Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

System Won't Load


  • Please log in to reply
16 replies to this topic

#1 Astrial

Astrial

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 27 June 2015 - 12:10 PM

Mod Edit:  Split from http://www.bleepingcomputer.com/forums/t/398055/my-computer-will-not-load-my-desktop-except-in-safe-mode/ - Hamluis.

 

Hello.

 

Sorry if I am opening up an old post but what if the computer is windows 7? I have the same issue right now with my laptop's desktop screen but instead of windows xp it is windows 7. Is there a way to fix it on windows 7? 

 

Thanks!


Edited by hamluis, 27 June 2015 - 07:25 PM.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,541 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:44 AM

Posted 27 June 2015 - 07:27 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 27 June 2015 - 08:24 PM

Hello, 

 

Here is the log from MiniToolBox: 

 

MiniToolBox by Farbar  Version: 22-06-2015
Ran by Betty (administrator) on 27-06-2015 at 21:05:52
Running from "C:\Users\Betty\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: 1068AHU Manufacturer: LENOVO
Boot Mode: Network
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/27/2015 09:04:39 PM) (Source: PerfNet) (User: )
Description: 
 
Error: (06/27/2015 00:47:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/27/2015 11:47:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/27/2015 11:23:45 AM) (Source: Application Error) (User: )
Description: Faulting application name: UNINSTALL.exe_AVG Uninstaller, version: 17.3.1.91, time stamp: 0x52cc0cb9
Faulting module name: UNINSTALL.exe, version: 17.3.1.91, time stamp: 0x52cc0cb9
Exception code: 0xc0000417
Fault offset: 0x0011afb6
Faulting process id: 0x910
Faulting application start time: 0xUNINSTALL.exe_AVG Uninstaller0
Faulting application path: UNINSTALL.exe_AVG Uninstaller1
Faulting module path: UNINSTALL.exe_AVG Uninstaller2
Report Id: UNINSTALL.exe_AVG Uninstaller3
 
Error: (06/27/2015 11:22:49 AM) (Source: Application Error) (User: )
Description: Faulting application name: UNINSTALL.exe_AVG Uninstaller, version: 17.3.1.91, time stamp: 0x52cc0cb9
Faulting module name: UNINSTALL.exe, version: 17.3.1.91, time stamp: 0x52cc0cb9
Exception code: 0xc0000417
Fault offset: 0x0011afb6
Faulting process id: 0xb14
Faulting application start time: 0xUNINSTALL.exe_AVG Uninstaller0
Faulting application path: UNINSTALL.exe_AVG Uninstaller1
Faulting module path: UNINSTALL.exe_AVG Uninstaller2
Report Id: UNINSTALL.exe_AVG Uninstaller3
 
Error: (06/27/2015 09:58:46 AM) (Source: ESENT) (User: )
Description: DllHost (1152) WebCacheLocal: Error -1811 occurred while opening logfile C:\Users\Betty\AppData\Local\Microsoft\Windows\WebCache\V010000C.log.
 
Error: (06/27/2015 09:58:00 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/27/2015 09:54:30 AM) (Source: ESENT) (User: )
Description: taskhost (3068) WebCacheLocal: Error -1811 occurred while opening logfile C:\Users\Betty\AppData\Local\Microsoft\Windows\WebCache\V010000C.log.
 
Error: (06/26/2015 09:42:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/26/2015 09:37:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (06/27/2015 09:05:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:05:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:05:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:04:34 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
Error: (06/27/2015 09:03:02 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error: 
%%1068
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2015-06-24 22:32:57.199
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 21:12:58.159
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 20:58:46.713
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 20:39:39.975
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 20:20:38.580
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 20:03:41.247
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 19:23:36.856
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 19:03:31.871
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-24 18:57:57.094
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-06-22 22:18:41.740
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Ad-Aware (HKLM-x32\...\{E43196CF-182A-4D9E-9CE7-69616DBEE3B0}) (Version: 9.6.0 - Lavasoft Limited)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.)
Adobe Anchor Service x64 CS4 (HKLM\...\{887797BF-37A5-4199-B0C9-0D38D6196E9A}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (HKLM\...\{90BA8112-80B3-4617-A3C1-BD2771B60F74}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 x64 (HKLM\...\{8DAA31EB-6830-4006-A99F-4DF8AB24714F}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 x64 (HKLM\...\{A3454894-144A-4D80-B605-C128FE0D7329}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{FFB768E4-E427-4553-BC36-A11F5E62A94D}) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Fonts All x64 (HKLM\...\{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 x64 (HKLM\...\{8875A1C0-6308-4790-8CF6-D34E89880052}) (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe PDF Library Files x64 CS4 (HKLM\...\{DFFABE78-8173-4E97-9C5C-22FB26192FC5}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (HKLM\...\{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Adobe Type Support x64 CS4 (HKLM\...\{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (HKLM\...\{295CFB7C-A57E-4313-93E7-68E7CE1D0332}) (Version: 1.1 - Adobe Systems Incorporated) Hidden
AIM 7 (HKLM-x32\...\AIM_7) (Version:  - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVG 2014 (HKLM\...\{A64D4055-F3E5-40E7-982A-C1FC10C3B4AF}) (Version: 14.0.4365 - AVG Technologies) Hidden
AVG 2014 (HKLM\...\{C88D81A7-A796-4310-94C3-D67DE5273A94}) (Version: 14.0.4800 - AVG Technologies) Hidden
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4800 - AVG Technologies)
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 17.3.1.91 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.0.411 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Best Buy pc app (HKLM\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.2.0.0 - Best Buy) Hidden
Best Buy pc app (HKLM-x32\...\{FBBC4667-2521-4E78-B1BD-8706F774549B}) (Version: 3.2.0.0 - Best Buy) Hidden
BioExcess (HKLM\...\{A000F75A-A246-44A7-8079-9E9E7F9054B2}) (Version: 7.0.67.0 - Egis Technology Inc.) Hidden
BioExcess (HKLM-x32\...\{E6CB67CC-71D2-46b9-8D43-A4641A9EECB2}) (Version: 7.0.67.0 - Egis Technology Inc.) Hidden
BioExcess (HKLM-x32\...\InstallShield_{E6CB67CC-71D2-46b9-8D43-A4641A9EECB2}) (Version: 7.0.67.0 - Egis Technology Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.13 - Piriform)
Connect (HKLM-x32\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3623 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Dead Island (HKLM-x32\...\Steam App 91310) (Version:  - Techland)
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Dead Space 2 (HKLM-x32\...\Steam App 47780) (Version:  - Electronic Arts)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version:  - BioWare)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version:  - )
EgisTec ES603 WDM Driver (HKLM-x32\...\InstallShield_{AE4167B0-F589-4D2A-BF05-E181D543C49F}) (Version: 3.0.10.4 - Egis Technology Inc.)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.1 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.1 - Lenovo)
ES603 WDM Driver (HKLM-x32\...\{AE4167B0-F589-4D2A-BF05-E181D543C49F}) (Version: 3.0.10.4 - Egis Technology Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.242 - SurfRight B.V.)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2342 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 8.0.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.0.0 - )
kuler (HKLM-x32\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.0 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Left 4 Dead 2 Add-on Support (HKLM-x32\...\Steam App 564) (Version:  - Valve)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 13.10.1201.1 - Vimicro)
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.6 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.)
Lenovo Security Suite (HKLM-x32\...\{0034859F-8E01-4C1D-BE77-F891C4786FBC}) (Version: 2.0.11.0 - Lenovo) Hidden
Lenovo Security Suite (HKLM-x32\...\InstallShield_{0034859F-8E01-4C1D-BE77-F891C4786FBC}) (Version: 2.0.11.0 - Lenovo)
Lenovo_Wireless_Driver (HKLM-x32\...\{28ABE740-47F3-441B-9437-852F6A64EFF8}) (Version: 1.02.01 - Lenovo)
LIMBO (HKLM-x32\...\Steam App 48000) (Version:  - Playdead)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Mark of the Ninja (HKLM-x32\...\Steam App 214560) (Version:  - Klei Entertainment)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.1008 - ooVoo LLC.)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PDF Settings CS4 (HKLM-x32\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Penumbra: Black Plague (HKLM-x32\...\Steam App 22120) (Version:  - Frictional Games)
Penumbra: Overture (HKLM-x32\...\Steam App 22180) (Version:  - Frictional Games)
Penumbra: Requiem (HKLM-x32\...\Steam App 22140) (Version:  - Frictional Games)
Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (HKLM\...\{2D74E972-5A85-44DC-9193-8A302BA8C181}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version:  - PopCap Games, Inc.)
Port Locker (HKLM\...\{1F494B8A-D6E6-4540-9A74-F773B63164A6}) (Version: 1.0.5.24 - Egis Technology Inc.) Hidden
Port Locker (HKLM-x32\...\{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}) (Version: 1.0.5.24 - Egis Technology Inc.) Hidden
Port Locker (HKLM-x32\...\InstallShield_{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}) (Version: 1.0.5.24 - Egis Technology Inc.)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7303 - CyberLink Corp.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6282 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C1500}) (Version: 12.21.0.114 - APN, LLC)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
Speccy (HKLM\...\Speccy) (Version: 1.22 - Piriform)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version:  - Team Meat)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.0.1108 - SUPERAntiSpyware.com)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.7.0 - Synaptics Incorporated)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
VC 9.0 Runtime (HKLM-x32\...\{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}) (Version: 1.0.0 - Check Point Software Technologies Ltd) Hidden
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VVVVVV (HKLM-x32\...\Steam App 70300) (Version:  - Terry Cavanagh)
Windows Driver Package - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1) (HKLM\...\EA12B1FB53CE4E387C31A85236C41EF559B5E392) (Version: 12/02/2010 6.1.0.1 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
ZoneAlarm Firewall (HKLM-x32\...\{A386CC19-1E79-4D4C-A54B-C8747871E4AD}) (Version: 10.1.065.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free (HKLM-x32\...\ZoneAlarm Free) (Version: 10.1.065.000 - Check Point)
ZoneAlarm Security (HKLM-x32\...\{2B120B1D-1908-4FB3-8C9D-72128A74E80A}) (Version: 10.1.065.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Toolbar (HKLM\...\ZoneAlarm Toolbar) (Version:  - Check Point Software Technologies) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 25%
Total physical RAM: 4010.14 MB
Available physical RAM: 2992.28 MB
Total Pagefile: 8018.47 MB
Available Pagefile: 7009.36 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.9 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:254.14 GB) (Free:71.48 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:26.46 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\BLACKLENOVO
 
Administrator            Betty                    Guest                    
 
 
**** End of log ****
 
 
I  tried running Speccy but I got hit with the message "CPU dll init failed (error 2)! Some infomation will not be displayed." When I click okay, Speccy closes. I am doing this from Safe Mode with networking since I cannot access my desktop. 
 
I don't know if I should mention this but I think I did recently have a virus (I think) and I scanned it with Ad-Adware and it found a win32.trojan.agent. During a shutdown session, I was on the screen that said "Waiting for these programs to close and I saw a explorer.exe. I didn't know what it was so I did some research and found that it was malware using the same name as an actual windows program. Before I scanned it with Ad-Adware I looked at my Task Manager and found multiple explorer.exe * 32. I was also worried because I never use IE anymore. After that Ad-Adware scan I no longer see the multiple explorer.exe *32. 
Could this virus also be leading to me not being able to access my desktop? How can I be 100% sure that my machine is virus free right now? I also have no idea what the best buy app is because that also came up during the scan. 


#4 hamluis

hamluis

    Moderator


  • Moderator
  • 56,541 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:44 AM

Posted 28 June 2015 - 07:11 AM

Moved to Am I Infected forum.

 

Louis



#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,802 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:44 AM

Posted 28 June 2015 - 01:53 PM

Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
malwarerun_zps9abd4ef1.png
 
4)  When the scan is complete the results will be displayed.  Click on Delete All.
 
malwarenew_zps34b58fdc.png
 
5)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the log in your topic.
 
==========
 
Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.
 
The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
 
Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.
 
Note:  The log may be very long.  You may need to break it into parts to post the whole log.
 
==========

Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to have the time to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

  • Click on this link to open ESET OnlineScan in a new window.
  • The ESET Online Scanner page will open, click on Yes, I agree to the trems of use, then click on Start, the scan will now begine.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Edited by dc3, 28 June 2015 - 01:55 PM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 07:50 AM

Hi,

 

Can all this be done in Safe Mode with networking since I can't access my desktop right now? I want to ask before I do anything.



#7 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,802 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:44 AM

Posted 29 June 2015 - 09:53 AM

Yes.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#8 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 12:35 PM

Alright. Thanks. I will run the scans today and post the logs as soon as I finish all of them.



#9 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 02:09 PM

So I just finished running Malwarebytes Anti-Malware and I was prompted to restart. However,since I can't boot in to desktop mode, I tried booting in to safe mode with network during the reboot but it wouldn't let me. It went straight to trying to start at desktop mode and it just hangs where at the blue screen for a long time until I force shut down.

So I am not sure if it was able to remove the things it found during the scan,but I will post the log here while I start the other scans. 

 

mbam-check result log version:     2.1.1.1001
========================================
 
User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 64 bit Operating System
Current Version and Build:         6.1.7601.0 
Malwarebytes Anti-Malware:         2.1.6.1022
Installed On:                      2015/06/24
Malware Database:                  0000.00.00.00
Rootkit Database:                  0000.00.00.00
Remediation Database:              0000.00.00.00
IP Database:                       0000.00.00.00
Domain Database:                   0000.00.00.00
License:                           Trial
Malware Protection:                1 (The service is not running.)
Malicious Website Protection:      1 (The service is not running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2015/06/29 15:07:06
Compatibility Flag Settings:
=================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
SIGN.MEDIA=1CEAC setup.EXE    REG_SZ WINXPSP2
C:\Users\Betty\Downloads\chromeinstall-8u25.exeREG_SZ VISTARTM
C:\Users\Betty\Downloads\WindowsPhone (1).exeREG_SZ VISTARTM
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
 
 
Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:
 
MBAM Startup Entries: 
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
Malwarebytes Anti-Malware (cleanup)REG_SZ "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Malwarebytes Anti-Malware Service and Driver Status:
=======================================================
 
--------------Driver File Info:--------------
C:\windows\system32\drivers\mbam.sys
File Size: 25816     BYTES FileVersion: 0.1.15.0 MD5: [1e9e32aec3e1eb1b31b8169f33168b56]
C:\windows\system32\drivers\mwac.sys
File Size: 63704     BYTES FileVersion: 1.0.6.0 MD5: [f49fb3c88e263ae9a246593b0bb29294]
C:\windows\system32\drivers\mbamswissarmy.sys
File Size: 136408    BYTES FileVersion: 0.2.21.0 MD5: [e9cd058c79ea15b4aa93e259fa713b07]
C:\windows\system32\drivers\mbamchameleon.sys
File Size: 107736    BYTES FileVersion: 1.1.13.0 MD5: [54d70409de6932e9efa117779611e7a9]
 
--------------MBAMProtector:--------------
Type:                   2
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1084
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMService:--------------
Type:                   16
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1084
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMScheduler:--------------
Type:                   16
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1084
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A
 
 
--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
Required Dependencies:
======================
 
--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
DisplayName                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
Group                         REG_SZ NetworkProvider
ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Description                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
ObjectName                    REG_SZ NT AUTHORITY\LocalService
ErrorControl                  REG_DWORD 1
Start                         REG_DWORD 2
Type                          REG_DWORD 32
DependOnService               REG_MULTI_SZ RpcSs
 
ServiceSidType                REG_DWORD 3
RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege
 
FailureActions                REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
ServiceDllUnloadOnStop        REG_DWORD 1
ServiceMain                   REG_SZ BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
{7ddc363a-0b40-43cf-b48e-7e038fe0c656}REG_BINARY Binary Data
 
{7850862f-bfc5-4723-ac79-2d8b12f9780d}REG_BINARY Binary Data
 
{39a601ca-e62e-4af0-9147-1f1abed2430d}REG_BINARY Binary Data
 
{7e1e0ec6-eb08-46fc-9c5b-24059680de00}REG_BINARY Binary Data
 
{4060ea52-e11a-49f4-9b52-f58b00cc41ef}REG_BINARY Binary Data
 
{acc52d54-5e2d-4379-8910-f7393816aae6}REG_BINARY Binary Data
 
{b082741f-324a-4fa8-ade7-93c97481b025}REG_BINARY Binary Data
 
{eda330a1-4a26-4550-844f-315c68d05fc1}REG_BINARY Binary Data
 
{ab1861a4-9ba7-4a49-819c-d1f3066190cb}REG_BINARY Binary Data
 
{f016cf0e-f210-4947-a17a-8613d0c45acc}REG_BINARY Binary Data
 
{69029c39-dfac-4768-bdc1-dbef041d7228}REG_BINARY Binary Data
 
{58bb3d6b-32bb-4e7d-9087-5f9d1d72152f}REG_BINARY Binary Data
 
{22001ee0-8e87-4f75-ba58-248f5918a63a}REG_BINARY Binary Data
 
{79f2a265-b693-4cc9-b480-cbcd87bd4747}REG_BINARY Binary Data
 
{c4b50f21-503e-4d7a-abd4-ed0a823a2453}REG_BINARY Binary Data
 
{91e902db-2cef-4040-b8e2-02fe4fd49c25}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
{b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data
 
{d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data
 
{8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data
 
{4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data
 
{3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data
 
{17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data
 
{567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data
 
{4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data
 
{3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data
 
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data
 
{be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data
 
{716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data
 
{1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data
 
{07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data
 
{5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data
 
{b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data
 
{0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data
 
{64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data
 
{13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data
 
{cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data
 
{3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
{a9bdb705-06d9-4978-ba91-884127762079}REG_BINARY Binary Data
 
{68806cd2-dc1a-4ebf-8d5f-f66f3b5a188e}REG_BINARY Binary Data
 
{c61756ee-5b8a-464c-94e3-7976cf0f0797}REG_BINARY Binary Data
 
{986dd3dd-f49a-4eef-8ce4-2b5e8c9faeea}REG_BINARY Binary Data
 
{9568ff84-e876-47ac-a430-007f7d5510bb}REG_BINARY Binary Data
 
{4ef12e77-6726-45be-b14c-14f704e4324b}REG_BINARY Binary Data
 
{f7b17b5c-512d-45af-bb29-be9afef8268a}REG_BINARY Binary Data
 
{f30dd197-583e-4891-8360-5da90c0e880a}REG_BINARY Binary Data
 
{c692efa4-c1c6-4147-b39e-788b097adb6d}REG_BINARY Binary Data
 
{016a59fe-edfe-4015-9f24-c585a8a17e2e}REG_BINARY Binary Data
 
{56b4fdc4-bb4e-4c42-a9d8-f627ee15ac21}REG_BINARY Binary Data
 
{1ba41ed8-151d-4577-9272-317856bc637c}REG_BINARY Binary Data
 
{9248d57e-f843-4159-807d-3813173e2096}REG_BINARY Binary Data
 
{4658cd86-525d-44ed-98a5-791a7b8655f1}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data
 
{4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data
 
{1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data
 
{aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data
 
{42ff0794-3627-44c1-9886-765010075254}REG_BINARY Binary Data
 
{8dfb7ab4-65f2-4889-a54b-e4a929173158}REG_BINARY Binary Data
 
{34bb4b10-3ece-4c99-a209-e506533c03c0}REG_BINARY Binary Data
 
{839cd73f-1907-49ea-9aa5-0e6be9048087}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
{b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data
 
{9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data
 
{4224eab7-7d61-4fe0-9264-6d6568d2ddff}REG_BINARY Binary Data
 
{255d26ec-e6af-43a7-a2f9-9aa462d637e7}REG_BINARY Binary Data
 
{6568a2f1-7fb0-4fe0-8fa3-c017b26d3315}REG_BINARY Binary Data
 
{8c36b346-4e0c-4049-8b55-5295ac35567c}REG_BINARY Binary Data
 
--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
AttachWhenLoaded              REG_DWORD 1
DisplayName                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
Group                         REG_SZ FSFilter Infrastructure
ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
Description                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
ErrorControl                  REG_DWORD 3
Start                         REG_DWORD 0
Tag                           REG_DWORD 1
Type                          REG_DWORD 2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
0                             REG_SZ Root\LEGACY_FLTMGR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
 
C:\windows\system32\drivers\fltmgr.sys
File Size: 289664    BYTES FileVersion: 6.1.7601.17514 MD5: [da6b67270fd9db3697b20fce94950741]
C:\windows\SysWOW64\mscomctl.ocx
File Size: 1070232   BYTES FileVersion: 6.1.98.39 MD5: [766f501b61c22723536af696a74133d4]
C:\windows\SysWOW64\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7601.17514 MD5: [703ffd301ab900b047337c5d40fd6f96]
 
 
MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced: 
    AutomaticQuarantine:                                       true 
    AutostartProtection:                                       true 
    LimitedMode:                                               false 
    StartSilentMode:                                           false 
    StartupDelay:                                              -15 
ApplicationState: 
    First-Run-After-Installation:                              false 
General: 
    DaysUntilNotifyExpiration:                                 5 
    Language:                                                  en 
    RightClickAccess:                                          false 
    SilentErrors:                                              false 
Logging: 
    ExportLog:                                                 true 
Marketing: 
    LastPostScanMarketingIndex:                                3 
Notification: 
ProtectionTray: 
    DisplayMilliseconds:                                       3000 
ScanHistory: 
    Duration_Complete:                                         930010 
    Duration_Driver:                                           0 
    Duration_Filesystem:                                       79 
    Duration_Heuristics:                                       3118341 
    Duration_Loading:                                          0 
    Duration_MasterBootRecord:                                 0 
    Duration_Memory:                                           40000 
    Duration_PreScan:                                          34014 
    Duration_Registry:                                         66796 
    Duration_Sector:                                           0 
    Duration_Startup:                                          6201 
    ItemCount_Complete:                                        349671 
    ItemCount_Driver:                                          0 
    ItemCount_Filesystem:                                      58240 
    ItemCount_Heuristics:                                      74296 
    ItemCount_Loading:                                         0 
    ItemCount_MasterBootRecord:                                0 
    ItemCount_Memory:                                          2797 
    ItemCount_PreScan:                                         33750 
    ItemCount_Registry:                                        616 
    ItemCount_Sector:                                          0 
    ItemCount_Startup:                                         350 
    LastScanDateEpoch:                                         1435599181949 
    LastScanType:                                              1 (Threat Scan)
Update: 
    LastUpdate:                                                2015-06-29T17:33:01 
    NotifyInstallReady:                                        true 
    NotifyOutdatedDatabase:                                    7 
    ProxyPassword:                                              
    ProxyPort:                                                 0 
    ProxyServer:                                                
    ProxyUsername:                                              
    UseProxy:                                                  false 
    UseProxyAuthentication:                                    false 
--------------Account:--------------
  Account Status:                                              Trial 
  Expiration Time:                                             2015/07/08 23:31:51 
  Activation Time:                                             2015/06/24 19:31:52 
  Trial Used:                                                  true 
--------------Access Policies:--------------
 
Scheduler Queue:
================
 
tasks: 
    0059cd03-3415-4ca5-89b7-25feeaf6da0a:                       
      parameters:                                               
        AutoDelete:                                            false 
        CheckForUpdatesBeforeScanStart:                        true 
        ProcessLaunchedFromScheduler:                          true 
        ScanConfig:                                             
          ExitWhenQuarantineCompletes:                         false 
          ExportLog:                                           true 
          FileSystemOption:                                    true 
          Quarantine:                                          Prompt 
          RebootSystemWhenMalwareDetected:                     false 
          ScanArchives:                                        true 
          ScanExtra:                                           true 
          ScanHeuristic:                                       true 
          ScanMemoryObjects:                                   true 
          ScanPUM:                                             2 
          ScanPUP:                                             2 
          ScanRegistry:                                        true 
          ScanRootkits:                                        false 
          ScanSource:                                          1 
          ScanStartup:                                         true 
          ScanTargets:                                          
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true 
        StartTaskFromSystemAccount:                            false 
        TaskType:                                              0 
      triggers:                                                 
        da7bf9de-0566-4368-a2dd-43acc7664595:                   
          dateinterval:                                        1:0:0 
          lastscheduled:                                       Mon, 29 Jun 2015 08:39:26.000952 -0400 
          lasttriggered:                                       Mon, 29 Jun 2015 08:39:26.000952 -0400 
          nextscheduled:                                       Tue, 30 Jun 2015 02:24:32 -0400 
          recovery:                                            23:00:00 
          start:                                               Thu, 25 Jun 2015 02:18:05 -0400 
          timeinterval:                                        00:00:00 
          type:                                                4 
          uuid:                                                da7bf9de-0566-4368-a2dd-43acc7664595 
      type:                                                    scan 
      uuid:                                                    0059cd03-3415-4ca5-89b7-25feeaf6da0a 
    be1ecfbd-8a6d-4391-89dd-f7ecfb0f30d8:                       
      parameters:                                               
        ProcessLaunchedFromScheduler:                          true 
        TaskType:                                              3 
      triggers:                                                 
        bbb8b43f-cd4e-4299-8f97-8f94d8c5ce37:                   
          dateinterval:                                        0:0:0 
          lastscheduled:                                       Mon, 29 Jun 2015 14:29:04.332050 -0400 
          lasttriggered:                                       Sat, 27 Jun 2015 12:42:47.500000 -0400 
          nextscheduled:                                       Mon, 29 Jun 2015 15:29:04.332050 -0400 
          recovery:                                            00:00:00 
          start:                                               Wed, 24 Jun 2015 20:29:04.332050 -0400 
          timeinterval:                                        01:00:00 
          type:                                                3 
          uuid:                                                bbb8b43f-cd4e-4299-8f97-8f94d8c5ce37 
      type:                                                    update 
      uuid:                                                    be1ecfbd-8a6d-4391-89dd-f7ecfb0f30d8 
 
Pending File Rename Operations: 
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
 
MBAMProtector Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
Type                          REG_DWORD 2
Start                         REG_DWORD 3
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ \??\C:\windows\system32\drivers\mbam.sys
Group                         REG_SZ FSFilter Anti-Virus
DependOnService               REG_MULTI_SZ FltMgr
 
WOW64                         REG_DWORD 1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
DefaultInstance               REG_SZ MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
Altitude                      REG_SZ 328800
Flags                         REG_DWORD 0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
PassThruFile                  REG_SZ mbampt.exe
ProductPath                   REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
0                             REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
MBAMService Registry Values:
============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
DependOnService               REG_MULTI_SZ MBAMProtector
 
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware service
DelayedAutostart              REG_DWORD 0
 
MBAMScheduler Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware scheduler
 
Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================
 
--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
TermService Start is set to: 3 (Manual Startup)
 
Proxy Status: No proxy is Set
 
LAN Settings:
=============
 
only 'Automatically detect settings' is selected
 
SystemPartition:
================
 
HKEY_LOCAL_MACHINE\SYSTEM\Setup\
SystemPartition REG_SZ \Device\HarddiskVolume1
 
Balloon Tips Status:
====================
 
Enabled
 
Time Format Settings:
=====================
 
Should be:
h:mm:ss tt
AM 
PM 
:
 
Currently:
REG_SZ h:mm:ss tt
REG_SZ AM
REG_SZ PM
REG_SZ :
 
Language and Regional Settings:
===============================
 
ACP: Language is English (United States)
MACCP: Language is English (United States)
OEMCP: Language is English (United States)
 
Startup Folders for Error_Expanding_Variables Check:
====================================================
 
All Users Startup Folder Exists.
Current User's Startup Folder Exists.
 
 
Context Menu Entries:
=====================
 
 
 
 
 
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt
(Default):                    REG_SZ MBAMShlExt Class
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1
(Default):                    REG_SZ MBAMShlExt Class
 
 
 
 
 
 
 
 
 
List of MBAM Related Directories:
=================================
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\
7z.dll                                   File Size: 920888    BYTES FileVersion:  9.20.0.0       MD5: [3c88cad475b8b4b30b62199e40b2498c]
changes.txt                             File Size: 577       BYTES FileVersion:  N/A            MD5: [58354dbb59bc2955d070559338f970a4]
license.rtf                             File Size: 42936     BYTES FileVersion:  N/A            MD5: [b22cb49aa8d1359b08eb9e4a4e13899b]
master.conf                             File Size: 1258      BYTES FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                 File Size: 602936    BYTES FileVersion:  1.0.35.0       MD5: [296e2ee79be1a6cf197ad38ae3bd58d9]
mbam.exe                                 File Size: 6212920   BYTES FileVersion:  1.0.2.929      MD5: [7e212e742bf06bf678ae35e9c1b74b8f]
mbamcore.dll                             File Size: 1971000   BYTES FileVersion:  1.2.0.0        MD5: [043835a4a31239fe57b891ec960e6075]
mbamdor.exe                             File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [b83bd7a2c8c2c03d06859c9c46358de7]
mbamext.dll                             File Size: 310584    BYTES FileVersion:  3.0.6.0        MD5: [2f3e8b9ee709180e01b197929b3dd4eb]
mbampt.exe                               File Size: 39736     BYTES FileVersion:  1.0.0.0        MD5: [416c41110833b3e1c14c7188b71ae70f]
mbamscheduler.exe                       File Size: 1871160   BYTES FileVersion:  3.1.2.0        MD5: [516e29ad03bdf610cc36a95ae692fe42]
mbamservice.exe                         File Size: 1080120   BYTES FileVersion:  3.1.0.0        MD5: [2b983f067aee3f9eb4df5e97f45d21d1]
mbamsrv.dll                             File Size: 3847992   BYTES FileVersion:  1.2.7.0        MD5: [22c7bd320a5c2ae3ae24c529768702f9]
msvcp100.dll                             File Size: 421688    BYTES FileVersion:  10.0.40219.325 MD5: [83c628fb6b293d61f7bfbbc3d8f88ac9]
msvcr100.dll                             File Size: 774456    BYTES FileVersion:  10.0.40219.325 MD5: [e8115316a914da20529e984f0c52828d]
QtCore4.dll                             File Size: 2582840   BYTES FileVersion:  4.8.5.0        MD5: [f8e05dc5365f07d0337ef56be17b3e04]
QtGui4.dll                               File Size: 8420152   BYTES FileVersion:  4.8.5.0        MD5: [fd1d67dd57309ffe4ae508c14b71b561]
QtNetwork4.dll                           File Size: 909112    BYTES FileVersion:  4.8.5.0        MD5: [d966279de7fa2193eb84cfb859e704a6]
SSUBTMR6.DLL                             File Size: 20        BYTES FileVersion:  N/A            MD5: [64249edd241ddd32e8224a47e30a96b6]
unins000.dat                             File Size: 27669     BYTES FileVersion:  N/A            MD5: [59e5ba754673369f7c94cf9305fd7b51]
unins000.exe                             File Size: 718037    BYTES FileVersion:  51.52.0.0      MD5: [d2796ecf50731e696f0c065d24c0827a]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\accessible
qtaccessiblewidgets4.dll                 File Size: 198968    BYTES FileVersion:  4.8.4.0        MD5: [9ba27dab5412b71cb8238740d6619d1d]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                           File Size: 235882    BYTES FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.pif                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.scr                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
iexplore.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.com                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.exe                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.pif                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.scr                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-killer.exe                         File Size: 1445176   BYTES FileVersion:  3.0.9.0        MD5: [99345356e450a5a403488280d3520550]
rundll32.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
svchost.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
windows.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
winlogon.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
qgif4.dll                               File Size: 32568     BYTES FileVersion:  4.8.4.0        MD5: [769d18b10c86186dc31a389979d33c27]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                               File Size: 102066    BYTES FileVersion:  N/A            MD5: [1601bc6ef4bec7d2ab9ba68a7f989a37]
lang_bg.qm                               File Size: 124167    BYTES FileVersion:  N/A            MD5: [1353a08c12f1de3f9daf8d4accf005de]
lang_ca.qm                               File Size: 107459    BYTES FileVersion:  N/A            MD5: [5549692fe8f9e43e0012a088f6a94450]
lang_cs.qm                               File Size: 119884    BYTES FileVersion:  N/A            MD5: [585ff91200e8e356bc713f5ee7dd78a5]
lang_da.qm                               File Size: 102643    BYTES FileVersion:  N/A            MD5: [ef3261171bcaebac883893f374ad4024]
lang_de.qm                               File Size: 130017    BYTES FileVersion:  N/A            MD5: [7558ad2d9a5f23f95bcb9d50f7458250]
lang_el.qm                               File Size: 128427    BYTES FileVersion:  N/A            MD5: [4450767b6eaaa6869ee410d389a5e9ed]
lang_en.qm                               File Size: 100191    BYTES FileVersion:  N/A            MD5: [2b85d8e24659bf96f2c8a666bead54c4]
lang_es.qm                               File Size: 129307    BYTES FileVersion:  N/A            MD5: [74e57ce8c0dc024d7c5fcb068debb3a0]
lang_et.qm                               File Size: 122063    BYTES FileVersion:  N/A            MD5: [ff11420bba00002307e14b288c4ce19f]
lang_fi.qm                               File Size: 103951    BYTES FileVersion:  N/A            MD5: [89d33b2b7175fb7b3924d9864cdf2230]
lang_fr.qm                               File Size: 131783    BYTES FileVersion:  N/A            MD5: [d2b1267fbbb51c39e79f975fbe2182a7]
lang_he.qm                               File Size: 112817    BYTES FileVersion:  N/A            MD5: [a2614d9a5d9aba7817fbae878a92de2c]
lang_hu.qm                               File Size: 123254    BYTES FileVersion:  N/A            MD5: [c64b7919827df30fd55d9e9f40cf87a7]
lang_id.qm                               File Size: 120134    BYTES FileVersion:  N/A            MD5: [dffed4516bf61605021d9e8861c01951]
lang_it.qm                               File Size: 126353    BYTES FileVersion:  N/A            MD5: [4736f333e32d0c8f091ca9afe3fa4e71]
lang_ja.qm                               File Size: 87363     BYTES FileVersion:  N/A            MD5: [d982d5194aaa6e24e7191ee908491f9d]
lang_ko.qm                               File Size: 99039     BYTES FileVersion:  N/A            MD5: [5211e95dd40ea3b4cde5c831490822c9]
lang_lt.qm                               File Size: 105352    BYTES FileVersion:  N/A            MD5: [d610679ecb6929ee3ce82cac8f8d00a1]
lang_lv.qm                               File Size: 105344    BYTES FileVersion:  N/A            MD5: [985309298c683a35571fdb9486708287]
lang_nl.qm                               File Size: 125821    BYTES FileVersion:  N/A            MD5: [018c55baa051080bb012e63cb446b203]
lang_no.qm                               File Size: 120529    BYTES FileVersion:  N/A            MD5: [c2ee34817e0dfed9d5a5a85bc667e73c]
lang_pl.qm                               File Size: 125910    BYTES FileVersion:  N/A            MD5: [56e9a207bf8f4b564fd71e9defa96d4b]
lang_pt_BR.qm                           File Size: 124022    BYTES FileVersion:  N/A            MD5: [46a048872f4091a6a9862a54457c3a2c]
lang_pt_PT.qm                           File Size: 129551    BYTES FileVersion:  N/A            MD5: [99eb0c042faad4ee276f267a870a7abf]
lang_ro.qm                               File Size: 104981    BYTES FileVersion:  N/A            MD5: [0cbdb05b7927831d8331eb14d4638f32]
lang_ru.qm                               File Size: 126972    BYTES FileVersion:  N/A            MD5: [0febf393c35f2f1a3cd914b838da66dc]
lang_sk.qm                               File Size: 103656    BYTES FileVersion:  N/A            MD5: [d3fd5aa90bdae21984139a21058f4d71]
lang_sl.qm                               File Size: 122126    BYTES FileVersion:  N/A            MD5: [59911addc36e105cc55ba2ee31d09b7a]
lang_sv.qm                               File Size: 121593    BYTES FileVersion:  N/A            MD5: [f96d43155d3c98e43d7682983c0a9898]
lang_tr.qm                               File Size: 103127    BYTES FileVersion:  N/A            MD5: [12b05f94c8e397c62f324485e3059b07]
lang_vi.qm                               File Size: 119896    BYTES FileVersion:  N/A            MD5: [651b66fb4a9cfa95b640876670be7a27]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                           File Size: 821560    BYTES FileVersion:  1.1.0.1010     MD5: [796973043d5b665178150dd1cfb41a43]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                             File Size: 1578      BYTES FileVersion:  N/A            MD5: [8d8af991d031fdd3494efddaa8f6de12]
cleanup.dat                             File Size: 44092     BYTES FileVersion:  N/A            MD5: [a14d615bd2769a18fa318efa8a8e35cb]
cleanup.dll                             File Size: 1971000   BYTES FileVersion:  1.2.0.0        MD5: [043835a4a31239fe57b891ec960e6075]
domains.ref                             File Size: 92        BYTES FileVersion:  N/A            MD5: [643b11322d78d9f4f46f030869ecfc49]
exclusions.dat                           File Size: 0         BYTES FileVersion:  N/A            MD5: [d41d8cd98f00b204e9800998ecf8427e]
ips.ref                                 File Size: 80        BYTES FileVersion:  N/A            MD5: [2ec9c118caec1ae4b78c6ea95da0539f]
mbam-setup.exe                           File Size: 24345872  BYTES FileVersion:  2.1.8.1057     MD5: [d3b6fa14cb7e12b7fbc0b3aa26235898]
mbamdor.exe                             File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [b83bd7a2c8c2c03d06859c9c46358de7]
rules.ref                               File Size: 12620536  BYTES FileVersion:  N/A            MD5: [27b989b1ec60477d130be1f02d99f1b9]
swissarmy.ref                           File Size: 25285     BYTES FileVersion:  N/A            MD5: [94cea1ef0ad442a8e654d254142e4f3b]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                               File Size: 4623      BYTES FileVersion:  N/A            MD5: [0889b9d64f116cf83e3709169631c581]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 1091      BYTES FileVersion:  N/A            MD5: [4df982c4b43abe25bd48bf19af23731e]
manifest.conf                           File Size: 2600      BYTES FileVersion:  N/A            MD5: [de61bbbf4a8c287e3d2eae462684fcb1]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6920      BYTES FileVersion:  N/A            MD5: [65f7e84a29ff02b142a578b75b3960f6]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 2205      BYTES FileVersion:  N/A            MD5: [e30730e005c63d5012479badce9af33a]
settings.conf                           File Size: 2041      BYTES FileVersion:  N/A            MD5: [57f253aa2b519efc269cf5083f2aeb0d]
statistics.conf                         File Size: 513       BYTES FileVersion:  N/A            MD5: [1a432f88b5af9c44c66ab8c27c708a1f]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                               File Size: 4182      BYTES FileVersion:  N/A            MD5: [a6f4892a9a602a54ecfc8681294103bb]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 23        BYTES FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                           File Size: 1576      BYTES FileVersion:  N/A            MD5: [af6de7a6ee83d328eb7211c854c57c67]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6085      BYTES FileVersion:  N/A            MD5: [2e9986b0f3babad30e41fd2468197e94]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                           File Size: 1725      BYTES FileVersion:  N/A            MD5: [5454026126dac24f6e96eeb0c64123d3]
statistics.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2015-06-24 (19-32-38).xml       File Size: 3564      BYTES FileVersion:  N/A            MD5: [c41c3824306f4ed91d21e2a58b8a561a]
mbam-log-2015-06-25 (16-03-41).xml       File Size: 37310     BYTES FileVersion:  N/A            MD5: [316c9e1158f5b6e36f54a4568dcf4f72]
mbam-log-2015-06-29 (13-32-36).xml       File Size: 37310     BYTES FileVersion:  N/A            MD5: [95a81c2ebc73946941d31df97433da78]
protection-log-2015-06-24.xml           File Size: 19662     BYTES FileVersion:  N/A            MD5: [11a63bf135c4329de0856aaecd640a71]
protection-log-2015-06-25.xml           File Size: 9239      BYTES FileVersion:  N/A            MD5: [0cbdcc04d7c1695bd3b069057be19e3a]
protection-log-2015-06-26.xml           File Size: 5828      BYTES FileVersion:  N/A            MD5: [282fa5a714f952d650f1aecc42183cad]
protection-log-2015-06-27.xml           File Size: 1789      BYTES FileVersion:  N/A            MD5: [8237291fcdf62c1d64da6566e0188453]
protection-log-2015-06-29.xml           File Size: 6042      BYTES FileVersion:  N/A            MD5: [714d24b3ab961b10157a18f10e060dad]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
0001141541.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [7161202471eeac4b5e1835dbbf504055]
0001141541.quar                         File Size: 40448     BYTES FileVersion:  N/A            MD5: [b3f8ce792f15e718257118db3bf41e75]
0091547187.data                         File Size: 746       BYTES FileVersion:  N/A            MD5: [f82ce9824ee21e59e612ca105ae4195c]
0091547187.quar                         File Size: 111000    BYTES FileVersion:  N/A            MD5: [cb785f7fdce94f2c706ea740c55e0861]
0168649516.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [5b2edfbfe8b784cabd9cfb80074bfa8e]
0246025365.quar                         File Size: 507904    BYTES FileVersion:  N/A            MD5: [a02808384890b65f53c92d9679a37555]
0263727807.quar                         File Size: 166296    BYTES FileVersion:  N/A            MD5: [6b3193b4eb97773a650f65d1e5864669]
0506445203.data                         File Size: 770       BYTES FileVersion:  N/A            MD5: [cbda6e2c209176899a15faa0902ffba7]
0506445203.quar                         File Size: 507904    BYTES FileVersion:  N/A            MD5: [a02808384890b65f53c92d9679a37555]
0618529503.data                         File Size: 782       BYTES FileVersion:  N/A            MD5: [fc7a7cb5d80e179d519aa38618391a1d]
0618529503.quar                         File Size: 391064    BYTES FileVersion:  N/A            MD5: [12efd882d57ac52c28d0a128e21ee39a]
0733714401.data                         File Size: 723       BYTES FileVersion:  N/A            MD5: [df80893545769edc6b093418687895d4]
0830424552.quar                         File Size: 164248    BYTES FileVersion:  N/A            MD5: [1b2942828ad9ac611e04f56627c5d06c]
0841872805.data                         File Size: 785       BYTES FileVersion:  N/A            MD5: [b15ddc700862fdcd1f90035755490f5d]
0841872805.quar                         File Size: 74648     BYTES FileVersion:  N/A            MD5: [c82e78c073c309f4d796aa2ddea2f929]
0964684765.quar                         File Size: 560024    BYTES FileVersion:  N/A            MD5: [635fae75a750a85464df8a941ffd3858]
1000994683.data                         File Size: 738       BYTES FileVersion:  N/A            MD5: [220d813d10e2ab3af50d8639f4533e07]
1000994683.quar                         File Size: 2039192   BYTES FileVersion:  N/A            MD5: [a521257121cf329f25efead28d34eb4f]
1123092735.data                         File Size: 719       BYTES FileVersion:  N/A            MD5: [8a872c06247b326f48c3859c82acb88b]
1217134243.quar                         File Size: 111000    BYTES FileVersion:  N/A            MD5: [cb785f7fdce94f2c706ea740c55e0861]
1280149380.data                         File Size: 777       BYTES FileVersion:  N/A            MD5: [ecf26cc977bc40844c60d7dcf9b42b61]
1280149380.quar                         File Size: 679832    BYTES FileVersion:  N/A            MD5: [22fd247bcf5ab4896c7be5e3761371ea]
1302783986.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [4866d2e186e8d8f7df0ccc3076aba706]
1302783986.quar                         File Size: 44032     BYTES FileVersion:  N/A            MD5: [54a025c9703975e95933f388945d3bd6]
1739835686.data                         File Size: 742       BYTES FileVersion:  N/A            MD5: [2d46b4345ae94e621d603d225599df9b]
1739835686.quar                         File Size: 6864      BYTES FileVersion:  N/A            MD5: [f3ff68d0d3b1bd8ac3464b18e2851a5d]
1755716470.quar                         File Size: 541592    BYTES FileVersion:  N/A            MD5: [300f24ccc91dee5adb09f936b2d9527a]
1790513479.data                         File Size: 719       BYTES FileVersion:  N/A            MD5: [fa658acfbdb787febff919cd1444c807]
1867311236.data                         File Size: 935       BYTES FileVersion:  N/A            MD5: [c02567c56cdb341f2542efb1ec1890e5]
1909618105.data                         File Size: 784       BYTES FileVersion:  N/A            MD5: [619fcd558a427f5911551136e00be898]
1909618105.quar                         File Size: 46488     BYTES FileVersion:  N/A            MD5: [f29252b468d31d40551276809b287dfe]
2181812052.quar                         File Size: 666       BYTES FileVersion:  N/A            MD5: [8f8aad9d91b706064f6767e38d1a3d9d]
2201853651.data                         File Size: 801       BYTES FileVersion:  N/A            MD5: [148c6019b4fddda5e66cc21bbaf0144f]
2201853651.quar                         File Size: 111000    BYTES FileVersion:  N/A            MD5: [cb785f7fdce94f2c706ea740c55e0861]
2349460548.data                         File Size: 727       BYTES FileVersion:  N/A            MD5: [a5158f1626b25c5b6898f7f34d181a94]
2473343552.quar                         File Size: 224152    BYTES FileVersion:  N/A            MD5: [303d460cc0cd86296c1d293eb14c1d13]
2475267157.data                         File Size: 735       BYTES FileVersion:  N/A            MD5: [ac4a0cb1cad0ba3c93b803b1d619d953]
2475267157.quar                         File Size: 638       BYTES FileVersion:  N/A            MD5: [fe99a36ff1af9d08fb652e787b64a14f]
2542604400.quar                         File Size: 46488     BYTES FileVersion:  N/A            MD5: [f29252b468d31d40551276809b287dfe]
2543177987.quar                         File Size: 157080    BYTES FileVersion:  N/A            MD5: [86d3902e9548d18315cd0f5aa5e50bc3]
2571737066.data                         File Size: 797       BYTES FileVersion:  N/A            MD5: [c1170dc6720a3a70dc66e50a2366ee72]
2571737066.quar                         File Size: 95640     BYTES FileVersion:  N/A            MD5: [992c8c55f52dda410b539ee9045d3549]
2599847036.data                         File Size: 715       BYTES FileVersion:  N/A            MD5: [1df6b243aa9053e26e6db5936d99b2ae]
2649508743.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [1802a960cea1ef5b343342978981a5a8]
2649508743.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [6666b21e7b68b15aaaac2f4af3a7c611]
2728663764.data                         File Size: 797       BYTES FileVersion:  N/A            MD5: [c33f197e274374e122b9f27f588fd2fa]
2728663764.quar                         File Size: 164248    BYTES FileVersion:  N/A            MD5: [1b2942828ad9ac611e04f56627c5d06c]
2940425497.data                         File Size: 786       BYTES FileVersion:  N/A            MD5: [69f9fe58e217b036c07fe3051579e4ca]
2940425497.quar                         File Size: 273816    BYTES FileVersion:  N/A            MD5: [ae8dc3673b024c62bb00c4bffcfbeb81]
2974540125.data                         File Size: 774       BYTES FileVersion:  N/A            MD5: [a84dfba5bf69d4684a180a6eb93d0f82]
3134780042.data                         File Size: 770       BYTES FileVersion:  N/A            MD5: [9bafde4125d87d1912b31dfffe168e43]
3333163112.data                         File Size: 730       BYTES FileVersion:  N/A            MD5: [67bd6123162c5df46e2d6cdba228f1d0]
3337653818.data                         File Size: 793       BYTES FileVersion:  N/A            MD5: [607136917dc3f73680ee93f3c7220fea]
3337653818.quar                         File Size: 432024    BYTES FileVersion:  N/A            MD5: [8e4b23cc2ee2e8bf5547d66e2f5518c4]
3391277860.quar                         File Size: 44032     BYTES FileVersion:  N/A            MD5: [54a025c9703975e95933f388945d3bd6]
3399202007.data                         File Size: 770       BYTES FileVersion:  N/A            MD5: [af314538126b12ab63ecc80b021e0712]
3399202007.quar                         File Size: 507904    BYTES FileVersion:  N/A            MD5: [d56107bab899ac5058eeef741ed5ce4e]
3497055863.data                         File Size: 891       BYTES FileVersion:  N/A            MD5: [85dfea4064fdc3e23634404c99a3ed3a]
3520078918.data                         File Size: 782       BYTES FileVersion:  N/A            MD5: [f04ef5c4272049fc1dd1c209ea440924]
3577045240.data                         File Size: 778       BYTES FileVersion:  N/A            MD5: [af483f5cd94ba0d62f96182ed8cec2fe]
3720244105.quar                         File Size: 40448     BYTES FileVersion:  N/A            MD5: [b3f8ce792f15e718257118db3bf41e75]
3739259202.data                         File Size: 781       BYTES FileVersion:  N/A            MD5: [7f951c36d053bf40f664d47765b875cd]
3739259202.quar                         File Size: 558       BYTES FileVersion:  N/A            MD5: [bebe253244b03364241dbc9c7387c551]
3781142143.quar                         File Size: 115608    BYTES FileVersion:  N/A            MD5: [1744e4be994a9317403895fff189750d]
3933188027.data                         File Size: 867       BYTES FileVersion:  N/A            MD5: [5999e7a66baed243ecc1a9233416ae4d]
4025567526.data                         File Size: 759       BYTES FileVersion:  N/A            MD5: [9d1069b6167134c7bf60d5d630aedc43]
4025567526.quar                         File Size: 196504    BYTES FileVersion:  N/A            MD5: [addc94d00deeb1d78aeb76de9c639fb5]
4038597590.data                         File Size: 782       BYTES FileVersion:  N/A            MD5: [b1f3f7a508a55431f4873d6b1f1bda5c]
4064483486.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [6666b21e7b68b15aaaac2f4af3a7c611]
4098705473.quar                         File Size: 541592    BYTES FileVersion:  N/A            MD5: [300f24ccc91dee5adb09f936b2d9527a]
4430352213.quar                         File Size: 1574      BYTES FileVersion:  N/A            MD5: [1c7c4c31c7b5c548be1dcbe5bec36e3c]
4456493355.data                         File Size: 793       BYTES FileVersion:  N/A            MD5: [92c2a17a311d3eecf25ffa2aa0672eff]
4456493355.quar                         File Size: 2039192   BYTES FileVersion:  N/A            MD5: [a521257121cf329f25efead28d34eb4f]
4469144985.data                         File Size: 799       BYTES FileVersion:  N/A            MD5: [8bef7e0d13fcee9a467ff3564a1dd525]
4469144985.quar                         File Size: 1574      BYTES FileVersion:  N/A            MD5: [1c7c4c31c7b5c548be1dcbe5bec36e3c]
4477184839.data                         File Size: 864       BYTES FileVersion:  N/A            MD5: [dc62d9ebdd73f0b64615a3fa5763147f]
4684308632.data                         File Size: 738       BYTES FileVersion:  N/A            MD5: [48c7ea3118c8b63e59431789103d00aa]
4684308632.quar                         File Size: 157080    BYTES FileVersion:  N/A            MD5: [86d3902e9548d18315cd0f5aa5e50bc3]
4752596388.quar                         File Size: 93696     BYTES FileVersion:  N/A            MD5: [7866c9405764090b1646af4a95c39823]
4755327774.data                         File Size: 782       BYTES FileVersion:  N/A            MD5: [a154c25660474f29fc134213943eaecb]
4755327774.quar                         File Size: 224152    BYTES FileVersion:  N/A            MD5: [303d460cc0cd86296c1d293eb14c1d13]
4792047933.data                         File Size: 742       BYTES FileVersion:  N/A            MD5: [ef904a463013063a49aed66cbf5e99b6]
4792047933.quar                         File Size: 95640     BYTES FileVersion:  N/A            MD5: [992c8c55f52dda410b539ee9045d3549]
4945382256.data                         File Size: 706       BYTES FileVersion:  N/A            MD5: [8e8f8cb6cc8cce5195fe99841b149469]
4945382256.quar                         File Size: 666       BYTES FileVersion:  N/A            MD5: [8f8aad9d91b706064f6767e38d1a3d9d]
4952958166.quar                         File Size: 164248    BYTES FileVersion:  N/A            MD5: [1b2942828ad9ac611e04f56627c5d06c]
5258923813.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [9999d886c6a66fd5308e296d3d1997a4]
5258923813.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [5b2edfbfe8b784cabd9cfb80074bfa8e]
5370478777.quar                         File Size: 273816    BYTES FileVersion:  N/A            MD5: [ae8dc3673b024c62bb00c4bffcfbeb81]
5548040984.quar                         File Size: 74648     BYTES FileVersion:  N/A            MD5: [c82e78c073c309f4d796aa2ddea2f929]
5614340113.data                         File Size: 935       BYTES FileVersion:  N/A            MD5: [1b839737fd7647b47999e67bfbdc263a]
5715030495.data                         File Size: 748       BYTES FileVersion:  N/A            MD5: [9643e6430f21b1162b1f5235b10a4e1a]
5742843000.data                         File Size: 899       BYTES FileVersion:  N/A            MD5: [544985da53ed5deda2ba8c9ac397625e]
5810469245.quar                         File Size: 391064    BYTES FileVersion:  N/A            MD5: [12efd882d57ac52c28d0a128e21ee39a]
5907211230.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [f8ceb74a4383a81eebe2629576e4b2d1]
5907211230.quar                         File Size: 39936     BYTES FileVersion:  N/A            MD5: [56354ea2668a05a37162f830114921d0]
6013843078.quar                         File Size: 156056    BYTES FileVersion:  N/A            MD5: [5e64b86769f2d02936920cf41874aff6]
6119704303.quar                         File Size: 2039192   BYTES FileVersion:  N/A            MD5: [a521257121cf329f25efead28d34eb4f]
6144840684.data                         File Size: 759       BYTES FileVersion:  N/A            MD5: [9aca796b3ae26ef966c42c4d47025a62]
6144840684.quar                         File Size: 93696     BYTES FileVersion:  N/A            MD5: [7866c9405764090b1646af4a95c39823]
6201114696.data                         File Size: 723       BYTES FileVersion:  N/A            MD5: [9324d6f0a4111a027acf905197a8fc60]
6272193410.data                         File Size: 963       BYTES FileVersion:  N/A            MD5: [caa5c49f3d27fda2bde91faa4db483d1]
6344557841.quar                         File Size: 166296    BYTES FileVersion:  N/A            MD5: [6b3193b4eb97773a650f65d1e5864669]
6349860743.quar                         File Size: 432024    BYTES FileVersion:  N/A            MD5: [8e4b23cc2ee2e8bf5547d66e2f5518c4]
6393611430.data                         File Size: 838       BYTES FileVersion:  N/A            MD5: [212c6305bb3d13d59b5df5a1dae27ef5]
6434131068.data                         File Size: 963       BYTES FileVersion:  N/A            MD5: [2db0b10e1abfe110cd806365e21c20f6]
6497249238.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [d6a281c696732bae8657a98e8633400d]
6497249238.quar                         File Size: 14336     BYTES FileVersion:  N/A            MD5: [138a833f60c01275de64205b7d6dcd02]
6658650375.data                         File Size: 789       BYTES FileVersion:  N/A            MD5: [8ac393cdedee5796c1653336be9f6009]
6658650375.quar                         File Size: 115608    BYTES FileVersion:  N/A            MD5: [1744e4be994a9317403895fff189750d]
6709696526.quar                         File Size: 2039192   BYTES FileVersion:  N/A            MD5: [a521257121cf329f25efead28d34eb4f]
6971284320.quar                         File Size: 196504    BYTES FileVersion:  N/A            MD5: [addc94d00deeb1d78aeb76de9c639fb5]
7012335229.data                         File Size: 781       BYTES FileVersion:  N/A            MD5: [8004a03ee3f862bb55ad44e3ffc13671]
7012335229.quar                         File Size: 558       BYTES FileVersion:  N/A            MD5: [bebe253244b03364241dbc9c7387c551]
7095191926.quar                         File Size: 41472     BYTES FileVersion:  N/A            MD5: [ead3012ae83868de26f63f0f067f8f88]
7126453111.data                         File Size: 728       BYTES FileVersion:  N/A            MD5: [22e89fcbd80623912f83ed09d652ca53]
7126453111.quar                         File Size: 560024    BYTES FileVersion:  N/A            MD5: [635fae75a750a85464df8a941ffd3858]
7143517139.data                         File Size: 899       BYTES FileVersion:  N/A            MD5: [ea22f6629180af0c5d7b42048c9ed5b8]
7191168768.quar                         File Size: 12184     BYTES FileVersion:  N/A            MD5: [61f3937a739e06f8f83a865ca86cb090]
7313433138.quar                         File Size: 38912     BYTES FileVersion:  N/A            MD5: [def07ec4a6aeac2a4a15cb22bdbcf0ae]
7532508441.quar                         File Size: 508       BYTES FileVersion:  N/A            MD5: [28f1c5c05b4256b8272188eb673d9060]
7576049651.data                         File Size: 795       BYTES FileVersion:  N/A            MD5: [6f891f063fe5f27356624d4bda32581e]
7576049651.quar                         File Size: 12184     BYTES FileVersion:  N/A            MD5: [61f3937a739e06f8f83a865ca86cb090]
7617938996.quar                         File Size: 38400     BYTES FileVersion:  N/A            MD5: [9087d61896fd6ac30f7a67596c75dfca]
7626852410.data                         File Size: 707       BYTES FileVersion:  N/A            MD5: [93c976c280ceb9eee581f47b71777f28]
7644018912.data                         File Size: 740       BYTES FileVersion:  N/A            MD5: [1b7cb21ad012c2b97260a91e0301457c]
7644018912.quar                         File Size: 156056    BYTES FileVersion:  N/A            MD5: [5e64b86769f2d02936920cf41874aff6]
7679952105.quar                         File Size: 95640     BYTES FileVersion:  N/A            MD5: [992c8c55f52dda410b539ee9045d3549]
7746801431.data                         File Size: 744       BYTES FileVersion:  N/A            MD5: [9beb5d992092104d294077f1267ee9b1]
7879633524.quar                         File Size: 507904    BYTES FileVersion:  N/A            MD5: [d56107bab899ac5058eeef741ed5ce4e]
7882660370.data                         File Size: 788       BYTES FileVersion:  N/A            MD5: [797b206c0ef6a0537dbe61274359cdb0]
7882660370.quar                         File Size: 106392    BYTES FileVersion:  N/A            MD5: [359e75c6356c4abc7f47b080dc347e07]
7983868375.quar                         File Size: 432024    BYTES FileVersion:  N/A            MD5: [8e4b23cc2ee2e8bf5547d66e2f5518c4]
8031095037.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [ad006fba0f8a0722c53ef3f1336fb376]
8046618775.quar                         File Size: 156056    BYTES FileVersion:  N/A            MD5: [5e64b86769f2d02936920cf41874aff6]
8062831154.data                         File Size: 762       BYTES FileVersion:  N/A            MD5: [a140f4b8bea79920ba32aa8812912c45]
8159727002.quar                         File Size: 39936     BYTES FileVersion:  N/A            MD5: [56354ea2668a05a37162f830114921d0]
8268869813.quar                         File Size: 13720     BYTES FileVersion:  N/A            MD5: [f81e0a6a718b0f066cc2c3323cc9633c]
8283054620.data                         File Size: 749       BYTES FileVersion:  N/A            MD5: [ec31de7a566e00472cd2ded886085731]
8283054620.quar                         File Size: 508       BYTES FileVersion:  N/A            MD5: [28f1c5c05b4256b8272188eb673d9060]
8367976369.data                         File Size: 797       BYTES FileVersion:  N/A            MD5: [ceffb82cfbc51cce550f35caceaaaf1a]
8367976369.quar                         File Size: 541592    BYTES FileVersion:  N/A            MD5: [300f24ccc91dee5adb09f936b2d9527a]
8404590895.data                         File Size: 742       BYTES FileVersion:  N/A            MD5: [3d0a74b9dd2c3ea63fe958caf4ecc67e]
8404590895.quar                         File Size: 164248    BYTES FileVersion:  N/A            MD5: [1b2942828ad9ac611e04f56627c5d06c]
8404806342.quar                         File Size: 14336     BYTES FileVersion:  N/A            MD5: [138a833f60c01275de64205b7d6dcd02]
8434735310.data                         File Size: 742       BYTES FileVersion:  N/A            MD5: [bf9563e82ffbb9110558b48eeb52f6db]
8434735310.quar                         File Size: 541592    BYTES FileVersion:  N/A            MD5: [300f24ccc91dee5adb09f936b2d9527a]
8681926065.quar                         File Size: 5054      BYTES FileVersion:  N/A            MD5: [bb204046894a5a53b589ae92d111d56a]
8726506639.data                         File Size: 781       BYTES FileVersion:  N/A            MD5: [1af1589573ddd474650a72218370814e]
8726506639.quar                         File Size: 166296    BYTES FileVersion:  N/A            MD5: [6b3193b4eb97773a650f65d1e5864669]
8795963113.data                         File Size: 738       BYTES FileVersion:  N/A            MD5: [c817032f8a2467d1aab2952e3efaee69]
8795963113.quar                         File Size: 432024    BYTES FileVersion:  N/A            MD5: [8e4b23cc2ee2e8bf5547d66e2f5518c4]
9037844093.quar                         File Size: 95640     BYTES FileVersion:  N/A            MD5: [992c8c55f52dda410b539ee9045d3549]
9046104124.data                         File Size: 733       BYTES FileVersion:  N/A            MD5: [632874107b3446520f9fe6593100eec3]
9046104124.quar                         File Size: 106392    BYTES FileVersion:  N/A            MD5: [359e75c6356c4abc7f47b080dc347e07]
9135385193.data                         File Size: 793       BYTES FileVersion:  N/A            MD5: [d2cc51eff3079b5f6696b82556ef649c]
9135385193.quar                         File Size: 157080    BYTES FileVersion:  N/A            MD5: [86d3902e9548d18315cd0f5aa5e50bc3]
9144216617.quar                         File Size: 106392    BYTES FileVersion:  N/A            MD5: [359e75c6356c4abc7f47b080dc347e07]
9198888436.quar                         File Size: 106392    BYTES FileVersion:  N/A            MD5: [359e75c6356c4abc7f47b080dc347e07]
9204330951.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [63961d16f29541a95761bcedc5309eda]
9204330951.quar                         File Size: 38912     BYTES FileVersion:  N/A            MD5: [def07ec4a6aeac2a4a15cb22bdbcf0ae]
9222339708.quar                         File Size: 6864      BYTES FileVersion:  N/A            MD5: [f3ff68d0d3b1bd8ac3464b18e2851a5d]
9254567113.quar                         File Size: 157080    BYTES FileVersion:  N/A            MD5: [86d3902e9548d18315cd0f5aa5e50bc3]
9285755004.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [e8990a4a898de9e8ec03505cdb21d309]
9285755004.quar                         File Size: 42496     BYTES FileVersion:  N/A            MD5: [ad006fba0f8a0722c53ef3f1336fb376]
9294824930.data                         File Size: 726       BYTES FileVersion:  N/A            MD5: [40611951f9c0eecb7b91832d15fc072e]
9294824930.quar                         File Size: 166296    BYTES FileVersion:  N/A            MD5: [6b3193b4eb97773a650f65d1e5864669]
9416292029.data                         File Size: 795       BYTES FileVersion:  N/A            MD5: [e05d4dd46410ae2e093f426a3559ec9b]
9416292029.quar                         File Size: 156056    BYTES FileVersion:  N/A            MD5: [5e64b86769f2d02936920cf41874aff6]
9431845430.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [c1b3033c12b90f4fe8143414f7ffd185]
9431845430.quar                         File Size: 41472     BYTES FileVersion:  N/A            MD5: [ead3012ae83868de26f63f0f067f8f88]
9571948411.data                         File Size: 739       BYTES FileVersion:  N/A            MD5: [9089a64f2ba848d613bfef8b8678500b]
9571948411.quar                         File Size: 38400     BYTES FileVersion:  N/A            MD5: [9087d61896fd6ac30f7a67596c75dfca]
9671915022.data                         File Size: 710       BYTES FileVersion:  N/A            MD5: [6a3b869e7bc806b5be3dd21a11c2abee]
9671915022.quar                         File Size: 5054      BYTES FileVersion:  N/A            MD5: [bb204046894a5a53b589ae92d111d56a]
9719078776.quar                         File Size: 111000    BYTES FileVersion:  N/A            MD5: [cb785f7fdce94f2c706ea740c55e0861]
9724874380.data                         File Size: 799       BYTES FileVersion:  N/A            MD5: [a65f99189d336142a5e63a576fa2edf9]
9724874380.quar                         File Size: 13720     BYTES FileVersion:  N/A            MD5: [f81e0a6a718b0f066cc2c3323cc9633c]
9742369404.quar                         File Size: 679832    BYTES FileVersion:  N/A            MD5: [22fd247bcf5ab4896c7be5e3761371ea]
 
Malware Exclusions:
===================
Unable to access exclusion information: Error code 20001Web Exclusions:
================
Unable to access exclusion information: Error code 20001Quarantined Items:
===================
Unable to access quarantine information: Error code 20001===============================================================
END OF FILE


#10 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,802 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:44 AM

Posted 29 June 2015 - 02:47 PM

The exclusions weren't accessible, so we will have to rely on the other two scans.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#11 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 04:56 PM

The same thing happened with TDSS when it asked me to reboot. I could not get it to start in safe mode+networking and it went straight to trying to start to the desktop and I got stuck with the blue screen with no task bar or my desktop icons. Only my mouse was visible. There were also two other selections on my TDSS that I didn't see on the picture you had up so I didn't proceed with the scan.They were "System Memory" under Objects to Scan and "Use KSN to scan objects" under Additional Options. I am about to try the ESET scan right now after this reply. 



#12 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 05:04 PM

The ESET online scan says that I have AVG and Microsoft Security Essentials on my computer which may interfere with the scan. I was able to disable MSC but I don't know how to do so for AVG because it opened the Safemode AVG



#13 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 29 June 2015 - 08:43 PM

Here is the log from ESET Online Scanner

 

C:\Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen10.zip Win32/Bagle.gen.zip worm
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe.vir Win32/Bundled.Toolbar.Ask.E potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\UpdateManager.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\apnmcp.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\searchhook.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\ServiceLocator.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\SO.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\toolbar.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\Toolbar.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\ToolbarPS.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\toolbar_x64.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\UpdateManager.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID}\Passport.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID}\Passport_x64.dll.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\OVO2V7C\Source\program files\VNT\vntldr.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe.vir a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\Program Files\CheckPoint\ZAForceField\CUninstaller.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files\CheckPoint\ZAForceField\TBI.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files (x86)\CheckPoint\Install\CUninstaller.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\Program Files (x86)\CheckPoint\Install\Install.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen10.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Windows\Installer\4cf87b8d.msi a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application deleted - quarantined
C:\Windows\Installer\4f259dc.msi a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined
C:\Windows\Installer\MSI8EF9.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application cleaned by deleting - quarantined
C:\Windows\System32\sysprep\cryptbase.dll Win64/Viknok.B trojan deleted - quarantined
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-ORJ-SPE[1].7z a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application deleted - quarantined


#14 Astrial

Astrial
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:44 AM

Posted 30 June 2015 - 08:59 AM

I also just noticed that my YouCam is no longer on my computer after the scan. Do you know if something happened to it during the scan? The YouCam was preinstalled on my Lenovo Computer when I got it.



#15 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,802 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:44 AM

Posted 01 July 2015 - 09:26 AM



The ESET online scan says that I have AVG and Microsoft Security Essentials on my computer which may interfere with the scan. I was able to disable MSC but I don't know how to do so for AVG because it opened the Safemode AVG

The following explanation was written by quietman7

 

IMPORTANT NOTE: Using more than one anti-virus program is not advisable. Why? The primary concern with doing so is due to Windows resource management and significant conflicts that can arise especially when they are running in real-time protection mode simultaneously. Even if one of them is disabled for use as a stand-alone on demand scanner, it can affect the other and cause conflicts. Anti-virus software components insert themselves deep into the operating systems core where they install kernel mode drivers that load at boot-up regardless of whether real-time protection is enabled or not. Thus, using multiple anti-virus solutions can result in kernel mode conflicts causing system instability, catastrophic crashes, slow performance and waste vital system resources. When actively running in the background while connected to the Internet, each anti-virus may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.

 

You have already disabled MSE, that's all you needed to do.  You now are only running the one antivirus.

 

There are tools which cannot be used in this forum which will be needed to clean your computer.  For this reason you will need to open a topic in the Virus, Trojan, Spyware, and Malware Removal Logs forum.
 
Before posting your topic you will need to read and follow the instructions in the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help.
 
The members of the Malware Response Team who respond to these topics are constantly inundated do to the high volume of requests for help in this forum.   For this reason it may take a couple of days before a Team member may be able to get to your topic.  
 
Do not add anything or bump your topic once you have posted your log.  The Malware Removal Team members look for topics which have not been addressed, if you post any additional information it will make it appear that the topic is being addressed.
 
After you have posted your new topic a Moderator will close this topic.  If it is determined that there is a sofware or hardware problem after cleaning the infection you can contact a Moderator to have this topic reopened.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users