Jump to content

Search the Community

Showing results for tags 'windows defender'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






  1. this is a new windows Installation and I have a few problems caused by Malwarebytes which is to disabling its service and to also to make my windows defender to be already disabled ! a note : some time windows defender service got error out when exit out of MBAM ! and idea ?
  2. Last night a notice appeared on a Windows 10 PC that said:- Unauthorised changes blocked Controlled folder access blocked C:\Prog... \MBAMService.exe from making changes to memory. An event, ID 1127 was created also. Source: Windows Defender. Level: Warning. Shows the full file path C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe I've been using MBAM for a long time, and Controlled Folder Access for a while also, this is the first time I've seen this. Is this an unusual notification?
  3. Hello, I'm on my parent's laptop and today they had a flashing notice "Windows Defender Security Warning", complete with a phone number to call for help. I opened task manager and ended Google Chrome processes. Then, followed by running Malwarebytes (no issues), Adware (no issues) and Farbar (reports attached). Requesting help in cleaning up their computer. Note: I'm deleting their Chrome history, but found this on today's history: Security Center Code0x268d3 Er07Services refrence015428042022.azurewebsites.net. Thanks in advance for your help. Note: I will try to follow directions in a timely manner, however I do not live at my parents...so might be a little delay. Addition 220427.txt FRST 220427.txt
  4. fresh install of windows and for the years i have used the free version ive only had this issue once now im stuck considering reinstalling windows AGAIN! because of this soooo i think i remember the last time i fixed this was disabling register with security center so why the F is this function locked behind a PREMIUM ACCOUNT WHEN THIS FUNCTION NEEDS TO BE DISABLED BY DEFAULT since no one has figured out how to fix this bug my windows defender is stuck off all security services are set properly and running but unable to change registry values DisableAntiSpyware = 1 DisableAntiVirus = 1 too " 0 " and because of this i have ZERO PROTECTION could someone reset my trial period so i can fix this without jumping a bunch of hopes
  5. "Your IT administrator has limited access to some areas of this app and the item you tried to access isn't available. Contact IT helpdesk for more information" when attempting to access certain parts of Windows Defender (specifically scan results), but consequent to turning on "periodic scanning" and attempting to to click the desktop alert associated with the scan results I receive this message. Windows 10 Pro 19042.1165 20H2/Malwarebytes Premium A few questions: 1. My understanding is Malwarebytes should work quite well with Defender. Is this message normal as Malwarebytes is in control or no? If not, what are the recommended steps? I imagine a reinstallation to start things off? 2. Is it recommended to leave periodic scanning off via Defender? 3. Keep in mind I can actually access all areas of Windows Defender. The issue seems to occur when clicking the desktop alert notification associated with the scan results of my Windows Defender scan. I am able to see any "threats" if I go to Windows Defender console under "active threats" 4. And lastly, any specific recommendations in terms of complimentary AV?
  6. Hey. So I recently installed a software which came with a patch file which was not what it should have been. Running that patch file didn't do anything but later I realised that my Windows Defender is disabled automatically. When I checked the Control Panel, I found out that the Virus Protection Part of it is completely gone. It's not there at all (image attached below). So, I tried a few methods from the internet like:- 1. Downloaded and ran the windefend.reg file. (This gave me an error saying I don't have permission.) 2. Ran the Malwarebytes scan twice but didn't find anything. 3. Did the same thing in Safe Mode, still couldn't find anything. I have also run the FRST Scan which I saw a lot of people run and send the logs for analysing the issue. So I did the same thing and I have attached the FRST.txt and Addition.txt below for reference. Can someone please help me cuz I don't have any other Antivirus Softwares installed as Windows Defender is good enough for that purpose and I don't need to expose my PC to any more threats while the service is down. Thank you. FRST.txt Addition.txt
  7. Nothing much to say here. A malware added exclusions to my Windows Defender that I cannot remove. I do not know how to fix it, but I have seen a solution with FRST64 however I dont know how to do it. Please help me.
  8. My PC came with preinstalled Windows 10 and I've got this PC for 2 years. It is ASUS laptop (Republic of gamers). I would check the model but I'm not home yet...so ill update that later. Windows Defender keeps telling me about this PUA. I have been scanning my PC all over again and tried clearing out temporary files and such but still shows the PUA as active,I have F-secure installed and as my main AV but I did a full scan with WD too after getting a blue screen while browsing internet. I know the Recovery folder is not even visible by default...I know I can't access it even when it is visible. Location of the PUA that Windows Defender notifications keeps telling about ---> containerfile: C:\Recovery\Customizations\usmt.ppkg file: C:\Recovery\Customizations\usmt.ppkg->\ICB\MachineSpecific\File\C$\Program Files (x86)\ASUS\GameFirst IV\Driver\tdi\i386\netfilter2.sys file: C:\Recovery\Customizations\usmt.ppkg->\ICB\MachineSpecific\File\C$\Windows\System32\drivers\netfilter2.sys I think it might be ASUS preinstalled program but I can't know for sure since I can't access the Recovery folder (and even if I could I think I still would not know for sure).The other netfilter2.sys was deleted (maybe) since it was no longer in it's folder. Win32 ASUS drivers folder (deleted by Windows Defender after full Scan)? Windows Defender keeps telling me about the PUA. I have tried deleting the detection history but it has no effect.The notification only appears with Windows Defender full scan. No other AV program will detect it (MalwareBytes, HitmanPro, AdwCleaner, F-secure, Windows Defender Offline scan/quick scan, Windows Safety Scanner). I would just like to get rid of it I don't care if the program is actually made/preinstalled by ASUS or not as long as deleting it has no effect on my PC/it's performance. Is netfilter2.sys important? What does it do and do I need it for my PC to work or will it have any impact on my PC's performance? Is the Recovery folder important and will deleting/altering it have severe harmful effects on my PC? Some people said they got blue screen and that their PC wont boot after deleting it. I have been told in Microsoft community, Microsoft Support, F-secure forums and else where that it is most likely a false positive but no one could confirm this for sure. Since F-secure never detected anything it should be false positive and nothing more yet I have not been able to use my PC without feeling paranoid over my accounts/safety. I'm just too paranoid about this. I don't want to do a system reset since getting F-secure back and installing all the 30+ games and other software that I have would be a pain. Can ASUS Backtracker get rid of the Recovery folder that (should?) be ASUS Recovery folder and not the Windows 10 itself since it was preinstalled? Can the netfilter SDK itself somehow be deleted or just delete its Recovery files since Windows Defender can't seem to get rid of it and other AVs don't detect it. Is here anyway to either get rid of it or confirm that it is actually not harmful? I can't check the original file since it got deleted and just the file in the Recovery folder remains. Also what is Win32/DefenderTamperingRestore? Got that notification after scanning the recovery folder with Windows Safety Scanner. No mention about the PUA tho and said that Win32/DefenderTamperingRestore was deleted. I did a Repair Upgrade from USB when trying to get rid of the notification so that might have caused this? If anyone has any suggestions or ideas on what I should do I would really appreciate it. (Sorry for having so many dumb questions and sorry that this is so long but I'm just really freaked out about this).
  9. I have been using KMSpico to keep my windows activated for a long time now, and i never got any issues, but tonight i realized that the windows was deactivated, so i went to use KMSpico again but it got insta deleted, even if the windows defender is not activated, so as i tryed to get to the quarantine mode or something, i realized that a lot of information did not appear to me, and when i tried to check de history of protection, windows defender just closes whitout opening anything
  10. is it a virus? print : https://i.imgur.com/jG1Q9tf.png Error Mensage : Acess to protected memory was blocked App or Windows process blocked : WinSat.exe Blocked by : controlled folders Can anyone help me?
  11. I came across the following post on Malwarebytes Premium with Windows Defender on the Microsoft forum: https://answers.microsoft.com/en-us/protect/forum/all/windows-defender-and-malwarebytes-for-windows-10/4dd0de10-eec1-4a67-b933-727cc5e931e5 Malwarebytes Premium has a real-time scan and on the Microsoft forum they discussed that any other real-time program Anti-Malware program will turn off Windows Defender,. My question is if this still true? If this is true, what is then the point in buying Malwarebytes Premium when Malwarebytes Free doesn't turn off Windows Defender?
  12. Hi, Good day to all. Four days ago, my pc windows defender/windows security was detected Trojan:PowerShell/PsInjection.A as severe threat, example as below: I have scanned through Malwarebytes, but no virus detected. Report as follows: Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 10/10/19 Scan Time: 12:52 PM Log File: d37b26f4-eb19-11e9-a05d-98eecb7ba763.json -Software Information- Version: Components Version: 1.0.627 Update Package Version: 1.0.12833 License: Free -System Information- OS: Windows 10 (Build 18362.418) CPU: x64 File System: NTFS User: DESKTOP-7ICM204\User -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 404571 Threats Detected: 0 Threats Quarantined: 0 Time Elapsed: 2 min, 53 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 0 (No malicious items detected) Registry Value: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 0 (No malicious items detected) Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end) As I have read from the forum, I have downloaded FRST64 and scanned, the FRST.txt and Addition.txt are attached as follows: Addition.txtFRST.txt Hope that anyone can help on this matter. Thanks in advance! Best Regards, SHT
  13. Running M3 v3.7.1 on 64x Win10 Pro. I installed Windows Update v1903 tonight and, now Windows Defender AV is disabled and Windows Defender AS is enabled. Also, Windows Defender is no longer listed in context menu of File Explorer. Before installing this WU 1903 update, Windows Defender was fully enabled along side of MBAM real-time protection and custom scanning with Windows Defender was an option in the File Explorer context menu. Yes, I have rebooted several times after Windows Update. The following is from a FRST log: AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Please tell me how to re-enable Windows Defender and add it to the context menu. Thank you DW
  14. I am not able to run windows defender and malwarebytes in parallel. If i select the option - Never register malwarebytes in the windows action center then windows defender is completely disabled. I have attached the screenshots. Malwarebytes ver# Please advise.
  15. trying to find out a way to completely uninstall windows defender from my windows 10 OS . but there is no option to uninstall it . and I want to remove it because windows defender AV isn’t working and an error while I try to update it’s malware databases ! and I want to replace it with KASPERSKY.
  16. My windows pc has been infected with a virus in the folder C:\Windows\System32. my default window antivirus could not detect this virus but then i installed the free version of AVG which was able to detect this virus but every few days this virus reappears and i have to remove it again. From my research and little bit of knowledge i think this is related to some kind of cryptocurrency mining. Any guidance on this topic would be appreciated Original Filename: diskdriver.exe Type of File: Application(.exe) Description: disk io driver Location : C:\Windows\System32. size : 1.97 MB (2,069,504 bytes) size on disk: 1.97 MB (2,072,576 bytes)
  17. I have posted a question "Unable to remove exclusions files and location (Either in Safe mode run Windows Defender or in Registry Editor) " in Mircosoft Community. Anyone can help me solve
  18. Hey there! This is more of just asking for Malwarebytes Staff/ Professional's opinion on an issue. On July 4th, I scanned my computer with Malwarebytes Premium and the Anti-rootkit beta; nothing was found each time. When I did a full scan of my computer with Windows Defender just to make sure, it says I was infected with "Trojan:O97M.Dplink.A". When I saw this I started to do some research on this trojan, but couldn't find any info other than a reddit thread talking about it and Microsoft's own entry on the trojan. I posted this to the Microsoft Community website asking if it was a false positive, but didn't really get a straight answer from them. I'll post it here because it goes into detail what happened; sorry that it's lengthy, but I like to try and be as thorough as I can be and I don't want to post links leading out of the forum: " Hello! I've been trying to figure this out all day; on my desktop earlier today, Windows defender flagged a file associated with the Immersive Control Panel - 'Control Panel a.k.a. ControlPanel.settingcontent-ms' - as 'Trojan:O97M/DPlink.A' in my user files and in the 'Windows.Old' files (I'd just reformatted and updated to 1803 about two weeks ago). This seemed strange since I've only logged into my Gmail, Youtube and Amazon since last night and haven't downloaded anything or even opened up an email, so I really haven't been in a position to have been infected by anything. Also, I had scanned my computer with Windows Defender last night too, and nothing came up when I did that. Windows Defender had deleted the file, so I don't have it on my computer anymore to send, if you needed it. I've run a full scan on my laptop and my father's laptop as well; WIndows Defender flagged the same exact file in the same exact location as the same Trojan I named above each time. On VirusTotal, I've noticed that Microsoft (Windows Defender) is the only Antivirus/Antimalware that's flagging it as a malicious XML file, labeling it 'Trojan:O97M/DPlink.A' leading me to suspect that this is a false positive. After a whole day of scouring the internet, I wanted to ask the Microsoft Community if this is indeed a threat or is Windows Defender detecting a false positive? On a side note, W.D. deleted the suspected file off my laptop as well, but I do have a screenshot of where it detected the suspected file; I'll attach it for reference. I do have the suspected file still on my father's laptop; windows defender is doing a full scan with the most recent virus definitions now as opposed to earlier today and the same file is not being flagged anymore. On all the machines I've scanned I ran a full scan with Malwarebytes Premium before running Windows Defender; Malwarebytes didn't detect anything on any computer during any scan, even when I had it select the exact file in question. [Screenshot is attached below] To summerize, I'm wanting to know if the file Windows Defender flagged is truly malicious or just a false positive? Given how my desktop and my laptop have deleted ControlPanel.settingcontent-ms from 'windows.immersivecontrolpanel_cw5n1h2txyewy' folder, will this cause permanent damage to my systems or will they still function properly? (I haven't noticed any problems yet)" I know that Malwarebytes staff isn't Microsoft, but based on the information above and the evidence I can present, do you feel confident in saying that this is a false positive? Admittedly, I do nnot have the ControlPanel.settingcontent-ms file on my computer since Windows Defender deleted it, but I have a link leading to the virus total page whee I uploaded it to the website; as of right now, Virus Total doesn't flag the file in question as malicious across any A.V./A.M. Thank you for taking the time to read this monster of a post and I hope to hear from you soon!
  19. Sorry if this is the wrong forum to post this in. This is my first time posting on these forums. I was wondering if there's a way to confirm if a USB flash drive is free of viruses, malware, and/or ransomware? I used this USB flash drive back on Feb. 23rd with a computer (Windows XP) that was a part of a network. The server was infected with Ransomware and all the files on the shared network were encrypted on Feb. 25th. Supposedly nobody used any of the computers on the network on the 25th, so I suspect that the infection happened earlier and activated the Ransomware at a later date (I don't know if this is even possible). I always remove the flash drive from the computer when I'm not using it, however, since I don't know when exactly the infection occurred, I really don't know if it was infected or not. The tech that was hired was unable to decrypt the files and couldn't contact the hacker to pay the ransom, so we ended up replacing the computer with Windows 10 and restoring some of the files from an older backup. There are files I'd like to transfer from the flash drive to the new Windows 10 computer (Computer #1) and to an older spare computer running Windows XP (Computer #2), as the backup the tech used did not have copies of these files. After avoiding the flash drive for weeks, I decided to test it out on Computer #1 (Apr. 3rd), since I thought Windows 10 would be more secure. After plugging it in, there was a notification saying "There is a problem with this drive. Scan the drive now and fix it." I ran Windows Defender and the scan detected "no threats" on the USB flash drive. I also ran a full system scan and it was also clean. Since then, I have been saving documents to the flash drive and opening files on it (always while using Computer #1), but I've refrained from copying the flash drive's files to Computers #1 and #2 because of a lingering fear of infection. Every time I plug it in, I always get the same notification to scan & fix it, but every time I scan it with Windows Defender, no threats are ever found. It's been over two weeks now since I've tried inserting the flash drive and nothing bad has happened to Computer #1 (or the rest of the network for that matter). I've avoided using the flash drive on Computer #2, because I worry Windows XP will be more vulnerable or the infection will only effect XP but not 10. Questions: 1) MAIN QUESTION: Is the USB Flash Drive safe to use (free of Ransomware, Malware, Viruses, etc.)? 2) Does Ransomware usually wait a period of time before activating or take awhile to encrypt files? 3) Are Windows Defender and Avast Antivirus even capable of detecting Ransomware or am I wasting time running scans with them? 4) Have I made a big mistake by opening files on the flash drive with Computer #1, and spread malware on the network? 5) Does Ransomware even make copies of itself and spread like viruses do? EDIT: Another thing I noticed is that the Flash Drive is supposed to have a size of 16 GB, but according to Windows Explorer, its total size is only 14.9 GB. Is this just false advertisement of the product, or is something wrong with the flash drive? Notes: USB Flash Drive: SanDisk Cruzer Glide 16GB Computer #1: Windows 10 Computer #2: Windows XP (Service Pack 3) Windows Defender: Updates automatically (up to date) - for Computer #1 Avast Antivirus: Updates automatically (up to date) - for Computer #2 * The USB Flash Drive is usually plugged into a computer for 2 hours or less. I very rarely leave it in for a long duration. Thanks for your help, T-Ruth
  20. I just purchased MWB for home. Do I continue to run Windows Defender and Windows Firewall?
  21. So i know this is related to windows defender, but I have seen other threads with my problem. Windows defender is quarantining items Some of them are trying to delete my Sony Vaio care, yet some say file:C:\Windows\System32\iolorgdf64.exe firefoxplugins:HKLM\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2 regkey:HKLM\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2 or clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{2A090754-16A6-407D-883D-A5C0F8CF9992} clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{C9480C5A-8921-4C96-BAB1-3D56AE999B70} file:C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe file:C:\PROGRA~1\Sony\VAIOCA~1\Iolo\IOLOTO~1.EXE interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} interface:HKLM\SOFTWARE\CLASSES\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} interface:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} regkey:HKLM\SOFTWARE\CLASSES\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{2A090754-16A6-407D-883D-A5C0F8CF9992} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{C9480C5A-8921-4C96-BAB1-3D56AE999B70} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0033698F-1332-4963-99F3-7BC36ABFE13E} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{0F8A26B3-2B10-4AAB-A97F-393333B9D5C9} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{28637EB6-7F05-40C6-BD96-1850B9E8603F} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{2B721EEB-BDA2-4F5A-AF5E-56213EB47BFD} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{3D74091E-BA60-40EC-A09D-81DF16A7EC12} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{40D797FB-1418-4689-8C47-634A8E21E77F} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{57EED195-35A3-4425-A3DA-9638746A0F78} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{816D649C-F0ED-41FF-956C-6568609F4570} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{935B5B76-ABBD-407D-B5E1-AACADF5045E6} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{9D8E5931-AF9E-4A20-8B90-2C82860B13F8} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B54B80F3-9227-4D46-BF22-ABBF75174412} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{B5FC8155-91F9-4B76-BAE1-462C95CE85B2} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C382A7AC-33DB-46D3-A34D-7A22FBB92BFC} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{C5FD77DF-C570-483A-9CE9-146ACF651A83} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{CDFEC96E-EF0B-4F37-96CC-32E2CB2102E3} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{EDF15D72-F2E1-4B0A-93AC-FFB3CFCD71CD} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\INTERFACE\{F7D7E8DE-A7AA-4329-A166-18CABA3F065C} regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 typelib:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58} typelib:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58} typelibversion:HKLM\SOFTWARE\CLASSES\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 typelibversion:HKLM\SOFTWARE\CLASSES\Wow6432Node\TYPELIB\{1BE26DDD-B9B9-464D-9EDA-7415E53F2B58}\1.1 I saw a thread: Where HKLM was contained. Windows defender quarantined the files before malware bytes may have had the chance to detect it. Is this trojan(where as i will just delete the infected files or find ways to keep it from coming back) or should i stop windows defender from deleting them and quarantine them. Please get back to me as soon as possible, thanks
  22. Hello! So I completed multiple scans of malwarebytes antimalware to get rid of a trojan malware that's been copying files everywhere, and I've now come up with the result of the internet being blocked when safe mode is off, and windows defender doesn't seem to work. A file or two comes up on every new scan, but doesn't seem to be going away. The file attached is the latest scan, which caught a few files. Looking at task manager on regular boot, an application called "Spine" seems to come up a lot, and any change I got at deleting it ended up in it replacing itself with every reboot. Help with this would be greatly appreciated! Thank you! log.txt
  23. I've been running Malwarebytes 3 alongside Norton for a couple of years with no problems, however my Norton is expiring so I decided to remove it and use Windows Defender alongside Malwarebytes 3. The recommended Setting for Windows Action Center in Malwarebytes turns off Windows Defender real time protection. I have changed that setting to "Never Register Malwarebytes" which allows real time protection for both. Everything seems to be running fine currently. Am I asking for trouble leaving things this way? Are other users doing the same thing without any issues?
  24. Sorry to revive an old thread, but this just started happening to me again. Setting it to never register works as a temporary fix, but I wanted to see if anyone else was still having this problem.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.