
      Usuario Avatar de saijem
      Registrado
      may 2005
      Ubicación
      españa
      Mensajes
      72

      Re: mi portatil va super lento

      Parte restante de los reportes


      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-12-2017
      Ran by Francis (30-12-2017 14:12:17)
      Running from C:\Users\Francis\Desktop
      Windows 8.1 Pro (Update) (X64) (2014-10-05 12:56:06)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-3991337843-804343502-1807504109-500 - Administrator - Disabled)
      Francis (S-1-5-21-3991337843-804343502-1807504109-1001 - Administrator - Enabled) => C:\Users\Francis
      Invitado (S-1-5-21-3991337843-804343502-1807504109-501 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
      AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
      ACDSee 9 Administrador fotografico (HKLM-x32\...\{4AA377FF-9D88-485F-B86E-AE631A1AA069}) (Version: 9.0.108 - ACD Systems Ltd.)
      Actualización de NVIDIA 14.6.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 14.6.22 - NVIDIA Corporation) Hidden
      Ad-Aware Web Companion (HKLM-x32\...\{89C9F6E5-50D4-400C-AB96-5A947584D4D6}) (Version: 1.0.813.1538 - Lavasoft) Hidden
      Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
      Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
      Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
      Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
      Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
      Canon MG7500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7500_series) (Version: 1.00 - Canon Inc.)
      Canon MG7500 series On-screen Manual (HKLM-x32\...\Canon MG7500 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
      Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.)
      Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
      Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
      CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform)
      CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2328 - CyberLink Corp.)
      Enregistrement utilisateur de Canon MG7500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG7500 series) (Version: - *Canon Inc.)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.108 - Google Inc.)
      Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
      Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
      Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
      HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
      LavasoftTcpService (HKLM-x32\...\{655F6B43-070A-403C-9DAF-3FCC813C2E59}) (Version: 2.2.9.5 - Lavasoft) Hidden
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      Microsoft Office Professionnel Plus*2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
      Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
      Mozilla Firefox 57.0.2 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 57.0.2 (x86 es-ES)) (Version: 57.0.2 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
      NVIDIA Audio virtual de Miracast 340.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 340.43 - NVIDIA Corporation)
      NVIDIA Controlador de gráficos 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
      NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - )
      NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
      NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
      Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      Panel de control de NVIDIA 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 340.52 - NVIDIA Corporation) Hidden
      Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
      PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.51.17865 - pdfforge GmbH)
      PDF Architect 2 Create Module (HKLM-x32\...\{3D0D9604-0173-488D-9694-2638C44D7579}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
      PDF Architect 2 Edit Module (HKLM-x32\...\{8B0A956F-9BE6-495B-AF80-7B5B42061D79}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
      PDF Architect 2 View Module (HKLM-x32\...\{D691E998-CF53-4F6C-AC20-E4284660E0E7}) (Version: 2.1.6.19758 - pdfforge GmbH) Hidden
      PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.0 - pdfforge)
      RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
      Rohos Mini Drive 2.3 (HKLM-x32\...\Rohos_Rohos22_is1) (Version: - Tesline-Service srl)
      SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 2.1.214 - NVIDIA Corporation) Hidden
      Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
      Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
      Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft)
      Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft)
      Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft)
      WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-3991337843-804343502-1807504109-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
      CustomCLSID: HKU\S-1-5-21-3991337843-804343502-1807504109-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Francis\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
      ContextMenuHandlers1-x32: [PDFManagerExt] -> {59E4A616-E484-44B5-95FB-7F430B35E8FE} => C:\Program Files (x86)\PDF Architect 2\creator-context-menu.dll [2014-10-10] (pdfforge GmbH)
      ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)
      ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (Alexander Roshal)
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation)
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {2D8E3B02-9888-4D8B-B8DA-D5FB4DDB297B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-12-13] (Piriform Ltd)
      Task: {36934F2E-65D0-4361-9C31-158B84315D84} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3991337843-804343502-1807504109-1001Core => C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
      Task: {36A91633-2812-497E-984B-2360E4F8894F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3991337843-804343502-1807504109-1001UA => C:\Users\Francis\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
      Task: {3AEBC13E-A94F-45BB-9744-2F5023C5C7AF} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3991337843-804343502-1807504109-1001
      Task: {4738637D-6029-499D-B523-10AB85F13E79} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-16] (Adobe Systems Incorporated)
      Task: {4AFADE6D-B89A-4CEB-B08C-FCF525584B62} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {B2871916-5665-48C4-B161-39CF2457C719} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
      Task: {B6C173A6-B006-4BAF-BAB0-85BE64A2942D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {C8EE5440-F441-4796-A734-BB596B5A310E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-25] (Google Inc.)
      Task: {CC6D5E92-039B-447D-B6AA-C27F59682209} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-13] (Piriform Ltd)
      Task: {CF225B87-CA2E-43DA-BC62-402B1281C335} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2017-12-14] (Microsoft Corporation)
      Task: {DBAB3F3A-599C-4089-8940-1ECD1FAA8567} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-25] (Google Inc.)
      Task: {E12DDE9A-CD28-4830-AB7A-C269AE9538DC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=14295&utm_medium=desktop&x-pos=Metro

      ==================== Loaded Modules (Whitelisted) ==============

      2014-10-05 14:06 - 2014-07-02 19:55 - 000116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
      2016-02-28 21:09 - 2013-06-28 16:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
      2017-12-28 12:29 - 2017-12-28 12:54 - 000044760 _____ () C:\Windows\runSW.exe
      2017-12-27 23:09 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
      2017-12-27 23:09 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
      2017-12-13 19:04 - 2017-12-13 19:04 - 000087936 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
      2017-06-20 10:28 - 2017-06-20 10:28 - 001997792 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2013-08-22 14:25 - 2016-06-29 11:01 - 000000098 _____ C:\Windows\system32\Drivers\etc\hosts

      127.0.0.1 localhost

      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-3991337843-804343502-1807504109-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Francis\AppData\Roaming\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
      DNS Servers: 192.168.1.1
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{776AD2C6-BB42-41D1-A846-D236B1CE6FF0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
      FirewallRules: [{1A4C7170-BEB2-4D2D-AE01-89AA6B30A421}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
      FirewallRules: [{E6278F6A-86D0-41A4-AD23-540BDB819E4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      FirewallRules: [{72294E05-B2F7-4C85-9DC9-A9E4156E16F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      FirewallRules: [{BAAD76AC-644F-4219-A4E0-A2F2E09F6F38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{D871D385-A45A-4D3D-B402-DAF2F92CBC90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{7106E558-10DB-4010-93DE-B4F7A52A7CD6}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{DF5444F8-EDB7-43C9-8D84-0470A0B04BC4}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{9300E3E3-EB93-429A-86BE-167261A2C7F3}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{7695148D-F183-45EB-8BD4-4AE34DC21DE0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [TCP Query User{E8E669CE-83C8-4180-96EA-BBFB5E249A8F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [UDP Query User{6C311E5E-075C-40D6-B27B-93F7F67CBB70}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [{EE13B1E5-FB0E-47C8-B4FD-EE6DE6AA6FE7}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
      FirewallRules: [{FD160794-DAFD-49D0-87D8-56F4DE389A0B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{1DDD7837-EAC0-486C-89CF-65337BE7BF32}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{D7B6ADF8-C932-4B35-97B0-FF380645D9DA}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{5F313565-5EF7-42FD-8A34-A546EF1C8AB0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [TCP Query User{6B4C1268-D142-40A1-9209-EDEE497D35F3}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [UDP Query User{956C50A1-9A81-47B0-9FA4-0AAA81651C33}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [{0FE2080A-3529-4C06-9013-CB75FD1363AC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{BCF1358C-7A67-499E-A8A2-04BEFF78E21D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{4A8C413A-5F47-48AF-8F8A-5E54910F4635}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{96A356BB-C849-42CB-9AF8-4CF35A6BEDBE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{25B6DCCB-EAA7-4DE1-B4F0-6A2843B3A98B}] => (Allow) LPort=53
      FirewallRules: [{957CEA77-05F8-48A3-9572-72DFB0DAF1A4}] => (Allow) LPort=1542
      FirewallRules: [{E0165971-8177-4763-BB32-EA12B8FAE1CA}] => (Allow) LPort=1542
      FirewallRules: [{BCF07BFC-CF26-4523-9B6F-CED69C04AAEB}] => (Allow) LPort=53

      ==================== Restore Points =========================

      10-12-2017 17:38:32 Punto de control programado
      14-12-2017 20:45:37 Windows Update
      25-12-2017 13:04:01 Windows Update
      25-12-2017 18:36:22 JRT Pre-Junkware Removal
      27-12-2017 22:59:01 JRT Pre-Junkware Removal

      ==================== Faulty Device Manager Devices =============

      Name: Coprocesseur
      Description: Coprocesseur
      Class Guid:
      Manufacturer:
      Service:
      Problem: : The drivers for this device are not installed. (Code 28)
      Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (12/30/2017 12:49:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Le programme wwahost.exe version 6.3.9600.17415 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

      ID de processus*: 1180

      Heure de début*: 01d38163849fbfb3

      Heure de fin*: 4294967295

      Chemin d’accès de l’application : C:\Windows\syswow64\wwahost.exe

      ID de rapport : 798deb33-ed57-11e7-880b-001e68052966

      Nom complet du package défaillant*: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c

      ID de l’application relative au package défaillant*: App

      Error: (12/30/2017 10:34:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Le programme LiveComm.exe version 17.5.9600.20911 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

      ID de processus*: 10f4

      Heure de début*: 01d38150a8c125d3

      Heure de fin*: 4294967295

      Chemin d’accès de l’application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

      ID de rapport : 9ec4f3a3-ed44-11e7-880b-001e68052966

      Nom complet du package défaillant*: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

      ID de l’application relative au package défaillant*: ppleae38af2e007f4358a809ac99a64a67c1

      Error: (12/30/2017 09:52:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Le programme wwahost.exe version 6.3.9600.17415 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

      ID de processus*: e88

      Heure de début*: 01d3814add05cf1c

      Heure de fin*: 4294967295

      Chemin d’accès de l’application : C:\Windows\syswow64\wwahost.exe

      ID de rapport : d1856dfc-ed3e-11e7-880b-001e68052966

      Nom complet du package défaillant*: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c

      ID de l’application relative au package défaillant*: App

      Error: (12/30/2017 09:46:24 AM) (Source: SideBySide) (EventID: 78) (User: )
      Description: La création du contexte d’activation a échoué pour «*C:\Users\Francis\Desktop\esetsmartinstaller_esn.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
      Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
      Les composants en conflit sont :
      Composant 1*: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
      Composant 2*: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

      Error: (12/30/2017 09:46:17 AM) (Source: SideBySide) (EventID: 78) (User: )
      Description: La création du contexte d’activation a échoué pour «*C:\Users\Francis\Desktop\esetsmartinstaller_esn.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
      Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
      Les composants en conflit sont :
      Composant 1*: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
      Composant 2*: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

      Error: (12/30/2017 01:11:30 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
      Description: Event-ID 1

      Error: (12/30/2017 12:51:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Le programme wwahost.exe version 6.3.9600.17415 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

      ID de processus*: 888

      Heure de début*: 01d380ff2b561a5f

      Heure de fin*: 4294967295

      Chemin d’accès de l’application : C:\Windows\syswow64\wwahost.exe

      ID de rapport : 2050a758-ecf3-11e7-880a-001e68052966

      Nom complet du package défaillant*: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c

      ID de l’application relative au package défaillant*: App

      Error: (12/29/2017 09:55:13 PM) (Source: SideBySide) (EventID: 78) (User: )
      Description: La création du contexte d’activation a échoué pour «*C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
      Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
      Les composants en conflit sont :
      Composant 1*: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
      Composant 2*: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

      Error: (12/29/2017 09:50:21 PM) (Source: SideBySide) (EventID: 78) (User: )
      Description: La création du contexte d’activation a échoué pour «*C:\Users\Francis\Desktop\esetsmartinstaller_esn.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
      Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
      Les composants en conflit sont :
      Composant 1*: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
      Composant 2*: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

      Error: (12/29/2017 09:50:16 PM) (Source: SideBySide) (EventID: 78) (User: )
      Description: La création du contexte d’activation a échoué pour «*C:\Users\Francis\Desktop\esetsmartinstaller_esn.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
      Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
      Les composants en conflit sont :
      Composant 1*: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
      Composant 2*: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.


      System errors:
      =============
      Error: (12/30/2017 09:46:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Le service eapihdrv n’a pas pu démarrer en raison de l’erreur*:
      Le chargement du pilote a été bloqué

      Error: (12/30/2017 09:46:59 AM) (Source: Application Popup) (EventID: 1060) (User: )
      Description: \??\C:\Users\Francis\AppData\Local\Temp\ehdrv.sys

      Error: (12/30/2017 09:46:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Le service eapihdrv n’a pas pu démarrer en raison de l’erreur*:
      Le chargement du pilote a été bloqué

      Error: (12/30/2017 09:46:58 AM) (Source: Application Popup) (EventID: 1060) (User: )
      Description: \??\C:\Users\Francis\AppData\Local\Temp\ehdrv.sys

      Error: (12/30/2017 09:46:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Le service eapihdrv n’a pas pu démarrer en raison de l’erreur*:
      Le chargement du pilote a été bloqué

      Error: (12/30/2017 09:46:58 AM) (Source: Application Popup) (EventID: 1060) (User: )
      Description: \??\C:\Users\Francis\AppData\Local\Temp\ehdrv.sys

      Error: (12/30/2017 09:44:36 AM) (Source: bowser) (EventID: 8016) (User: )
      Description: Le pilote de l’explorateur a reçu trop de datagrammes non autorisés de l’ordinateur distant LIVEBOX vers le nom PERSONAL sur le transport NetBT_Tcpip_{F417343D-F2C7-4B68-BDD9-DB4F81143568}. La donnée est le datagramme.
      Aucun nouvel événement ne sera généré jusqu’à ce que la fréquence de réinitialisation soit expirée.

      Error: (12/30/2017 01:11:59 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
      Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service MBAMService.

      Error: (12/30/2017 01:11:59 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
      Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service NvNetworkService.

      Error: (12/29/2017 09:52:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: Le service eapihdrv n’a pas pu démarrer en raison de l’erreur*:
      Le chargement du pilote a été bloqué


      CodeIntegrity:
      ===================================
      Date: 2017-12-25 15:56:31.152
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-16 08:57:16.466
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-14 21:44:13.874
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-12 20:26:02.481
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-10 20:58:47.637
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-10 11:35:06.713
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-08 22:35:52.228
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-03 21:11:39.467
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-12-03 11:25:29.568
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

      Date: 2017-11-20 19:57:23.087
      Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


      ==================== Memory info ===========================

      Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-60


      Muchas gracias por su ayuda y Feliz Año Nuevo

    7. #7
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      12.254

      Re: mi portatil va super lento

      Hola de nuevo:

      No es necesario que me aportes ninguna otra información del DrWebCureIt... con lo que me has dejado es suficiente (no ha detectado ninguna infección ).

      El resto de reportes, los veo todos correctos y no observo ninguna acción a realizar, sin embargo, me comentas que el Firefox continúa un tanto lento Te recomiendo realizar lo siguiente:

      1. Descarga >> DelFix

        • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 u 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
        • Marca todas las casillas.
        • Pulsar en Run.

        Se abrirá el informe (DelFix.txt); puedes cerrarlo (no es necesario su análisis).


      2. Ahora vas a Resetear Mozilla Firefox. Si después de seguir esos pasos para resetearlo, continúas con lentitud en Firefox, desinstálalo para volver a instalarlo posteriormente (antes de reinstalarlo, vuelve a utilizar CCleaner tal y cómo te indiqué en un paso anterior).


      Estamos en contacto y feliz año
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de saijem
      Registrado
      may 2005
      Ubicación
      españa
      Mensajes
      72

      Re: mi portatil va super lento

      Hola ya esta todo correcto, he hecho lo que me ha dicho y todo esta ok, por mi parte puede cerrar el hilo. Muchísimas Gracias por su ayuda y Feliz entrada de Año.

    9. #9
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      12.254

      Re: mi portatil va super lento

      Me alegro de que todo funcione bien en tu máquina de nuevo
      Para cualquier otro problema futuro que puedas tener, no dudes en volver a postear en el foro
      Un saludo y Feliz año nuevo también para ti

      TEMA SOLUCIONADO.

      Como recomendación final, te invitamos a seguirnos en nuestros canales de difusión: Blog, Twitter,
      Facebook, o bien suscribirte por email al Feed de nuestro Blog de Infospyware para estar al tanto de las nuevas amenazas que circulan por la red y así en un futuro puedas prevenirlas.
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.