Jump to content

Search the Community

Showing results for tags 'MBAM'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. 1, The main problem is that when I run MBAM, it stalls/hangs up in the Pre-Scan Operations (PSO) task. - MBAM previously worked fine and produced the report of findings. - Now it looks like it checks and installs updates, and starts the PSO task. But the PSO task doesn't end. It either hangs up after 1 1/2 hours or I kill it by powering down the laptop - the Pause Scan and Cancel buttons don't work. - Ran RKILL but didn't see anything there. - Tried some of the alternatives (Safe Mode, Cameleon, ... but same result. 2. Other programs like Task Manager, AVG, and AVG PC Tuneup won't start. Thanks in advance for your help Start of SCAN RESULTS - full results are attached Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015 Ran by Scott (administrator) on KIDS_LAPTOP (11-11-2015 20:35:11) Running from E:\ Loaded Profiles: Scott (Available Profiles: Scott & Guest) Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: IE) Boot Mode: Safe Mode (with Networking) Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\HelpPane.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-23] (Realtek Semiconductor) HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated) HKLM\...\Run: [Acer ePower Management] => C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe [860192 2010-02-05] (Acer Incorporated) HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-10] (COMODO) HKLM-x32\...\Run: [iAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2009-12-23] (Intel Corporation) HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1300560 2010-03-03] (Dritek System Inc.) HKLM-x32\...\Run: [OOTag] => C:\Program Files (x86)\eMachines\OOBEOffer\OOTag.exe [13856 2010-02-22] (Microsoft) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2569616 2015-10-04] () HKLM-x32\...\Run: [PrivDogService] => C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [662184 2014-06-17] (AdTrustMedia) HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3826600 2015-10-29] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [CenturyLinkTouchPointAgent] => C:\Program Files (x86)\CenturyLink\Desktop\CenturyLinkTouchPointAgent.exe [48616 2015-07-21] (CenturyLink Inc) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1130408 2015-10-28] (AVG Technologies CZ, s.r.o.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935904 2015-10-30] (SUPERAntiSpyware) HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\...\MountPoints2: {11d1c285-12dc-11e5-a9ed-705ab6ed6275} - E:\VZW_Software_upgrade_assistant.exe HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\...\MountPoints2: {e073c314-02ec-11e5-aaea-705ab6ed6275} - E:\VZW_Software_upgrade_assistant.exe HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\eMachines.scr HKU\S-1-5-18\...\RunOnce: [sPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-12-26] (Microsoft Corporation) IFEO\centurylinkinstaller.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\centurylinktouchpointagent.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\icloud.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\icloudweb.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\shellstreamsshortcut.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\totalsystemcare.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.3.25 Tcpip\..\Interfaces\{107459C7-B5D0-495F-A8EE-E3368C1FB3D1}: [DhcpNameServer] 192.168.0.1 205.171.3.25 Tcpip\..\Interfaces\{A23860ED-02D2-43B7-B241-03AED0695C54}: [DhcpNameServer] 192.168.0.123 Internet Explorer: ================== HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid=%7BEC8CCDDD-9C99-49B1-BA4B-744B0E2023EB%7D&mid=c8fc92975c9247d3b451a113f0098b86-ccbe8c740107154b04f7ca8c3c70117ec7a5c1ca〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-07%2019:09:09&v=18.9.0.231&pid=safeguard&sg=&sap=hp HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0409&m=e527&r=27361213l205l04d4z1h5r4542r20s SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACEW SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACEW SearchScopes: HKU\S-1-5-21-2211032015-3751181627-1635469974-1002 -> DefaultScope {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo SearchScopes: HKU\S-1-5-21-2211032015-3751181627-1635469974-1002 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = SearchScopes: HKU\S-1-5-21-2211032015-3751181627-1635469974-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-21-2211032015-3751181627-1635469974-1002 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo SearchScopes: HKU\S-1-5-21-2211032015-3751181627-1635469974-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={EC8CCDDD-9C99-49B1-BA4B-744B0E2023EB}&mid=c8fc92975c9247d3b451a113f0098b86-ccbe8c740107154b04f7ca8c3c70117ec7a5c1ca〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-07 19:09:09&v=18.9.0.231&pid=safeguard&sg=&sap=dsp&q={searchTerms} BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated) BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-28] (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-28] (Oracle Corporation) BHO-x32: PrivDog Extension -> {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} -> C:\Program Files (x86)\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17] (AdTrustMedia) Toolbar: HKLM-x32 - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} - No File Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.9.0\ViProtocol.dll [2015-10-04] (AVG Secure Search) FireFox: ======== FF ProfilePath: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\7q5gvxnt.default FF DefaultSearchEngine: AVG Secure Search FF SelectedSearchEngine: AVG Secure Search FF Homepage: hxxps://mysearch.avg.com?cid={EC8CCDDD-9C99-49B1-BA4B-744B0E2023EB}&mid=c8fc92975c9247d3b451a113f0098b86-ccbe8c740107154b04f7ca8c3c70117ec7a5c1ca〈=en&ds=AVG&coid=avgtbavg&cmpid=0415tb&pr=fr&d=2014-02-07 19:09:09&v=18.7.0.147&pid=safeguard&sg=&sap=hp FF Keyword.URL: FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] () FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] () FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.9.0\\npsitesafety.dll [No File] FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-28] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-28] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-08] (VideoLAN) FF Plugin HKU\S-1-5-21-2211032015-3751181627-1635469974-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Scott\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-10] (Unity Technologies ApS) FF SearchPlugin: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\7q5gvxnt.default\searchplugins\avg-secure-search.xml [2015-07-25] FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2015-10-04] FF Extension: WOT - C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\7q5gvxnt.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-08-24] FF Extension: Download Status Bar - C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\7q5gvxnt.default\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2015-05-29] FF Extension: Adblock Plus - C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\7q5gvxnt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-17] FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.9.0.231 => not found Chrome: ======= CHR HomePage: Default -> hxxps://mysearch.avg.com?cid={EC8CCDDD-9C99-49B1-BA4B-744B0E2023EB}&mid=c8fc92975c9247d3b451a113f0098b86-ccbe8c740107154b04f7ca8c3c70117ec7a5c1ca〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-07 19:09:09&v=18.1.9.799&pid=safeguard&sg=&sap=hp CHR StartupUrls: Default -> "hxxps://mysearch.avg.com?cid={EC8CCDDD-9C99-49B1-BA4B-744B0E2023EB}&mid=c8fc92975c9247d3b451a113f0098b86-ccbe8c740107154b04f7ca8c3c70117ec7a5c1ca〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-07 19:09:09&v=18.1.9.799&pid=safeguard&sg=&sap=hp" CHR Profile: C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04] CHR Extension: (PrivDog) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-10-02] [updateUrl: hxxp://privdog.com/updates/1123/googlechrome/update.xml] <==== ATTENTION CHR Extension: (Google Search) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (AVG SafeGuard toolbar) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-08-28] CHR Extension: (Chrome Web Store Payments) - C:\Users\Scott\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28] CHR HKU\S-1-5-21-2211032015-3751181627-1635469974-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Users\Scott\AppData\Local\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-05-14] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2015-10-30] (SUPERAntiSpyware.com) S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [595376 2015-10-29] (AVG Technologies CZ, s.r.o.) S2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3815648 2015-10-29] (AVG Technologies CZ, s.r.o.) S2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-10-28] (AVG Technologies CZ, s.r.o.) S2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [579776 2015-10-29] (AVG Technologies CZ, s.r.o.) S2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-09-07] (COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-10] (COMODO) S2 ePowerSvc; C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [865824 2010-02-05] (Acer Incorporated) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed] S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-08-10] (McAfee, Inc.) S2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-28] (DEVGURU Co., LTD.) S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4368808 2015-10-28] (AVG Technologies CZ, s.r.o.) S2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group) S2 vToolbarUpdater18.9.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.9.0\ToolbarUpdater.exe [1862032 2015-10-04] (AVG Secure Search) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== Addition.txt FRST.txt
  2. Hello. Is it me or is MBAM v1.75.0.1300 getting less updates per day these days? I currently have 11/2/2015 12:56 PM v2015.11.02.06 as of 5:12 PM PST. Thank you in advance.
  3. Hi Malwarebytes, I'm in a bit of a predicament. I'm not sure when but yesterday I was able to access 2 of my websites just fine yesterday but today Malwarebytes decides to Block them. I thought for a second it must be Cloudflare since MBAM is blocking CF's IP so I turned off Cloudflare so that the traffic goes through directly to my sites. To my surprise they get blocked as well, the other had dedicated IP so I checked and it got blocked when I access the IP directly, my other site that is hosted under it (it's a reseller account) isn't affected. So, I tried my other site which is getting blocked but it's on a shared IP address. It gets blocked as well but I can access the Shared IP just fine no Block pop-ups from MBAM and also the others sites I had under it. I therefore concluded that for some reason MBAM is blocking 2 of my domains which I'm not sure why since I'm pretty sure it isn't affected specially the other one that's on a shared IP since it's just a 1 page HTML. If my account has been breached then all of the sites hosted under it should have been breached as well which isn't the case. So I ask, could the Malwarebytes team enlighten me please on why this is happening? Domains in questions obs.pwsorallc.pwNOTE Kindly delete my other thread that was on the wrong section. I apologize for it since I was in a bit of a frantic state earlier that I didn't notice. (https://forums.malwarebytes.org/index.php?/topic/172578-mbam-blocking-my-sites/) I attached a MBAAM Log file for that, please take a look. MBAM Web Protection Log.txt
  4. Hi Malwarebytes, I'm in a bit of a predicament. I'm not sure when but yesterday I was able to access 2 of my websites just fine yesterday but today Malwarebytes decides to Block them. I thought for a second it must be Cloudflare since MBAM is blocking CF's IP so I turned off Cloudflare so that the traffic goes through directly to my sites. To my surprise they get blocked as well, the other had dedicated IP so I checked and it got blocked when I access the IP directly, my other site that is hosted under it (it's a reseller account) isn't affected. So, I tried my other site which is getting blocked but it's on a shared IP address. It gets blocked as well but I can access the Shared IP just fine no Block pop-ups from MBAM and also the others sites I had under it. I therefore concluded that for some reason MBAM is blocking 2 of my domains which I'm not sure why since I'm pretty sure it isn't affected specially the other one that's on a shared IP since it's just a 1 page HTML. If my account has been breached then all of the sites hosted under it should have been breached as well which isn't the case. So I ask, could the Malwarebytes team enlighten me please on why this is happening? Domains in questions obs.pwsorallc.pw
  5. Hi all , Wouldn't it be nice to have: Quick scanPerform update checkFind history logvia right-click context menu on taskbar? Also, access MBAM without UAC prompt (like that of tray/notification area icon) from taskbar?
  6. So after doing my scan i found the trojan named localcytozko_Zg.exe and im wondering if anyone recognizes this? If so do you know if its a R.A.T. or a keylogger? And if it is a keylogger is there anyway to locate the text documents?
  7. Good evening, I was wondering if there were any reported false positives associated with Spyware.Passwords.XGen. Here is why I am asking: For AV/Malware protection, I am running: MBAM premium homeMalware Bytes Anti-exploit free editionBitdefender Antivirus When I am not actively using my PC, I either shut it down or, at the very least, I disable the NIC in windows and/or unplug the Ethernet cable. No one uses my PC but me. ***************** This evening, I turned my PC on and as my usual routine, update MBAM and Bitdefender as one of the first things I do. I browsed a couple of sites I normally go to which are generally considered safe (I have not had an issue with the sites in the past). For example, MSN.com, Bing, google, etc. I did not install anything. I hadn't gotten been online for very long when MBAM scan results detected some threats which is unusual, but I wasn't particularly concerned. When I looked at the log, I was surprised to find 15 temp files infected with Spyware.Passwords.Xgen. Spyware.Passwords.XGen, c:\windows\temp\tmp000008b8\tmp0005327a, Quarantined, [a32612a94d3d340270eff592de2213ed] I was surprised because I hadn't been to any place I haven't been to many time before. I quarantined the files and rebooted as prompted. I then ran another threat scan and this time, 22 files were found--again, in C:\Windows\temp. I checked MBAM's quarantine to see if maybe some of the 22 detected files this time around were detected in the previous scan. The quarantine was empty. I quarantined these files and rebooted as prompted again. By this time, I had disabled my network connectivity again and ran another scan. This time, it came up clean. I also ran a bitdefender system scan on C:\ which also came up clean (I should note that both Bitdefender and MBAM run a quickscan/hyperscan on startup both of which came up clean). I once again checked the MBAM quarantine for the 22 files and it was still empty. No trace of the infected files. If it is not a false positive, Spyware.Passwords.XGen has been around for quite a while. I am a bit surprised it would get through all my real time protection I have running. I had my PC on overnight doing some backup routines. The network cable was unplugged (which is why it couldn't update). The last MBAM threat scan at 3:08AM this came up clean. The PC was powered off between 6:30 AM and 6:30 PM. So, the infection, if it was a valid detection, must happened in the first 15-20 mins of my PC being on this evening. I have attached MBAM log files and FRST logs. I have skimmed them over and there doesn't appear to be any issues, but I would like someone else who may be more experienced at reading the logs to look them over. There is one change. MSN is usually my home page and now, my home page is set to "blank" or nothing. I don't know if MBAM did this or something else. I'd like some feed back on whether or not this was a false positive and, more importantly, confirmation that my PC is indeed clean. Thanks! FRST.txt Addition.txt 20150617_1918_052_mbam_threatscan_log.txt 20150617_1905_40_mbam_threatscan_log.txt 20150617_1851_32_mbam_threatscan_log.txt 20150617__mbam_daily_protection_log.txt
  8. Hi... I am using MBAM Premium 2.1.6.1022 on Windows 7 x64. I can understand that MBAM updates via various Content Delivery Networks. However, I would like some information on why MBAM fires off a request to Amazon? At first I thought it just occured after every update. Upon reading my connection logs more closely, I noticed the Amazon outbound connection request happens on a regular basis. Typical response would be check for malware, viruses etc... so I spent half a day doing so which returned zero questionable results. I have attached a cut of a print screen of the last request to Amazon. If you require more, I can leave the PC on and accumulate results. If I had to take a guess, I would say it is a scheduler of some kind. Although my Automated Scheduling tab is empty, and there is nothing in Windows Task Scheduler that related to MBAM. Thanks in advance for any feedback.
  9. Just an observation during testing of windows 10 TP Malwarebytes Anti_Malware exe (Icon) is showing up as Malwarebytes Anti_Malware Notifications. Still launches, updates and runs correctly @ v2.1.6.1022
  10. Now that the saga of getting MBAM operational on Win10 build 10074 has been resolved overall, there seems to be a minor issue (I think) of the MBAM icon normally resident in the system notification tray disappearing. I say disappearing, rather than missing, because the icon is resident on system boot-up, but disappears after some time. Checking Windows Task Manager, MBAM appears to be resident. See attached screen capture. Can anyone: 1. Verify that MBAM is, in fact, active per the screen shot? 2. Advise if this is a known issue with Win10? 3. Suggest how icon can be re-established? TIA, cps
  11. I think you guys should make a rescue or recovery CD based on malwarebytes products. For use in non-bootable computers. Also something that adds an entry to the "Windows didn't shutdown correctly should you like to: goto safemode, safe mod with networking, blah blah blah" and add an entry saying something such as Malwarebytes Recovery Tool" or "Run a Malwarebytes Scan". I think this would be great for people who have friends and family who aren't so good with computers and get viruses often. Anyone Like this idea?
  12. Hey there, some updates made to ESEA CSGO Anti-cheat making it always running on your computer, it can read + analyse data and memory on your pc and send it to ESEA servers. ESEA is ''trusted'' and the worlds best anti-cheating system for PC. But my question is this, in 2013 a ''rogue employe'' injected malware into the anticheat that made it mine bitcoins and destroy a lot of ppls computers and this was when they made it running fulltime and they then changed it to only running when playing CSGO ESEA. They did get sued for a million dollars tho and had to pay that Now they are gonna make it running fulltime on your PC and like the question is should I trust them? I play CSGO competively and I do it on ESEA because I dont like cheaters. And will MBAM detect any ''behaviour'' which is malicious if that occurs? They literally have 100% full acess to your computer with their anti-cheat its not like usual ones, so yeh its a bit scary! Thats the price you pay to play without cheaters. Also one last question, did MBAM detect it back in 2013 when a rogue employe added malware bitcoin miner into it?? Just curious!
  13. I am having issues with MBAM "not responding" after the heuristic analysis. I have already done a clean uninstall and have reinstalled the program with the same result. I have what appears to be over 50,000+ P.U.P.'s but am unable to quarantine or delete anything as MBAM keeps freezing on me. I had to use MBAM Chameleon before doing a clean uninstall, and am currently unable to use some much needed programs. I have attached the logs below... any help on the matter would be much appreciated... thank you attach.txt dds.txt CheckResults.txt FRST.txt Addition.txt
  14. 1. I have a mbam (premium) license. Considering $$$ mbae. I've noticed mbae checks for mbam running. Can these two services run with one license? If someone has purchased mbam why would they not want mbae anyway? So, why don't I already have the protection offered by mbae? "Because you haven't bought it yet you idiot!" Yeah I know, but do you follow? (See topic title) 2. Are there any unresolved product compatibility issues with running MBAM & MBAE with NIS on this: AMD A6-6310 APU w/AMD Radeon R4 1.8GHz 8GB 64bit Win 8.1? I haven't selected exceptions w/in NIS for MBAM, have both programs configured aggressively, and am unaware of any problems with either service as a result. *Thank You for your time and consideration, btw any answers to the above will not affect your final grade because I have already failed this class for asking:(
  15. I just got my new HyperX RAM kit and I got an error message from the MBAM program stating that the Anti Rootkit module could not be launched, it told me to restart but it displayed it again. I am not sure what to do at this point, it was working before so I am assuming it is due to a change in my system's hardware configuration. FRST.txt Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-04-2015Ran by Weion (administrator) on GAMING-PC on 21-04-2015 14:46:09Running from C:\Users\Weion\DownloadsLoaded Profiles: Weion (Available profiles: Weion)Platform: Windows 8.1 Pro (X64) OS Language: English (United States)Internet Explorer Version 11 (Default browser: Chrome)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Innova Co S.a r.l.) G:\Games\Apps\4Game\3.4.22.118\4game-service.exe() C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe(GameplayCrush) G:\Games\Apps\windowedborderlessgaming.exe(Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe(Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\n360.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe() C:\Windows\SysWOW64\PnkBstrA.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(Microsoft Corporation) C:\Windows\System32\vmms.exe(Microsoft Corporation) C:\Windows\System32\runonce.exe(Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe(Microsoft Corporation) C:\Windows\System32\dasHost.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\n360.exe(EJIE Technology) C:\Program Files (x86)\Clover\clover.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe() C:\Program Files\Thesycon\TUSBAudio_Driver\TUSBAudioCpl.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\nacl64.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\nacl64.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Flux Software LLC) C:\Users\Weion\AppData\Local\FluxSoftware\Flux\flux.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe==================== Registry (Whitelisted) ==================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2606280 2015-03-08] (NVIDIA Corporation)HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [126976 2010-04-23] ()HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStartHKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated)HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13776088 2014-12-11] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-11] (Realtek Semiconductor)HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4409400 2015-03-17] (SoftEther VPN Project at University of Tsukuba, Japan.)HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-02-15] (Adobe Systems Incorporated)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [f.lux] => C:\Users\Weion\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [Dxtory Update Checker 2.0] => C:\Program Files (x86)\ExKode\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [GameCompanion] => C:\Users\Weion\AppData\Roaming\GameCompanion\GameCompanion.exe [484408 2013-10-13] ()HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [GOG.com Downloader] => C:\Program Files (x86)\GOG.com\GOG.com Downloader.exe [496440 2013-10-22] (GOG.com)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [Outcome] => C:\Program Files (x86)\Outcome\Origin.exe [1742848 2013-11-25] (NoFaTe)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3632472 2015-03-25] ()HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [SVPMgr] => C:\Program Files (x86)\SVP\SVPMgr.exe [962048 2014-04-10] ()HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3327872 2015-04-20] (Echobit LLC)HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\...\MountPoints2: {2f79d3bb-be6b-11e4-8258-74d435e4304f} - "D:\iLinker.exe" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2015-03-17]ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TUSBAudio Control Panel Autostart.lnk [2015-02-18]ShortcutTarget: TUSBAudio Control Panel Autostart.lnk -> C:\Program Files\Thesycon\TUSBAudio_Driver\TUSBAudioCpl.exe ()Startup: C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-04-20]ShortcutTarget: Curse.lnk -> C:\Users\Weion\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)Startup: C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dxtory.lnk [2015-03-01]ShortcutTarget: Dxtory.lnk -> C:\Program Files (x86)\ExKode\Dxtory2.0\Dxtory.exe (ExKode Co. Ltd.)ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.7.0.11\buShell.dll [2015-03-07] (Symantec Corporation)ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.7.0.11\buShell.dll [2015-03-07] (Symantec Corporation)ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.7.0.11\buShell.dll [2015-03-07] (Symantec Corporation)==================== Internet (Whitelisted) ====================(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)ProxyServer: [S-1-5-21-3649019674-2587991720-3059668772-1001] => http=127.0.0.1:48793;https=127.0.0.1:48793HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-3649019674-2587991720-3059668772-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-gb/?ocid=iehpBHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-18] (Oracle Corporation)BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-18] (Oracle Corporation)BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology)BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-18] (Oracle Corporation)BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-18] (Oracle Corporation)Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\coIEPlg.dll [2015-03-05] (Symantec Corporation)DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cabDPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cabDPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cabTcpip\Parameters: [DhcpNameServer] 192.168.1.1FireFox:========FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-18] (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-18] (Oracle Corporation)FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-02-15] (Adobe Systems)FF Plugin-x32: @4game.com/plugin -> G:\Games\Apps\4Game\3.4.22.118\npplugin4game.dll [2015-04-16] (Innova Co S.a r.l.)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-18] (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-18] (Oracle Corporation)FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-19] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-19] (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-02-15] (Adobe Systems)FF Plugin HKU\S-1-5-21-3649019674-2587991720-3059668772-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Weion\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-27] (Unity Technologies ApS)FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgnFF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn [2015-04-21]Chrome: =======CHR HomePage: Default -> hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJDCHR StartupUrls: Default -> "hxxp://www.google.com", "hxxp://mysearch.avg.com?cid={07B2C86F-D4BD-4057-B044-1D139E14B9DC}&mid=6f27cff0067547d2a15a6d16b2365caa-ad1491be2ce6c122f6b66faa90e70c2decf7d34c〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-07-22 02:20:30&v=18.1.8.643&pid=safeguard&sg=&sap=hp", "https://mysearch.avg.com?cid={07B2C86F-D4BD-4057-B044-1D139E14B9DC}&mid=6f27cff0067547d2a15a6d16b2365caa-ad1491be2ce6c122f6b66faa90e70c2decf7d34c〈=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-07-22 02:20:30&v=18.1.9.799&pid=safeguard&sg=&sap=hp"CHR Profile: C:\Users\Weion\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Google Slides) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-19]CHR Extension: (Magic Actions for YouTube™) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-02-22]CHR Extension: (BetterTTV) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-02-19]CHR Extension: (Google Docs) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-19]CHR Extension: (Google Drive) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-19]CHR Extension: (YouTube) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-19]CHR Extension: (Google Search) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-19]CHR Extension: (Hola Better Internet Engine) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng [2015-02-21]CHR Extension: (Google Sheets) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-19]CHR Extension: (AdBlock) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-19]CHR Extension: (Hola Better Internet) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-02-21]CHR Extension: (ReChat for Twitch™) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipplilmaapjjklilmmaccfemdmhkoacd [2015-02-19]CHR Extension: (Reddit Enhancement Suite) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-04-03]CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]CHR Extension: (Norton Security Toolbar) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2015-02-19]CHR Extension: (Google Wallet) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-19]CHR Extension: (Enhanced Steam) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2015-02-19]CHR Extension: (Click&Clean App) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-02-22]CHR Extension: (Gmail) - C:\Users\Weion\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-19]CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crxCHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-24]CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\Exts\Chrome.crx [2015-03-24]==================== Services (Whitelisted) =================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 4game-service; G:\Games\Apps\4Game\3.4.22.118\4game-service.exe [1361544 2015-04-16] (Innova Co S.a r.l.)R2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] ()S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [814464 2015-02-23] ()S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-04-12] (Microsoft Corporation)S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-20] (Echobit LLC)S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152328 2015-03-08] (NVIDIA Corporation)R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\N360.exe [265000 2015-03-07] (Symantec Corporation)R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878856 2015-03-08] (NVIDIA Corporation)R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22916936 2015-03-08] (NVIDIA Corporation)S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1930608 2015-03-25] (Electronic Arts)R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-04-10] ()R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4409400 2015-03-17] (SoftEther VPN Project at University of Tsukuba, Japan.)S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]R2 vmms; C:\Windows\system32\vmms.exe [13784064 2015-03-14] (Microsoft Corporation)S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)==================== Drivers (Whitelisted) ====================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices)S3 AudRtr2; C:\Windows\system32\drivers\artr264.sys [34304 2013-05-31] (Creative Technology Ltd.) [File not signed]R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20150408.001\BHDrvx64.sys [1639128 2015-04-08] (Symantec Corporation)R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1507000.00B\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)S3 CEDRIVER60; C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys [64064 2014-06-20] ()R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)R3 EvolveVirtualAdapter; C:\Windows\system32\DRIVERS\evolve.sys [21656 2015-04-09] (Echobit, LLC)S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-04-13] ()R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68960 2015-02-18] (Microsoft Corporation)R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20150420.001\IDSvia64.sys [671448 2015-03-27] (Symantec Corporation)S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2015-02-19] (Microsoft Corporation)R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [107736 2015-03-17] (Malwarebytes Corporation)R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-21] (Malwarebytes Corporation)R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20150420.023\ENG64.SYS [129752 2015-04-15] (Symantec Corporation)R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20150420.023\EX64.SYS [2137304 2015-04-15] (Symantec Corporation)S3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28640 2015-03-19] (SoftEther VPN Project at University of Tsukuba, Japan.)R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-03-08] (NVIDIA Corporation)R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-04-09] (NVIDIA Corporation)R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2015-02-19] (Microsoft Corporation)S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2013-09-07] (Microsoft Corporation)R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)R2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [11376 2003-09-09] () [File not signed]R1 SeLow; C:\Windows\system32\DRIVERS\SeLow_x64.sys [38368 2015-03-17] (SoftEther VPN Project at University of Tsukuba, Japan.)R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)S3 SnakeEyes; C:\Windows\system32\drivers\SnakeEyes.sys [25600 2012-09-05] ( ) [File not signed]R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1507000.00B\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1507000.00B\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)R0 SymDS; C:\Windows\System32\drivers\N360x64\1507000.00B\SYMDS64.SYS [493656 2014-08-26] (Symantec Corporation)R0 SymEFA; C:\Windows\System32\drivers\N360x64\1507000.00B\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)S0 SymELAM; C:\Windows\System32\drivers\N360x64\1507000.00B\SymELAM.sys [23568 2014-08-26] (Symantec Corporation)R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-02-18] (Symantec Corporation)R1 SymIRON; C:\Windows\system32\drivers\N360x64\1507000.00B\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1507000.00B\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)S3 tusbaudio; C:\Windows\System32\drivers\tusbaudio_x64.sys [217952 2011-02-23] ()S3 tusbaudioks; C:\Windows\system32\DRIVERS\tusbaudioks_x64.sys [51552 2011-02-23] ()R3 USBADVAU; C:\Windows\system32\drivers\cm11264.sys [1308160 2010-04-23] (C-Media Electronics Inc)S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2014-01-27] (Microsoft Corporation)R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [688640 2014-10-08] (Microsoft Corporation)S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [688640 2014-10-08] (Microsoft Corporation)S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [688640 2014-10-08] (Microsoft Corporation)S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [688640 2014-10-08] (Microsoft Corporation)S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)S3 cpuz138; \??\C:\Users\Weion\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]==================== NetSvcs (Whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)==================== One Month Created Files and Folders ========(If an entry is included in the fixlist, the file\folder will be moved.)2015-04-21 14:46 - 2015-04-21 14:46 - 00030021 _____ () C:\Users\Weion\Downloads\FRST.txt2015-04-21 14:45 - 2015-04-21 14:46 - 00000000 ____D () C:\FRST2015-04-21 14:45 - 2015-04-21 14:45 - 02099712 _____ (Farbar) C:\Users\Weion\Downloads\frst64.exe2015-04-21 12:10 - 2015-04-21 12:10 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bink and Smacker2015-04-21 12:10 - 2015-04-21 12:10 - 00000000 ____D () C:\Program Files (x86)\RADVideo2015-04-21 12:09 - 2015-04-21 12:10 - 01298517 _____ () C:\Users\Weion\Downloads\RADTools.exe2015-04-21 01:35 - 2015-04-21 01:35 - 79156956 _____ () C:\Users\Weion\Downloads\Express Installation.zip2015-04-20 22:55 - 2015-04-21 14:26 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Curse Client2015-04-20 22:55 - 2015-04-20 22:55 - 00001083 _____ () C:\Users\Weion\Desktop\Curse.lnk2015-04-20 22:55 - 2015-04-20 22:55 - 00001069 _____ () C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk2015-04-20 22:53 - 2015-04-20 22:53 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Curse2015-04-20 22:52 - 2015-04-20 22:52 - 40517160 _____ (Curse) C:\Users\Weion\Downloads\CurseClientSetup.exe2015-04-20 13:35 - 2015-04-20 13:35 - 00022177 _____ () C:\Users\Weion\Downloads\swru.zip2015-04-20 03:42 - 2015-04-20 03:42 - 00001101 _____ () C:\Users\Weion\Desktop\Cheat Engine.lnk2015-04-20 03:42 - 2015-04-20 03:42 - 00000000 ____D () C:\Users\Weion\Documents\My Cheat Tables2015-04-20 03:42 - 2015-04-20 03:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.42015-04-20 03:42 - 2015-04-20 03:42 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.42015-04-20 03:41 - 2015-04-20 03:41 - 09056784 _____ (Cheat Engine ) C:\Users\Weion\Downloads\CheatEngine64.exe2015-04-20 03:14 - 2015-04-20 03:14 - 00066881 _____ () C:\Users\Weion\Downloads\ElDorito-0481c1314813e45e937fd9fd7272392e858cde0e.zip2015-04-20 03:14 - 2015-04-20 03:14 - 00000000 ____D () C:\Users\Weion\Downloads\ElDorito-0481c1314813e45e937fd9fd7272392e858cde0e2015-04-20 02:38 - 2015-04-20 02:38 - 00000218 _____ () C:\Users\Weion\AppData\Local\recently-used.xbel2015-04-20 02:37 - 2015-04-20 02:37 - 00000000 ____D () C:\Users\Weion\AppData\Local\spacegame2015-04-20 01:21 - 2015-04-20 01:21 - 05364085 _____ () C:\Users\Weion\Downloads\memtest86-usb.tar.gz2015-04-20 01:21 - 2015-04-20 01:21 - 00000000 ____D () C:\Users\Weion\Downloads\memtest86-usb2015-04-19 17:49 - 2015-04-19 17:50 - 00000000 ____D () C:\Users\Weion\Downloads\Halo 3 Mainmenu Editor2015-04-19 17:49 - 2015-04-19 17:49 - 01347396 _____ () C:\Users\Weion\Downloads\Halo 3 Mainmenu Editor.rar2015-04-18 02:13 - 2015-04-18 02:13 - 00000000 ____D () C:\ProgramData\Microsoft Visual Studio2015-04-18 02:12 - 2015-04-18 20:51 - 00000000 ____D () C:\Users\Weion\Desktop\Halo2015-04-18 01:33 - 2015-04-18 01:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git2015-04-18 01:33 - 2015-04-18 01:33 - 00000000 ____D () C:\Program Files (x86)\Git2015-04-18 01:32 - 2015-04-18 01:32 - 00002120 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Web Platform Installer.lnk2015-04-18 01:31 - 2015-04-18 01:31 - 00116384 _____ (Microsoft Corporation) C:\Users\Weion\Desktop\msysgitVS.exe2015-04-18 01:29 - 2015-04-18 01:29 - 00000000 ____D () C:\Users\Weion\Source2015-04-18 00:43 - 2015-04-18 00:48 - 00000000 ____D () C:\Users\Weion\Downloads\OracleNetClient_1_22015-04-18 00:43 - 2015-04-18 00:43 - 00158459 _____ () C:\Users\Weion\Downloads\OracleNetClient_1_2.zip2015-04-18 00:43 - 2015-04-18 00:10 - 00377344 _____ () C:\Users\Weion\Desktop\OracleNetClient.exe2015-04-18 00:43 - 2015-04-15 19:18 - 00220160 _____ (Jeff Winn) C:\Users\Weion\Desktop\DotRas.dll2015-04-17 01:02 - 2015-04-17 01:02 - 00000000 ____D () C:\Users\Public\Documents\sun2015-04-17 01:00 - 2015-04-17 01:00 - 00001516 _____ () C:\Users\Public\Desktop\LibreOffice 4.4.lnk2015-04-17 01:00 - 2015-04-17 01:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.42015-04-17 01:00 - 2015-04-17 01:00 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 42015-04-17 00:43 - 2015-04-17 00:45 - 224325632 _____ () C:\Users\Weion\Downloads\LibreOffice_4.4.2_Win_x86.msi2015-04-16 17:58 - 2015-04-16 17:58 - 00286264 _____ () C:\Users\Weion\Downloads\pmilei (1).zip2015-04-16 01:21 - 2015-04-16 01:24 - 00985912 _____ () C:\Users\Weion\Downloads\3d_pinball_for_windows_-_space_cadet.exe2015-04-15 15:17 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys2015-04-15 15:17 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys2015-04-15 15:17 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll2015-04-15 15:17 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll2015-04-15 15:16 - 2015-03-23 22:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2015-04-15 15:16 - 2015-03-23 22:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll2015-04-15 15:16 - 2015-03-23 22:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll2015-04-15 15:16 - 2015-03-23 22:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll2015-04-15 15:16 - 2015-03-23 22:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll2015-04-15 15:16 - 2015-03-20 05:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll2015-04-15 15:16 - 2015-03-20 05:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2015-04-15 15:16 - 2015-03-20 05:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2015-04-15 15:16 - 2015-03-20 04:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe2015-04-15 15:16 - 2015-03-20 03:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe2015-04-15 15:16 - 2015-03-20 03:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll2015-04-15 15:16 - 2015-03-20 03:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll2015-04-15 15:16 - 2015-03-13 05:32 - 24980480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2015-04-15 15:16 - 2015-03-13 05:08 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2015-04-15 15:16 - 2015-03-13 05:07 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2015-04-15 15:16 - 2015-03-13 04:53 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll2015-04-15 15:16 - 2015-03-13 04:50 - 06025216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2015-04-15 15:16 - 2015-03-13 04:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2015-04-15 15:16 - 2015-03-13 04:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2015-04-15 15:16 - 2015-03-13 04:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2015-04-15 15:16 - 2015-03-13 04:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2015-04-15 15:16 - 2015-03-13 04:17 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll2015-04-15 15:16 - 2015-03-13 04:16 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll2015-04-15 15:16 - 2015-03-13 04:08 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2015-04-15 15:16 - 2015-03-13 04:07 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2015-04-15 15:16 - 2015-03-13 04:00 - 14397440 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2015-04-15 15:16 - 2015-03-13 03:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll2015-04-15 15:16 - 2015-03-13 03:50 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll2015-04-15 15:16 - 2015-03-13 03:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2015-04-15 15:16 - 2015-03-13 03:45 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2015-04-15 15:16 - 2015-03-13 03:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2015-04-15 15:16 - 2015-03-13 03:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll2015-04-15 15:16 - 2015-03-13 03:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2015-04-15 15:16 - 2015-03-13 03:33 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2015-04-15 15:16 - 2015-03-13 03:22 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2015-04-15 15:16 - 2015-03-13 03:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2015-04-15 15:16 - 2015-03-13 03:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2015-04-15 15:16 - 2015-03-13 03:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2015-04-15 15:15 - 2015-03-14 01:18 - 13784064 _____ (Microsoft Corporation) C:\Windows\system32\vmms.exe2015-04-15 15:15 - 2015-03-04 11:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys2015-04-15 15:15 - 2015-03-04 04:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll2015-04-15 15:15 - 2015-03-04 03:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll2015-04-15 15:15 - 2015-02-24 09:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys2015-04-14 16:43 - 2015-04-14 16:43 - 04816094 _____ () C:\Users\Weion\Desktop\MSInfo.nfo2015-04-14 16:36 - 2015-04-21 14:35 - 00062502 _____ () C:\Users\Weion\Desktop\DxDiag.txt2015-04-14 04:10 - 2015-04-20 15:30 - 00000080 _____ () C:\Users\Weion\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦2015-04-14 04:10 - 2015-04-20 15:30 - 00000000 ____D () C:\Program Files\Rockstar Games2015-04-14 04:10 - 2015-04-20 15:30 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games2015-04-14 04:10 - 2015-04-14 04:10 - 00000000 ____D () C:\Users\Weion\Documents\Rockstar Games2015-04-13 22:59 - 2015-03-14 09:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe2015-04-13 22:59 - 2015-03-14 02:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll2015-04-13 22:59 - 2015-03-14 01:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll2015-04-13 22:59 - 2015-03-14 01:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll2015-04-13 22:59 - 2015-03-14 01:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll2015-04-13 22:59 - 2015-03-14 00:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll2015-04-13 22:58 - 2015-03-14 02:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll2015-04-13 22:58 - 2015-03-14 02:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll2015-04-13 22:58 - 2015-03-14 02:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll2015-04-13 22:58 - 2015-03-14 02:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll2015-04-13 22:58 - 2015-03-14 01:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll2015-04-13 22:58 - 2015-03-14 01:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe2015-04-13 22:58 - 2015-03-14 01:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll2015-04-13 22:58 - 2015-03-14 01:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll2015-04-13 22:58 - 2015-03-14 01:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll2015-04-13 22:58 - 2015-03-14 01:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll2015-04-13 22:58 - 2015-03-14 01:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe2015-04-13 22:58 - 2015-03-14 00:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll2015-04-13 18:41 - 2015-04-13 18:41 - 00059655 _____ () C:\Users\Weion\Downloads\ElDorito-6e767ae42ed27346d1cdcbb5aa346f569b098f4a.zip2015-04-13 18:41 - 2015-04-13 18:41 - 00000000 ____D () C:\Users\Weion\Downloads\ElDorito-6e767ae42ed27346d1cdcbb5aa346f569b098f4a2015-04-13 17:57 - 2015-04-13 17:57 - 00000000 ____D () C:\Users\Weion\Downloads\mpxtip2015-04-13 17:56 - 2015-04-13 17:57 - 10175877 _____ () C:\Users\Weion\Downloads\mpxtip.zip2015-04-13 15:16 - 2015-04-13 15:16 - 00002153 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk2015-04-13 15:15 - 2015-04-08 21:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe2015-04-13 15:13 - 2015-04-09 01:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll2015-04-13 15:13 - 2015-04-09 01:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll2015-04-13 15:13 - 2015-04-09 01:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll2015-04-13 15:13 - 2015-04-09 01:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll2015-04-13 15:13 - 2015-04-09 01:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll2015-04-13 15:13 - 2015-04-09 01:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll2015-04-13 15:13 - 2015-04-09 01:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll2015-04-13 15:13 - 2015-04-09 01:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll2015-04-13 15:13 - 2015-04-09 01:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys2015-04-13 15:13 - 2015-04-09 01:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll2015-04-13 15:13 - 2015-04-09 01:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll2015-04-13 15:13 - 2015-04-09 01:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll2015-04-13 15:13 - 2015-04-09 01:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll2015-04-13 15:13 - 2015-04-09 01:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll2015-04-13 15:13 - 2015-04-09 01:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll2015-04-13 15:13 - 2015-04-09 01:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00849552 _____ () C:\Windows\system32\nvmcumd.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00100680 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll2015-04-13 15:13 - 2015-04-09 01:58 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys2015-04-13 04:35 - 2015-04-13 04:35 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\NuGet2015-04-13 04:08 - 2015-04-13 04:08 - 11299041 _____ () C:\Users\Weion\Downloads\Converter.zip2015-04-12 04:11 - 2015-04-12 04:11 - 00028835 _____ () C:\Users\Weion\Downloads\HaloOnlineTagTool-1.0.5574.42217.zip2015-04-12 03:52 - 2015-04-15 15:06 - 00000000 ____D () C:\Users\Weion\Documents\Visual Studio 20132015-04-12 03:52 - 2015-04-12 03:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone SDK 8.02015-04-12 03:52 - 2015-04-12 03:52 - 00000000 ____D () C:\Program Files (x86)\Windows Phone Kits2015-04-12 03:52 - 2015-04-12 03:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft XDE2015-04-12 03:50 - 2015-04-12 03:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK2015-04-12 03:49 - 2015-04-12 03:49 - 00000000 ____D () C:\Program Files\Microsoft Identity Extensions2015-04-12 03:49 - 2015-04-12 03:49 - 00000000 ____D () C:\Program Files (x86)\Workflow Manager Tools2015-04-12 03:49 - 2015-04-12 03:49 - 00000000 ____D () C:\Program Files (x86)\Open XML SDK2015-04-12 03:48 - 2015-04-12 03:48 - 00000000 ____D () C:\Program Files\Windows Identity Foundation2015-04-12 03:47 - 2015-04-12 03:47 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition2015-04-12 03:47 - 2015-04-12 03:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition2015-04-12 03:46 - 2015-04-12 03:46 - 00000000 ____D () C:\ProgramData\Windows App Certification Kit2015-04-12 03:46 - 2015-04-12 03:46 - 00000000 ____D () C:\Program Files\Application Verifier2015-04-12 03:46 - 2015-04-12 03:46 - 00000000 ____D () C:\Program Files (x86)\Application Verifier2015-04-12 03:45 - 2015-04-12 03:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits2015-04-12 03:44 - 2015-04-12 03:44 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions2015-04-12 03:42 - 2015-04-12 03:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Tools2015-04-12 03:41 - 2015-04-12 03:41 - 00000000 ____D () C:\ProgramData\NuGet2015-04-12 03:41 - 2015-04-12 03:41 - 00000000 ____D () C:\Program Files\IIS Express2015-04-12 03:41 - 2015-04-12 03:41 - 00000000 ____D () C:\Program Files (x86)\NuGet2015-04-12 03:41 - 2015-04-12 03:41 - 00000000 ____D () C:\Program Files (x86)\IIS Express2015-04-12 03:40 - 2015-04-12 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression2015-04-12 03:40 - 2015-04-12 03:40 - 00000000 ____D () C:\Program Files\IIS2015-04-12 03:40 - 2015-04-12 03:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft WCF Data Services2015-04-12 03:40 - 2015-04-12 03:40 - 00000000 ____D () C:\Program Files (x86)\IIS2015-04-12 03:39 - 2015-04-12 03:45 - 00000000 ____D () C:\Program Files (x86)\Windows Kits2015-04-12 03:35 - 2015-04-12 03:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Help Viewer2015-04-12 03:35 - 2015-04-12 03:35 - 00000000 ____D () C:\Program Files (x86)\HTML Help Workshop2015-04-12 03:34 - 2015-04-12 03:47 - 00000000 ____D () C:\Program Files\Microsoft SQL Server2015-04-12 03:34 - 2015-04-12 03:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server2015-04-12 03:34 - 2015-04-12 03:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 20132015-04-12 03:34 - 2015-04-12 03:37 - 00000000 ____D () C:\Windows\SysWOW64\10332015-04-12 03:31 - 2015-04-12 03:31 - 00000000 ____D () C:\Windows\symbols2015-04-12 03:31 - 2015-04-12 03:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 20122015-04-12 03:31 - 2015-04-12 03:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 11.02015-04-12 03:30 - 2015-04-12 03:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 12.02015-04-12 03:30 - 2015-04-12 03:35 - 00000000 ____D () C:\Windows\system32\10332015-04-12 03:30 - 2015-04-12 03:30 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf2015-04-12 03:29 - 2015-04-12 03:52 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs2015-04-12 03:29 - 2015-04-12 03:29 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 12.02015-04-11 18:37 - 2015-04-11 18:37 - 00286264 _____ () C:\Users\Weion\Downloads\pmilei.zip2015-04-11 18:37 - 2015-04-11 18:37 - 00286264 _____ () C:\Users\Weion\Downloads\DewritoUpdater-0.4.zip2015-04-10 13:52 - 2015-04-10 13:52 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Unity2015-04-10 13:51 - 2015-04-10 13:51 - 00000000 ____D () C:\Users\Weion\AppData\Local\Unity2015-04-10 13:45 - 2015-04-10 13:49 - 00000000 ____D () C:\Users\Weion\AppData\Local\Ubisoft Game Launcher2015-04-10 13:45 - 2015-04-10 13:45 - 00001221 _____ () C:\Users\Weion\Desktop\Uplay.lnk2015-04-10 13:45 - 2015-04-10 13:45 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft2015-04-10 13:45 - 2015-04-10 13:45 - 00000000 ____D () C:\Program Files (x86)\Ubisoft2015-04-10 13:44 - 2015-04-10 13:44 - 46299456 _____ (Ubisoft) C:\Users\Weion\Downloads\UplayInstaller.exe2015-04-10 00:47 - 2015-04-10 00:47 - 03932298 _____ () C:\Users\Weion\Downloads\nncpfo.bmp2015-04-09 23:02 - 2015-04-09 23:02 - 05755302 _____ () C:\Users\Weion\Downloads\Linus-the-tech-tips-man.webm2015-04-09 18:46 - 2015-04-12 23:19 - 00002039 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk2015-04-09 18:46 - 2015-04-12 23:19 - 00002027 _____ () C:\Users\Public\Desktop\Evolve.lnk2015-04-09 18:46 - 2015-04-09 18:45 - 00021656 _____ (Echobit, LLC) C:\Windows\system32\Drivers\evolve.sys2015-04-09 18:45 - 2015-04-09 18:45 - 00000000 ____D () C:\Program Files\Echobit2015-04-09 18:44 - 2015-04-09 18:44 - 00000000 ____D () C:\ProgramData\Echobit2015-04-09 15:25 - 2015-04-09 15:25 - 00000000 ____D () C:\Users\Weion\AppData\Local\Echobit2015-04-08 12:48 - 2015-04-08 12:48 - 00001190 _____ () C:\Users\Weion\Downloads\autoexec.cfg2015-04-08 12:37 - 2015-04-08 12:37 - 00885754 _____ () C:\Users\Weion\Downloads\DarkToolKit-1.0.0.5.zip2015-04-07 22:53 - 2015-04-07 22:53 - 00000000 ____D () C:\Windows\system32\appraiser2015-04-07 22:51 - 2015-03-22 23:45 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll2015-04-07 22:51 - 2015-03-22 23:09 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll2015-04-07 22:51 - 2015-03-22 23:09 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll2015-04-07 22:51 - 2015-03-22 23:09 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll2015-04-07 22:51 - 2015-03-22 23:09 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll2015-04-07 22:51 - 2015-03-22 23:09 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll2015-04-07 22:51 - 2015-03-22 23:09 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll2015-04-07 22:51 - 2015-02-21 00:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll2015-04-07 22:51 - 2014-12-03 00:09 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll2015-04-06 17:40 - 2015-04-06 17:40 - 00000000 ____D () C:\Users\Weion\AppData\Local\DarkToolKit2015-04-06 17:39 - 2015-04-06 17:39 - 00847555 _____ () C:\Users\Weion\Downloads\DarkToolKit-1.0.0.3.zip2015-04-06 13:46 - 2015-04-06 13:46 - 00198348 _____ () C:\Users\Weion\Downloads\atytxs.zip2015-04-05 13:33 - 2015-04-05 13:33 - 00000000 ____D () C:\Users\Weion\AppData\Local\4kdownload.com2015-04-05 13:32 - 2015-04-05 13:32 - 00000000 ____D () C:\Users\Weion\Downloads\4kvideodownloader_3.52015-04-05 13:31 - 2015-04-05 13:32 - 33925878 _____ () C:\Users\Weion\Downloads\4kvideodownloader_3.5.zip2015-04-03 20:14 - 2015-04-03 20:14 - 05046524 _____ () C:\Users\Weion\Downloads\beavercreek.zip2015-04-03 11:24 - 2015-04-03 11:24 - 00387584 _____ () C:\Users\Weion\Downloads\Halo.Online.Trainer (1).exe2015-04-03 08:50 - 2015-04-03 08:50 - 30190129 _____ () C:\Users\Weion\Downloads\dorito0.3.0.rar2015-04-02 18:24 - 2015-04-02 18:24 - 08403643 _____ () C:\Users\Weion\Downloads\ijpiex (2).zip2015-04-02 14:44 - 2015-04-02 14:45 - 00000000 ____D () C:\Users\Public\Documents\stalker-shoc2015-04-02 14:17 - 2015-04-02 14:17 - 08403643 _____ () C:\Users\Weion\Downloads\ijpiex (1).zip2015-04-02 14:15 - 2015-04-02 14:15 - 00377344 _____ () C:\Users\Weion\Downloads\Halo.Online.Trainer.exe2015-04-02 12:44 - 2015-04-02 12:44 - 00000000 ____D () C:\Python342015-04-02 12:44 - 2015-04-02 12:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.42015-04-02 12:44 - 2015-04-02 12:44 - 00000000 ____D () C:\Perl642015-04-02 12:43 - 2015-04-10 01:40 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\HexChat2015-04-02 12:43 - 2015-04-02 12:47 - 00000000 ____D () C:\Users\Weion\AppData\Local\enchant2015-04-02 12:43 - 2015-04-02 12:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HexChat2015-04-02 12:43 - 2015-04-02 12:43 - 00000000 ____D () C:\Program Files\HexChat2015-04-02 12:42 - 2015-04-02 12:42 - 07660352 _____ (HexChat ) C:\Users\Weion\Downloads\HexChat 2.10.2 x64.exe2015-04-02 12:39 - 2015-04-02 12:42 - 00000000 ____D () C:\Users\Weion\.chatty2015-04-02 12:39 - 2015-04-02 12:39 - 01255951 _____ () C:\Users\Weion\Downloads\Chatty_0.7.3.zip2015-04-02 12:39 - 2015-04-02 12:39 - 00000000 ____D () C:\Users\Weion\Downloads\Chatty_0.7.32015-04-02 08:38 - 2015-04-02 08:39 - 00000000 ___SD () C:\Windows\system32\GWX2015-04-02 08:38 - 2015-04-02 08:38 - 00000000 ___SD () C:\Windows\SysWOW64\GWX2015-04-02 08:31 - 2015-03-14 09:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll2015-04-02 08:31 - 2015-03-14 09:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll2015-04-02 08:26 - 2015-04-02 08:26 - 08403643 _____ () C:\Users\Weion\Downloads\ijpiex.zip2015-04-01 19:29 - 2015-04-14 04:10 - 00000000 ____D () C:\Users\Weion\AppData\Local\Rockstar Games2015-04-01 19:29 - 2015-04-01 19:29 - 00642712 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\gfwlivesetup (1).exe2015-04-01 19:29 - 2015-04-01 19:29 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll2015-04-01 19:29 - 2015-04-01 19:29 - 00000000 __RHD () C:\Users\Weion\AppData\Roaming\SecuROM2015-04-01 19:29 - 2015-04-01 19:29 - 00000000 ____D () C:\Windows\SysWOW64\xlive2015-04-01 19:29 - 2015-04-01 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE2015-04-01 19:29 - 2015-04-01 19:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE2015-04-01 19:28 - 2015-04-01 19:28 - 00642712 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\gfwlivesetup.exe2015-04-01 12:26 - 2015-04-01 12:26 - 00194289 _____ () C:\Users\Weion\Downloads\iphlpapi.zip2015-04-01 00:11 - 2015-04-01 00:11 - 00000000 ____D () C:\Users\Weion\AppData\Local\openvr2015-03-31 23:50 - 2015-03-31 23:50 - 00000000 ____D () C:\Users\Weion\Downloads\SuperMario64HD2015-03-31 23:47 - 2015-03-31 23:47 - 25074605 _____ () C:\Users\Weion\Downloads\SuperMario64HD.rar2015-03-31 19:38 - 2015-03-31 19:38 - 00000000 ____D () C:\ProgramData\boost_interprocess2015-03-31 19:37 - 2015-03-31 19:37 - 01085934 _____ () C:\Users\Weion\Downloads\WebM_v0.5b18_win (1).zip2015-03-31 11:10 - 2015-03-31 11:10 - 00060987 _____ () C:\Users\Weion\Downloads\ht_0.0.8.rar2015-03-31 11:07 - 2015-03-31 11:07 - 00059920 _____ () C:\Users\Weion\Downloads\ht_0.0.7.rar2015-03-30 11:32 - 2015-03-30 11:32 - 00056687 _____ () C:\Users\Weion\Downloads\ht_0.0.1.zip2015-03-30 02:51 - 2015-03-30 02:51 - 00097592 _____ () C:\Users\Weion\Downloads\ElDorito.zip2015-03-30 02:28 - 2015-03-30 02:28 - 00097592 _____ () C:\Users\Weion\Downloads\cidndk.zip2015-03-29 21:07 - 2015-03-29 21:07 - 00118287 _____ () C:\Users\Weion\Downloads\Halo Online Projectile Editor.zip2015-03-29 17:09 - 2015-03-29 17:10 - 28919655 _____ () C:\Users\Weion\Downloads\livestreamer-twitch-gui-v0.7.3-win32.zip2015-03-29 16:07 - 2015-03-29 16:08 - 23970913 _____ () C:\Users\Weion\Downloads\tags_nobarriers_god_mode.rar2015-03-29 13:15 - 2015-03-29 13:15 - 31318101 _____ () C:\Users\Weion\Downloads\tags.zip2015-03-29 13:01 - 2015-03-29 13:01 - 00095795 _____ () C:\Users\Weion\Downloads\mkwtdz.zip2015-03-28 23:50 - 2015-03-28 23:50 - 00010590 _____ () C:\Users\Weion\Downloads\ElDorito-master.zip2015-03-28 19:42 - 2015-03-28 19:42 - 00000000 ____D () C:\Users\Weion\.HelloNzb2015-03-28 19:36 - 2015-03-28 19:36 - 04188115 _____ () C:\Users\Weion\Downloads\HelloNzb.exe2015-03-28 16:28 - 2015-03-28 16:28 - 00087691 _____ () C:\Users\Weion\Downloads\EldoradoEnginev0.1.zip2015-03-28 05:57 - 2015-03-28 05:57 - 00001274 _____ () C:\Users\Public\Desktop\Hex Workshop Hex Editor (64 bit).lnk2015-03-28 05:57 - 2015-03-28 05:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hex Workshop v6.82015-03-28 05:57 - 2015-03-28 05:57 - 00000000 ____D () C:\Program Files\BreakPoint Software2015-03-28 05:56 - 2015-03-28 05:56 - 18864464 _____ (BreakPoint Software) C:\Users\Weion\Downloads\hw_v680.exe2015-03-28 05:55 - 2015-03-28 05:55 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Mael2015-03-28 05:47 - 2015-03-28 05:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor2015-03-28 05:47 - 2015-03-28 05:47 - 00000000 ____D () C:\Program Files (x86)\HxD2015-03-28 05:46 - 2015-03-28 05:46 - 00872029 _____ () C:\Users\Weion\Downloads\HxDSetupEN.zip2015-03-28 05:46 - 2015-03-28 05:46 - 00000000 ____D () C:\Users\Weion\Downloads\HxDSetupEN2015-03-28 05:44 - 2015-03-28 05:44 - 00101617 _____ () C:\Users\Weion\Downloads\HexEditor_0_9_5_ANSI_dll.zip2015-03-28 05:42 - 2015-03-28 05:42 - 00105587 _____ () C:\Users\Weion\Downloads\HexEditor_0_9_5_UNI_dll.zip2015-03-28 02:04 - 2015-03-28 02:06 - 125391750 _____ () C:\Users\Weion\Downloads\lockout.rar2015-03-28 02:03 - 2015-03-28 02:03 - 91058416 _____ () C:\Users\Weion\Downloads\riverworld_valhalla.rar2015-03-27 20:44 - 2015-03-27 20:44 - 00000000 ____D () C:\Users\Weion\AppData\Local\HaloOnline2015-03-27 20:27 - 2015-03-27 20:27 - 00000000 ____D () C:\Users\Weion\Downloads\Halo2015-03-27 20:22 - 2015-03-27 20:23 - 2254511895 _____ () C:\Users\Weion\Downloads\Halo.zip2015-03-27 02:20 - 2015-03-27 02:20 - 06148448 _____ (Innova Co S.a r.l.) C:\Users\Weion\Downloads\4game_setup-ru.exe2015-03-27 02:11 - 2015-03-27 02:11 - 00003480 _____ () C:\Users\Weion\Downloads\HaloFreeLoader-0.1.zip2015-03-27 02:05 - 2015-04-17 14:26 - 00000372 _____ () C:\Users\Public\Desktop\Halo Online.lnk2015-03-27 02:05 - 2015-03-27 02:05 - 00000382 _____ () C:\Users\Public\Desktop\4game.lnk2015-03-27 02:05 - 2015-03-27 02:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4game2015-03-27 02:04 - 2015-03-27 02:04 - 06118704 _____ (Innova Co S.a r.l.) C:\Users\Weion\Downloads\halo_setup-en.exe2015-03-26 20:41 - 2015-03-26 20:43 - 00000000 ____D () C:\Program Files (x86)\SpeedFan2015-03-26 20:41 - 2015-03-26 20:41 - 00001023 _____ () C:\Users\Weion\Desktop\SpeedFan.lnk2015-03-26 20:41 - 2015-03-26 20:41 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo2015-03-26 20:41 - 2015-03-26 20:41 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan2015-03-26 20:40 - 2015-03-26 20:41 - 02218504 _____ () C:\Users\Weion\Downloads\instspeedfan451.exe2015-03-26 16:46 - 2015-03-26 16:46 - 05422392 _____ (Igor Pavlov) C:\Users\Weion\Downloads\motherboard_utility_gbttools_gbt_atbios.exe2015-03-26 16:46 - 2014-11-25 03:56 - 00000000 ____D () C:\Users\Weion\Downloads\atBIOS2015-03-26 16:43 - 2015-03-26 16:43 - 03012034 _____ () C:\Users\Weion\Downloads\mb_bios_ga-990fxa-ud3_v.4.x_f3i.zip2015-03-26 16:43 - 2015-03-26 16:43 - 00000000 ____D () C:\Users\Weion\Downloads\mb_bios_ga-990fxa-ud3_v.4.x_f3i2015-03-26 14:35 - 2015-04-13 23:36 - 00030528 _____ () C:\Windows\GVTDrv64.sys2015-03-26 14:35 - 2015-03-26 17:24 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\etdrv.sys2015-03-26 14:34 - 2015-03-26 16:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE2015-03-26 14:34 - 2015-03-26 16:47 - 00000000 ____D () C:\Program Files (x86)\GIGABYTE2015-03-26 14:34 - 2015-03-26 14:34 - 00002723 _____ () C:\Users\Public\Desktop\ET6.lnk2015-03-26 14:33 - 2015-04-13 23:36 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys2015-03-26 14:29 - 2015-03-18 06:59 - 00000000 ____D () C:\Users\Weion\Downloads\Easytune62015-03-26 14:25 - 2015-03-26 14:27 - 45589548 _____ (Igor Pavlov) C:\Users\Weion\Downloads\motherboard_utility_gbttools_gbt_et6.exe2015-03-25 05:56 - 2015-03-25 05:56 - 01467723 _____ () C:\Users\Weion\Downloads\metro_for_steam___3_9_by_boneyardbrew-d4u3kjv.zip2015-03-25 03:38 - 2015-03-25 03:38 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 3602015-03-24 22:31 - 2015-03-24 22:32 - 00007434 _____ () C:\Users\Weion\Downloads\mouserate.zip2015-03-24 16:21 - 2015-04-21 12:06 - 00008704 _____ () C:\Users\Weion\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2015-03-24 16:21 - 2015-03-24 16:21 - 00000000 ____D () C:\Users\Weion\Documents\MPC-HC Capture2015-03-24 16:07 - 2015-03-24 16:08 - 00000000 ____D () C:\Users\Weion\Downloads\svptube-1.2.52015-03-24 16:07 - 2015-03-24 16:07 - 06963813 _____ () C:\Users\Weion\Downloads\svptube-1.2.5.zip2015-03-24 03:56 - 2015-03-24 03:56 - 00305664 _____ (Secure By Design Inc.) C:\Users\Weion\Downloads\Ninite 7Zip Air Avast Classic Start Java 8 Installer.exe2015-03-23 21:20 - 2015-03-23 21:20 - 01533584 _____ () C:\Users\Weion\Downloads\battlelog-web-plugins_2.6.2_157.exe2015-03-23 21:20 - 2015-03-23 21:20 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins2015-03-23 17:45 - 2015-03-23 17:45 - 01252550 _____ () C:\Users\Weion\Downloads\Restored_Shaders.7z2015-03-23 13:49 - 2015-03-23 13:49 - 00000000 ____D () C:\Users\Weion\Documents\Adobe2015-03-23 13:47 - 2015-03-23 13:47 - 00001134 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2014.lnk2015-03-23 13:35 - 2015-03-23 13:35 - 00001122 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2014.lnk2015-03-23 12:50 - 2015-03-23 12:50 - 01085934 _____ () C:\Users\Weion\Downloads\WebM_v0.5b18_win.zip2015-03-23 12:50 - 2015-03-23 12:50 - 00500558 _____ () C:\Users\Weion\Downloads\WebP_v0.5b7_win.zip2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\Users\Weion\AppData\Local\Logitech2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\ProgramData\LogiShrd2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\ProgramData\Apple2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\Program Files\Bonjour2015-03-23 11:00 - 2015-03-23 11:00 - 00000000 ____D () C:\Program Files (x86)\Bonjour2015-03-23 10:59 - 2015-03-23 11:00 - 00000000 ____D () C:\Program Files\Logitech Gaming Software2015-03-23 10:58 - 2015-03-23 10:58 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Logitech2015-03-23 10:58 - 2015-03-23 10:58 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Logishrd2015-03-23 03:05 - 2015-03-23 03:06 - 03180472 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\halopc-patch-1.0.10.exe2015-03-23 03:05 - 2015-03-23 03:05 - 03266488 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\haloce-patch-1.0.10.exe2015-03-23 03:05 - 2015-03-23 03:05 - 02342912 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\haloded.exe2015-03-23 03:05 - 2015-03-23 03:05 - 01835008 _____ (Microsoft Corporation) C:\Users\Weion\Downloads\haloceded.exe2015-03-23 03:03 - 2003-09-09 02:30 - 00011376 ____R () C:\Windows\SysWOW64\Drivers\SECDRV.SYS2015-03-23 02:58 - 2015-03-23 02:58 - 01821151 _____ () C:\Users\Weion\Downloads\sapp_pc (1).7z2015-03-23 02:58 - 2015-03-23 02:58 - 01626223 _____ () C:\Users\Weion\Downloads\sapp_ce (1).7z2015-03-22 19:10 - 2015-03-22 19:10 - 00097814 _____ () C:\Users\Weion\Downloads\release (2).zip2015-03-22 18:40 - 2015-03-22 18:41 - 02029047 _____ () C:\Users\Weion\Downloads\ac_halopc.zip2015-03-22 18:40 - 2015-03-22 18:41 - 01808839 _____ () C:\Users\Weion\Downloads\ac_haloce.zip2015-03-22 02:51 - 2015-03-22 02:51 - 01421203 _____ () C:\Users\Weion\Downloads\halo4.zip2015-03-22 02:51 - 2015-03-22 02:51 - 01366518 _____ () C:\Users\Weion\Downloads\halo3.zip==================== One Month Modified Files and Folders =======(If an entry is included in the fixlist, the file\folder will be moved.)2015-04-21 14:37 - 2015-02-18 16:37 - 01776042 _____ () C:\Windows\WindowsUpdate.log2015-04-21 14:31 - 2015-02-18 17:03 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2015-04-21 14:21 - 2015-02-19 04:28 - 27590656 _____ () C:\Windows\system32\vmguest.iso2015-04-21 14:18 - 2015-03-17 03:09 - 00000000 ____D () C:\Program Files\SoftEther VPN Client2015-04-21 14:18 - 2015-02-19 02:04 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2015-04-21 14:17 - 2015-02-27 11:19 - 00000000 ____D () C:\ProgramData\NVIDIA2015-04-21 14:17 - 2013-08-22 15:46 - 00045130 _____ () C:\Windows\setupact.log2015-04-21 14:17 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2015-04-21 14:15 - 2015-02-18 16:50 - 00000000 ____D () C:\Program Files (x86)\Steam2015-04-21 13:52 - 2015-03-20 02:04 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Skype2015-04-21 13:34 - 2015-02-18 16:40 - 00000000 ____D () C:\Users\Weion2015-04-21 13:18 - 2015-02-18 16:45 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3649019674-2587991720-3059668772-10012015-04-21 13:09 - 2015-02-19 02:04 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2015-04-21 13:01 - 2015-02-23 05:02 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job2015-04-21 13:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru2015-04-21 12:40 - 2015-03-21 23:58 - 00000746 _____ () C:\Users\Weion\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Livestreamer Twitch GUI.lnk2015-04-21 12:40 - 2015-03-21 23:58 - 00000000 ____D () C:\Users\Weion\AppData\Local\livestreamer-twitch-gui2015-04-21 12:17 - 2015-02-23 05:06 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\vlc2015-04-21 12:16 - 2015-02-18 17:30 - 00171520 ___SH () C:\Users\Weion\Desktop\Thumbs.db2015-04-21 11:44 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\ProcessLasso2015-04-21 11:44 - 2015-02-18 20:11 - 00000000 ____D () C:\Program Files\Process Lasso2015-04-21 11:02 - 2015-02-26 18:57 - 01142784 ___SH () C:\Users\Weion\Downloads\Thumbs.db2015-04-21 11:02 - 2015-02-18 19:28 - 00000000 ____D () C:\Users\Weion\AppData\Local\CrashDumps2015-04-21 10:46 - 2015-02-18 16:36 - 00914790 _____ () C:\Windows\system32\PerfStringBackup.INI2015-04-21 10:39 - 2015-02-18 16:29 - 00136208 _____ () C:\Windows\PFRO.log2015-04-21 10:39 - 2013-08-22 15:44 - 05049608 _____ () C:\Windows\system32\FNTCACHE.DAT2015-04-21 02:00 - 2015-02-18 16:49 - 00000000 ____D () C:\Users\Weion\AppData\Local\Adobe2015-04-21 00:01 - 2015-02-19 03:48 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\deluge2015-04-20 13:29 - 2015-03-05 16:41 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\GameCompanion2015-04-20 13:16 - 2015-03-10 15:50 - 00000000 ____D () C:\Users\Weion\Documents\Screenshots2015-04-19 15:41 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache2015-04-19 00:24 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness2015-04-18 00:48 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\tracing2015-04-17 20:13 - 2015-02-19 02:04 - 00002203 _____ () C:\Users\Public\Desktop\Google Chrome.lnk2015-04-16 19:50 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp2015-04-16 19:40 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI2015-04-15 15:23 - 2015-02-18 19:51 - 00000000 ____D () C:\Windows\system32\MRT2015-04-15 15:18 - 2015-02-18 19:51 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2015-04-15 15:09 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM2015-04-14 18:01 - 2015-02-23 05:02 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater2015-04-14 17:29 - 2015-02-18 22:28 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\DS4Windows2015-04-14 00:24 - 2015-02-18 20:32 - 00792056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2015-04-14 00:24 - 2015-02-18 20:32 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2015-04-13 23:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared2015-04-13 18:36 - 2015-02-18 18:57 - 00236821 _____ () C:\Windows\DirectX.log2015-04-13 16:42 - 2015-03-03 22:37 - 00000436 __RSH () C:\Users\Weion\ntuser.pol2015-04-13 15:17 - 2015-02-18 16:44 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation2015-04-13 15:16 - 2015-02-18 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation2015-04-13 15:16 - 2015-02-18 16:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation2015-04-12 03:52 - 2015-03-02 15:23 - 00000000 ____D () C:\Program Files (x86)\MSBuild2015-04-12 03:44 - 2015-03-02 15:23 - 00000000 ____D () C:\Program Files\MSBuild2015-04-12 03:43 - 2015-02-18 19:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft ASP.NET2015-04-12 03:29 - 2015-02-18 18:58 - 00000000 ____D () C:\ProgramData\Package Cache2015-04-11 12:46 - 2015-02-18 21:24 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\foobar20002015-04-11 00:52 - 2015-02-18 23:59 - 00000000 ____D () C:\Users\Weion\Documents\My Games2015-04-10 14:03 - 2015-03-03 05:42 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr2015-04-10 14:03 - 2015-02-18 18:58 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe2015-04-10 13:54 - 2015-02-18 21:09 - 00000000 ____D () C:\Users\Weion\AppData\Local\PunkBuster2015-04-10 13:54 - 2015-02-18 18:58 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex02015-04-10 13:53 - 2015-02-18 18:58 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe2015-04-09 22:39 - 2015-02-23 03:49 - 00001456 _____ () C:\Users\Weion\AppData\Local\Adobe Save for Web 13.0 Prefs2015-04-09 01:58 - 2015-02-27 11:19 - 00078480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll2015-04-09 01:58 - 2015-02-27 11:19 - 00066704 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll2015-04-09 01:58 - 2015-02-20 02:18 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll2015-04-09 01:58 - 2015-02-20 02:18 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll2015-04-09 01:58 - 2015-02-20 02:18 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll2015-04-09 01:58 - 2015-02-20 02:18 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll2015-04-09 01:58 - 2015-02-20 02:18 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll2015-04-09 01:58 - 2015-02-20 02:18 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll2015-04-09 01:58 - 2015-02-20 02:18 - 00029329 _____ () C:\Windows\system32\nvinfo.pb2015-04-09 01:58 - 2015-02-18 19:18 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll2015-04-08 22:30 - 2015-02-27 11:19 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll2015-04-08 22:30 - 2015-02-27 11:19 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll2015-04-08 22:30 - 2015-02-27 11:19 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll2015-04-08 22:30 - 2015-02-27 11:19 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe2015-04-08 22:30 - 2015-02-27 11:19 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll2015-04-08 22:30 - 2015-02-27 11:19 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll2015-04-08 18:52 - 2015-02-27 11:19 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin2015-04-08 07:49 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppCompat2015-04-07 22:53 - 2015-02-19 02:22 - 00000000 ___SD () C:\Windows\system32\CompatTel2015-04-05 16:55 - 2015-03-13 15:07 - 00000000 ____D () C:\Users\Weion\AppData\Local\The Witcher2015-04-02 10:06 - 2015-03-20 01:47 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\TS3Client2015-04-02 08:38 - 2015-02-18 22:38 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM2015-04-01 17:22 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\FxsTmp2015-03-31 19:34 - 2015-02-18 16:40 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\Adobe2015-03-28 19:17 - 2015-02-18 19:12 - 00000000 ____D () C:\Users\Weion\AppData\Roaming\OBS2015-03-28 19:06 - 2015-02-18 19:12 - 00000000 ____D () C:\Program Files (x86)\OBS2015-03-26 16:47 - 2015-02-18 17:21 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2015-03-25 20:09 - 2015-02-18 21:45 - 00000000 ____D () C:\Program Files\CCleaner2015-03-25 03:32 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP2015-03-25 02:57 - 2015-02-18 18:40 - 00000000 ____D () C:\ProgramData\Origin2015-03-25 02:57 - 2015-02-18 18:40 - 00000000 ____D () C:\Program Files (x86)\Origin2015-03-25 02:55 - 2015-02-18 17:33 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration2015-03-25 02:55 - 2015-02-18 17:33 - 00002339 _____ () C:\Users\Public\Desktop\Norton 360.lnk2015-03-25 02:55 - 2015-02-18 17:33 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 3602015-03-25 02:55 - 2015-02-18 17:33 - 00000000 ____D () C:\Windows\system32\Drivers\N360x642015-03-24 16:24 - 2015-03-21 23:02 - 00000000 ____D () C:\Program Files (x86)\SVP2015-03-23 21:04 - 2015-02-18 16:54 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2015-03-23 21:04 - 2015-02-18 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2015-03-23 21:04 - 2015-02-18 16:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2015-03-23 13:47 - 2015-02-22 20:02 - 00000000 ____D () C:\Program Files\Adobe2015-03-23 13:47 - 2015-02-22 20:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe2015-03-23 10:52 - 2015-02-18 22:42 - 00008432 _____ () C:\Windows\DPINST.LOG2015-03-23 03:03 - 2015-03-03 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games==================== Files in the root of some directories =======2015-02-23 03:49 - 2015-04-09 22:39 - 0001456 _____ () C:\Users\Weion\AppData\Local\Adobe Save for Web 13.0 Prefs2015-03-24 16:21 - 2015-04-21 12:06 - 0008704 _____ () C:\Users\Weion\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2015-04-20 02:38 - 2015-04-20 02:38 - 0000218 _____ () C:\Users\Weion\AppData\Local\recently-used.xbel2015-02-18 22:38 - 2015-02-18 22:38 - 0000000 ____H () C:\ProgramData\DP45977C.lflSome content of TEMP:====================C:\Users\Weion\AppData\Local\Temp\speccycpuid.dll==================== Bamital & volsnap Check =================(There is no automatic fix for files that do not pass verification.)C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2015-04-12 15:57==================== End Of Log ============================Addition.txt
  16. I just got my new HyperX RAM kit and I got an error message from the MBAM program stating that the Anti Rootkit module could not be launched, it told me to restart but it displayed it again. I am not sure what to do at this point, it was working before so I am assuming it is due to a change in my system's hardware configuration. DxDiag.txt
  17. Hi, When scanning an individual file with MBAM (free version), it doesn't update the definitions before scanning. Isn't this a bug? Because when you do the scan, a tick appears on the 'Check for Updates' part, before it continues with the 'Pre-Scan Operations'? Thanks very much, Transformers
  18. I've upgraded to the Windows 10 technical preview some time ago, and my Malwarebytes worked fine right off the bat. Only recenly I discovered that it wasn't running at start-up, nor could I get it to run on it's own. I tried to run the anti-rootkit and even chameleon and those would not run either. I got error codes for each of them. I'd love some help, because I do not like browsing unprotected and like the peace of mind I paid for. The errors I get include: mbam-setup-2.1.4.1018.exe - Error 0xc0000279 mbam-setup-1.75.0.1300.exe - Error 0xc0000279 mbar-1.09.1.1004.exe - Error 0xc0000279 mbam-chameleon.exe - Error 0xc0000142 Any help is appreciated.
  19. Hi, When running a scan, what exactly does Pre-Scan Operations do in MBAM (free version)? Is there any way to turn it off, or should I leave it on if it's beneficial? Thanks very much, Transformers
  20. I have this environment: - router with firewall enabled. SPI is not enabled. I enabled it after the fact. - host machine running Windows 7 SP1 x64. Firewall set to reject all inbound connections on all profiles (public, private and domain) as I don't transfer data between PCs. - guest OS Windows XP SP3 running in Virtualbox connected via NAT interface. No ports open in virtual NAT; - vm firewall also set to ignore exceptions. Virtual machine is in place to run somewhat risky applications in an attempt to keep my system clean: - Cool TV Online app is a Sopcast based TV online app. So it is P2P based. It also displays ads from adcash in pop-up everytime you click on something; - Hola Better Internet VPN extension for Firefox. Another P2P based app. Because both programs are P2P based I am expecting to see outbound connections blocked at host level on Virtualbox.exe which by way it happens sometimes, but inbound connections. This is odd, I'd like someone to explain me how this is possible. The alerts are not frequent, there are days when they don't happen. It mostly depends on how long either of them are running. I have some wild guesses about how this can happen, but I'd like a professional explanation: - Server to which I was connected informed of an IP change; that new IP is flagged as malicious in MBAM db; - Server #1 requested that Server #2 to take over (This is a P2P connection, so take overs seams to happen a lot), Server #2 IP is flagged as malicious so it wasn't allowed to check if I am still online. protection-log.txt
  21. Okay, I'm getting annoyed right now. MBAM blocked that website permanently, I excluded it's IP, it's domain name, and I still can't access it. Chrome says that it's denied. The browsers cannot access it also. Why did Malwarebytes blocked it in the first place anyway? I download the students' PDF lessons there for a long time now and I haven't got any problems. Just because it's from a Chinese country? Oh boy, that's not a good thing if you're basing websites' safety via countries. It PROVES that you all do not even bother looking thoroughly at the websites. MBAM is the only culprit here; it's the only one that blocked that website. Now I can't access that site permanently. Don't get me wrong, Malwarebytes is a great anti-malware. But it's getting in the way of business.
  22. Hey, a co-worker of mine likes to download all these little programs on her computer (coupon applications etc) and during the installation process she clicks every single button that pops up, agreeing to the installation of all sorts of adware and malware. This time around she accidentally installed youtube accelerator. After removing it with MBAM, her ability to access the internet on any browser has been compromised. I did a bit of research, downloaded FRST and ran it on the computer, I have attached the logs it left me with: If somebody that is comfortable with FRST could provide me with a fixlist.txt I would be sincerely appreciative. Thanks so much! Addition.txt FRST.txt
  23. For some strange reasons, me and my friends have been going on normal places (deviantart, Skype) and we keep getting weird malicious website detections. Is there some sort of weird advertisement going around that gives a malicious site? Thanks, Matthew
  24. Shortly after installing MBAM and MBAE on this Win7 machine, I discovered that I was not able to print to my Brother printer (command caused Chrome to close). I can print from Firefox, but intentionally closing Firefox causes an error. Can't quote exact message since I am sending this via Firefox, but it's something like "plugin-container.exe stopped working". Tried to uninstall MBAM and MBAE to see if these caused the problems, but cannot do either: message is "Setup was unable to create the directory 'C:\Users\Joyce\AppData\Local\Temp\is-HUJQC.tmp'" (final characters vary with each try).
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.