Jump to content

Malicious Website Blocked Keeps Popping Up


Recommended Posts

This is annyoing constant messages telling me that its blocked a website.
Domain: ewtehhethg.chickenkiller.com

IP: 95.154.217.131

Port: 54562

Type: Outbound

I have tried searching for malware it came back with none found, I don't know what else to do. Image of it below.

Capture.PNG

Link to post
Share on other sites

Hello Callum and welcome to Malwarebytes,

Open Malwarebytes..
 
  • Click on the History tab > Application Logs.
  • Double click on the Protection Log which shows the most recent Date and time..
  • Click Export > From export you have three options:
    Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
    Text file (*.txt) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
    XML file (*.xml) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
     
  • Please use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…


Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your security alerts to FRST either, accept the alert or turn your security off to allow FRST to run. It is not malicious or infected in any way...
 
  • Double-click to run it. When the tool opens click Yes to disclaimer.(Windows 8/10 users will be prompted about Windows SmartScreen protection - click More information and Run.)
  • Make sure Addition.txt is checkmarked under "Optional scans"
  • Press Scan button to run the tool....
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The tool will also make a log named (Addition.txt) Please attach that log to your reply.


Let me see those logs in your reply...

Thank you,

Kevin...

 

 

Link to post
Share on other sites

Malwarebytes Anti-Malware
www.malwarebytes.org


Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61412, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61425, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61432, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61436, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61462, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61464, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61467, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61482, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61484, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61510, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61512, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61518, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61531, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61534, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61538, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61556, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61561, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61565, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61588, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61591, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61592, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61616, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61625, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61658, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61660, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61687, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61690, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61691, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61706, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61709, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61711, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61724, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61728, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61733, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61749, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61756, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61759, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61774, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61775, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61777, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61793, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61795, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61799, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61812, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61814, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61819, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61836, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61839, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61844, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61859, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61861, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61864, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61886, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61888, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61902, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61921, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61935, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61937, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61942, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61953, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61954, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61959, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61972, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61974, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61979, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 61997, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62000, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62025, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62038, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62052, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62054, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62058, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62078, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62082, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62084, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62099, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62103, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62107, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62119, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62121, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62126, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62137, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62139, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62142, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62162, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62166, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62171, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62182, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62189, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62191, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62206, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62207, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62212, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62225, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62226, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62228, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62248, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62253, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62256, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62272, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62276, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62278, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62294, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62297, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62301, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62312, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62313, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62318, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62335, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62338, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 62342, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64337, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64338, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64342, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64356, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64359, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64365, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64375, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64378, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64407, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64412, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64416, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64431, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64433, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64436, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64451, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64453, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64458, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64474, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64475, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64480, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64498, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64519, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64528, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64535, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64537, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64550, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64551, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64556, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64568, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64575, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64606, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64607, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64609, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64626, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64630, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64634, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64647, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64650, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64655, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64674, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64677, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64679, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64696, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64700, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64712, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64727, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64734, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64736, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64749, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64750, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64754, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64774, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64775, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64779, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64797, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64800, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64802, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64814, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64818, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64821, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64836, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64838, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64841, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64859, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64863, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64867, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64898, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64913, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64915, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64918, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64937, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64942, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64946, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64960, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64970, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64980, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64987, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 64988, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65004, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65005, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65017, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65031, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65033, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65036, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65046, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65052, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65053, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65064, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65067, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65070, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65082, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65083, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65090, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65118, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65124, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65126, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65136, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65139, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65141, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65153, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65159, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65162, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65174, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65175, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65178, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65200, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65202, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65206, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65222, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65223, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65226, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65238, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65239, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65241, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65254, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65257, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65261, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65276, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65280, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65287, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65299, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65301, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65306, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65317, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65318, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65322, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65336, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65340, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65341, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65358, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65373, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65387, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65388, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65391, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65403, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65405, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65406, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65420, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65422, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65427, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65445, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65448, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65470, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65471, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65474, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65489, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65494, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65495, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65511, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65515, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 65516, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49156, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49159, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49162, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49179, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49180, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49184, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49195, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49197, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49198, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49221, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49234, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49239, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49259, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49261, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49292, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49294, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49316, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49318, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49319, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49337, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49339, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49342, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49358, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49359, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49366, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49375, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49376, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49379, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49394, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49397, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49405, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49421, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49427, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49432, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49446, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49461, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49475, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49478, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:29, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49479, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49503, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49505, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49511, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49528, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49531, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49534, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49548, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49549, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49555, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49563, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49566, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:30, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49569, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49587, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49589, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49592, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49616, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49626, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49629, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49643, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49646, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49651, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49662, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49665, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:31, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49666, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49678, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49687, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49693, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49708, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49711, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49715, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49726, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49729, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49733, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49749, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49751, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:32, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49752, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49763, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49766, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49775, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49791, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49797, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49801, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49813, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49815, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49817, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49834, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49836, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:33, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49838, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49849, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49852, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49855, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49876, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49879, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49882, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49897, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49900, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49902, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49916, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49919, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:34, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49926, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49936, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49938, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49941, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49962, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49966, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49971, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49985, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49990, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 49992, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50008, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50013, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:35, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50018, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50033, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50035, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50038, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50055, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50057, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50060, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50077, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50082, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50085, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50099, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50102, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:36, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50106, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50123, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50126, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50129, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50148, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50153, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50156, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50179, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50182, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50184, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50198, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50199, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:37, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50204, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50216, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50218, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50223, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50236, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50244, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50246, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50263, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50265, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:38, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50270, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50294, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50300, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50315, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50318, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50320, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50341, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50346, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50352, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50364, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50366, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:39, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50370, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50383, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50394, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50408, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50416, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50419, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50439, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50448, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50450, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50462, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:40, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50467, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50470, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50482, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50484, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50487, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50502, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50504, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50511, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50528, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50533, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50535, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:41, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50548, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50551, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50554, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50570, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50571, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50574, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50586, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50590, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50594, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50614, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50620, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50621, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:42, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50633, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50635, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50640, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50653, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50655, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50659, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50685, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50688, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50703, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50708, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:43, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50710, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50722, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50724, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50729, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50742, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50743, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50746, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50760, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50770, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50773, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50790, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:44, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50794, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50795, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50807, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50810, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50818, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50830, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50832, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50871, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50873, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:45, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50880, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50892, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50897, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50899, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50912, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50914, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50919, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50932, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50934, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50936, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50952, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50958, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:46, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50960, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50977, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50980, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50983, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50995, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 50997, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51003, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51015, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51017, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51026, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51040, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51046, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:47, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51047, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51067, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51068, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51072, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51087, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51089, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51092, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51105, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51111, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51114, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51126, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51133, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:48, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51136, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51153, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51156, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51162, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51174, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51181, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51183, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51196, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51199, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51203, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51216, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51217, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:49, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51220, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51241, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51246, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51248, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51262, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51267, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51268, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51285, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51287, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51293, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51306, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51308, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:50, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51312, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51331, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51336, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51340, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51355, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51357, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51359, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51374, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51376, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51380, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51393, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51396, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:51, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51399, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51419, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51422, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51426, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51442, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51455, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51467, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51469, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:52, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51475, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51487, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51488, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51493, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51513, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51516, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51519, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51536, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51537, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51540, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51555, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:53, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51565, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51594, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51596, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51600, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51615, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51617, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51622, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51637, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51640, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:54, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51643, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51655, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51656, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51659, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51680, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51683, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51686, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51705, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51708, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51713, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:55, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51733, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51738, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51750, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51753, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51754, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51775, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51780, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51782, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51796, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51798, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51803, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:56, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51818, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51821, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51824, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51838, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51839, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51841, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51863, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51867, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51872, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51885, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51888, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51894, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:57, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51906, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51909, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51911, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51927, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51928, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51929, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51949, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51953, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51957, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51981, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:58, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51986, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 51998, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52001, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52007, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52021, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52022, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52027, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52048, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52051, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52059, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52072, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52074, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 00:59, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52080, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, IP, 189.215.49.172, 60882, Inbound, C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, IP, 189.215.49.172, 60882, Inbound, C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52108, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52112, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52129, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52132, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52139, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:00, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52157, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52178, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52190, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52193, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52197, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52211, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52212, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52217, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52237, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52240, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:01, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52243, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52254, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52258, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Update, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Scheduler, Domain Database, 2016.8.8.4, 2016.8.8.5, 
Update, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Scheduler, Malware Database, 2016.8.8.11, 2016.8.8.12, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Refresh, Starting, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Refresh, Success, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Starting, 
Protection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Started, 
Detection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52340, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:02, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52340, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52353, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52356, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52360, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52372, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52376, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52379, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52393, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:03, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52419, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52433, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52436, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52438, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52453, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52455, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52458, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52471, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52475, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52479, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52493, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52498, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:04, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52503, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52517, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52522, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52523, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52537, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52540, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52546, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52564, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52578, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52585, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:05, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52598, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52617, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52634, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52639, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52640, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52654, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52656, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52660, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52672, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52675, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52680, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52698, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:06, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52703, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52708, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52722, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52728, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52729, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52745, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52747, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52754, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52769, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:07, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52773, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52807, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52808, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52810, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52826, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52831, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52832, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52846, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52847, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52854, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52867, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52870, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:08, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52875, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52906, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52907, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52925, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52931, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 52953, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53069, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53072, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:09, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53075, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53098, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53100, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53103, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53123, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53125, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53127, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53143, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53147, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53150, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53164, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:10, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53165, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53196, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53200, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53202, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53216, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53220, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53221, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53235, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53238, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:11, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53242, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53254, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53257, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53259, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53280, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53285, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53288, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53307, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53310, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53312, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53326, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53330, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:12, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53333, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53347, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53348, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53351, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53370, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53373, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53376, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53392, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53404, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:13, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53419, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53434, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53451, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53457, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53461, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53476, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53479, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53480, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53497, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53503, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:14, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53505, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53519, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53521, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53537, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53555, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53556, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53560, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53587, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:15, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53591, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53612, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53618, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53619, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53633, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53635, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53641, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53671, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53675, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:16, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53688, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53692, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53694, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53709, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53711, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53716, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53745, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53749, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53764, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53766, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:17, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53767, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53782, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53788, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53815, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53819, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53825, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53838, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53842, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:18, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53845, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53878, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53899, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53902, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53904, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53919, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53924, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:19, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53925, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53938, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53943, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53947, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53959, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53961, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53965, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53982, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53988, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 53992, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54008, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54012, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:20, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54016, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54034, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54036, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54041, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54054, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54055, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54065, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54087, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54090, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54092, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54108, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:21, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54112, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54116, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54144, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54147, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54159, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54162, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54169, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54187, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54191, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:22, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54193, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54205, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54209, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54213, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54227, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54228, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54233, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54246, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54247, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54250, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54272, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54276, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:23, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54279, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54291, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54294, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54298, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54311, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54314, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54320, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54332, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54335, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54337, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54357, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:24, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54359, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54384, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54388, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54392, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54407, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54408, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54412, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54426, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54433, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:25, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54441, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54498, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54500, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54504, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54516, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54519, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54524, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54538, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54540, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54545, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54558, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:26, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54562, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54595, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54599, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54600, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54613, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54617, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54621, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54640, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54641, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54644, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:27, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54664, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54668, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54670, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54689, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54691, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54695, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54706, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54709, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 
Detection, 09/08/2016 01:28, SYSTEM, CALLUM-PC, Protection, Malicious Website Protection, Domain, 95.154.217.131, ewtehhethg.chickenkiller.com, 54713, Outbound, C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe, 

(end)
 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-08-2016
Ran by Callum (administrator) on CALLUM-PC (09-08-2016 01:30:52)
Running from C:\Users\Callum\Downloads
Loaded Profiles: Callum (Available Profiles: Callum & Administrator & Guest)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
() C:\Windows\SysWOW64\ASGT.exe
() C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\MFUsnMonitorService.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Proxy Labs) C:\Program Files\Proxy Labs\ProxyCap\pcapsvc.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files (x86)\Roxio Creator NXT Pro 3\Roxio Burn\RoxioBurnLauncher.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(ASUS) C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_watch.exe
(Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_hub.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\MediaFire Desktop.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_filetransfer.exe
(BitTorrent Inc.) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_browser.exe
(ASUS) C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_central_control.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_monitor.exe
(AOL Inc.) C:\Program Files (x86)\AIM\aim.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLClientApp.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
(Mega Limited) C:\Users\Callum\AppData\Local\MEGAsync\MEGAsync.exe
(AutoIt Team) C:\Users\Callum\AppData\Roaming\Microsoft Service.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(BitTorrent Inc.) C:\Users\Callum\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Callum\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\HSSCP.exe
() C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_dialogs.exe
(Oracle Corporation) C:\Users\Callum\AppData\Roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oracle Corporation) C:\Users\Callum\AppData\Roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Users\Callum\AppData\Roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe
(Oracle Corporation) C:\Users\Callum\AppData\Roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-12-14] (FNet Co., Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [114368 2014-11-20] (VMware, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [366904 2015-04-08] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [832272 2014-06-23] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Roxio Creator NXT Pro 3\Common\RoxWatchTray15.exe [295112 2014-09-26] (Corel Corporation)
HKLM-x32\...\Run: [WAN Host] => C:\Program Files (x86)\WAN Host\wanhost.exe [64152 2015-06-19] (Microsoft Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [MediaFire Tray] => C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_watch.exe [4003840 2015-04-23] ()
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4278992 2015-05-13] (Unified Intents AB)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [uTorrent] => C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-05-20] (BitTorrent Inc.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Aim] => C:\Program Files (x86)\AIM\aim.exe [4321112 2011-01-07] (AOL Inc.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [NetLimiter] => C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe [56560 2016-03-16] (Locktime Software)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-06-02] (Nota Inc.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [5915776 2016-03-21] (Safer-Networking Ltd.)
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...0c966feabec1\InprocServer32: [Default-shell32]  <==== ATTENTION
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [1MediaFireIconError] -> {5EE8C634-CDC0-453D-9731-DF0B19F4E807} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon3_9832e.dll [2015-02-25] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconReadOnly] -> {7995D0FC-769B-4197-AEC0-991921CB99E1} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon5_9832e.dll [2015-02-25] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconSynched] -> {9A3B79CB-D899-40B5-8DBC-20447F1ADC8F} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon_9832e.dll [2015-02-25] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [1MediaFireIconSyncing] -> {C4D81971-6B13-4173-AB21-F83AD20CCC04} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon2_9832e.dll [2015-02-25] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [MediaFireIconLock] -> {759F3E92-F4E8-4953-8315-238B8B17E0F3} => C:\Program Files (x86)\MediaFire Desktop\MediaFireIcon4_9832e.dll [2015-02-25] (TODO: <Company name>)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
Startup: C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-11-04]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Callum\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PMiHDAfHIQdXGgPF.cmd.lnk [2016-08-08]
ShortcutTarget: PMiHDAfHIQdXGgPF.cmd.lnk -> C:\Users\Callum\AppData\Roaming\Microsoft Service.exe (AutoIt Team)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 pcapwsp.dll No File 
Winsock: Catalog9 01 pcapwsp.dll No File 
Winsock: Catalog9 02 pcapwsp.dll No File 
Winsock: Catalog9 03 pcapwsp.dll No File 
Winsock: Catalog9 04 pcapwsp.dll No File 
Winsock: Catalog9 17 pcapwsp.dll No File 
Winsock: Catalog5-x64 07 pcapwsp.dll No File 
Winsock: Catalog9-x64 01 pcapwsp.dll No File 
Winsock: Catalog9-x64 02 pcapwsp.dll No File 
Winsock: Catalog9-x64 03 pcapwsp.dll No File 
Winsock: Catalog9-x64 04 pcapwsp.dll No File 
Winsock: Catalog9-x64 17 pcapwsp.dll No File 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{0B837804-4B4F-4814-9E0F-21105AAB879C}: [NameServer] 95.169.183.219,89.41.60.38
Tcpip\..\Interfaces\{DD4A6A82-0F63-4697-BC95-45A5F1865D05}: [NameServer] 192.168.0.1
Tcpip\..\Interfaces\{F1DEDAA4-6EF3-406D-B38C-E0986C04B556}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL = 
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-13] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-13] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-15] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-15] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-452852654-1086473647-1945901625-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

FireFox:
========
FF ProfilePath: C:\Users\Callum\AppData\Roaming\Mozilla\Firefox\Profiles\0ixfirw5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-13] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin HKU\S-1-5-21-452852654-1086473647-1945901625-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Callum\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Callum\AppData\Roaming\Mozilla\Firefox\Profiles\0ixfirw5.default\user.js [2016-03-06]

Chrome: 
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Profile 6 -> hxxp://www.google.co.uk/
CHR StartupUrls: Profile 6 -> "hxxp://www.google.co.uk/"
CHR Profile: C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3
CHR Extension: (Google Slides) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-15]
CHR Extension: (Google Docs) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-15]
CHR Extension: (Google Drive) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tampermonkey) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-12-15]
CHR Extension: () - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efedcgdhahoncejkihgfnecicebndbhc [2015-12-08]
CHR Extension: (Google Sheets) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-15]
CHR Extension: (Google Docs Offline) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Agar.io Powerups Beta version) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hdaohcodlcnnblcgfidboahmlkokonee [2016-01-08]
CHR Extension: (Agariomods) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2016-03-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27]
CHR Extension: (Gmail) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Profile: C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 4
CHR Profile: C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6
CHR Extension: (Google Slides) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-28]
CHR Extension: (Google Docs) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-28]
CHR Extension: (Google Drive) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-28]
CHR Extension: (YouTube) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-28]
CHR Extension: (Google Sheets) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-28]
CHR Extension: (Google Docs Offline) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-28]
CHR Extension: (Hotspot Shield Free VPN Proxy – Unblock Sites) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2016-08-02]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Callum\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-28]
CHR HKLM-x32\...\Chrome\Extension: [nlbejmccbhkncgokjcmghpfloaajcffj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269; C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe [457960 2013-10-16] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1225216 2015-10-23] ()
R2 BOT4Service; C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe [22760 2014-01-22] ()
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [406288 2014-06-23] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-06-23] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [774928 2014-06-23] (BlueStack Systems, Inc.)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
S2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [182304 2014-12-15] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2729592 2016-07-19] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-07-19] ()
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 MF NTFS Monitor; C:\Users\Callum\AppData\Local\MediaFire Desktop\MFUsnMonitorService.exe [456176 2015-04-23] ()
R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [323824 2016-03-16] (Locktime Software)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3191392 2014-05-15] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 pcapsvc; C:\Program Files\Proxy Labs\ProxyCap\pcapsvc.exe [2283008 2014-07-06] (Proxy Labs) [File not signed]
R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4278992 2015-05-13] (Unified Intents AB)
R2 RoxioBurnLauncher; C:\Program Files (x86)\Roxio Creator NXT Pro 3\Roxio Burn\RoxioBurnLauncher.exe [535784 2013-10-16] ()
S3 RoxMediaDB15; C:\Program Files (x86)\Roxio Creator NXT Pro 3\Common\RoxMediaDB15.exe [1097928 2014-09-26] (Corel Corporation)
S2 RoxWatch15; C:\Program Files (x86)\Roxio Creator NXT Pro 3\Common\RoxWatch15.exe [342216 2014-09-26] (Corel Corporation)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175752 2015-06-23] (Sandboxie Holdings, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12730560 2014-11-20] ()
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 863788fa; "C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\goopad\goopad.dll",serv
S4 clr_optimization_v2.0.50727_32; %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R4 AFTrafMgr1.0; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr64.sys [46072 2016-07-18] (Windows (R) Win 7 DDK provider)
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [123152 2014-06-23] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-12-29] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FETNDIS; C:\Windows\System32\DRIVERS\fet6x64.sys [47872 2009-06-10] (VIA Technologies, Inc.              )
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2016-06-15] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-12-14] (FNet Co., Ltd.)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2016-01-27] (Sony Mobile Communications)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2014-05-17] (AnchorFree Inc.)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc.)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-01-19] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-09] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R2 mfmonitor; C:\Windows\System32\DRIVERS\mfmonitor_x64.sys [20696 2015-04-23] (Windows (R) Win 7 DDK provider)
R2 nldrv; C:\Program Files\Locktime Software\NetLimiter 4\nldrv.sys [128328 2016-03-16] (Locktime Software)
S3 NVFLASH; C:\Windows\system32\drivers\nvflash.sys [15648 2014-01-06] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-08-12] (Realtek Semiconductor Corporation                           )
R0 Sahdad64; C:\Windows\System32\Drivers\Sahdad64.sys [28304 2013-10-16] (Corel Corporation)
R0 Saibad64; C:\Windows\System32\Drivers\Saibad64.sys [20112 2013-10-16] (Corel Corporation)
R1 SaibVdAd64; C:\Windows\System32\Drivers\SaibVdAd64.sys [27792 2013-10-16] (Corel Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [190088 2015-06-23] (Sandboxie Holdings, LLC)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-08-08] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R3 uvhid; C:\Windows\System32\DRIVERS\uvhid.sys [25592 2015-05-13] (Windows (R) Win 7 DDK provider)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-08-28] (VMware, Inc.)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2014-02-26] (WinISO.com)
S3 cpuz138; \??\C:\Users\Callum\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-09 01:30 - 2016-08-09 01:30 - 00000000 ____D C:\Users\Callum\Downloads\FRST-OlderVersion
2016-08-08 11:54 - 2016-08-08 11:54 - 00000000 ____H C:\ProgramData\cm-lock
2016-08-08 03:23 - 2016-08-08 03:23 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-08-08 03:23 - 2016-08-08 03:23 - 00000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-08-08 03:23 - 2016-08-08 03:23 - 00000000 ____D C:\ProgramData\RogueKiller
2016-08-08 03:23 - 2016-08-08 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-08-08 03:23 - 2016-08-08 03:23 - 00000000 ____D C:\Program Files\RogueKiller
2016-08-08 03:22 - 2016-08-08 03:22 - 34622920 _____ (Adlice Software ) C:\Users\Callum\Downloads\setup.exe
2016-08-08 03:20 - 2016-08-09 01:31 - 00033755 _____ C:\Users\Callum\Downloads\FRST.txt
2016-08-08 03:20 - 2016-08-09 01:30 - 00000000 ____D C:\FRST
2016-08-08 03:20 - 2016-08-08 03:22 - 00072168 _____ C:\Users\Callum\Downloads\Addition.txt
2016-08-08 03:19 - 2016-08-09 01:30 - 02393600 _____ (Farbar) C:\Users\Callum\Downloads\FRST64.exe
2016-08-07 08:22 - 2016-08-08 21:59 - 00002722 _____ C:\Windows\System32\Tasks\WAN Host
2016-08-07 08:22 - 2016-08-08 21:59 - 00002696 _____ C:\Windows\System32\Tasks\WAN Host Task
2016-08-07 08:22 - 2016-08-08 11:54 - 00000000 ____D C:\Users\Callum\AppData\Roaming\1008A7EF-62C5-4670-A48B-31B011CC3ED6
2016-08-07 08:22 - 2016-08-07 08:22 - 00000000 ____D C:\Program Files (x86)\WAN Host
2016-08-07 08:22 - 2013-07-02 17:29 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2016-08-06 14:12 - 2016-08-06 14:12 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Sonic
2016-08-06 13:52 - 2016-08-06 13:52 - 00141344 _____ C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-06 13:52 - 2016-08-06 13:52 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\FLEXnet
2016-08-06 13:51 - 2016-08-06 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Roxio Burn
2016-08-04 12:18 - 2016-08-04 12:39 - 00001456 _____ C:\Users\Callum\AppData\Local\Adobe Save for Web 13.0 Prefs
2016-08-03 15:38 - 2016-08-06 23:14 - 00000000 ____D C:\Users\Callum\AppData\Roaming\OBS
2016-08-03 15:38 - 2016-08-03 15:38 - 00000935 _____ C:\Users\Callum\Desktop\Open Broadcaster Software.lnk
2016-08-03 15:38 - 2016-08-03 15:38 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-08-03 15:37 - 2016-08-06 23:14 - 00000000 ____D C:\Program Files (x86)\OBS
2016-08-03 15:37 - 2016-08-03 15:38 - 00000000 ____D C:\Program Files\OBS
2016-08-01 00:32 - 2016-08-01 00:32 - 00000319 _____ C:\Windows\wininit.ini
2016-07-22 10:10 - 2016-07-28 14:32 - 00000000 ____D C:\Users\Callum\AppData\Local\ElevatedDiagnostics
2016-07-19 13:52 - 2016-08-06 13:52 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Roxio
2016-07-19 13:51 - 2016-07-19 13:52 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2016-07-19 13:51 - 2016-07-19 13:51 - 00002255 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk
2016-07-19 13:51 - 2016-07-19 13:51 - 00001413 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\CrashRpt
2016-07-19 13:51 - 2016-07-19 13:51 - 00000000 ____D C:\Users\Administrator\AppData\Local\Adobe
2016-07-19 13:50 - 2016-08-03 00:30 - 00000000 ____D C:\Users\Administrator
2016-07-19 13:50 - 2016-07-19 13:50 - 00000020 ___SH C:\Users\Administrator\ntuser.ini
2016-07-19 13:50 - 2016-07-19 13:50 - 00000000 _SHDL C:\Users\Administrator\My Documents
2016-07-19 13:50 - 2016-07-19 13:50 - 00000000 _SHDL C:\Users\Administrator\Documents\My Videos
2016-07-19 13:50 - 2016-07-19 13:50 - 00000000 _SHDL C:\Users\Administrator\Documents\My Pictures
2016-07-19 13:50 - 2016-07-19 13:50 - 00000000 _SHDL C:\Users\Administrator\Documents\My Music
2016-07-19 13:50 - 2015-10-14 17:10 - 00000000 ____D C:\Users\Administrator\AppData\Local\Microsoft Help
2016-07-19 13:50 - 2015-08-15 19:02 - 00002100 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-07-19 13:50 - 2010-11-21 08:16 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Media Center Programs
2016-07-19 13:49 - 2016-07-19 13:49 - 00141344 _____ C:\Users\Callum\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-19 12:56 - 2016-07-19 13:01 - 00000000 ____D C:\Program Files\Unlocker
2016-07-19 12:56 - 2016-07-19 12:56 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2016-07-19 12:46 - 2016-07-19 12:46 - 05100208 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-16 14:21 - 2016-07-16 14:21 - 00000000 ____D C:\Users\Callum\.m2
2016-07-16 14:19 - 2016-07-16 14:19 - 00000066 _____ C:\Users\Callum\.gitconfig
2016-07-16 14:17 - 2016-07-16 14:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2016-07-16 14:17 - 2016-07-16 14:17 - 00000000 ____D C:\ProgramData\Git
2016-07-16 14:16 - 2016-07-16 14:17 - 00000000 ____D C:\Program Files\Git
2016-07-14 00:36 - 2016-07-14 00:37 - 00000000 ____D C:\Users\Callum\Documents\MCEdit
2016-07-14 00:36 - 2016-07-14 00:36 - 00001059 _____ C:\Users\Callum\Desktop\mcedit - Shortcut.lnk
2016-07-14 00:35 - 2016-07-14 01:16 - 00000000 ____D C:\Program Files\MCCEDIT
2016-07-13 20:04 - 2016-07-14 14:39 - 00000000 ____D C:\Users\Callum\Desktop\Minecraft 1.8.8
2016-07-13 12:31 - 2016-06-11 05:48 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-13 12:31 - 2016-06-10 22:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-13 12:31 - 2016-06-10 22:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-13 12:31 - 2016-06-10 22:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-13 12:31 - 2016-06-10 21:38 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-13 12:31 - 2016-06-10 21:13 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-13 12:31 - 2016-06-10 19:53 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-13 12:31 - 2016-06-10 19:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-07-13 12:31 - 2016-06-10 19:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-13 12:31 - 2016-06-10 19:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-07-13 12:31 - 2016-06-10 19:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-13 12:31 - 2016-06-10 19:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-07-13 12:31 - 2016-06-10 19:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-07-13 12:31 - 2016-06-10 19:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-07-13 12:31 - 2016-06-10 18:41 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-13 12:30 - 2016-06-11 07:57 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-13 12:30 - 2016-06-10 22:38 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-13 12:30 - 2016-06-10 22:38 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-13 12:30 - 2016-06-10 22:20 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-13 12:30 - 2016-06-10 22:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-13 12:30 - 2016-06-10 22:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-13 12:30 - 2016-06-10 22:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-13 12:30 - 2016-06-10 22:17 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-13 12:30 - 2016-06-10 22:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-13 12:30 - 2016-06-10 22:05 - 25814016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-13 12:30 - 2016-06-10 22:04 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-13 12:30 - 2016-06-10 22:03 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-13 12:30 - 2016-06-10 22:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-13 12:30 - 2016-06-10 22:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-13 12:30 - 2016-06-10 21:53 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-13 12:30 - 2016-06-10 21:50 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-13 12:30 - 2016-06-10 21:49 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-13 12:30 - 2016-06-10 21:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-13 12:30 - 2016-06-10 21:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-13 12:30 - 2016-06-10 21:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-13 12:30 - 2016-06-10 21:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-13 12:30 - 2016-06-10 21:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-13 12:30 - 2016-06-10 21:15 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-13 12:30 - 2016-06-10 21:12 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-13 12:30 - 2016-06-10 21:11 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-13 12:30 - 2016-06-10 21:10 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-13 12:30 - 2016-06-10 20:45 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-13 12:30 - 2016-06-10 20:44 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-13 12:30 - 2016-06-10 20:30 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-13 12:30 - 2016-06-10 20:21 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-13 12:30 - 2016-06-10 20:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-07-13 12:30 - 2016-06-10 19:54 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-07-13 12:30 - 2016-06-10 19:53 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-07-13 12:30 - 2016-06-10 19:47 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-13 12:30 - 2016-06-10 19:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-13 12:30 - 2016-06-10 19:42 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-13 12:30 - 2016-06-10 19:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-13 12:30 - 2016-06-10 19:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-13 12:30 - 2016-06-10 19:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-07-13 12:30 - 2016-06-10 19:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-07-13 12:30 - 2016-06-10 19:32 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-07-13 12:30 - 2016-06-10 19:24 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-07-13 12:30 - 2016-06-10 19:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-13 12:30 - 2016-06-10 19:14 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-13 12:30 - 2016-06-10 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-13 12:30 - 2016-06-10 19:10 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-13 12:30 - 2016-06-10 19:09 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-13 12:30 - 2016-06-10 19:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-07-13 12:30 - 2016-06-10 18:58 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-13 12:30 - 2016-06-10 18:45 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-13 12:30 - 2016-06-10 18:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-13 12:29 - 2016-06-26 01:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-13 12:29 - 2016-06-26 01:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-13 12:29 - 2016-06-26 01:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-13 12:29 - 2016-06-26 01:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-13 12:29 - 2016-06-26 01:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-07-13 12:29 - 2016-06-25 20:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-07-13 12:29 - 2016-06-25 20:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-13 12:29 - 2016-06-25 20:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-07-13 12:29 - 2016-06-25 20:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-07-13 12:29 - 2016-06-25 20:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-07-13 12:29 - 2016-06-14 16:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-13 00:39 - 2016-07-07 23:30 - 00936960 ___SH (AutoIt Team) C:\Users\Callum\AppData\Roaming\Microsoft Service.exe
2016-07-13 00:39 - 2016-07-07 23:30 - 00222736 ___SH C:\Users\Callum\AppData\Roaming\PMiHDAfHIQdX
2016-07-13 00:39 - 2016-07-07 23:30 - 00036519 ___SH C:\Users\Callum\AppData\Roaming\hNVRERISRhbPEQNRcfI
2016-07-12 14:22 - 2016-07-12 14:22 - 00000000 ____D C:\Users\Callum\Desktop\SentryMba

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-09 01:31 - 2015-03-04 19:08 - 00000000 ___HD C:\Users\Callum\.mediafire
2016-08-09 01:29 - 2016-01-26 10:34 - 00000000 ____D C:\Users\Callum\AppData\Roaming\uTorrent
2016-08-09 01:24 - 2015-06-13 15:34 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-08-09 01:24 - 2015-01-13 22:08 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Skype
2016-08-09 01:21 - 2014-12-14 22:03 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-09 01:18 - 2009-07-14 05:45 - 00020848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-09 01:18 - 2009-07-14 05:45 - 00020848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-09 01:02 - 2015-01-19 08:42 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-08 23:26 - 2014-12-14 22:54 - 00000000 ____D C:\Users\Callum\AppData\Roaming\.minecraft
2016-08-08 23:21 - 2014-12-14 22:03 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-08 22:24 - 2014-12-14 22:03 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 21:59 - 2016-06-06 12:17 - 00000000 ____D C:\Users\Callum\AppData\LocalLow\uTorrent
2016-08-08 21:59 - 2015-03-04 19:08 - 00000000 ___RD C:\Users\Callum\MediaFire
2016-08-08 21:45 - 2014-12-29 17:54 - 00000000 ____D C:\ProgramData\VMware
2016-08-08 21:44 - 2014-12-14 22:08 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-08 21:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-08 11:54 - 2015-05-20 22:35 - 00000000 ____D C:\ProgramData\Unified Remote
2016-08-07 20:51 - 2015-07-05 11:15 - 00001682 _____ C:\Windows\Sandboxie.ini
2016-08-07 03:15 - 2015-04-19 00:14 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Kodi
2016-08-06 23:24 - 2015-03-10 20:16 - 00000000 ____D C:\Users\Callum\Desktop\KVs
2016-08-06 14:23 - 2014-12-14 19:04 - 00000000 ____D C:\Users\Callum
2016-08-06 14:21 - 2015-11-04 18:23 - 00000000 ____D C:\Users\Callum\Documents\MEGAsync Downloads
2016-08-06 14:19 - 2016-01-08 11:01 - 00000000 ____D C:\Users\Callum\AppData\Roaming\Roxio
2016-08-06 14:09 - 2009-07-14 06:13 - 00006410 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-06 14:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-08-06 14:02 - 2015-12-25 00:33 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-08-04 12:13 - 2014-12-15 12:41 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2016-08-03 00:30 - 2015-01-04 21:37 - 00000000 ____D C:\Users\Guest
2016-08-01 00:32 - 2015-01-16 19:42 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-07-29 14:08 - 2015-01-13 22:08 - 00000000 ____D C:\ProgramData\Skype
2016-07-29 14:07 - 2016-01-03 23:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-28 23:16 - 2014-12-14 22:03 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-28 23:16 - 2014-12-14 22:03 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-25 13:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-24 21:05 - 2015-03-24 00:29 - 00000000 ____D C:\Users\Callum\AppData\Roaming\vlc
2016-07-22 23:09 - 2015-01-04 15:54 - 00000000 ____D C:\ProgramData\Hotspot Shield
2016-07-22 23:08 - 2016-06-15 08:36 - 00001048 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk
2016-07-22 23:08 - 2015-01-04 15:54 - 00000000 ____D C:\Program Files (x86)\Hotspot Shield
2016-07-21 15:27 - 2015-06-11 10:52 - 00000000 ____D C:\Windows\rescache
2016-07-21 03:07 - 2015-11-04 18:21 - 00000000 ____D C:\Users\Callum\AppData\Local\MEGAsync
2016-07-19 13:51 - 2009-07-14 05:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-19 13:43 - 2016-03-02 13:56 - 00000000 ____D C:\Users\Callum\AppData\Local\CrashDumps
2016-07-19 12:45 - 2014-12-14 22:03 - 00000000 ____D C:\Program Files\Google
2016-07-19 12:45 - 2014-12-14 22:03 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-19 12:43 - 2016-06-08 13:33 - 00000000 ____D C:\Users\Callum\Documents\PCSX2
2016-07-19 12:41 - 2014-12-14 22:03 - 00000000 ____D C:\Users\Callum\AppData\Local\Google
2016-07-19 12:39 - 2015-02-22 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-07-19 12:38 - 2015-07-06 21:03 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2016-07-19 12:30 - 2016-01-26 10:39 - 00000000 ____D C:\Users\Callum\AppData\Roaming\BitTorrent
2016-07-19 12:30 - 2014-12-29 18:15 - 00000000 ____D C:\Users\Callum\AppData\Roaming\DAEMON Tools Lite
2016-07-19 11:57 - 2015-01-14 18:18 - 00000000 ____D C:\Windows\Minidump
2016-07-17 21:50 - 2009-07-14 06:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-07-16 14:18 - 2016-07-08 15:27 - 00000000 ____D C:\Users\Callum\Desktop\Minecraft server
2016-07-14 16:24 - 2015-06-13 15:34 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-14 16:24 - 2015-06-13 15:34 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-14 16:24 - 2015-06-13 15:34 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-14 15:41 - 2015-06-08 02:13 - 00000000 ____D C:\Users\Callum\Desktop\Premade Skyblock V1
2016-07-14 03:08 - 2014-12-15 08:46 - 00000000 ____D C:\Windows\system32\MRT
2016-07-14 03:03 - 2014-12-15 08:46 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-12 13:24 - 2015-06-13 15:34 - 00000000 ____D C:\Windows\system32\Macromed
2016-07-12 13:24 - 2014-12-15 12:40 - 00000000 ____D C:\Windows\SysWOW64\Macromed

==================== Files in the root of some directories =======

2015-06-14 22:47 - 2015-06-14 22:47 - 6420480 _____ () C:\Program Files (x86)\GUT9B07.tmp
2005-04-01 10:20 - 2016-05-07 03:27 - 3006795 ____H () C:\Users\Callum\AppData\Roaming\Callumv1.18.0 - Trial versionlog.dat
2016-07-13 00:39 - 2016-07-07 23:30 - 0036519 ___SH () C:\Users\Callum\AppData\Roaming\hNVRERISRhbPEQNRcfI
2016-07-13 00:39 - 2016-07-07 23:30 - 0936960 ___SH (AutoIt Team) C:\Users\Callum\AppData\Roaming\Microsoft Service.exe
2016-07-13 00:39 - 2016-07-07 23:30 - 0222736 ___SH () C:\Users\Callum\AppData\Roaming\PMiHDAfHIQdX
2016-08-04 12:18 - 2016-08-04 12:39 - 0001456 _____ () C:\Users\Callum\AppData\Local\Adobe Save for Web 13.0 Prefs
2016-08-08 11:54 - 2016-08-08 11:54 - 0000000 ____H () C:\ProgramData\cm-lock
2014-10-14 04:49 - 2014-10-14 04:49 - 0002465 _____ () C:\ProgramData\regid.2012-08.com.Corel,Roxio_76C7858E-078C-4C49-AB1A-2A7072664935.swidtag

Some files in TEMP:
====================
C:\Users\Callum\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Callum\AppData\Local\Temp\jansi-64-git-Spigot-078e2f8-7f9fbe5-3633985069806480114.dll
C:\Users\Callum\AppData\Local\Temp\jansi-64-git-Spigot-078e2f8-7f9fbe5-4240954274062952039.dll
C:\Users\Callum\AppData\Local\Temp\jansi-64-git-Spigot-078e2f8-7f9fbe5-7119718530938099640.dll
C:\Users\Guest\AppData\Local\Temp\vlc-2.2.1-win32.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-08-07 07:52

==================== End of FRST.txt ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-08-2016
Ran by Callum (2016-08-09 01:31:23)
Running from C:\Users\Callum\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-12-14 18:04:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-452852654-1086473647-1945901625-500 - Administrator - Enabled) => C:\Users\Administrator
Callum (S-1-5-21-452852654-1086473647-1945901625-1000 - Administrator - Enabled) => C:\Users\Callum
Guest (S-1-5-21-452852654-1086473647-1945901625-501 - Limited - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-452852654-1086473647-1945901625-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
abgx360 v1.0.6 (HKLM-x32\...\abgx360) (Version:  - )
Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{903D0F33-D3CF-48D6-967D-84004089428A}) (Version: 4.0.51203.1 - Microsoft Corporation)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.6.8.3 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.6.8.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
BitTorrent Plus 7.7 (HKLM-x32\...\BitTorrent Plus 7.7) (Version: 7.7 - BitTorrent)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM-x32\...\{7293ACA7-D9B9-4DB9-B7D6-435FFF9CBBD3}) (Version: 0.8.11.3116 - BlueStack Systems, Inc.)
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation)
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
Charles 3.9.3 (HKLM\...\{B952C640-6B36-4C6E-9CDC-E449158C0E75}) (Version: 3.9.3.3 - XK72 Ltd)
Contents (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
Corel FastFlick (HKLM-x32\...\_{10EC8494-8A92-49D8-9677-2483EB01F7F1}) (Version: 1.0.0.93 - Corel Corporation)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Creator NXT 3 Content (x32 Version: 16.0.004 - Roxio) Hidden
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dazzle Video Capture DVC100 X64 Driver 1.06 (x32 Version: 1.06.0000 - Pinnacle) Hidden
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dying Light Demo (HKLM-x32\...\Steam App 381570) (Version:  - Techland)
EaseUS Data Recovery Wizard 8.5 (HKLM\...\EaseUS Data Recovery Wizard 8.5_is1) (Version:  - EaseUS)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version:  - SEIKO EPSON Corporation)
Git version 2.9.2 (HKLM\...\Git_is1) (Version: 2.9.2 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.5 - ASUS) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Gyazo 3.2.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
Horizon v2.8.6.2 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.8.6.2 - Daring Development Inc.)
Hotspot Shield 5.4.6 (HKLM-x32\...\HotspotShield) (Version: 5.4.6 - AnchorFree Inc.)
Hotspot Shield 5.4.6 Embedded (x32 Version: 5.4.6.9728 - Buildbot) Hidden
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
ICA (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
IDA Pro Advanced v5.5 with Hex-Rays Decompiler v1.1 (HKLM-x32\...\IDA Pro Advanced v5.5 with Hex-Rays Decompiler v1.1_is1) (Version:  - )
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
IPFilter Updater (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\07140e809c2bb6df) (Version: 1.0.0.11 - David Moore)
IPM_VS_Pro (x32 Version: 1.0 - Corel Corporation) Hidden
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.15 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kodi (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\Kodi) (Version:  - XBMC-Foundation)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MediaFire Desktop (HKLM-x32\...\MediaFire Desktop 1.4.22.10795) (Version: 1.4.29.10845 - MediaFire)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 0.8.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Update 1 (HKLM-x32\...\{5642384f-2a89-46d3-acd5-bfe8bf6e8b2f}) (Version: 14.0.24720.0 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft Xbox 360 SDK 2.0.20871.2 (HKLM-x32\...\Microsoft Xbox 360 SDK) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 45.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 en-US)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.19.0) (Version: 4.0.19.0 - Locktime Software)
NetLimiter 4 (Version: 4.0.19.0 - Locktime Software) Hidden
Next Car Game Wreckfest v1.0 / RePack by Azaq (HKLM-x32\...\Next Car Game Wreckfest_is1) (Version:  - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
ProxyCap (HKLM\...\{DFBFBC41-DFE4-408C-A1F7-C02B1BF82921}) (Version: 5.2.70 - Proxy Labs)
Python 2.7.3 (HKLM-x32\...\{C0C31BCC-56FB-42a7-8766-D29E1BD74C7C}) (Version: 2.7.3150 - Python Software Foundation)
Python 3.4.0 (64-bit) (HKLM\...\{863162A8-ECC2-35EA-BDF7-E09AC456E164}) (Version: 3.4.150 - Python Software Foundation)
Python 3.5.1 (64-bit) (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\{b8440650-9dbe-4b7d-8167-6e0e3dcdf5d0}) (Version: 3.5.1150.0 - Python Software Foundation)
Python 3.5.1 Core Interpreter (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Development Libraries (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Documentation (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Executables (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{EC00AEF9-6544-4FEC-8152-C8949CDDCC85}) (Version: 3.5.150.0 - Python Software Foundation)
Python 3.5.1 pip Bootstrap (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Standard Library (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Tcl/Tk Support (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Test Suite (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Utility Scripts (64-bit) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Ranger Outpost Remote Client (HKLM-x32\...\Ranger Outpost Client) (Version: 2.0.0.1183 - Sentinel Products Ltd)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6559 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
RogueKiller version 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
Roxio Creator NXT 3 Content (HKLM-x32\...\{2DF5BF6E-D32C-4B81-9012-F62B58AFF819}) (Version: 1.0.4.0 - Roxio)
Roxio Creator NXT Pro 3 (HKLM-x32\...\{7B4B9450-39C8-454A-AA2D-6548EE4D21EB}) (Version: 16.0.50.1 - Roxio)
Roxio Virtual Drive x64 (Version: 1.00.0000 - Roxio, Inc.) Hidden
Sandboxie 4.20 (64-bit) (HKLM\...\Sandboxie) (Version: 4.20 - Sandboxie Holdings, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Setup (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
Share (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.1.201601071555 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.2.6 - Unified Intents AB)
Unity Web Player (HKU\S-1-5-21-452852654-1086473647-1945901625-1000\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 11.0.0 - VMware, Inc)
VMware Workstation (Version: 11.0.0 - VMware, Inc.) Hidden
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
VSClassic (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
VSPro (x32 Version: 1.0.0.93 - Corel Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinISO (HKLM-x32\...\WinISO) (Version: 6.4.0.5170 - WinISO Computing Inc.)
WinRAR 5.20 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.2 - win.rar GmbH)
X GXT Editor V.2.2 (HKLM-x32\...\{E9117462-4778-46E8-B87C-C2E5D1E4BE99}) (Version: 2.2.0 - Mato Technologies)
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{0037AC54-E32B-4ACA-9864-09F869AA82FE}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{00BB2763-6A77-11D0-A535-00C04FD7D062}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{03C036F1-A186-11D0-824A-00AA005B4383}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{104846AB-42B1-4E38-A80D-136F78C3F258}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{12594540-9B58-4FE9-A7EA-8A10F641B049}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{18907F3B-9AFB-4F87-B764-F9A4E16A21B8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{1F6DE925-8416-40D4-BC66-D69DB9D4360B}\InprocServer32 -> C:\Program Files\Roxio Creator NXT Pro 3\Virtual Drive 10\DC_ShellExt64.dll (Corel Corporation)
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{247161C5-995C-4097-9FF4-655DC6D12DB5}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{447AC255-CE81-43AD-9827-AFDDB1561B07}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{4E77131D-3629-431C-9818-C5679DC83E81}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{50EF4544-AC9F-4A8E-B21B-8A26180DB13F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{53BD6B4E-3780-4693-AFC3-7161C2F3EE9C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{5908297F-1B90-4C81-8B9D-CAFB1808C432}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{5EE8C634-CDC0-453D-9731-DF0B19F4E807}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{603D3800-BD81-11D0-A3A5-00C04FD706EC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{71F96385-DDD6-48D3-A0C1-AE06E8B055FB}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{759F3E92-F4E8-4953-8315-238B8B17E0F3}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{7995D0FC-769B-4197-AEC0-991921CB99E1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{7EFC002A-071F-4CE7-B265-F4B4263D2FD2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{807C1E6C-1D00-453F-B920-B61BB7CDD997}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{82C588E7-E54B-408C-9F8C-6AF9ADF6F1E9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{89798CA1-701C-4633-B553-AC73E3424520}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{91A52FB4-15AF-43A7-90C9-3A72DF68A01A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{91A52FB8-15AF-43A7-90C9-3A72DF68A01A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{934D4698-6A59-48F8-9F29-9FB30670320E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{94E15FA1-68AF-4281-A67C-7D5A086169F2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{9A3B79CB-D899-40B5-8DBC-20447F1ADC8F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{9CFC2DF3-6BA3-46EF-A836-E519E81F0EC4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{A5AC04E7-3E13-48CE-A43F-9FBA59DB1544}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{A9B377B6-7D6F-4F37-B208-2AF6DC85E608}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{AB37E6C0-194D-4C33-A924-5178414DEB98}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{AB406AAC-2B2B-11D3-B36B-00C04F6108FF}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{AF02484C-A0A9-4669-9051-058AB12B9195}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{B8967F85-58AE-4F46-9FB2-5D7904798F4B}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{B9330878-C1DB-11D3-B36B-00C04F6108FF}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{C4D81971-6B13-4173-AB21-F83AD20CCC04}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{CACAF262-9370-4615-A13B-9F5539DA4C0A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{CFC399AF-D876-11D0-9C10-00C04FC99C8E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{D58960BA-2EF3-4910-9E34-C911B1710180}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{D5DC4B7F-786B-42B7-B83B-FE1B5FC15E2C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{E3DC6D1E-50E6-469D-818E-CD3FE8E24CF6}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{EDB5F444-CB8D-445A-A523-EC5AB6EA33C7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{EE3C1BE8-E049-43DC-BB3D-32CA777EA3C1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{FCC970B8-86D5-4A30-AC33-B76679BDF970}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-452852654-1086473647-1945901625-1000_Classes\CLSID\{FF8F1D65-AD2B-47F1-9E71-66B7D35E3852}\InprocServer32 -> no filepath

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07880EA8-1259-4B52-9B27-2412C79B708A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {3BB2FFD0-6790-4A42-AFB9-C26E227E2291} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {3E99DC87-170B-47D3-804B-C9D2026F8DF9} - System32\Tasks\WAN Host Task => C:\Program Files (x86)\WAN Host\wanhost.exe [2015-06-19] (Microsoft Corporation) <==== ATTENTION
Task: {508D5837-3E2A-4476-A2A9-004AA1E547F8} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-02] ()
Task: {7B7F8BDE-E640-4E0C-8CE5-BCB23F70DE6F} - System32\Tasks\WAN Host => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [2015-06-19] (Microsoft Corporation)
Task: {7D1139DE-4EE5-41E8-AC62-203C1D503F55} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {8471CC04-39D7-4ADA-A37D-B5405C461AA4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {8CA9BE2B-2EE1-4E4A-8CFF-D5D0FBE60379} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-02] ()
Task: {A87EB53B-458F-463D-979D-DAD47A615E36} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {B2040144-DF97-401F-9711-764856448655} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {B2D9AA1A-C669-4347-B68F-EE845F91D15B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-14] (Adobe Systems Incorporated)
Task: {C2CDB5D2-BDE9-4ADA-B87C-F11148CF5556} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV\Go to OpenIV web site.lnk -> hxxp://openiv.com/

ShortcutWithArgument: C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecontrol for Minecraft\Minecontrol for Minecraft.lnk -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://update.joshjcarrier.com/minecontrol/launch.jnlp "C:\Users\Callum\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\3e77bec5-107b19b8"
ShortcutWithArgument: C:\Users\Callum\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\371b6590bc8d800\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 6"
ShortcutWithArgument: C:\Users\Callum\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3"

==================== Loaded Modules (Whitelisted) ==============

2014-12-14 22:08 - 2015-05-28 05:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-10-16 03:13 - 2013-10-16 03:13 - 00457960 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2014-01-22 02:04 - 2014-01-22 02:04 - 00022760 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 00456176 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\MFUsnMonitorService.exe
2016-03-01 15:44 - 2016-01-12 05:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2014-11-20 19:20 - 2014-11-20 19:20 - 12730560 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2013-10-16 03:02 - 2013-10-16 03:02 - 00535784 _____ () C:\Program Files (x86)\Roxio Creator NXT Pro 3\Roxio Burn\RoxioBurnLauncher.exe
2014-05-01 15:13 - 2016-07-21 03:07 - 00592384 _____ () C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX64.dll
2015-03-04 19:07 - 2015-04-23 14:47 - 04003840 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_watch.exe
2015-10-19 12:02 - 2015-10-19 12:02 - 00055176 _____ () C:\Program Files\CCleaner\branding.dll
2015-03-04 19:07 - 2015-04-23 14:47 - 01231872 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_hub.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 04704768 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\MediaFire Desktop.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 04343808 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_filetransfer.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 03972608 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_browser.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 09612800 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_central_control.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 02408960 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_monitor.exe
2016-01-27 22:11 - 2015-06-10 11:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-03-04 19:07 - 2015-04-23 14:47 - 07173632 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mf_dialogs.exe
2016-08-08 21:59 - 2016-08-08 21:59 - 00310272 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\lwjgl64.dll
2016-08-08 21:59 - 2016-08-08 21:59 - 00653832 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\avutil-ttv-51.dll
2016-08-08 21:59 - 2016-08-08 21:59 - 00361103 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\swresample-ttv-0.dll
2016-08-08 21:59 - 2016-08-08 21:59 - 00688161 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\libmp3lame-ttv.dll
2016-08-08 21:59 - 2016-08-08 21:59 - 01384960 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\twitchsdk.dll
2016-08-08 21:59 - 2016-08-08 21:59 - 00382464 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-893155141248\OpenAL64.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 00310272 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\lwjgl64.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 00653832 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\avutil-ttv-51.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 00361103 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\swresample-ttv-0.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 00688161 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\libmp3lame-ttv.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 01384960 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\twitchsdk.dll
2016-08-08 23:25 - 2016-08-08 23:25 - 00382464 _____ () C:\Users\Callum\AppData\Roaming\.minecraft\versions\huzuni\huzuni-natives-6035575412600\OpenAL64.dll
2014-01-22 02:04 - 2014-01-22 02:04 - 03322600 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\App\BEngine.dll
2014-01-22 02:04 - 2014-01-22 02:04 - 00524520 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\App\TRREngine.dll
2014-01-22 02:04 - 2014-01-22 02:04 - 00108776 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\App\Logging.dll
2016-07-19 06:06 - 2016-07-19 06:06 - 00166520 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2015-01-16 19:42 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-01-16 19:42 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-01-16 19:42 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-01-16 20:45 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-01-16 20:45 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-11-20 19:44 - 2014-11-20 19:44 - 01299136 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2014-11-20 19:20 - 2014-11-20 19:20 - 00191680 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
2014-11-20 19:20 - 2014-11-20 19:20 - 00388288 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
2014-11-20 19:20 - 2014-11-20 19:20 - 00194752 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
2014-07-14 16:25 - 2014-07-14 16:25 - 00278528 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Vender.dll
2014-06-16 18:25 - 2014-06-16 18:25 - 00053248 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Exeio.dll
2014-05-01 15:15 - 2016-07-21 03:07 - 00564224 _____ () C:\Users\Callum\AppData\Local\MEGAsync\ShellExtX32.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-06-10 09:40 - 2016-01-12 05:43 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-04 19:07 - 2015-04-23 14:32 - 00112142 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\libgcc_s_dw2-1.dll
2015-03-04 19:07 - 2015-04-23 14:32 - 01000974 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\libstdc++-6.dll
2015-03-04 19:07 - 2015-04-23 14:11 - 04188400 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\libsqlite3cc.dll
2015-03-04 19:07 - 2015-04-23 14:10 - 00042496 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\win32overlay.dll
2016-01-27 22:11 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2016-01-27 22:11 - 2015-10-20 18:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2015-11-06 12:46 - 2015-11-06 12:46 - 02385280 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2016-01-27 22:11 - 2015-04-21 13:22 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2015-09-07 17:01 - 2015-09-07 17:01 - 00237440 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-11-13 12:52 - 2015-11-13 12:52 - 00824192 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2015-03-04 19:07 - 2015-04-23 14:10 - 00007680 _____ () C:\Users\Callum\AppData\Local\MediaFire Desktop\mfmonitor.dll
2011-01-07 23:29 - 2011-01-07 23:29 - 00176128 _____ () C:\Program Files (x86)\AIM\nssckbi.dll
2016-07-21 03:06 - 2016-07-21 03:06 - 00482304 _____ () C:\Users\Callum\AppData\Local\MEGAsync\libsodium.dll
2016-06-18 10:18 - 2016-06-15 10:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 10:18 - 2016-06-15 10:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-07-13 03:14 - 2016-07-06 18:01 - 17602240 _____ () C:\Users\Callum\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Callum\MediaFire:mf_x [26]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-452852654-1086473647-1945901625-1000\Software\Classes\comfile:  <===== ATTENTION
HKU\S-1-5-21-452852654-1086473647-1945901625-1000\Software\Classes\.com:  =>  <===== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2015-01-04 15:50 - 00001217 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
127.0.0.1 anchorfree.us
127.0.0.1 a433.com
127.0.0.3 anchorfree.net
127.0.0.1 rpt.anchorfree.net
127.0.0.1 delivery.anchorfree.us/land.php
127.0.0.1 hsselite.com
127.0.0.1 www.hsselite.com 

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-452852654-1086473647-1945901625-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Callum\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EPSON SX235 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE /FU "C:\Users\Callum\AppData\Local\Temp\E_SAC76.tmp" /EF "HKCU"
MSCONFIG\startupreg: EPSON35067B (Epson Stylus SX235) => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE /FU "C:\Users\Callum\AppData\Local\Temp\E_SAB9C.tmp" /EF "HKCU"
MSCONFIG\startupreg: Gyazo => C:\Program Files (x86)\Gyazo\GyStation.exe
MSCONFIG\startupreg: ProxyCap => C:\PROGRA~1\PROXYL~1\ProxyCap\pcapui.exe
MSCONFIG\startupreg: XFast LAN => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{2DF6380A-2CAA-4318-B81B-AC055C5034A9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{81519A40-4D3B-427C-AA0C-14F73E29ACD2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4D41FCB2-8C13-4F31-89BC-81937F6DA7A7}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C6930B3A-3426-44F5-B466-7050B6D94269}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A0419BAA-C06E-4A02-B0B0-2072E3C6B140}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{2C8E85ED-E8E3-4500-AF12-B97A5FF0A65E}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{A348CF8C-AF8F-40CC-8745-BD396309CFAB}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{4AB5B7E8-2616-4BBB-8F88-0637B1628C5A}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [TCP Query User{E08FB399-D064-4CAD-AB24-39A94A6DD66D}C:\program files\charles\charles.exe] => (Allow) C:\program files\charles\charles.exe
FirewallRules: [UDP Query User{CB32DFE2-C850-4FD1-86CE-70FB98FE662C}C:\program files\charles\charles.exe] => (Allow) C:\program files\charles\charles.exe
FirewallRules: [{4D4736E4-FA31-4C64-9B35-BAF9988992F6}] => (Allow) C:\Program Files (x86)\IDA\idag.exe
FirewallRules: [{8294A5FF-2B17-4395-93A8-50C626552575}] => (Allow) C:\Program Files (x86)\IDA\idag.exe
FirewallRules: [{16D5225F-6887-4114-91E6-49FEA46A9002}] => (Allow) C:\Program Files (x86)\IDA\idag64.exe
FirewallRules: [{D175AE24-A4FC-42E9-8B60-9E34DE62B117}] => (Allow) C:\Program Files (x86)\IDA\idag64.exe
FirewallRules: [TCP Query User{B44AD394-D22E-4110-A59C-0574B8D060D7}C:\program files (x86)\ida\idag64.exe] => (Allow) C:\program files (x86)\ida\idag64.exe
FirewallRules: [UDP Query User{BE6847F8-3F6E-4710-9C0B-4FBC71D2B144}C:\program files (x86)\ida\idag64.exe] => (Allow) C:\program files (x86)\ida\idag64.exe
FirewallRules: [{BDAA7373-CABE-496D-9802-826B3EE3364B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{02EC20CA-B63C-4FE4-BCAE-9B87D5D8436E}C:\program files (x86)\ida\idag.exe] => (Block) C:\program files (x86)\ida\idag.exe
FirewallRules: [UDP Query User{F57E37D4-9537-4B7E-A1F5-97993DB2F878}C:\program files (x86)\ida\idag.exe] => (Block) C:\program files (x86)\ida\idag.exe
FirewallRules: [TCP Query User{23B38A08-6343-4BF1-87EC-12CD64F54454}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{5F726F50-D620-4117-8B17-3EC78DA5C9E3}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{8C9A1FDA-F98D-487B-A143-A1F0E8D6DDD1}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{FFDD293F-89AE-4F96-9BA0-70961A39031D}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{E09FF660-5958-46C0-816F-6C5A8ECC2D60}] => (Block) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{011B46CC-2688-4D27-9512-F2B5BF7F5074}] => (Block) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{99F3F7C3-5F8F-423B-B854-32C6475B4A7C}] => (Allow) G:\Steam\SteamLibrary\Steam.exe
FirewallRules: [{97745512-92CF-4611-90A3-C32861A7CB95}] => (Allow) G:\Steam\SteamLibrary\Steam.exe
FirewallRules: [{A8357447-4475-42BC-9088-32E46CC1AFF1}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{E1C1FF2D-9EB3-4FDE-A0AC-EF4957DCC208}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{99E03852-FDF9-485D-98EC-1EED86E9B520}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{C9D843C9-2636-4CD9-9D1C-85B4FAA0C358}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [TCP Query User{7E972FD7-3B17-4C5F-AA6B-7D05DF001910}G:\steam\steamlibrary\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{3FD12CE8-DA1B-43DB-A9A5-B2422F770539}G:\steam\steamlibrary\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{5C65B228-1810-4872-A426-649A006CC9A5}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{DEEA0E96-72EC-48A4-8C5B-AFC893974120}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{7D94B7E5-FF2F-48F3-B066-BAEF7E844725}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [{F9B94B9C-B130-4DD3-B1D4-099BF49B15CA}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [TCP Query User{5890B921-7FD7-4704-8543-73B1A23A33E7}C:\users\callum\desktop\keyvaultvalidator.exe] => (Block) C:\users\callum\desktop\keyvaultvalidator.exe
FirewallRules: [UDP Query User{0B586B68-1DB3-418E-BED1-B000869FF349}C:\users\callum\desktop\keyvaultvalidator.exe] => (Block) C:\users\callum\desktop\keyvaultvalidator.exe
FirewallRules: [TCP Query User{373239F6-AA9C-4E37-8909-023F60713F0B}C:\program files (x86)\java\jre1.8.0_45\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\java.exe
FirewallRules: [UDP Query User{537AD341-E742-4181-8ED4-5E9E3A6D1833}C:\program files (x86)\java\jre1.8.0_45\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\java.exe
FirewallRules: [TCP Query User{820C733E-02E3-44BB-948B-4CD7FB9B167D}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{551E04DC-41AC-4AFA-BD3F-C8C9CA193B4B}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{72DEBA77-6545-4D24-998F-5333088EA590}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B49BDE27-7C06-49F2-AE94-6D87B6BCE1F0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E8B86C8A-18DA-488F-8ADF-2EDFAA53CBDF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9F59809C-8053-416C-99AF-D220181F5C59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A8D28E98-D5AD-48DA-AE7A-EB064182C8B0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6D5A1DB-8731-418D-8DC8-4A4B24B5DE9E}] => (Allow) LPort=25565
FirewallRules: [TCP Query User{127F816C-37DF-4B94-8C02-75157746B9AB}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62F4F15C-9944-4692-90A4-8A3EB969587E}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{D391A3CA-F2CD-43F1-8F26-6F38EE346AFF}] => (Allow) C:\Users\Callum\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{42A4DD7F-F36C-4C99-AF92-B1D880BB8F51}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9FC9BD25-E52C-41B3-9891-45DC3C78325E}] => (Allow) LPort=2869
FirewallRules: [{59D3E243-3384-4B88-850B-1B38E5E0B493}] => (Allow) LPort=1900
FirewallRules: [{971F9A3F-70AB-43BF-9DEC-4C8C5E233F1B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{5F05DCBB-2DDD-4A88-8C5B-40B4FE207777}C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{81429EDF-9231-43D5-AA40-44FA5AC90FF7}C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{8C0467D7-144C-45E6-9DF3-7766B250A2BA}C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{58E4E562-BB5D-4AF6-BC55-5234333FFCEA}C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\callum\appdata\roaming\.minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{9F02935E-2E25-4737-96EC-4737A62A1997}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Dying Light Demo\DyingLightDemo.exe
FirewallRules: [{5ACC4DA5-F0C4-4ED6-846D-444ECA6957AC}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Dying Light Demo\DyingLightDemo.exe
FirewallRules: [{FC153D58-EC42-4E98-8029-F9F3BBF13757}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{48CD5F8A-0535-49A6-B7CC-9DA7A69330CA}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{3C077A7F-EDA3-420F-8304-656993D28FD2}G:\steam\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{2B452D40-AA87-406A-8F30-753B8DC49DFC}G:\steam\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{2A9943FC-0822-4E3A-AB8F-A76ABD64EE5E}C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe] => (Block) C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe
FirewallRules: [UDP Query User{7FE8EDEC-E15D-46CD-BA44-1BE776A2CD36}C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe] => (Block) C:\program files (x86)\cheat engine 6.4\cheatengine-x86_64.exe
FirewallRules: [{39565111-FC18-4020-9CA5-119F8E55744A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{ECEAA07F-FC47-4F2A-AC36-4819020CED4A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7EF13037-2E82-4B59-87BF-563330C33BBF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{830ECA39-869F-4FB7-A14A-8D9187467FAE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{653A8953-686C-4D39-A1F4-471B1577D70C}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{D22B262D-1EA5-4967-8E10-94C01A893839}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{BBC59A87-0C25-4F53-96C1-56AFA004EAF3}] => (Allow) G:\Steam\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{4B3A278C-56E1-436F-BB7B-A266BFCC0A01}] => (Allow) G:\Steam\SteamLibrary\bin\steamwebhelper.exe
FirewallRules: [{6045E586-AC8C-4F6C-9198-934BE8B3B268}] => (Allow) G:\Steam\SteamLibrary\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{297A994A-5B77-48D8-9B8B-DE0E5EDD8B73}G:\steam\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{629AE74E-D883-4D59-AAEA-937A1D28776E}G:\steam\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) G:\steam\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F876AFC1-BC7E-42B8-A4E6-06D491438438}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ECC39EE0-2FFB-4564-A037-8E359D581562}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ECA76D75-379C-43B5-A66A-5594812036F6}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D6F46140-43C0-43C6-BB2B-62910F45B53F}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4E38E4AC-E777-4DF1-B42E-53D21E93F01F}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C6B33C88-51D2-4CC5-BAAB-8E3C3E845107}] => (Allow) C:\Users\Callum\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C8EEFA7B-638B-46CD-8998-60960CFE596A}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{2A0FAD06-149E-444F-B7BD-01FDE7327458}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{3AEDA774-8CBC-4CB9-9AAA-F0C496C61511}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [{64FF53E8-3A4A-47F5-B815-78E8E05F0488}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [TCP Query User{C94A99A1-BA9E-483A-B728-B06C81213B86}C:\program files (x86)\imcs productions\black ops 2 - gsc studio\black ops 2 - gsc studio.exe] => (Allow) C:\program files (x86)\imcs productions\black ops 2 - gsc studio\black ops 2 - gsc studio.exe
FirewallRules: [UDP Query User{BE42FECB-993D-4EE6-837D-DFF8FBDEB36D}C:\program files (x86)\imcs productions\black ops 2 - gsc studio\black ops 2 - gsc studio.exe] => (Allow) C:\program files (x86)\imcs productions\black ops 2 - gsc studio\black ops 2 - gsc studio.exe
FirewallRules: [{03C4F7E3-FCF7-4B9D-8000-D37C9FCDA137}] => (Allow) C:\Program Files (x86)\DicoLab\TeamPlayer 4 PRO\TeamPlayer4.exe
FirewallRules: [TCP Query User{496DDB21-8C71-4327-8F67-D8EF60DFD980}C:\users\callum\desktop\minecraft server\lilypad\connect-windows-amd64.exe] => (Allow) C:\users\callum\desktop\minecraft server\lilypad\connect-windows-amd64.exe
FirewallRules: [UDP Query User{5D9243B3-B507-493D-8251-7B1173D322EE}C:\users\callum\desktop\minecraft server\lilypad\connect-windows-amd64.exe] => (Allow) C:\users\callum\desktop\minecraft server\lilypad\connect-windows-amd64.exe
FirewallRules: [{F19F9954-EE37-473F-806D-32595E7BCBDE}] => (Allow) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
FirewallRules: [{00A42DBB-C7D2-4C8F-A38F-90581374B94C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

07-08-2016 03:00:10 Windows Update
07-08-2016 19:00:06 Windows Backup

==================== Faulty Device Manager Devices =============

Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/09/2016 12:33:25 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (08/08/2016 11:33:25 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (08/08/2016 10:33:25 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (08/08/2016 09:59:01 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x80070005.

Error: (08/08/2016 09:45:40 PM) (Source: vmauthd) (EventID: 1000) (User: )
Description: Cannot find perfmon object in array returned by perfDLL, index=0

Error: (08/08/2016 09:45:35 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/08/2016 09:45:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2016 09:45:34 PM) (Source: .NET Runtime) (EventID: 1024) (User: )
Description: .NET Runtime version : 4.0.30319.0 - This application could not be started.This application could not be started. You must enable the .NET Framework from the Windows Features dialog box (from Control Panel, choose Programs, Turn Windows features on or off).

Do you want to view information about this issue?

Error: (08/08/2016 06:40:00 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: License Activation Scheduler (sppuinotify.dll) failed with the following error code:
0x80070005

Error: (08/08/2016 06:36:44 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005


System errors:
=============
Error: (08/09/2016 01:13:52 AM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (08/08/2016 10:33:25 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (08/08/2016 09:46:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/08/2016 09:45:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The BlueStacks Android Service service terminated with the following error: 
%%1064 = An exception occurred in the service when handling the control request.

Error: (08/08/2016 09:45:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The CyberGhost 5 Client Service service failed to start due to the following error: 
%%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (08/08/2016 09:45:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the CyberGhost 5 Client Service service to connect.

Error: (08/08/2016 09:45:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the goopad service to connect.

Error: (08/08/2016 09:44:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 18:41:16 on ‎08/‎08/‎2016 was unexpected.

Error: (08/08/2016 12:40:00 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}

Error: (08/08/2016 11:55:39 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 78%
Total physical RAM: 8075.57 MB
Available physical RAM: 1767.51 MB
Total Virtual: 16149.32 MB
Available Virtual: 8329.5 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:6.23 GB) NTFS
Drive f: (RATCHETANDCLANK) (CDROM) (Total:3.92 GB) (Free:0 GB) CDFS
Drive g: () (Fixed) (Total:1862.92 GB) (Free:435.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 35AC6EF8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 35AC6E80)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

 

 

Link to post
Share on other sites

Thanks for those logs, please continue as follows.... Your Default browser "Chrome" is exploited, do not use Chrome for now....

Next,

I want you to Uninstall Spybot S&D as it may interfere with tools we may use.... Have a read here: https://www.safer-networking.org/faq/how-to-uninstall-2/

Next,

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into.
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Next,

Please open Malwarebytes Anti-Malware.
 
  • On the Settings tab > Detection and Protection sub tab, Detection Options, tick the box "Scan for rootkits".
  • Under Non-Malware Protection sub tab Change PUP and PUM entries to Treat detections as Malware
  • Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the Scan is complete Apply Actions to any found entries.
  • Wait for the prompt to restart the computer to appear (if applicable), then click on Yes.
  • After the restart once you are back at your desktop, open MBAM once more.


To get the log from Malwarebytes do the following:
 
  • Click on the History tab > Application Logs.
  • Double click on the Scan log which shows the Date and time of the scan just performed.
  • Click Export > From export you have three options:
    Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
    Text file (*.txt) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
    XML file (*.xml) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
     
  • Please use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…


Next,

Download Sophos Free Virus Removal Tool and save it to your desktop.
 
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
  • If no threats were found please confirm that result....


Next,

Chrome is definitely exploited, lets go for a clean install....

If your Chrome Bookmarks are important do this first:

Go to this link: http://www.wikihow.com/Export-Bookmarks-from-Chrome follow the instructions and Export your Bookmarks from Chrome, save to your Desktop or similar. Note the instructions can also be used to Import the bookmarks.....

Continue for a clean install:

Remove all synced data from Chrome go here: https://support.google.com/chrome/answer/6386691?hl=en-GB follow those instructions... It is essntial that any/all synced data is removed when the browser is hijacked or exploited in anyway...

Uninstall Chrome: https://support.google.com/chrome/answer/95319?hl=en-GB follow those instructions, ensure the option to "Also delete your browsing data" is selected. <<--- Very important!!

Navigate to C:\Users\Your user name\Appdata\Local from that folder delete the folder named Google (you will need to show hidden files/folders to see the folder Appdata)

For XP that will be My Computer > C:\ Documents and Settings\Your User Name\Application Data\Roaming

How to show hidden files and folders for windows: http://www.howtogeek.com/howto/windows-vista/show-hidden-files-and-folders-in-windows-vista/

Install Google Chrome from here: https://www.google.com/intl/en_uk/chrome/browser/desktop/index.html

Install Adblock Plus to Chrome: https://chrome.google.com/webstore/detail/adblock-plus/cfhdojbkjhnklbpkdaibdccddilifddb

Install DrWeb Link Ant-virus Link Checker: https://chrome.google.com/webstore/detail/drweb-anti-virus-link-che/aleggpabliehgbeagmfhnodcijcmbonb?hl=en

Next,

I do not see any Anti-Virus security installed, please install Microsoft Security Essentials:

https://www.microsoft.com/en-us/download/details.aspx?id=5201

Let me see those produced logs... Also give an update on any remaining issues or concerns.

Next,

Run FRST one more time, ensure all boxes are checkmarked under "Whitelist" but only Addition.txt under "Optional scan" Select scan, when done post the new logs....

Thanks,

Kevin...

Fixlist.txt

Link to post
Share on other sites

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into.
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Your system should reboot after the tool is run, if not reboot yourself... Is the connection restored...

 

fixlist.txt

Link to post
Share on other sites

I ran FRST with the new fixlist.txt, the connection still doesn't work, I am connected but I think its a DNS error or something, I have tried loads of things today to try and get it to work. In mozilla firefox the error is server not found(connecting to http://www.googe.co.uk) on internet explorer the error is this page can't be displayed, in chrome the error is dns probe nxdomain error, I can't remember the rest of the error on chrome.

Link to post
Share on other sites

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-08-2016
Ran by Callum (2016-08-09 17:52:48) Run:3
Running from C:\Users\Callum\Desktop\FRST64
Loaded Profiles: Callum (Available Profiles: Callum & Test & Administrator & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CMD: netsh winsock reset
EmptyTemp:
end


*****************

Processes closed successfully.

========= netsh winsock reset =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10130796 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 303095 B
Edge => 0 B
Chrome => 0 B
Firefox => 2141301 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Callum => 12176203 B
Test => 146206 B
Administrator => 37680 B
Guest => 340765 B

RecycleBin => 59170404 B
EmptyTemp: => 88.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:52:51 ====
 

Link to post
Share on other sites

Download and unzip DNSJumper to your Desktop, the tool is portable no installation necessary.

Tool can be downloaded here: http://www.sordum.org/downloads/?dns-jumper

Right click on Dnsjumper.exe and select "Run as Administrator" to start the tool, For XP just double click to run.
From the left hand pane select "Flush DNS"
From the main interface select the dropdown under "Choose a DNS Server"
From the list select either "Google Public DNS" or "Open DNS"
From the left hand pane select "Apply DNS"
When done re-boot your system....

Does that help?
Link to post
Share on other sites

Download Farbar Service Scanner from here: http://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/ and run it on the computer with the issue.

Make sure the following options are checked:
 
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender
 
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.
Link to post
Share on other sites

Farbar Service Scanner Version: 27-01-2016
Ran by Callum (administrator) on 09-08-2016 at 18:52:42
Running from "C:\Users\Callum\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
LAN connected.
Attempt to access Google IP returned error. Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Link to post
Share on other sites

I don't get why only connection and defender has a log, I did mark what you said, another thing is that I can't ping address, I can only ping IP adress, which goes back to the DNS error. I tried inputting the google DNS but the problem was still there

 

 

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.