• Registrarse
  • Iniciar sesión


  • Página 2 de 3 PrimeroPrimero 123 ÚltimoÚltimo
    Resultados 11 al 20 de 26

    ZoneAlarme Opinión (Solucionado)

    GRC Port Authority Report created on UTC: 2016-12-12 at 18:12:31 Results from scan of ports: 0-1055 3 Ports Open 1051 Ports Closed 2 Ports Stealth --------------------- 1056 Ports Tested Ports found to be OPEN were: ...

    1. #11
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      GRC Port Authority Report created on UTC: 2016-12-12 at 18:12:31

      Results from scan of ports: 0-1055

      3 Ports Open
      1051 Ports Closed
      2 Ports Stealth
      ---------------------
      1056 Ports Tested

      Ports found to be OPEN were: 21, 23, 80

      Ports found to be STEALTH were: 22, 53

      Other than what is listed above, all ports are CLOSED.

      TruStealth: FAILED - NOT all tested ports were STEALTH,
      - NO unsolicited packets were received,
      - A PING REPLY (ICMP Echo) WAS RECEIVED.

    2. #12
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      El intento de conexión al ordenador. . .
      Escudos! Ahora está intentando comunicarse con el servidor de Internet oculto dentro de su PC. Es probable que nadie le ha dicho que su propio ordenador personal ahora puede estar funcionando como un servidor de Internet ni con su conocimiento ni su permiso. Y que puede estar sirviendo a todos o muchos de sus archivos personales para la lectura, escritura, modificación y eliminación, incluso por cualquier persona, en cualquier lugar, a través de Internet!
      Conexión a Internet preliminar se negó!
      Esto es extremadamente favorable para compartir archivos e impresoras de Windows seguridad general del sistema. La mayoría de los sistemas Windows, con el Entorno de red instalado, mantenga el puerto NetBIOS 139 bien abiertos para solicitar conexiones de todo el tráfico que pasa. O bien este sistema ha cerrado este puerto normalmente abierto, o algún equipo o software como un "firewall" está impidiendo la conexión externa y ha cerrado firmemente el puerto peligroso 139 a todos los transeúntes. (¡Felicitaciones!)
      No se puede conectar con NetBIOS a su ordenador.
      Todos los intentos para obtener cualquier información de su equipo han FRACASADO . (Esto es muy raro que un sistema basado en la red de Windows.) En relación con las vulnerabilidades de red de Windows, este equipo parece estar muy seguro ya que está no exponer cualquier de sus redes internas NetBIOS protocolo a través de Internet.

    3. #13
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      re: ZoneAlarme Opinión (Solucionado)

      Esto ultimo..lo sacaste de??

      Las pruebas , aunque podrian ser mejores, estarian en lo aceptable, porque muchos proveedores de internet abren puertos explicitamente en el router,

      Tu pc es un servidor o esta conecatdo a una red de ellos, o es un pc particular?

      Que router tienes y de que Compañia?
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    4. #14
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      el ultimo texto es el q salia arriba cuando le he dado a traducir pagina... no se si es un texto por defecto o si que se refiere a mi pc.
      con zonealarm no abria el puerto 22 creo recordar, los otros si.
      mi pc es particular y m conecto al router d casa que no se q marca es, la compañia movistar

    5. #15
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      re: ZoneAlarme Opinión (Solucionado)

      Ok....

      Vamos a revisar un pco mas a fondo y descartar Malware, pero el ultimo texto indica que tu informacion esta a salvo, pues el software funciona de seguridad.


      Paso 1.-: Descarga Malwarebytes Anti-Rootkit Beta >>Malwarebytes Anti-Rootkit | InfoSpyware y descomprima el contenido en su escritorio
      Paso 2.- : Desactiva tu antivirus >> Cómo deshabilitar temporalmente su Antivirus

      Abra la carpeta Mbar. Doble clic en el archivo Mbar.exe
      • En la interfaz del programa haga clic en Next.
      • Haga clic en el botón Update. Terminando clic en Next
      • Para iniciar el análisis clic en el botón Scan
      • Terminando, si hay infección clic en CleanUp, si no hay, clic en Exit.


      Al finalizar abra la carpeta Mbar, los archivos mbar-log.txt y system-log.txt, copie y pegue todo su contenido en la siguiente respuesta y comentando los resultados.
      Descarga AdwCleaner 3.0 | InfoSpyware y colócalo en el escritorio:


      - Ejecútalo con todos los programas cerrados y con el antivirus deshabilitado >>Cómo deshabilitar temporalmente su Antivirus.
      - Si usas Windows Vista/ W 7/W 8, ejecútalo como administrador. (Botón derecho >> Ejecutar como Administrador) , aceptas la licencia (j’acepte) ..


      Presionas y das en Escanear y esperas a que el programa haga lo suyo.
      Ejecutamos Limpiar para realizar la limpieza y si nos pide reiniciar el pc lo hacemos.

      - Al terminar se abrirá un reporte en un archivo de texto, cuyo contenido deberás copiar y pegar en tu próxima respuesta.


      El reporte se encuentra también en C:\AdwCleaner- AdwCleaner[CX].txt


      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #16
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      esta tardando muchisimo el analisis con malwarebytes, imagino q sera normal

    7. #17
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      el primero limpio de virus


      Malwarebytes Anti-Rootkit BETA 1.9.3.1001
      www.malwarebytes.org

      Database version:
      main: v2016.12.12.13
      rootkit: v2016.11.20.01

      Windows 8 x64 NTFS
      Internet Explorer 10.0.9200.16580
      puroh21 :: PUROH [administrator]

      12/12/2016 19:41:23
      mbar-log-2016-12-12 (19-41-23).txt

      Scan type: Quick scan
      Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
      Scan options disabled:
      Objects scanned: 332681
      Time elapsed: 1 hour(s), 4 minute(s), 55 second(s)

      Memory Processes Detected: 0
      (No malicious items detected)

      Memory Modules Detected: 0
      (No malicious items detected)

      Registry Keys Detected: 0
      (No malicious items detected)

      Registry Values Detected: 0
      (No malicious items detected)

      Registry Data Items Detected: 0
      (No malicious items detected)

      Folders Detected: 0
      (No malicious items detected)

      Files Detected: 0
      (No malicious items detected)

      Physical Sectors Detected: 0
      (No malicious items detected)

      (end)

    8. #18
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      AdwCleaner si que encontro 3 registros maliciosos y los ha eliminado

      # AdwCleaner v6.040 - Archivo de registro creado 12/12/2016 en 20:56:33
      # Actualizado en 02/12/2016 por Malwarebytes
      # Base de datos : 2016-12-11.2 [Servidor]
      # Sistema Operativo : Windows 8 (X64)
      # Nombre de usuario : puroh21 - PUROH
      # Ejecutado desde : C:\Users\puroh21\Desktop\AdwCleaner.exe
      # Modo: Limpiar
      # Soporte : https://www.malwarebytes.com/support



      ***** [ Servicios ] *****



      ***** [ Carpetas ] *****

      [-] Carpeta eliminada: C:\Users\puroh21\Documents\Mobogenie


      ***** [ Archivos ] *****

      [-] Archivo eliminado: C:\Users\puroh21\daemonprocess.txt


      ***** [ DLL ] *****



      ***** [ WMI ] *****



      ***** [ Accesos directos ] *****

      [-] Acceso directo desinfectado: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk


      ***** [ Tareas programadas ] *****



      ***** [ Registro ] *****



      ***** [ Navegadores ] *****



      *************************

      :: Llaves "Tracing" eliminadas
      :: Se han borrado los ajustes de Winsock

      *************************

      C:\AdwCleaner\AdwCleaner[C0].txt - [1045 Bytes] - [12/12/2016 20:56:33]
      C:\AdwCleaner\AdwCleaner[S0].txt - [1470 Bytes] - [12/12/2016 20:54:10]

      ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1191 Bytes] ##########

    9. #19
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
      Ran by puroh21 (12-12-2016 21:38:39)
      Running from C:\Users\puroh21\Desktop
      Windows 8 (X64) (2016-12-08 00:33:32)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-375477578-1756036659-1392930576-500 - Administrator - Disabled) => C:\Users\Administrator
      HomeGroupUser$ (S-1-5-21-375477578-1756036659-1392930576-1004 - Limited - Enabled)
      Invitado (S-1-5-21-375477578-1756036659-1392930576-501 - Limited - Disabled)
      puroh21 (S-1-5-21-375477578-1756036659-1392930576-1002 - Administrator - Enabled) => C:\Users\puroh21

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Kaspersky Total Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Kaspersky Total Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      FW: Kaspersky Total Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      µTorrent (HKU\S-1-5-21-375477578-1756036659-1392930576-1002\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
      7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
      Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
      AMD Catalyst Install Manager (HKLM\...\{F196C498-5681-BCA2-8029-5BF070368F35}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
      Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
      CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4.6515 - CyberLink Corp.)
      CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.4.2928 - CyberLink Corp.)
      Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.2.4128 - CyberLink Corp.)
      CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.4.3026 - CyberLink Corp.)
      CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.4.3021 - CyberLink Corp.)
      CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1.3024 - CyberLink Corp.)
      CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.1.2922 - CyberLink Corp.)
      D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
      DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
      Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
      Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
      Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
      Hewlett-Packard ACLM.NET v1.2.2.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
      HP 3D DriveGuard (HKLM-x32\...\{AE2F1669-5B1F-47C5-B639-78D74DD0BCE4}) (Version: 6.0.9.1 - Nombre de su organización)
      HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
      HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company)
      HP Documentation (HKLM-x32\...\{61245005-66F1-4001-AEE8-2E2D36F65C28}) (Version: 1.1.0.0 - Hewlett-Packard)
      HP Quick Start (HKLM-x32\...\{4F189491-DD1A-418A-AE58-99B4CC692FDE}) (Version: 1.0.4660.30220 - Hewlett-Packard)
      HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6838.4521 - Hewlett-Packard)
      HP Support Assistant (HKLM-x32\...\{C88F84E5-AE23-44BD-922C-2ABEACACAF7A}) (Version: 7.2.23.56 - Hewlett-Packard Company)
      HP System Event Utility (HKLM-x32\...\{1C5BBAD8-4079-4014-8803-751333FBC112}) (Version: 1.0.8 - Hewlett-Packard Company)
      HP Utility Center (HKLM\...\{A48BD764-CFDF-40A5-A07A-710908044F5D}) (Version: 2.2.2 - Hewlett-Packard Company)
      HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
      Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
      Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
      Kaspersky Total Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
      Kaspersky Total Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
      Malwarebytes Anti-Malware versión 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
      Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
      Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
      Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
      OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Nombre de su organización)
      Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
      Realtek Card Reader (HKLM-x32\...\{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}) (Version: 6.2.9200.29060 - Realtek Semiconductor Corp.)
      Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.15.410.2013 - Realtek)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6950 - Realtek Semiconductor Corp.)
      Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
      swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.5.1 - Synaptics Incorporated)
      Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
      ZoneAlarm Antivirus (x32 Version: 14.0.508.000 - Check Point Software Technologies Ltd.) Hidden

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {069E9B92-78CC-45B8-807D-2700887594B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-08] (Google Inc.)
      Task: {0966146E-FFA1-4FFB-BB33-B8B75BE808BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-08] (Google Inc.)
      Task: {33A48350-217D-40F0-9715-F766FA0BD21C} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-06-07] (Hewlett-Packard Development Company, L.P.)
      Task: {3BB987FD-E69C-4364-80ED-014DAD775AC4} - System32\Tasks\HPGenoobeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HP GenOOBE\HPGenOOBE.exe [2013-06-20] ()
      Task: {532F81EC-7417-4162-8EE4-0926204028C1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-06-07] (Hewlett-Packard Company)
      Task: {614BE1B8-3DB6-45F8-8126-7746AC7891B5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
      Task: {67BB7284-2349-4C3C-A8F4-9109B0DFBF75} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12] (CyberLink)
      Task: {6F1A139C-F276-4E85-ADE0-63A8FEA74F58} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-06-07] (Hewlett-Packard Company)
      Task: {D9E9F2D6-8C46-4D27-80B9-6EF5323E26D3} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-05] (Synaptics Incorporated)
      Task: {DE29066E-BE51-42B8-A4F1-97C6FC637A9A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

      ==================== Shortcuts =============================

      (The entries could be listed to be restored or removed.)

      ==================== Loaded Modules (Whitelisted) ==============

      2013-04-16 22:51 - 2013-04-16 22:51 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
      2013-04-16 22:50 - 2013-04-16 22:50 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
      2013-04-16 22:50 - 2013-04-16 22:50 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
      2013-04-16 22:51 - 2013-04-16 22:51 - 00016896 _____ () C:\Program Files\ATI Technologies\ATI.ACE\a4\AS4.NativeProxy.dll
      2013-09-16 14:07 - 2013-03-12 15:51 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
      2013-03-12 21:53 - 2013-03-12 21:53 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-375477578-1756036659-1392930576-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg
      DNS Servers: 80.58.61.250 - 80.58.61.254
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [vm-monitoring-nb-session] => LPort=139
      FirewallRules: [{2B3E63BB-646E-4445-B22E-2B3779116A8E}] => C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
      FirewallRules: [{24AC6991-16ED-438E-BE0A-9A664B9EFDDD}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
      FirewallRules: [{D9BC31DB-E8F0-46E4-A491-5D69B646B561}] => LPort=2869
      FirewallRules: [{B9FDFEB1-8C9D-495A-9EF3-09BC6234516D}] => LPort=1900
      FirewallRules: [{BFD9A89A-DD58-4EAB-B6A6-FA40614E3740}] => C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
      FirewallRules: [{17562A84-93C1-4F8F-AA0E-A457E56FB69B}] => C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
      FirewallRules: [{73CF7351-E75B-4AE4-A18B-60E1946F7443}] => %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
      FirewallRules: [{3DD3BFB1-B985-44E1-9B8B-45746E7843E0}] => %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
      FirewallRules: [{6EC87715-196C-4528-9961-AC65D69B179A}] => %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
      FirewallRules: [{C7E6EADC-586B-4E4B-8925-C94A0A0A01FF}] => %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
      FirewallRules: [{92CC6E88-CB05-4AF9-9930-3567AF378316}] => C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{342272E8-784A-44B5-A611-FB1E49E2A1E2}] => C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{136E8C82-660C-41E1-8F6E-84D1865F227F}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{BC9431A9-E83B-4667-806B-3ECC02F52B43}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{7281B2A0-62B6-4723-B13D-F62986BA541E}] => C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
      FirewallRules: [{4D1DF62B-4052-4CB2-9F39-35708A0414ED}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
      FirewallRules: [{A3DE32D6-B093-4A1F-91FF-F535A1ECBF79}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
      FirewallRules: [{FDA54329-48DD-44FB-A014-813A12CD0847}] => C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
      FirewallRules: [{51DC9F17-007F-4CB2-BC0D-4F2AD49C33F4}] => C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
      FirewallRules: [{D99A9F70-A9B4-4ED8-8104-6B29111F6A13}] => C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
      FirewallRules: [{D4B34908-D71A-45AB-8129-A9D8640CC0FC}] => C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
      FirewallRules: [{09C6467D-6FE9-4F9B-888F-C02A140DB078}] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
      FirewallRules: [{EE72CA25-AE60-4D27-8AC6-6FFC3731DD58}] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
      FirewallRules: [{33A2F29D-DCFD-4C9F-B422-48EFB4395E5F}] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
      FirewallRules: [{DB4E1224-17D0-4DA5-A6D8-B3E4A5481E0A}] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
      FirewallRules: [{FC9C146F-569B-4232-B799-10FC924BE166}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{10389B25-20D2-4609-B09E-68296541D498}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{BB3FBBD9-52B6-4801-A882-90C97D93C059}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{0D054B6A-430D-435E-92CD-080175DABCEE}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{848D9B73-42A0-4A7F-9A84-37CF5F9A1504}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{368C62D8-E1A8-4F12-A2C4-125E50648A69}] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{2EEFE1E9-2152-4380-9FCA-E31E8FECFF2C}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================


      ==================== Faulty Device Manager Devices =============


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (12/12/2016 06:32:21 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: puroh)
      Description: No se pudo cerrar la aplicación o el servicio 'ZoneAlarm Privacy Service'.

      Error: (12/12/2016 06:32:21 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: puroh)
      Description: No se pudo cerrar la aplicación o el servicio 'ZoneAlarm Privacy Service'.

      Error: (12/12/2016 06:31:25 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: puroh)
      Description: No se pudo cerrar la aplicación o el servicio 'ZoneAlarm'.

      Error: (12/12/2016 03:20:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: El programa uTorrent.exe, versión 3.4.9.42973, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

      Identificador de proceso: 1340

      Hora de inicio: 01d253e3c5eda1ef

      Hora de finalización: 477

      Ruta de acceso de la aplicación: C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe

      Identificador de informe: 2f7833a7-c076-11e6-be7b-a0481c1a0a1a

      Nombre completo de paquete con errores:

      Identificador de aplicación relativa del paquete con errores:

      Error: (12/12/2016 11:20:51 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: vsmon.exe, versión: 14.0.508.0, marca de tiempo: 0x55c9573c
      Nombre del módulo con errores: MSVCR90.dll, versión: 9.0.30729.6871, marca de tiempo: 0x4fee6073
      Código de excepción: 0xc0000417
      Desplazamiento de errores: 0x0006ccd5
      Identificador del proceso con errores: 0x5d0
      Hora de inicio de la aplicación con errores: 0x01d2527abb0e93df
      Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
      Ruta de acceso del módulo con errores: C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\MSVCR90.dll
      Identificador del informe: a7f11b77-c054-11e6-be7b-a0481c1a0a1a
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (12/12/2016 08:55:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: m->NextScheduledSPRetry 4979770

      Error: (12/12/2016 08:55:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: m->NextScheduledEvent 4979770

      Error: (12/12/2016 08:55:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
      Description: Task Scheduling Error: Continuously busy for more than a second

      Error: (12/12/2016 04:37:10 AM) (Source: System Restore) (EventID: 8211) (User: )
      Description: No se pudo crear el punto de restauración programado. Información adicional: (0x80042308).

      Error: (12/12/2016 04:37:10 AM) (Source: System Restore) (EventID: 8193) (User: )
      Description: No se pudo crear el punto de restauración (proceso = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; descripción = Punto de control programado; error = 0x80042308).


      System errors:
      =============
      Error: (12/12/2016 09:08:30 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
      Description: Error al inicializar el cliente CBS. Último error: 0x80080005

      Error: (12/12/2016 09:08:30 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
      Description: El servidor {752073A1-23F2-4396-85F0-8FDB879ED0ED} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/12/2016 08:56:50 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
      Description: El Administrador de control de servicios intentó realizar una acción correctora (Reiniciar el servicio) después de la terminación inesperada del servicio Windows Search, pero ocurrió el siguiente error:
      Ya se está ejecutando una instancia de este servicio.

      Error: (12/12/2016 08:56:43 PM) (Source: DCOM) (EventID: 10010) (User: puroh)
      Description: El servidor {9BA05972-F6A8-11CF-A442-00A0C90A8F39} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/12/2016 08:56:43 PM) (Source: DCOM) (EventID: 10010) (User: puroh)
      Description: El servidor {9BA05972-F6A8-11CF-A442-00A0C90A8F39} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/12/2016 08:56:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
      Description: El servicio HP Software Framework Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

      Error: (12/12/2016 08:56:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio HP Support Assistant Service terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

      Error: (12/12/2016 08:56:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

      Error: (12/12/2016 08:56:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio ZoneAlarm Privacy Service terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

      Error: (12/12/2016 08:56:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
      Description: El servicio HPWMISVC se terminó de manera inesperada. Esto ha sucedido 1 veces.


      ==================== Memory info ===========================

      Processor: AMD E1-2500 APU with Radeon(TM) HD Graphics
      Percentage of memory in use: 25%
      Total physical RAM: 3546.25 MB
      Available physical RAM: 2634.2 MB
      Total Virtual: 4186.25 MB
      Available Virtual: 3153.01 MB

      ==================== Drives ================================

      Drive c: (Windows) (Fixed) (Total:446.16 GB) (Free:50.7 GB) NTFS ==>[system with boot components (obtained from drive)]
      Drive d: (RECOVERY) (Fixed) (Total:18.39 GB) (Free:1.83 GB) NTFS ==>[system with boot components (obtained from drive)]

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 465.8 GB) (Disk ID: B06F853E)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    10. #20
      Usuario Avatar de alvaropikarua
      Registrado
      dic 2016
      Ubicación
      españa
      Mensajes
      17

      re: ZoneAlarme Opinión (Solucionado)

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
      Ran by puroh21 (administrator) on PUROH (12-12-2016 21:36:28)
      Running from C:\Users\puroh21\Desktop
      Loaded Profiles: puroh21 (Available Profiles: puroh21 & Administrador)
      Platform: Windows 8 (X64) Language: Español (España, internacional)
      Internet Explorer Version 10 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (AMD) C:\Windows\System32\atiesrxx.exe
      (Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      () C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
      (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
      (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
      (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
      (CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
      (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
      (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
      (AMD) C:\Windows\System32\atieclxx.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
      (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
      (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
      (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
      (CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
      (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
      (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
      (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
      (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe

      ==================== Registry (Whitelisted) ====================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-18] (Realtek Semiconductor)
      HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2994928 2013-06-05] (Synaptics Incorporated)
      HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-04-17] (Advanced Micro Devices, Inc.)
      HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-03-01] (Hewlett-Packard Company)
      HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2013-05-22] (CyberLink Corp.)
      HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-05-03] (Hewlett-Packard Development Company, L.P.)
      HKU\S-1-5-21-375477578-1756036659-1392930576-1002\...\Run: [uTorrent] => C:\Users\puroh21\AppData\Roaming\uTorrent\uTorrent.exe [2403520 2016-12-08] (BitTorrent Inc.)
      HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay
      ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
      ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
      ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
      ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
      ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
      ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
      Tcpip\..\Interfaces\{DF25E662-F7FF-4FB4-9692-0CB36C6FFB56}: [DhcpNameServer] 80.58.61.250 80.58.61.254

      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/10
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/10
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON13/10
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON13/10
      HKU\S-1-5-21-375477578-1756036659-1392930576-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCON13/10
      HKU\S-1-5-21-375477578-1756036659-1392930576-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON13/10
      SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/1185-154363-12092-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
      SearchScopes: HKLM -> {EE9FEE86-E2C3-4846-8090-9672CE265119} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
      SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/1185-154363-12092-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
      SearchScopes: HKLM-x32 -> {EE9FEE86-E2C3-4846-8090-9672CE265119} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
      SearchScopes: HKU\S-1-5-21-375477578-1756036659-1392930576-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/1185-154363-12092-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
      SearchScopes: HKU\S-1-5-21-375477578-1756036659-1392930576-1002 -> {EE9FEE86-E2C3-4846-8090-9672CE265119} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
      BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
      BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
      BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09] (Hewlett-Packard)
      Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
      Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\IEExt\ie_plugin.dll [2016-12-08] (AO Kaspersky Lab)
      Toolbar: HKU\S-1-5-21-375477578-1756036659-1392930576-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File

      FireFox:
      ========
      FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
      FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-08]
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
      FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
      FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-12-08] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-12-08] (Google Inc.)

      Chrome:
      =======
      CHR Profile: C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default [2016-12-12]
      CHR Extension: (Presentaciones de Google) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-08]
      CHR Extension: (Google Docs) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-08]
      CHR Extension: (Google Drive) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-08]
      CHR Extension: (YouTube) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-08]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-08]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-08]
      CHR Extension: (Gmail) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-08]
      CHR Extension: (Chrome Media Router) - C:\Users\puroh21\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-08]
      CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
      CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-04-16] () [File not signed]
      R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-16] (Advanced Micro Devices, Inc.) [File not signed]
      S2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
      R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-06-26] (CyberLink)
      R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-06-26] (CyberLink)
      R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-06-07] (Hewlett-Packard Company) [File not signed]
      R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-05-03] (Hewlett-Packard Development Company, L.P.)
      S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
      S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
      R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-07-20] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-08] (Advanced Micro Devices, INC.)
      R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98744 2013-04-24] (Advanced Micro Devices)
      R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
      R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
      R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
      R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
      R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
      R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
      S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
      R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [191312 2016-06-26] (AO Kaspersky Lab)
      R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [435032 2016-09-26] (AO Kaspersky Lab)
      R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1019616 2016-12-08] (AO Kaspersky Lab)
      R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [57424 2016-12-09] (AO Kaspersky Lab)
      R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
      R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
      R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
      R3 kltap; C:\Windows\system32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
      R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
      R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [134880 2016-12-09] (AO Kaspersky Lab)
      R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
      R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288840 2013-04-11] (Realtek Semiconductor Corp.)
      S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-05] (Synaptics Incorporated)
      S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [33008 2013-06-05] (Synaptics Incorporated)
      S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35232 2013-07-20] (Microsoft Corporation)
      S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [230904 2013-07-20] (Microsoft Corporation)
      R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2016-12-12 21:36 - 2016-12-12 21:37 - 00015864 _____ C:\Users\puroh21\Desktop\FRST.txt
      2016-12-12 21:36 - 2016-12-12 21:36 - 00000000 ____D C:\FRST
      2016-12-12 21:34 - 2016-12-12 21:35 - 02420224 _____ (Farbar) C:\Users\puroh21\Desktop\FRST64.exe
      2016-12-12 21:19 - 2016-12-12 21:19 - 01761792 _____ (Farbar) C:\Users\puroh21\Desktop\FRST.exe
      2016-12-12 20:49 - 2016-12-12 20:56 - 00000000 ____D C:\AdwCleaner
      2016-12-12 19:51 - 2016-12-12 19:51 - 03968464 _____ C:\Users\puroh21\Desktop\AdwCleaner.exe
      2016-12-12 19:41 - 2016-12-12 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
      2016-12-12 19:36 - 2016-12-12 20:46 - 00000000 ____D C:\Users\puroh21\Desktop\mbar
      2016-12-12 19:35 - 2016-12-12 19:36 - 16563352 _____ (Malwarebytes Corp.) C:\Users\puroh21\Downloads\mbar-1.09.3.1001.exe
      2016-12-12 17:45 - 2016-12-12 18:38 - 00000000 ____D C:\FSTool
      2016-12-12 17:45 - 2016-12-12 17:45 - 01599815 _____ C:\Users\puroh21\Desktop\IFS.exe
      2016-12-12 16:15 - 2016-12-12 16:15 - 00001271 _____ C:\Users\puroh21\Desktop\Revo Uninstaller.lnk
      2016-12-12 16:15 - 2016-12-12 16:15 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      2016-12-12 16:15 - 2016-12-12 16:15 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
      2016-12-12 16:14 - 2016-12-12 16:14 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\puroh21\Downloads\revosetup.exe
      2016-12-12 09:05 - 2016-12-12 09:05 - 00013499 _____ C:\Users\puroh21\Downloads\Westworld_1_08.torrent
      2016-12-12 09:05 - 2016-12-12 09:05 - 00013259 _____ C:\Users\puroh21\Downloads\Westworld_1_07 (1).torrent
      2016-12-12 09:05 - 2016-12-12 09:05 - 00000000 ____D C:\Users\puroh21\Downloads\Westworld - Temporada 1 [HDTV][Cap.108][Español Castellano]
      2016-12-11 20:22 - 2016-12-12 10:27 - 1290305536 ____R C:\Users\puroh21\Downloads\Pistas para volver a casa (HDRip) (EliteTorrent.net).avi
      2016-12-11 20:22 - 2016-12-11 20:30 - 168826753 ____R C:\Users\puroh21\Downloads\La pipa del tiempo - 1x01 (EliteTorrent.net).mp4
      2016-12-11 20:21 - 2016-12-11 20:21 - 00013251 _____ C:\Users\puroh21\Downloads\Pistas-para-volver-a-casa-HDRip(EliteTorrent).torrent
      2016-12-11 20:21 - 2016-12-11 20:21 - 00013251 _____ C:\Users\puroh21\Downloads\Pistas-para-volver-a-casa-HDRip(EliteTorrent) (1).torrent
      2016-12-11 20:19 - 2016-12-11 20:19 - 00013269 _____ C:\Users\puroh21\Downloads\La-pipa-del-tiempo---1x01(EliteTorrent).torrent
      2016-12-10 00:37 - 2016-12-10 00:37 - 00001360 _____ C:\Users\puroh21\puertos.txt
      2016-12-10 00:19 - 2016-12-10 00:19 - 00000000 _____ C:\autoexec.bat
      2016-12-10 00:13 - 2016-12-10 00:14 - 03516080 _____ (Enigma Software Group USA, LLC.) C:\Users\puroh21\Downloads\SpyHunter-Installer.exe
      2016-12-08 23:32 - 2016-12-12 21:17 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-375477578-1756036659-1392930576-1002
      2016-12-08 23:10 - 2016-12-08 23:10 - 00000000 _____ C:\Windows\system32\Drivers\etc\lmhosts
      2016-12-08 22:50 - 2016-12-12 18:51 - 00001391 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
      2016-12-08 22:50 - 2016-12-08 22:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
      2016-12-08 22:48 - 2016-12-08 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
      2016-12-08 22:48 - 2016-12-08 22:45 - 00002176 _____ C:\Users\Public\Desktop\Safe Money.lnk
      2016-12-08 22:48 - 2016-12-08 22:45 - 00002128 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
      2016-12-08 22:43 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
      2016-12-08 22:42 - 2016-12-12 21:12 - 00000000 ____D C:\ProgramData\Kaspersky Lab
      2016-12-08 22:42 - 2016-12-08 23:58 - 01019616 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
      2016-12-08 22:42 - 2016-12-08 22:49 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
      2016-12-08 22:42 - 2016-09-26 14:51 - 00435032 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
      2016-12-08 22:42 - 2016-06-26 15:14 - 00191312 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
      2016-12-08 22:32 - 2016-12-08 22:35 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
      2016-12-08 22:32 - 2016-12-08 22:32 - 02311200 _____ (Kaspersky Lab) C:\Users\puroh21\Downloads\kts17.0.0.611es_11205.exe
      2016-12-08 20:15 - 2016-12-08 20:15 - 00013794 _____ C:\Users\puroh21\Downloads\Westworld_1_02_05 (1).torrent
      2016-12-08 18:23 - 2016-12-08 18:46 - 473305739 ____R C:\Users\puroh21\Downloads\The walking dead - 7x07 (EliteTorrent.net).mp4
      2016-12-08 18:20 - 2016-12-08 19:54 - 2086494208 ____R C:\Users\puroh21\Downloads\Los siete magnificos (BR-SCREENER) (EliteTorrent.net).avi
      2016-12-08 18:19 - 2016-12-08 18:19 - 00002618 _____ C:\Users\puroh21\Desktop\µTorrent.lnk
      2016-12-08 18:15 - 2016-12-12 21:17 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\uTorrent
      2016-12-08 18:14 - 2016-12-08 18:14 - 02403520 _____ (BitTorrent Inc.) C:\Users\puroh21\Downloads\uTorrent_3-4-9-42973.exe
      2016-12-08 18:12 - 2016-12-08 18:12 - 00020832 _____ C:\Users\puroh21\Downloads\Los-siete-magnficos-BR-SCREENER(EliteTorrent).torrent
      2016-12-08 10:23 - 2016-12-08 22:21 - 00000000 ____D C:\Windows.old
      2016-12-08 10:14 - 2016-12-08 10:14 - 00262144 _____ C:\Windows\system32\config\userdiff
      2016-12-08 02:48 - 2016-12-12 19:41 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
      2016-12-08 02:48 - 2016-12-08 02:48 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      2016-12-08 02:44 - 2016-12-08 02:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
      2016-12-08 02:43 - 2016-12-12 19:36 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
      2016-12-08 02:43 - 2016-12-08 02:44 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
      2016-12-08 02:43 - 2016-12-08 02:43 - 00000000 ____D C:\ProgramData\Malwarebytes
      2016-12-08 02:43 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
      2016-12-08 02:43 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
      2016-12-08 02:42 - 2016-12-09 23:36 - 00002200 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2016-12-08 02:42 - 2016-12-09 23:36 - 00002188 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2016-12-08 02:40 - 2016-12-12 21:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
      2016-12-08 02:40 - 2016-12-12 20:46 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
      2016-12-08 02:40 - 2016-12-08 02:42 - 00000000 ____D C:\Program Files (x86)\Google
      2016-12-08 02:40 - 2016-12-08 02:40 - 00004086 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
      2016-12-08 02:40 - 2016-12-08 02:40 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
      2016-12-08 02:39 - 2016-12-08 03:02 - 00000000 ____D C:\Users\puroh21\AppData\Local\Google
      2016-12-08 02:38 - 2016-12-08 02:39 - 00000000 ____D C:\Users\puroh21\AppData\Local\Deployment
      2016-12-08 02:38 - 2016-12-08 02:38 - 00000000 ____D C:\Users\puroh21\AppData\Local\Apps\2.0
      2016-12-08 02:33 - 2016-12-08 02:33 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\hpqlog
      2016-12-08 02:08 - 2016-12-08 23:45 - 00000000 ____D C:\Program Files\Common Files\AV
      2016-12-08 02:01 - 2016-12-08 02:01 - 00004022 _____ C:\Windows\System32\Tasks\HPGenoobeReminder
      2016-12-08 02:00 - 2016-12-08 02:34 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\Hewlett-Packard
      2016-12-08 01:46 - 2016-12-08 01:46 - 00000000 ____D C:\ProgramData\CheckPoint
      2016-12-08 01:43 - 2016-12-08 01:43 - 00000000 ____D C:\Users\puroh21\AppData\Local\AMD
      2016-12-08 01:42 - 2016-12-08 01:42 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\ATI
      2016-12-08 01:42 - 2016-12-08 01:42 - 00000000 ____D C:\Users\puroh21\AppData\Local\CyberLink
      2016-12-08 01:42 - 2016-12-08 01:42 - 00000000 ____D C:\Users\puroh21\AppData\Local\ATI
      2016-12-08 01:42 - 2016-12-08 01:42 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
      2016-12-08 01:41 - 2016-12-08 01:41 - 00000000 ____D C:\Windows\System32\Tasks\WPD
      2016-12-08 01:40 - 2016-12-08 01:40 - 00001421 _____ C:\Users\puroh21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
      2016-12-08 01:40 - 2016-12-08 01:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
      2016-12-08 01:40 - 2016-12-08 01:40 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\Adobe
      2016-12-08 01:38 - 2016-12-08 01:38 - 00000000 ____D C:\Users\puroh21\AppData\Local\Hewlett-Packard
      2016-12-08 01:37 - 2016-12-08 01:37 - 00000000 ____D C:\Users\puroh21\AppData\Local\Power2Go8
      2016-12-08 01:36 - 2016-12-08 01:36 - 00000000 ____D C:\Users\puroh21\AppData\Roaming\Synaptics
      2016-12-08 01:34 - 2016-12-08 01:34 - 00000020 ___SH C:\Users\puroh21\ntuser.ini
      2016-12-08 01:34 - 2016-12-08 01:34 - 00000000 ____D C:\Users\puroh21\AppData\Local\VirtualStore
      2016-12-08 01:32 - 2016-12-08 01:32 - 00000950 _____ C:\Users\Administrator\AppData\Local\Application.xml
      2016-12-08 01:30 - 2016-12-12 20:56 - 00000000 ____D C:\Users\puroh21
      2016-12-08 01:30 - 2016-12-08 01:32 - 00024768 _____ C:\Windows\diagwrn.xml
      2016-12-08 01:30 - 2016-12-08 01:32 - 00024768 _____ C:\Windows\diagerr.xml
      2016-12-08 01:30 - 2016-12-08 01:31 - 00000000 ___HD C:\Users\puroh21\Documents\hp.system.package.metadata
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Reciente
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Plantillas
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Mis documentos
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Menú Inicio
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Impresoras
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Entorno de red
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Documents\Mis vídeos
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Documents\Mis imágenes
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Documents\Mi música
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Datos de programa
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\Configuración local
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\AppData\Local\Historial
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\AppData\Local\Datos de programa
      2016-12-08 01:30 - 2016-12-08 01:30 - 00000000 _SHDL C:\Users\puroh21\AppData\Local\Archivos temporales de Internet
      2016-12-08 01:30 - 2013-07-19 22:16 - 00002132 _____ C:\Users\puroh21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
      2016-12-08 01:30 - 2013-07-19 22:07 - 00000000 ___HD C:\Users\puroh21\Documents\hp.applications.package.appdata
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Public\Documents\Mis vídeos
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Public\Documents\Mis imágenes
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Public\Documents\Mi música
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Reciente
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Plantillas
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Mis documentos
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Menú Inicio
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Impresoras
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Entorno de red
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Documents\Mis vídeos
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Documents\Mis imágenes
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Documents\Mi música
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Datos de programa
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\Configuración local
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historial
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Plantillas
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Menú Inicio
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Escritorio
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Documentos
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\ProgramData\Datos de programa
      2016-12-08 01:29 - 2016-12-08 01:29 - 00000000 _SHDL C:\Program Files\Archivos comunes
      2016-12-08 01:26 - 2016-12-08 01:26 - 00002304 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-375477578-1756036659-1392930576-500
      2016-12-08 00:44 - 2016-12-08 21:54 - 00000000 ___HD C:\$SysReset
      2016-12-08 00:16 - 2016-12-08 00:17 - 00000000 ____D C:\32788R22FWJFW
      2016-12-07 18:46 - 2016-12-07 18:46 - 00018427 _____ C:\Users\puroh21\Downloads\The-walking-dead---7x07(EliteTorrent).torrent
      2016-12-06 23:18 - 2016-12-06 23:18 - 00000000 ____D C:\Users\puroh21\Desktop\Originals
      2016-12-05 02:11 - 2016-12-05 02:11 - 03387352 _____ (Check Point Software Technologies Ltd.) C:\Users\puroh21\Downloads\zafwSetupWeb_140_508_000.exe
      2016-12-05 02:06 - 2016-12-05 02:09 - 177891288 _____ (COMODO) C:\Users\puroh21\Downloads\Sin confirmar 264295.crdownload
      2016-12-04 20:30 - 2016-12-04 20:31 - 00000000 ____D C:\Users\puroh21\Downloads\Westworld - Temporada 1 [HDTV][Cap.107][Español Castellano]
      2016-12-04 20:30 - 2016-12-04 20:31 - 00000000 ____D C:\Users\puroh21\Downloads\Westworld - Temporada 1 [HDTV][Cap.106][Español Castellano]
      2016-12-04 20:28 - 2016-12-04 20:30 - 00000000 ____D C:\Users\puroh21\Downloads\Westworld - Temporada 1 [HDTV][Cap.102_105][Español Castellano]
      2016-12-04 20:28 - 2016-12-04 20:29 - 00000000 ____D C:\Users\puroh21\Downloads\Westworld - Temporada 1 [HDTV][Cap.101][Español Castellano]
      2016-12-04 20:28 - 2016-12-04 20:29 - 00000000 ____D C:\Users\puroh21\Downloads\Atraco En 7 Minutos [BluRay Rip][AC3 5.1 Español Castellano][2016]
      2016-12-04 20:27 - 2016-12-04 20:27 - 00015879 _____ C:\Users\puroh21\Downloads\Westworld_1_01.torrent
      2016-12-04 20:27 - 2016-12-04 20:27 - 00013794 _____ C:\Users\puroh21\Downloads\Westworld_1_02_05.torrent
      2016-12-04 20:27 - 2016-12-04 20:27 - 00013399 _____ C:\Users\puroh21\Downloads\Westworld_1_06.torrent
      2016-12-04 20:27 - 2016-12-04 20:27 - 00013259 _____ C:\Users\puroh21\Downloads\Westworld_1_07.torrent
      2016-12-04 20:25 - 2016-12-04 20:25 - 00016219 _____ C:\Users\puroh21\Downloads\Atraco_En_7_Minutos_BluRay_Rip.torrent
      2016-12-04 03:25 - 2016-12-04 03:25 - 00000013 _____ C:\Users\puroh21\Desktop\saragomez.txt
      2016-12-02 03:09 - 2016-12-02 02:55 - 00013268 _____ C:\Users\puroh21\Desktop\ComboFix.txt
      2016-12-02 02:24 - 2016-12-02 02:57 - 00000000 ____D C:\ComboFix
      2016-12-01 18:54 - 2016-12-01 19:08 - 334793978 ____R C:\Users\puroh21\Downloads\Cazadores de leyendas - 1x03 (EliteTorrent.net).mp4
      2016-12-01 18:54 - 2016-12-01 19:07 - 344760669 ____R C:\Users\puroh21\Downloads\Cazadores de leyendas - 1x02 (EliteTorrent.net).mp4
      2016-12-01 18:53 - 2016-12-01 18:53 - 00013532 _____ C:\Users\puroh21\Downloads\Cazadores-de-leyendas---1x02(EliteTorrent).torrent
      2016-12-01 18:53 - 2016-12-01 18:53 - 00013152 _____ C:\Users\puroh21\Downloads\Cazadores-de-leyendas---1x03(EliteTorrent).torrent
      2016-11-29 21:41 - 2016-11-29 22:57 - 582393856 ____R C:\Users\puroh21\Downloads\The.Walking.Dead.7x06.HDTV.XviD.[www.DivxTotaL.com].avi
      2016-11-29 21:41 - 2016-11-29 22:30 - 577574912 ____R C:\Users\puroh21\Downloads\Marte.1x02.HDTV.XviD.[www.DivxTotaL.com].avi
      2016-11-29 21:41 - 2016-11-29 22:20 - 578220032 ____R C:\Users\puroh21\Downloads\Marte.1x01.HDTV.XviD.[www.DivxTotaL.com].avi
      2016-11-29 21:41 - 2016-11-29 21:41 - 00022745 _____ C:\Users\puroh21\Downloads\The_Walking_Dead_7_06.torrent
      2016-11-29 21:40 - 2016-11-29 21:40 - 00022574 _____ C:\Users\puroh21\Downloads\Marte_1_01.torrent
      2016-11-29 21:40 - 2016-11-29 21:40 - 00022554 _____ C:\Users\puroh21\Downloads\Marte_1_02.torrent
      2016-11-29 21:39 - 2016-11-29 23:31 - 2125989902 ____R C:\Users\puroh21\Downloads\Ben-Hur.BR-Screener.XviD.[DTL].avi
      2016-11-29 21:38 - 2016-11-29 21:38 - 00020786 _____ C:\Users\puroh21\Downloads\Ben_Hur_BR_Screener.torrent
      2016-11-29 17:00 - 2016-11-29 17:10 - 335361503 ____R C:\Users\puroh21\Downloads\The walking dead - 7x05 (EliteTorrent.net).mp4
      2016-11-29 16:58 - 2016-11-29 16:58 - 00018765 _____ C:\Users\puroh21\Downloads\Peter-y-el-dragn-BR-LINE(EliteTorrent).torrent
      2016-11-29 16:57 - 2016-11-29 16:57 - 00013167 _____ C:\Users\puroh21\Downloads\The-walking-dead---7x05(EliteTorrent).torrent
      2016-11-28 23:08 - 2016-11-28 23:08 - 06253640 _____ (AVAST Software) C:\Users\puroh21\Downloads\avast_free_antivirus_setup_online (1).exe
      2016-11-27 06:44 - 2016-11-27 06:44 - 00000009 _____ C:\Users\puroh21\Desktop\hipoteca.txt
      2016-11-26 21:58 - 2016-11-26 21:59 - 31196040 _____ (VideoLAN ) C:\Users\puroh21\Downloads\vlc-2.2.3-win32 (1).exe
      2016-11-25 23:11 - 2016-11-25 23:15 - 00000000 ____D C:\Users\puroh21\Desktop\Nueva carpeta
      2016-11-24 02:23 - 2016-11-26 20:13 - 00000000 ____D C:\Users\puroh21\Downloads\Gomorra - Temporada 2 [HDTV 720p][Cap.206][AC3 5.1 Español Castellano]
      2016-11-24 02:22 - 2016-11-26 20:13 - 00000000 ____D C:\Users\puroh21\Downloads\Gomorra - Temporada 2 [HDTV 720p][Cap.208][AC3 5.1 Español Castellano]
      2016-11-24 02:22 - 2016-11-26 20:13 - 00000000 ____D C:\Users\puroh21\Downloads\Gomorra - Temporada 2 [HDTV 720p][Cap.207][AC3 5.1 Español Castellano]
      2016-11-24 02:22 - 2016-11-26 20:12 - 00000000 ____D C:\Users\puroh21\Downloads\Gomorra - Temporada 2 [HDTV 720p][Cap.205][AC3 5.1 Español Castellano]
      2016-11-24 02:18 - 2016-11-24 02:18 - 00017853 _____ C:\Users\puroh21\Downloads\Gomorra_2_720p_07.torrent
      2016-11-24 02:18 - 2016-11-24 02:18 - 00017593 _____ C:\Users\puroh21\Downloads\Gomorra_2_720p_08.torrent
      2016-11-24 02:18 - 2016-11-24 02:18 - 00017213 _____ C:\Users\puroh21\Downloads\Gomorra_2_720p_05.torrent
      2016-11-24 02:18 - 2016-11-24 02:18 - 00017173 _____ C:\Users\puroh21\Downloads\Gomorra_2_720p_06.torrent
      2016-11-24 02:09 - 2016-11-24 02:09 - 00013335 _____ C:\Users\puroh21\Downloads\87526_gomorra-temporada-2-hdtv-cap-205-espaa-ol-castellano.torrent
      2016-11-24 02:05 - 2016-11-24 02:05 - 00013733 _____ C:\Users\puroh21\Downloads\88140_peter-y-el-dragon-2016-bluray-screener-x264-mkv-castellano-line (1).torrent
      2016-11-24 02:04 - 2016-11-24 02:04 - 00013733 _____ C:\Users\puroh21\Downloads\88140_peter-y-el-dragon-2016-bluray-screener-x264-mkv-castellano-line.torrent
      2016-11-24 02:03 - 2016-11-24 02:04 - 02403520 _____ (BitTorrent Inc.) C:\Users\puroh21\Downloads\uTorrent (1).exe
      2016-11-24 01:55 - 2016-11-24 01:56 - 02403520 _____ (BitTorrent Inc.) C:\Users\puroh21\Downloads\uTorrent.exe
      2016-11-24 01:54 - 2016-11-24 01:54 - 22851472 _____ (Malwarebytes ) C:\Users\puroh21\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
      2016-11-24 01:33 - 2013-07-19 22:20 - 00002198 _____ C:\Users\Public\Desktop\eBay compra y vende de todo.lnk
      2016-11-23 18:15 - 2016-11-23 18:28 - 532324757 ____R C:\Users\puroh21\Downloads\Cazadores de leyendas - 1x01 (EliteTorrent.net).mp4
      2016-11-23 18:13 - 2016-11-23 18:13 - 00020692 _____ C:\Users\puroh21\Downloads\Cazadores-de-leyendas---1x01(EliteTorrent).torrent
      2016-11-23 01:25 - 2016-11-26 02:16 - 00000000 ____D C:\Qoobox
      2016-11-22 17:34 - 2016-11-22 19:34 - 00000000 ____D C:\Users\puroh21\Downloads\The Walking Dead - Temporada 7 [HDTV 720p][Cap.705][AC3 5.1 Español Castellano]
      2016-11-22 17:34 - 2016-11-22 18:29 - 00000000 ____D C:\Users\puroh21\Downloads\Atlanta - Temporada 1 [HDTV 720p][Cap.101][AC3 5.1 Español Castellano]
      2016-11-22 17:34 - 2016-11-22 18:12 - 00000000 ____D C:\Users\puroh21\Downloads\Atlanta - Temporada 1 [HDTV 720p][Cap.102][AC3 5.1 Español Castellano]
      2016-11-22 17:32 - 2016-11-22 17:32 - 00017972 _____ C:\Users\puroh21\Downloads\The_Walking_Dead_7_720p_05.torrent
      2016-11-22 17:31 - 2016-11-22 17:31 - 00018553 _____ C:\Users\puroh21\Downloads\Atlanta_1_720p_01.torrent
      2016-11-22 17:31 - 2016-11-22 17:31 - 00016753 _____ C:\Users\puroh21\Downloads\Atlanta_1_720p_02.torrent
      2016-11-22 17:28 - 2016-11-22 17:28 - 00015616 _____ C:\Users\puroh21\Downloads\600_millas_HDRip.torrent
      2016-11-22 17:27 - 2016-11-22 17:27 - 00029124 _____ C:\Users\puroh21\Downloads\Mi_Amigo_El_Gigante_DVD_XviD.torrent
      2016-11-21 19:57 - 2016-11-21 19:57 - 00000013 _____ C:\Users\puroh21\Desktop\bombin.txt
      2016-11-17 18:43 - 2016-11-17 18:55 - 280443734 ____R C:\Users\puroh21\Downloads\Eyewitness - 1x02 (EliteTorrent.net).mp4
      2016-11-17 18:43 - 2016-11-17 18:54 - 245982501 ____R C:\Users\puroh21\Downloads\Eyewitness - 1x01 (EliteTorrent.net).mp4
      2016-11-17 18:42 - 2016-11-17 18:42 - 00019141 _____ C:\Users\puroh21\Downloads\Eyewitness---1x01(EliteTorrent).torrent
      2016-11-17 18:42 - 2016-11-17 18:42 - 00011061 _____ C:\Users\puroh21\Downloads\Eyewitness---1x02(EliteTorrent).torrent
      2016-11-17 12:30 - 2016-11-17 12:30 - 00000068 _____ C:\Users\puroh21\Desktop\seguro.txt
      2016-11-17 10:48 - 2016-11-17 10:48 - 00023316 _____ C:\Users\puroh21\Downloads\JustificantePago.pdf (1).pdf
      2016-11-16 02:16 - 2016-11-16 02:20 - 227918368 _____ (Emsisoft Ltd. ) C:\Users\puroh21\Downloads\Sin confirmar 210193.crdownload
      2016-11-15 17:55 - 2016-11-15 17:56 - 00016257 _____ C:\Users\puroh21\Downloads\Atracadores-HDRip(EliteTorrent).torrent
      2016-11-15 17:49 - 2016-11-15 19:24 - 1747812357 ____R C:\Users\puroh21\Downloads\Objetivo Paris (HDRip) (EliteTorrent.net).avi
      2016-11-15 17:48 - 2016-11-15 17:48 - 00017600 _____ C:\Users\puroh21\Downloads\Objetivo-Pars-HDRip(EliteTorrent).torrent
      2016-11-15 17:46 - 2016-11-15 18:56 - 530816469 ____R C:\Users\puroh21\Downloads\The walking dead - 7x04 (EliteTorrent.net).mp4
      2016-11-15 17:42 - 2016-11-15 17:43 - 00020627 _____ C:\Users\puroh21\Downloads\The-walking-dead---7x04(EliteTorrent).torrent
      2016-11-14 21:52 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
      2016-11-13 20:24 - 2016-11-13 20:24 - 00016931 _____ C:\Users\puroh21\Downloads\La-playa-de-los-ahogados-DVDRip(EliteTorrent) (1).torrent
      2016-11-13 06:19 - 2016-11-14 22:09 - 00000966 _____ C:\Users\puroh21\Desktop\osiiiiiiiiiiiii.txt
      2016-11-13 06:18 - 2016-11-13 06:18 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\puroh21\Downloads\spybot-2.4.exe
      2016-11-13 05:00 - 2016-11-13 05:00 - 22851472 _____ (Malwarebytes ) C:\Users\puroh21\Downloads\mbam-setup-2.2.1.1043.exe
      2016-11-13 04:57 - 2016-11-13 04:57 - 01106888 _____ (Bleeping Computer, LLC) C:\Users\puroh21\Downloads\rkill64-16046.exe
      2016-11-13 04:57 - 2016-11-13 04:57 - 01106888 _____ (Bleeping Computer, LLC) C:\Users\puroh21\Downloads\rkill64-16036.exe
      2016-11-13 04:57 - 2016-11-13 04:57 - 01106888 _____ (Bleeping Computer, LLC) C:\Users\puroh21\Downloads\rkill64.exe
      2016-11-13 04:56 - 2016-11-13 04:56 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\puroh21\Downloads\rkill.exe

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2016-12-12 21:14 - 2013-12-27 21:58 - 00000000 ____D C:\Users\puroh21\Documents\Youcam
      2016-12-12 21:10 - 2013-07-20 05:53 - 00873338 _____ C:\Windows\system32\perfh00A.dat
      2016-12-12 21:10 - 2013-07-20 05:53 - 00198560 _____ C:\Windows\system32\perfc00A.dat
      2016-12-12 21:10 - 2012-07-26 08:28 - 02002686 _____ C:\Windows\system32\PerfStringBackup.INI
      2016-12-12 21:10 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
      2016-12-12 21:05 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
      2016-12-12 21:03 - 2013-07-20 06:03 - 00000000 ____D C:\Windows\SysWOW64\eu-ES
      2016-12-12 21:03 - 2013-07-20 06:03 - 00000000 ____D C:\Windows\system32\eu-ES
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
      2016-12-12 21:03 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
      2016-12-12 21:03 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\SysWOW64\WCN
      2016-12-12 21:03 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\system32\WCN
      2016-12-12 21:02 - 2013-07-20 05:57 - 00000000 ____D C:\Windows\en-GB
      2016-12-12 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\SysWOW64\migwiz
      2016-12-12 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
      2016-12-12 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\SysWOW64\en-GB
      2016-12-12 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\System
      2016-12-12 21:02 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
      2016-12-12 21:02 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\SysWOW64\winrm
      2016-12-12 21:02 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\SysWOW64\sysprep
      2016-12-12 21:02 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\SysWOW64\slmgr
      2016-12-12 21:02 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\SysWOW64\oobe
      2016-12-12 21:02 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\servicing
      2016-12-12 21:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\SysWOW64\MUI
      2016-12-12 21:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\SysWOW64\Com
      2016-12-12 21:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\migwiz
      2016-12-12 21:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\en-GB
      2016-12-12 21:01 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\PolicyDefinitions
      2016-12-12 21:01 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
      2016-12-12 21:01 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\system32\winrm
      2016-12-12 21:01 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\system32\slmgr
      2016-12-12 21:01 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
      2016-12-12 21:01 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\Sysprep
      2016-12-12 21:01 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\oobe
      2016-12-12 20:59 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\inetsrv
      2016-12-12 20:58 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\MUI
      2016-12-12 20:58 - 2012-07-26 06:38 - 00000000 ____D C:\Windows\system32\Dism
      2016-12-12 20:57 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
      2016-12-12 20:57 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\Com
      2016-12-12 20:57 - 2012-07-26 08:51 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
      2016-12-12 20:56 - 2013-09-16 13:29 - 00001327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk
      2016-12-12 11:54 - 2013-09-16 13:29 - 00065536 _____ C:\Windows\system32\spu_storage.bin
      2016-12-10 23:26 - 2012-07-26 08:59 - 00000000 ____D C:\Windows\CbsTemp
      2016-12-10 23:12 - 2013-07-20 06:04 - 00000000 ____D C:\Windows\SysWOW64\gl-ES
      2016-12-10 23:12 - 2013-07-20 06:04 - 00000000 ____D C:\Windows\system32\gl-ES
      2016-12-09 03:39 - 2013-07-19 22:09 - 00000000 ____D C:\Program Files\7-Zip
      2016-12-09 01:26 - 2016-09-26 14:51 - 00134880 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
      2016-12-09 01:26 - 2016-09-26 14:51 - 00057424 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
      2016-12-08 23:42 - 2012-08-04 00:21 - 00000000 ____D C:\Windows\Panther
      2016-12-08 22:43 - 2012-07-26 09:12 - 00000000 ___HD C:\Windows\ELAMBKUP
      2016-12-08 10:23 - 2012-07-26 09:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template
      2016-12-08 04:30 - 2015-07-14 02:44 - 00000000 ____D C:\Users\puroh21\AppData\Local\Packages
      2016-12-08 02:52 - 2016-02-02 06:25 - 00000000 ___RD C:\Users\puroh21\Desktop\DANGER
      2016-12-08 02:51 - 2016-07-08 13:23 - 00000000 ____D C:\Users\puroh21\Desktop\Nueva carpeta (16)
      2016-12-08 02:50 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
      2016-12-08 02:35 - 2013-09-16 14:24 - 00000000 ____D C:\ProgramData\Norton
      2016-12-08 02:20 - 2013-07-19 21:33 - 00291328 _____ C:\Windows\system32\FNTCACHE.DAT
      2016-12-08 01:41 - 2016-09-22 15:39 - 00007598 _____ C:\Users\puroh21\Desktop\Aplicaciones quitadas.html
      2016-12-08 01:40 - 2013-09-16 13:58 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
      2016-12-08 01:40 - 2013-07-19 22:24 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
      2016-12-08 01:40 - 2013-07-19 22:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
      2016-12-08 01:40 - 2013-07-19 22:20 - 00000000 ___RD C:\Program Files\Online Services
      2016-12-08 01:40 - 2013-07-19 22:20 - 00000000 ___RD C:\Program Files (x86)\Online Services
      2016-12-08 01:40 - 2013-07-19 22:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
      2016-12-08 01:40 - 2013-07-19 22:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
      2016-12-08 01:39 - 2012-08-04 01:02 - 00000000 ___HD C:\SYSTEM.SAV
      2016-12-08 01:36 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
      2016-12-08 01:31 - 2012-08-03 23:28 - 00000000 ____D C:\Users\Administrator
      2016-12-08 01:31 - 2012-07-26 09:12 - 00000000 __RHD C:\Users\Public\Libraries
      2016-12-08 01:29 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
      2016-12-08 01:27 - 2012-08-04 01:02 - 00000000 ____D C:\SWSetup
      2016-12-05 02:21 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
      2016-11-24 01:59 - 2014-10-01 19:42 - 00000000 ____D C:\Users\puroh21\Desktop\furgoideas

      Some files in TEMP:
      ====================
      C:\Users\puroh21\AppData\Local\Temp\libeay32.dll
      C:\Users\puroh21\AppData\Local\Temp\msvcr120.dll
      C:\Users\puroh21\AppData\Local\Temp\sqlite3.dll


      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2012-08-03 23:23

      ==================== End of FRST.txt ============================