Jump to content

Search the Community

Showing results for tags 'permission'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






Found 6 results

  1. As many have found, when installing Malwarebytes on a Mac running High Sierra, I could not install system extensions that enable Real-Time Protection. I do understand it’s not a bug, it’s a feature on Apple’s part. After multiple searches here and elsewhere on the Interweb, no fixes worked for me. No matter how many times I tried to “Allow” in the Security System Preferences nothing would happen. Finally it dawned on me to try “allowing” in Safe Mode. Lo-and-behold, everything is loaded and I have Real-Time Protection switched on. So for the simple home user who is just trying to get a little protection for their Mac without wading into Console or Terminal mode or trying to adjust kernel permissions, here is what worked for me: Turn your Mac off, wait 10 sec (per Apple), then turn it back on while holding down the Shift key. Note: If you usually use a wireless keyboard, use the keyboard on your MacBook/MB Pro or a USB keyboard if you are not on a laptop. Wait for the computer to start up. It will take a longer than usual. Once the desktop is back, it should say “Safe Boot” up in or near the menu bar. Launch Malwarebytes. Try turning on Real-Time Protection. When you get to the point where you are asked to “Allow” system software installation, click “Allow” just like you have every time before. I immediately got another dialog box this time saying Restart was necessary to complete the installation. Restart, again, WITHOUT holding the Shift key. This time I was greeted by a cheerful congratulatory Malwarebytes window saying everything was installed and I had Real-Time Protection as promised with my Premium subscription. Sorry if this fix has already been posted elsewhere, but I never found it on my own searches. And apologies if this doesn’t work for others. I know how frustrating it can be.
  2. Hi, I am unable to run Malwarebytes Anti-Malware (or avast! anti-virus). I get a pop up telling me that "Windows cannot open this program because it has been prevented by a software restriction policy." Computer is XP Pro SP3 I have admin permissions, should not have any permission issues. Not sure how to proceed, any help would be greatly appreciated. dds.txt: DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.7.0_25 Run by Zach at 10:27:09 on 2013-10-14 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3582.2106 [GMT -5:00] . AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . ============== Running Processes ================ . C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Application Updater\ApplicationUpdater.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe C:\WINDOWS\system32\CSHelper.exe C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe C:\Program Files\Java\jre7\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Microsoft SQL Server\MSSQL$ACT7\Binn\sqlservr.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Program Files\SonicWALL\SSL-VPN\NetExtender\NEService.exe C:\WINDOWS\system32\UTSCSI.EXE C:\WINDOWS\System32\alg.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\WINDOWS\Explorer.EXE C:\program files\itunes\ituneshelper.exe C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe C:\Program Files\Spotify\Data\SpotifyWebHelper.exe C:\Program Files\Opera\opera.exe C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Microsoft Office\Office14\EXCEL.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\System32\svchost.exe -k HPZ12 C:\WINDOWS\System32\svchost.exe -k HPZ12 C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k LocalService . ============== Pseudo HJT Report =============== . uURLSearchHooks: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.6\iobitappsToolbarIE.dll BHO: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.6\iobitappsToolbarIE.dll BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: PC Tools Browser Guard BHO: {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - c:\program files\spyware doctor\bdt\PCTBrowserDefender.dll BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - <orphaned> BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office14\GROOVEEX.DLL BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - <orphaned> BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll BHO: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - c:\program files\iobit\advanced systemcare 6\browerprotect\ASCPlugin_Protection.dll BHO: Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile: {D5233FCD-D258-4903-89B8-FB1568E7413D} - BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll TB: PC Tools Browser Guard: {472734EA-242A-422B-ADF8-83D1E48CC825} - c:\program files\spyware doctor\bdt\PCTBrowserDefender.dll TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll TB: PC Tools Browser Guard: {472734EA-242A-422B-ADF8-83D1E48CC825} - c:\program files\spyware doctor\bdt\PCTBrowserDefender.dll TB: IObit Apps Toolbar: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - c:\program files\iobit apps toolbar\ie\7.6\iobitappsToolbarIE.dll EB: Adobe PDF: {182EC0BE-5110-49C8-A062-BEB1D02A220B} - uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Advanced SystemCare 6] "c:\program files\iobit\advanced systemcare 6\ASCTray.exe" /AutoStart uRun: [spotify Web Helper] "c:\program files\spotify\data\SpotifyWebHelper.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [iTunesHelper] c:\program files\itunes\ituneshelper.exe mRun: [Adobe Acrobat Speed Launcher] c:\program files\adobe\acrobat 9.0\acrobat\acrobat_sl.exe mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] c:\program files\google\gmail notifier\gnotify.exe mRun: [bCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices mRun: [searchSettings] "c:\program files\common files\spigot\search settings\SearchSettings.exe" mRun: [avast] "c:\program files\alwil software\avast5\avastUI.exe" /nogui StartupFolder: c:\docume~1\zach\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\zach\application data\dropbox\bin\Dropbox.exe StartupFolder: c:\docume~1\zach\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office14\ONENOTEM.EXE StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:255 uPolicies-Explorer: _NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoWelcomeScreen = dword:1 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105 IE: Sothink SWF Catcher - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll IE: {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll IE: {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FD9DE2B4-C926-4460-81C4-FC58C6F1062E} - c:\program files\smartwhois\swmsie.exe IE: {FF983118-58C7-4AD4-B5A7-691C39CB7B42} - c:\program files\smartwhois\swmsie.exe LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . TCP: NameServer = TCP: Interfaces\{AB598B63-2B22-4972-9186-CE0D108A0D23} : DHCPNameServer = TCP: Interfaces\{C092A89C-E2E2-4B52-97CC-C30899752BAA} : DHCPNameServer = Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll Notify: AtiExtEvent - <no file> AppInit_DLLs= acaptuser32.dll SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe" mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\30.0.1599.69\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome Hosts: www.spywareinfo.com . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\zach\application data\mozilla\firefox\profiles\m07w8cxa.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - component: c:\program files\iobit apps toolbar\ff\components\iobitappsFF.dll FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL FF - plugin: c:\program files\adobe\acrobat 9.0\acrobat\air\nppdf32.dll FF - plugin: c:\program files\amazon\mp3 downloader\npAmazonMP3DownloaderPlugin.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\update\\npGoogleUpdate3.dll FF - plugin: c:\program files\iobit\advanced systemcare 6\browerprotect\np_Asc_plugin.dll FF - plugin: c:\program files\iobit\advanced systemcare 6\browerprotect\NPASCSafariPluginProtect.dll FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll FF - plugin: c:\program files\veetle\player\npvlc.dll FF - plugin: c:\program files\veetle\plugins\npVeetle.dll FF - plugin: c:\program files\veetle\vlcbroadcast\npvbp.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_9_900_117.dll FF - plugin: c:\windows\system32\npDeployJava1.dll FF - plugin: c:\windows\system32\npptools.dll FF - plugin: c:\windows\system32\tvuax\npTVUAx.dll FF - ExtSQL: 2013-09-04 10:03; {badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}; c:\documents and settings\zach\application data\mozilla\firefox\profiles\m07w8cxa.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} FF - ExtSQL: 2013-09-13 08:11; ascsurfingprotection@iobit.com; c:\documents and settings\zach\application data\mozilla\firefox\profiles\m07w8cxa.default\extensions\ascsurfingprotection@iobit.com FF - ExtSQL: !HIDDEN! 2009-09-02 12:26; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension . ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: browser.xul.error_pages.enabled - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.maxtextrun - 8191 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: content.max.tokenizing.time - 2250000 . ============= SERVICES / DRIVERS =============== . R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2010-6-16 217032] R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2013-4-3 14776] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-17 729752] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-7-4 355632] R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\iobit\advanced systemcare 6\ASCService.exe [2013-3-12 574272] R2 Application Updater;Application Updater;c:\program files\application updater\ApplicationUpdater.exe [2013-9-2 807800] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-7-4 21256] R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\spyware doctor\bdt\BDTUpdateService.exe [2010-6-16 112592] R2 CSHelper;CopySafe Helper Service;c:\windows\system32\CSHelper.exe [2010-1-14 266240] R2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\common files\intuit\update service v4\IntuitUpdateService.exe [2012-2-6 13672] R2 MSSQL$ACT7;MSSQL$ACT7;c:\program files\microsoft sql server\mssql$act7\binn\sqlservr.exe -sact7 --> c:\program files\microsoft sql server\mssql$act7\binn\sqlservr.exe -sACT7 [?] R2 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-8-19 450848] R3 SSLDrv;SSL-VPN NetExtender Adapter;c:\windows\system32\drivers\SSLDrv.sys [2009-2-23 20504] S2 ACT! Scheduler;ACT! Scheduler;c:\program files\act\act for windows\Act.Scheduler.exe [2009-8-26 53248] S2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-7-4 44808] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S3 HCWBT8XX;Hauppauge WinTV 848/9 WDM Video Driver;c:\windows\system32\drivers\HCWBT8xx.sys [2009-8-26 472644] S3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\drivers\ivusb.sys [2010-7-29 25112] S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\spyware doctor\pctsAuxs.exe [2010-6-16 366840] S3 sdCoreService;PC Tools Security Service;c:\program files\spyware doctor\pctsSvc.exe [2010-6-16 1142224] S3 SQLAgent$ACT7;SQLAgent$ACT7;c:\program files\microsoft sql server\mssql$act7\binn\sqlagent.exe -i act7 --> c:\program files\microsoft sql server\mssql$act7\binn\sqlagent.EXE -i ACT7 [?] S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2010-8-5 11520] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2007-7-27 14336] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856] . =============== File Associations =============== . .txt: <filetype is not registered> .js: <filetype is not registered> . =============== Created Last 30 ================ . 2013-10-13 20:32:09 257928 ----a-w- c:\windows\system32\drivers\tmcomm.sys 2013-10-11 20:37:25 17813896 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe 2013-10-10 15:19:59 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys 2013-10-10 15:17:54 46848 -c----w- c:\windows\system32\dllcache\irbus.sys 2013-10-10 15:17:54 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys 2013-10-10 15:16:26 5376 -c----w- c:\windows\system32\dllcache\usbd.sys 2013-10-10 15:16:26 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys 2013-10-10 15:16:26 144128 -c----w- c:\windows\system32\dllcache\usbport.sys 2013-09-16 18:57:02 -------- d-----w- c:\windows\system32\wbem\repository\FS 2013-09-16 18:57:02 -------- d-----w- c:\windows\system32\wbem\Repository 2013-09-16 18:55:32 -------- d-----w- c:\program files\Application Updater 2013-09-16 18:55:32 -------- d-----w- c:\documents and settings\zach\local settings\application data\Babylon 2013-09-16 18:55:32 -------- d-----w- c:\documents and settings\zach\application data\Search Settings 2013-09-16 18:55:32 -------- d-----w- c:\documents and settings\zach\application data\Babylon 2013-09-16 18:55:32 -------- d-----w- c:\documents and settings\all users\application data\Babylon 2013-09-16 18:55:31 -------- d-----w- c:\program files\common files\Spigot 2013-09-16 18:15:54 -------- d-----w- C:\CTCTOutlook 2013-09-16 18:15:06 -------- d-----w- c:\program files\Constant Contact . ==================== Find3M ==================== . 2013-10-11 20:37:29 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-10-11 20:37:29 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-10-07 18:56:36 1786 --sha-w- c:\windows\system32\KGyGaAvL.sys 2013-09-23 18:33:58 920064 ----a-w- c:\windows\system32\wininet.dll 2013-09-23 18:33:57 43520 ----a-w- c:\windows\system32\licmgr10.dll 2013-09-23 18:33:57 1469440 ------w- c:\windows\system32\inetcpl.cpl 2013-09-23 18:33:56 18944 ----a-w- c:\windows\system32\corpol.dll 2013-09-23 18:06:48 385024 ----a-w- c:\windows\system32\html.iec 2013-08-29 01:31:44 1878656 ----a-w- c:\windows\system32\win32k.sys 2013-08-09 01:56:45 386560 ----a-w- c:\windows\system32\themeui.dll 2013-08-09 00:55:08 144128 ----a-w- c:\windows\system32\drivers\usbport.sys 2013-08-09 00:55:07 32384 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2013-08-09 00:55:06 5376 ----a-w- c:\windows\system32\drivers\usbd.sys 2013-08-08 14:25:37 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-08-08 14:25:31 144896 ----a-w- c:\windows\system32\javacpl.cpl 2013-08-08 14:25:29 867240 ----a-w- c:\windows\system32\npDeployJava1.dll 2013-08-05 13:30:32 1289728 ----a-w- c:\windows\system32\ole32.dll 2013-07-31 20:11:22 810496 ----a-w- c:\windows\system32\wmvdmod.dll 2013-07-26 02:47:17 920064 ----a-w- c:\windows\system32\SET132.tmp 2013-07-26 02:47:17 1215488 ----a-w- c:\windows\system32\SET133.tmp 2013-07-26 02:47:17 105984 ----a-w- c:\windows\system32\SET134.tmp 2013-07-26 02:47:16 6017536 ----a-w- c:\windows\system32\SET138.tmp 2013-07-26 02:47:14 630272 ----a-w- c:\windows\system32\SET13A.tmp 2013-07-26 02:47:14 55296 ----a-w- c:\windows\system32\SET139.tmp 2013-07-26 02:47:12 2005504 ----a-w- c:\windows\system32\SET13E.tmp 2013-07-26 02:47:10 11113472 ----a-w- c:\windows\system32\SET140.tmp 2013-07-19 06:18:04 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-07-17 00:58:17 123008 ------w- c:\windows\system32\drivers\usbvideo.sys 2013-07-17 00:58:06 46848 ------w- c:\windows\system32\drivers\irbus.sys 2013-07-17 00:58:03 60160 ----a-w- c:\windows\system32\drivers\usbaudio.sys . ============= FINISH: 10:28:15.87 ===============
  3. Hi I have MBAM (paid version) on Windows 7 32 bits. MBAM seem to work perfectly, but everyday I get an error message stating that MBAM base is obsolete, and I have to manually update it. Is that a way I can automate the update, (giving windows 7 permission and so), so I don't have to manually update that every day. Just let it update in the background. I try many setting, even windows "program compatibily, execute as an adminstrator" and so, but nothing seems to work. Thank you for yout time! :-) Marie.
  4. Hi, I have just bought Malwarebytes PRO and there's a little thing that annoys me a lot. Malwarebytes always need the UAC permission to start, event when the Filesystem Protection and Website Blocking are enabled. UAC example (from Wikipedia) when I start Malwarebytes : Why does the program need my "authorization" each time I want to start the scanner? The program ALREADY have the permission, the real-time scan is running... Thanks for your time. AAL.
  5. I was infected by the FBI virus today. Various sites led me to Malwarebytes to get rid of the virus. I downloaded the most recent version and ran a quick scan. It detected a few infected files and such. I got rid of them. Now, I can't access the majority of my pictures in any program. Every time I try, it says "can't open this picture because you don't have the correct permissions to access the file location" I've gone in and tried to change the ownership, but it still doesn't work. I can't access downloaded pictures, screenshots, or webcam pictures. I can't save screenshots with paint either
  6. Thanks for a moment of your time. I am in desperate need of your help. Desperate because my computer, a 64 bit Windows Home Premium OS, HP Pavillion has been made a client machine on an unknown network admin's domain. I have done a couple years worth of investigation...learning a lot as I proceed. And I have narrowed the Hack to the exploitation of my WIRED router-in this case a Netgear WNR1000v2, but the brand is irrelevant-using a script I found that contains a reference to a program called Dnsmasq and something called MICROSOFT WINDOWS RALLY PROGRAM among others which I will include at the bottom of this text. On Netgear utility app called Genie [which denies me permission to Wireless, ReadyShare and parental controls] I try to enter a password that control,using I get a message that says " The server at WebAdmin request a password which is not the standard PW or the one I created.. I logged on today using an ethernet cable from modem directly to my pc, but the the Netgear router [unplugged and disconnected] app called Genie indicates that I am passing through the router????????? I have lost control of my computer and have not yet been able to regain it due to a lack of knowledge regarding this open code written by someone else. Please help me understand how to remove this control from my PC. I would be so very grateful. . I tried to attach the wordpad doc that I copied from the Notepad Script but was unsuccesful. Contains many references to unknown programs. So here are some selected keywords: Binary or Source code */...bpalogin.sourceforge.net bridge.sourceforge.net/....busybox-1.4.2...dnsmasq-2.39...iptables-1.3.5 http://www.microsoft...iupnpd-20070127... ftp://ftp.samba.org/.......udhcp-0.9.8 wireless-tools-29.pre1...datalib...detcable..dni-ripd...dns-ipupdate...Oray...detwan...led-control...net-util...radvd...telnetenable...[ap91-hostapd]... hostapd...Atheros...BSD/GPL...ap91-madwifi-11n-scripts]... madwifi... wlanlog...ap91-wpatalk]...hostapd...Kernel Modules...Linux-2.6.15... ag7240-enet ag7240-gpio...ipv6-cone...netfilter...dnirtsp...ftp alg...pptp drv...netgear-rejec...urlblock....ap91-madwifi-11n.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.