Googolplex

Thank you so much. I just restored all the quarantined items, ran a scan that had no detections, then for good measure I rebooted my PC and ran another scan, still no detections (and a much faster scan that time). Really appreciate your help with this. Take care and keep doing the good work you're doing.

Search.txt Here it is. I was able to run FRST64 and here's what it came up with... nothing?

I tried running FRSTENGLISH and got the error "this app can't run on your PC. To find a version for your PC, check with the software publisher" I have Windows 10, 64 bit

And that time it actually let me post... here are the results from yesterday, which include the items in quarantine. mbst-grab-results (6-12-22).zip

Hello, tried to attach file yesterday but kept getting error msg about my post wording being spam-like. Had to submit a separate ticket.

Thank you both for your help. Yes I had previously enabled the rootkits and expert algorithms options when I ran the scan I originally posted. Very good to know I should keep them off. I've attached the report of the scan I just ran w/those options off. No detections this time. Should I un-quarantine the previously found items, and if so, how do I do that? Malwarebytes scan 6-12-22.txt

Just ran this scan and got the following detections. I've had this PC about half a year and Malwarebytes (free) on it the whole time. This is the first scan w/any detections. They are quarantined now. One of them was CTOPT399.dll, which according to the below site is from Creative Technology, the maker of the Sound Blaster card lineup. I installed a Sound Blaster GC7, along with the Creative app for it, a few weeks ago. So I'm wondering if that is related. As for the registry keys, I am not sure if they're related to Creative or not, I haven't been able to find any sources that say what they are. If anyone has tips on how I can find what programs they're associated with, I'd appreciate it. What is CTOPT399.dll? (freefixer.com) https://www.freefixer.com/library/file/CTOPT399.dll-121493/ ___________________________________________________________________________________________ Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 6/11/22 Scan Time: 4:30 PM Log File: a8bb2d28-e9cd-11ec-812e-30d042f6f817.json -Software Information- Version: 4.5.9.198 Components Version: 1.0.1699 Update Package Version: 1.0.56071 License: Free -System Information- OS: Windows 10 (Build 19044.1706) CPU: x64 File System: NTFS User: Vega3\David -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 288951 Threats Detected: 11 Threats Quarantined: 0 Time Elapsed: 3 min, 54 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 9 Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0DC39FF3-7F96-405E-BC77-1323866D97CF}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}\InprocServer32, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\TYPELIB\{22E0CB87-9325-4B0F-8ECC-21B271EC81AA}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{22E0CB87-9325-4B0F-8ECC-21B271EC81AA}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{22E0CB87-9325-4B0F-8ECC-21B271EC81AA}, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}\InprocServer32, No Action By User, 1000001, 0, , , , , , Malware.Heuristic.1001, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}\InprocServer32, No Action By User, 1000001, 0, , , , , , Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 2 Malware.Heuristic.1001, C:\WINDOWS\SYSTEM32\CTOPT399.DLL, No Action By User, 1000001, 0, , , , , 82B8AEBCAE69A1E4D0DDF70E7C14EF58, 00231DFFF3CD4475CD9A784A726B130FC9555CA1CD459ECD1525AC4B75F85203 Malware.Heuristic.1001, C:\WINDOWS\SYSWOW64\CTOPT399.DLL, No Action By User, 1000001, 0, 1.0.56071, 0000000000000000000003E9, dds, 01811284, 32F33750CED941C4AA4E7D70AC695413, 28891DF233CABBB726CD323585ED088882E0E05A07D83D7C95666432CAB7A86A Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)