API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 7th, 2016
284
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 42.96 KB | None | 0 0
raw download clone embed print report
  1. mbam-check result log version: 2.3.2.0
  2. ========================================
  3.  
  4. User Account type: Administrator
  5. DomainComputer: No
  6. OS: Windows 7 Service Pack 1 Service Pack 1 64 bit Operating System
  7. Current Version and Build: 6.1.7601
  8. Malwarebytes Anti-Malware: 2.2.1.1043
  9. Installed On: 2016/09/25
  10. Malware Database: 2016.10.07.05
  11. Rootkit Database: 2016.09.26.02
  12. Remediation Database: 2016.09.21.01
  13. IP Database: 2016.10.06.01
  14. Domain Database: 2016.10.06.12
  15. License: Premium
  16. Malware Protection: 4 (The service is running.)
  17. Malicious Website Protection: 4 (The service is running.)
  18. Chameleon: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
  19. Log Created: 2016/10/07 16:00:06
  20.  
  21. User Information for Local System:
  22. ===========================================
  23. User Account: Administrator
  24. Account Level: Admin
  25. User Account: Guest
  26. Account Level: Guest
  27. User Account: Miles
  28. Account Level: Admin
  29. Total # of user entries: 3
  30.  
  31. UAC Settings:
  32. ===================
  33. SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
  34. DWORD 1 Status: ON
  35. SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin
  36. DWORD 5 Status: ON
  37.  
  38. AntiVirus Information:
  39. ===================
  40. AntiVirus Software Installed: "ESET Smart Security 9.0.386.0"
  41.  
  42. FireWall Information:
  43. ===================
  44. 3rd Party Firewall Software Installed: "ESET Personal firewall"
  45.  
  46. AntiSpyware Information:
  47. ===================
  48. AntiSpyware Software Installed: "Windows Defender"
  49. AntiSpyware Software Installed: "ESET Smart Security 9.0.386.0"
  50.  
  51. Machine Information
  52. ===============================================
  53. Machine ID: dedb6bd8e60ffe22218c52109028a0ff55b3908a
  54. Installation Token: Bzv1BxzzNCviXZF_r5cr1474792834
  55. System has been up for: 53.2211 Hours
  56. Current Date: 2016-Oct-07 15:00:07.912781
  57. Date Booted: 2016-Oct-05 10:00:07.912781
  58.  
  59. Detection and Protection Settings
  60. ===============================================
  61. Use Advanced Heuristics Engine (Shuriken): true
  62. Scan for rootkits: true
  63. Scan within archives: true
  64. PUP (Potentially Unwanted Program) detections: Treat Detections as Malware
  65. PUM (Potentially Unwanted Modification) detections: Treat Detections as Malware
  66.  
  67. Compatibility Flag Settings:
  68. =================================
  69.  
  70.  
  71. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
  72.  
  73.  
  74. Malwarebytes Anti-Malware Shell Extension Block Check:
  75. ======================================================
  76.  
  77. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:
  78.  
  79. MBAM Startup Entries:
  80. =====================
  81. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
  82. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
  83. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  84. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
  85.  
  86. Malwarebytes Anti-Malware Service and Driver Status:
  87. =======================================================
  88.  
  89. --------------Driver File Info:--------------
  90. C:\Windows\system32\drivers\mbam.sys
  91. File Size: 27008 BYTES FileVersion: 0.1.16.0 MD5: [78bff5425e044086e74e78650a359fbb]
  92. C:\Windows\system32\drivers\mwac.sys
  93. File Size: 64896 BYTES FileVersion: 1.0.6.0 MD5: [452acb7a9914398d9e18cccffcf92208]
  94. C:\Windows\system32\drivers\mbamswissarmy.sys
  95. File Size: 192216 BYTES FileVersion: 0.3.0.4 MD5: [78488af2ab2111d67b3c4044707a519b]
  96. C:\Windows\system32\drivers\mbamchameleon.sys
  97. File Size: 140672 BYTES FileVersion: 1.1.22.0 MD5: [1239597bab7eed2bb16d035af87e65d9]
  98.  
  99. --------------MBAMProtector:--------------
  100. Type: 2
  101. State: 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
  102. WIN32_EXIT_CODE: 0
  103. SERVICE_EXIT_CODE: 0
  104. CHECKPOINT: 0
  105. WAIT_HINT: 0
  106.  
  107.  
  108. --------------MBAMService:--------------
  109. Type: 16
  110. State: 4 (The service is running.)
  111. WIN32_EXIT_CODE: 0
  112. SERVICE_EXIT_CODE: 0
  113. CHECKPOINT: 0
  114. WAIT_HINT: 0
  115.  
  116.  
  117. --------------MBAMScheduler:--------------
  118. Type: 16
  119. State: 4 (The service is running.)
  120. WIN32_EXIT_CODE: 0
  121. SERVICE_EXIT_CODE: 0
  122. CHECKPOINT: 0
  123. WAIT_HINT: 0
  124.  
  125.  
  126. --------------MBAMChameleon:--------------
  127. Type: N/A
  128. State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
  129. WIN32_EXIT_CODE: N/A
  130. SERVICE_EXIT_CODE: N/A
  131. CHECKPOINT: N/A
  132. WAIT_HINT: N/A
  133.  
  134.  
  135. --------------MBAMWebAccessControl:--------------
  136. Type: 2
  137. State: 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
  138. WIN32_EXIT_CODE: 0
  139. SERVICE_EXIT_CODE: 0
  140. CHECKPOINT: 0
  141. WAIT_HINT: 0
  142.  
  143.  
  144. Required Dependencies:
  145. ======================
  146.  
  147. --------------BFE:--------------
  148. Type: 32
  149. State: 4 (The service is running.)
  150. WIN32_EXIT_CODE: 0
  151. SERVICE_EXIT_CODE: 0
  152. CHECKPOINT: 0
  153. WAIT_HINT: 0
  154.  
  155.  
  156. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
  157. DisplayName REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
  158. Group REG_SZ NetworkProvider
  159. ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
  160. Description REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
  161. ObjectName REG_SZ NT AUTHORITY\LocalService
  162. ErrorControl REG_DWORD 1
  163. Start REG_DWORD 2
  164. Type REG_DWORD 32
  165. DependOnService REG_MULTI_SZ RpcSs
  166.  
  167. ServiceSidType REG_DWORD 3
  168. RequiredPrivileges REG_MULTI_SZ SeAuditPrivilege
  169.  
  170. FailureActions REG_BINARY Binary Data
  171.  
  172. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
  173. ServiceDll REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
  174. ServiceDllUnloadOnStop REG_DWORD 1
  175. ServiceMain REG_SZ BfeServiceMain
  176.  
  177. --------------fltmgr:--------------
  178. Type: 2
  179. State: 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
  180. WIN32_EXIT_CODE: 0
  181. SERVICE_EXIT_CODE: 0
  182. CHECKPOINT: 0
  183. WAIT_HINT: 0
  184.  
  185.  
  186. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
  187. AttachWhenLoaded REG_DWORD 1
  188. DisplayName REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
  189. Group REG_SZ FSFilter Infrastructure
  190. ImagePath REG_EXPAND_SZ system32\drivers\fltmgr.sys
  191. Description REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
  192. ErrorControl REG_DWORD 3
  193. Start REG_DWORD 0
  194. Tag REG_DWORD 1
  195. Type REG_DWORD 2
  196. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
  197. 0 REG_SZ Root\LEGACY_FLTMGR\0000
  198. Count REG_DWORD 1
  199. NextInstance REG_DWORD 1
  200.  
  201.  
  202. C:\Windows\system32\drivers\fltmgr.sys
  203. File Size: 289664 BYTES FileVersion: 6.1.7601.17514 MD5: [da6b67270fd9db3697b20fce94950741]
  204. C:\Windows\SysWOW64\olepro32.dll
  205. File Size: 90624 BYTES FileVersion: 6.1.7601.23452 MD5: [307a6d4f7cd94e384ecff05afa30b42c]
  206.  
  207.  
  208. MBAM Registry Settings and License Info:
  209. ========================================
  210. --------------Settings:--------------
  211. Advanced:
  212. AutomaticQuarantine: false
  213. AutostartProtection: false
  214. LimitedMode: false
  215. StartSilentMode: false
  216. StartupDelay: -15
  217. ApplicationState:
  218. First-Run-After-Installation: false
  219. General:
  220. DaysUntilNotifyExpiration: 5
  221. Language: en
  222. RightClickAccess: true
  223. SilentErrors: false
  224. Logging:
  225. ExportLog: true
  226. Marketing:
  227. LastPostScanMarketingIndex: 4
  228. Notification:
  229. ProtectionTray:
  230. DisplayMilliseconds: 3000
  231. ScanHistory:
  232. Duration_Complete: 19125
  233. Duration_Driver: 0
  234. Duration_Filesystem: 31
  235. Duration_Heuristics: 338830
  236. Duration_Loading: 0
  237. Duration_MasterBootRecord: 0
  238. Duration_Memory: 40000
  239. Duration_PreScan: 8735
  240. Duration_Registry: 8870
  241. Duration_Sector: 0
  242. Duration_Startup: 29006
  243. ItemCount_Complete: 243460
  244. ItemCount_Driver: 0
  245. ItemCount_Filesystem: 49104
  246. ItemCount_Heuristics: 15455
  247. ItemCount_Loading: 0
  248. ItemCount_MasterBootRecord: 0
  249. ItemCount_Memory: 2797
  250. ItemCount_PreScan: 0
  251. ItemCount_Registry: 609
  252. ItemCount_Sector: 0
  253. ItemCount_Startup: 4123
  254. LastRemovalRequiredDOR: false
  255. LastScanDateEpoch: 1475822206002
  256. LastScanType: 1 (Threat Scan)
  257. QuarantineCompletedCount: 2
  258. Update:
  259. LastUpdate: 2016-10-07T12:56:03
  260. NotifyInstallReady: true
  261. NotifyOutdatedDatabase: 7
  262. ProxyPassword:
  263. ProxyPort: 0
  264. ProxyServer:
  265. ProxyUsername:
  266. UseProxy: false
  267. UseProxyAuthentication: false
  268. CheckProgramUpdates: true
  269. --------------Account:--------------
  270. Account Status: Premium
  271. Expiration Time: 2016/10/09 08:40:34
  272. Activation Time: 2016/09/25 09:40:46
  273. Trial Used: true
  274. --------------Access Policies:--------------
  275.  
  276. Scheduler Queue:
  277. ================
  278.  
  279. tasks:
  280. 5211e860-107a-4148-9c4b-e1f8c72ef5fe:
  281. parameters:
  282. AutoDelete: false
  283. CheckForUpdatesBeforeScanStart: true
  284. ProcessLaunchedFromScheduler: true
  285. ScanConfig:
  286. ExportLog: true
  287. FileSystemOption: true
  288. Quarantine: Prompt
  289. RebootSystemWhenMalwareDetected: false
  290. ScanArchives: true
  291. ScanExtra: true
  292. ScanHeuristic: true
  293. ScanMemoryObjects: true
  294. ScanPUM: Treat Detections as Malware
  295. ScanPUP: Treat Detections as Malware
  296. ScanRegistry: true
  297. ScanRootkits: false
  298. ScanSource: 1
  299. ScanStartup: true
  300. ScanTargets:
  301. ScanType: 1 (Threat Scan)
  302. Silent: true
  303. StartTaskFromSystemAccount: false
  304. TaskType: 0
  305. triggers:
  306. 3a9e257f-3fa0-4b19-bf3f-e7eb0492a36f:
  307. dateinterval: 1:0:0 (Days:Months:Years)
  308. lastscheduled: Fri, 07 Oct 2016 07:36:17.579705 +0100
  309. lasttriggered: Fri, 07 Oct 2016 07:36:17.579705 +0100
  310. nextscheduled: Sat, 08 Oct 2016 02:17:26 +0100
  311. recovery: 23:00:00 (Hours:Minutes:Seconds)
  312. start: Mon, 26 Sep 2016 02:21:11 +0100
  313. timeinterval: 00:00:00 (Hours:Minutes:Seconds)
  314. type: Daily
  315. uuid: 3a9e257f-3fa0-4b19-bf3f-e7eb0492a36f
  316. type: scan
  317. uuid: 5211e860-107a-4148-9c4b-e1f8c72ef5fe
  318. ff973fc8-ea61-4bf5-b912-4d69105e8731:
  319. parameters:
  320. NotifyWhenUpdateCompletes: false
  321. ProcessLaunchedFromScheduler: true
  322. TaskType: 3
  323. triggers:
  324. 4a968b31-6dff-4b6c-908b-19fe5abc240d:
  325. dateinterval: 0:0:0 (Days:Months:Years)
  326. lastscheduled: Fri, 07 Oct 2016 15:44:02.988590 +0100
  327. lasttriggered: Fri, 07 Oct 2016 15:44:02.988590 +0100
  328. nextscheduled: Fri, 07 Oct 2016 16:01:55.985453 +0100
  329. recovery: 00:00:00 (Hours:Minutes:Seconds)
  330. start: Sun, 25 Sep 2016 09:57:04.985453 +0100
  331. timeinterval: 01:00:00 (Hours:Minutes:Seconds)
  332. type: Hourly
  333. uuid: 4a968b31-6dff-4b6c-908b-19fe5abc240d
  334. type: update
  335. uuid: ff973fc8-ea61-4bf5-b912-4d69105e8731
  336.  
  337. Pending File Rename Operations:
  338. ================================
  339. If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
  340.  
  341. MBAMProtector Registry Values:
  342. ==============================
  343.  
  344. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
  345. Type REG_DWORD 2
  346. Start REG_DWORD 3
  347. ErrorControl REG_DWORD 1
  348. ImagePath REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
  349. Group REG_SZ FSFilter Anti-Virus
  350. DependOnService REG_MULTI_SZ FltMgr
  351.  
  352. WOW64 REG_DWORD 1
  353. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
  354. DefaultInstance REG_SZ MBAMProtector Instance
  355. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
  356. Altitude REG_SZ 328800
  357. Flags REG_DWORD 0
  358. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
  359. PassThruFile REG_SZ mbampt.exe
  360. ProductPath REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
  361. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
  362. 0 REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
  363. Count REG_DWORD 1
  364. NextInstance REG_DWORD 1
  365.  
  366. MBAMService Registry Values:
  367. ============================
  368.  
  369. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
  370. Type REG_DWORD 16
  371. Start REG_DWORD 2
  372. ErrorControl REG_DWORD 1
  373. ImagePath REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
  374. DependOnService REG_MULTI_SZ MBAMProtector
  375.  
  376. WOW64 REG_DWORD 1
  377. ObjectName REG_SZ LocalSystem
  378. Description REG_SZ Malwarebytes Anti-Malware service
  379. DelayedAutostart REG_DWORD 0
  380.  
  381. MBAMScheduler Registry Values:
  382. ==============================
  383.  
  384. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
  385. Type REG_DWORD 16
  386. Start REG_DWORD 2
  387. ErrorControl REG_DWORD 1
  388. ImagePath REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
  389. WOW64 REG_DWORD 1
  390. ObjectName REG_SZ LocalSystem
  391. Description REG_SZ Malwarebytes Anti-Malware scheduler
  392.  
  393. Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
  394. ===============================================================================
  395.  
  396. --------------TERMService:--------------
  397. Type: 32
  398. State: 1 (The service is not running.) (State is stopped)
  399. WIN32_EXIT_CODE: 1077
  400. SERVICE_EXIT_CODE: 0
  401. CHECKPOINT: 0
  402. WAIT_HINT: 0
  403.  
  404.  
  405. TermService Start is set to: 3 (Manual Startup)
  406.  
  407. Proxy Status: No proxy is Set
  408.  
  409. LAN Settings:
  410. =============
  411.  
  412. only 'Automatically detect settings' is selected
  413.  
  414. SystemPartition:
  415. ================
  416.  
  417. HKEY_LOCAL_MACHINE\SYSTEM\Setup\
  418. SystemPartition REG_SZ \Device\HarddiskVolume2
  419.  
  420. Balloon Tips Status:
  421. ====================
  422.  
  423. Enabled
  424.  
  425. Time Format Settings:
  426. =====================
  427.  
  428. Should be:
  429. h:mm:ss tt
  430. AM
  431. PM
  432. :
  433.  
  434. Currently:
  435. REG_SZ HH:mm:ss
  436. REG_SZ AM
  437. REG_SZ PM
  438. REG_SZ :
  439.  
  440. Language and Regional Settings:
  441. ===============================
  442.  
  443. ACP: Language is English (United States)
  444. MACCP: Language is English (United States)
  445. OEMCP: 850 Please refer to this link for details:[url=http://technet.microsoft.com/en-us/library/cc775938(WS.10).aspx] Here [/url]
  446.  
  447. Startup Folders for Error_Expanding_Variables Check:
  448. ====================================================
  449.  
  450. All Users Startup Folder Exists.
  451. Current User's Startup Folder Exists.
  452.  
  453.  
  454. Context Menu Entries:
  455. =====================
  456.  
  457. HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShlExt
  458. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  459.  
  460. HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\MBAMShlExt
  461. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  462.  
  463. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt
  464. (Default): REG_SZ MBAMShlExt Class
  465. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CLSID
  466. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  467. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CurVer
  468. (Default): REG_SZ MBAMExt.MBAMShlExt.1
  469. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1
  470. (Default): REG_SZ MBAMShlExt Class
  471. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1\CLSID
  472. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  473.  
  474.  
  475. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}
  476. (Default): REG_SZ IMBAMShlExt
  477. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\ProxyStubClsid32
  478. (Default): REG_SZ {00020424-0000-0000-C000-000000000046}
  479. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\TypeLib
  480. (Default): REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  481. Version REG_SZ 1.0
  482. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  483. (Default): REG_SZ MBAMShlExt Class
  484. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\InprocServer32
  485. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
  486. ThreadingModel REG_SZ Apartment
  487. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\ProgID
  488. (Default): REG_SZ MBAMExt.MBAMShlExt.1
  489. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\TypeLib
  490. (Default): REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  491. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\VersionIndependentProgID
  492. (Default): REG_SZ MBAMExt.MBAMShlExt
  493.  
  494. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  495. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
  496. (Default): REG_SZ MBAMExt 1.0 Type Library
  497. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
  498. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win32
  499. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
  500. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
  501. (Default): REG_SZ 0
  502. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
  503. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
  504. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  505. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
  506. (Default): REG_SZ MBAMExt 1.0 Type Library
  507. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
  508. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win32
  509. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
  510. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
  511. (Default): REG_SZ 0
  512. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
  513. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
  514.  
  515.  
  516. List of MBAM Related Directories:
  517. =================================
  518.  
  519. C:\Program Files (x86)\Malwarebytes Anti-Malware\
  520. 7z.dll File Size: 922080 BYTES FileVersion: 9.20.0.0 MD5: [14079a2411fa2bb7f78bc100c92bbcc2]
  521. changes.txt File Size: 1596 BYTES FileVersion: N/A MD5: [09371a0c8bd9e9554571da257d554d3e]
  522. cloud-enumeration.dll File Size: 287200 BYTES FileVersion: 1.0.1.0 MD5: [84ac20b9327dbd4d94039be93384dad5]
  523. cloud.dll File Size: 352736 BYTES FileVersion: 1.0.1.0 MD5: [5659790448fb136a80be407c4a0dbb50]
  524. license.rtf File Size: 38870 BYTES FileVersion: N/A MD5: [ed36ea764c3a452334416713c8cf1eed]
  525. master.conf File Size: 1258 BYTES FileVersion: N/A MD5: [9702ca5e82d3756c6d8af34a2ababaea]
  526. mbam.dll File Size: 609760 BYTES FileVersion: 1.0.40.0 MD5: [c4a51c1cb174066fdaf383c09f0d574b]
  527. mbam.exe File Size: 9926112 BYTES FileVersion: 2.3.173.0 MD5: [8e98e3ec16d2641005b4748cd330fb45]
  528. mbamcore.dll File Size: 2127840 BYTES FileVersion: 1.3.24.0 MD5: [63ce66ef2b30a09308eafe29baec6a75]
  529. mbamdor.exe File Size: 55264 BYTES FileVersion: 1.0.2.0 MD5: [297c1bdcc26adb339d4c0f0550e434d6]
  530. mbamext.dll File Size: 431072 BYTES FileVersion: 3.1.1.0 MD5: [67a6ec1735c77c2623b49cc1f284c8a0]
  531. mbampt.exe File Size: 40928 BYTES FileVersion: 1.0.57.0 MD5: [04d0b942b0ad4a5d2eee45d9b7d6545b]
  532. mbamresearch.exe File Size: 1949152 BYTES FileVersion: 1.1.1.0 MD5: [e601f9ca6a72493bc8185bedda17eee8]
  533. mbamscheduler.exe File Size: 1514464 BYTES FileVersion: 3.1.7.0 MD5: [9611577752e293259c7dce19e9026362]
  534. mbamservice.exe File Size: 1136608 BYTES FileVersion: 3.2.21.0 MD5: [f1a89a34388b5626f1548d393b23ecb1]
  535. mbamsrv.dll File Size: 3863008 BYTES FileVersion: 2.1.10.0 MD5: [a33629c51295570fe9f252a39ddcea93]
  536. msvcp100.dll File Size: 422880 BYTES FileVersion: 10.0.40219.325 MD5: [53a5f1b984f585997968cd0dfb27400c]
  537. msvcr100.dll File Size: 775648 BYTES FileVersion: 10.0.40219.325 MD5: [dc0213118e61e5ca865092109860792c]
  538. Qt5Core.dll File Size: 4646880 BYTES FileVersion: 5.4.1.0 MD5: [91c7c50b2a290b82604163b5a679ea24]
  539. Qt5Gui.dll File Size: 4640224 BYTES FileVersion: 5.4.1.0 MD5: [1d59b3e632aef8e24cc1707fd411113b]
  540. Qt5Network.dll File Size: 673248 BYTES FileVersion: 5.4.1.0 MD5: [e089635a8cbed229ec30cdbe29748c08]
  541. Qt5Widgets.dll File Size: 4474848 BYTES FileVersion: 5.4.1.0 MD5: [33881dda0ccc3898facadf1e4d1df237]
  542. unins000.dat File Size: 37316 BYTES FileVersion: N/A MD5: [4b1f72bc26f598179473bab19606dcb1]
  543. unins000.exe File Size: 720085 BYTES FileVersion: 51.52.0.0 MD5: [f1505d347325c77e3eeef418495e1f57]
  544.  
  545. C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon
  546.  
  547. C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
  548. chameleon.chm File Size: 235882 BYTES FileVersion: N/A MD5: [c4190b71f037714aa77aba294434ba5b]
  549. firefox.com File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  550. firefox.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  551. firefox.pif File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  552. firefox.scr File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  553. iexplore.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  554. mbam-chameleon.com File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  555. mbam-chameleon.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  556. mbam-chameleon.pif File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  557. mbam-chameleon.scr File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  558. mbam-killer.exe File Size: 1504736 BYTES FileVersion: 3.0.15.0 MD5: [b79d3c2fca170c4dd15d7316067a1fd3]
  559. rundll32.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  560. svchost.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  561. windows.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  562. winlogon.exe File Size: 960480 BYTES FileVersion: 3.1.29.0 MD5: [f86a4139730504047f52ccfb8c47e9f5]
  563.  
  564. C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
  565. qgif.dll File Size: 29664 BYTES FileVersion: 5.4.1.0 MD5: [0b528e4c9bbd9efdea9bc8ac6a967d6d]
  566. qico.dll File Size: 29664 BYTES FileVersion: 5.4.1.0 MD5: [7b36d94db81b8b0dfd9323228dd96b51]
  567.  
  568. C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
  569. lang_ar.qm File Size: 87404 BYTES FileVersion: N/A MD5: [269d3107ca72a75fe154ce4ff718af50]
  570. lang_bg.qm File Size: 133911 BYTES FileVersion: N/A MD5: [376ad1e4ad206bc32da09b12b564ecc4]
  571. lang_ca.qm File Size: 92634 BYTES FileVersion: N/A MD5: [2d35f58b0c2db44ad2717f4a4526a085]
  572. lang_cs.qm File Size: 105193 BYTES FileVersion: N/A MD5: [2c191de828d5e05fd7afa27ee1245023]
  573. lang_da.qm File Size: 88039 BYTES FileVersion: N/A MD5: [f8a4941d5d388160d252832a77ab584f]
  574. lang_de.qm File Size: 139276 BYTES FileVersion: N/A MD5: [b55f37281f0fcadfae67aecf0bf4cca5]
  575. lang_el.qm File Size: 126897 BYTES FileVersion: N/A MD5: [bd671253e071bac626beea63393abcda]
  576. lang_en.qm File Size: 3081 BYTES FileVersion: N/A MD5: [e2790b3cd9fdd9d3e266e9623fe477af]
  577. lang_es.qm File Size: 138468 BYTES FileVersion: N/A MD5: [cc4f3aab63d933d5964e2bba62df4277]
  578. lang_et.qm File Size: 107794 BYTES FileVersion: N/A MD5: [aa4845cd64b20377cea0ebc66eed4a42]
  579. lang_fi.qm File Size: 130793 BYTES FileVersion: N/A MD5: [00653d1fb2f790817aef991025c176aa]
  580. lang_fr.qm File Size: 141996 BYTES FileVersion: N/A MD5: [e06db8ef6b826b75ec5859913651ed44]
  581. lang_he.qm File Size: 98928 BYTES FileVersion: N/A MD5: [2954e902664f2e129f8a8d8238e90552]
  582. lang_hu.qm File Size: 132359 BYTES FileVersion: N/A MD5: [6bf3b8c78fd393ef2811a19742518b9a]
  583. lang_id.qm File Size: 129135 BYTES FileVersion: N/A MD5: [6be058072a90897595c6f097a3caa797]
  584. lang_it.qm File Size: 134154 BYTES FileVersion: N/A MD5: [183990148beec433023688db65a7bf2e]
  585. lang_ja.qm File Size: 73762 BYTES FileVersion: N/A MD5: [f6bfd643cb92fa760ae6ec64344ee7e1]
  586. lang_ko.qm File Size: 85731 BYTES FileVersion: N/A MD5: [53b5a94eb309d69993a5bc3cd43a85e4]
  587. lang_lt.qm File Size: 90799 BYTES FileVersion: N/A MD5: [eecd8edca1fb068ad3bd88aa711bdae2]
  588. lang_lv.qm File Size: 90659 BYTES FileVersion: N/A MD5: [683950904e725821740217824df440ff]
  589. lang_nl.qm File Size: 133514 BYTES FileVersion: N/A MD5: [442a6cf7e07e6f676d8b5ae41637549c]
  590. lang_no.qm File Size: 129833 BYTES FileVersion: N/A MD5: [8949e21e367e5a32ca9f36d8d22c9771]
  591. lang_pl.qm File Size: 133827 BYTES FileVersion: N/A MD5: [48379f4ac164adfc8d448bf53c8e2df8]
  592. lang_pt_BR.qm File Size: 136918 BYTES FileVersion: N/A MD5: [b1ea2002cf5362b24ca0a026f448e3f1]
  593. lang_pt_PT.qm File Size: 136982 BYTES FileVersion: N/A MD5: [5e23b66cb6d8d9894b991cc8f33658af]
  594. lang_ro.qm File Size: 90458 BYTES FileVersion: N/A MD5: [bcf524020255c4f7a6fdbae8df2bfe81]
  595. lang_ru.qm File Size: 137874 BYTES FileVersion: N/A MD5: [5e28394fbd12f21301e2b7e1a9dbac94]
  596. lang_sk.qm File Size: 131080 BYTES FileVersion: N/A MD5: [68e0e95e7131d101188a57e3a413dee5]
  597. lang_sl.qm File Size: 107631 BYTES FileVersion: N/A MD5: [83755001a3f1bd527d0b4b7a77d0b37d]
  598. lang_sv.qm File Size: 129135 BYTES FileVersion: N/A MD5: [b3c38242beb63f895fabcc14bbc6807a]
  599. lang_tr.qm File Size: 88838 BYTES FileVersion: N/A MD5: [1e4a3c0dcd7074ad4a3971ce67762cda]
  600. lang_vi.qm File Size: 133386 BYTES FileVersion: N/A MD5: [586de19c023986bf884ad56fc29c8f5e]
  601. lang_zh_TW.qm File Size: 87797 BYTES FileVersion: N/A MD5: [e120a014cf077bdcbcdcbf98c3438188]
  602.  
  603. C:\Program Files (x86)\Malwarebytes Anti-Malware\\platforms
  604. qwindows.dll File Size: 929760 BYTES FileVersion: 5.4.1.0 MD5: [6c54d2ebeaacbe9b56816536041c8281]
  605.  
  606. C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
  607. fixdamage.exe File Size: 823776 BYTES FileVersion: 1.4.0.1001 MD5: [bbfc25590af3e45d8cca1fab95648b40]
  608.  
  609. C:\Users\Miles\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware
  610.  
  611. C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
  612. actions.ref File Size: 9251 BYTES FileVersion: N/A MD5: [87bb68ff723ecd46de8c248e1cfec0f1]
  613. akadomains.ref File Size: 92 BYTES FileVersion: N/A MD5: [73d5774cbd8df165274a0691ae264808]
  614. akaips.ref File Size: 92 BYTES FileVersion: N/A MD5: [2a6869d1f91f0a0b87b1d27bd30ccc5c]
  615. domains.ref File Size: 1052561 BYTES FileVersion: N/A MD5: [bed5a52752640eec0828baee84a886c9]
  616. exclusions.dat File Size: 0 BYTES FileVersion: N/A MD5: [d41d8cd98f00b204e9800998ecf8427e]
  617. ips.ref File Size: 198860 BYTES FileVersion: N/A MD5: [35477d4c1f3cd6961996aba452ec7e8c]
  618. rules.ref File Size: 10889658 BYTES FileVersion: N/A MD5: [92127fddf1b1ea4c48ee4cf0314f7276]
  619. swissarmy.ref File Size: 28481 BYTES FileVersion: N/A MD5: [7dc8509e7ba768b50ea1ce9271e3b931]
  620.  
  621. C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
  622. build.conf File Size: 4596 BYTES FileVersion: N/A MD5: [2af88ab9b37620b5c63527e8bb33e75c]
  623. database.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  624. gatekeeper.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  625. license.conf File Size: 2907 BYTES FileVersion: N/A MD5: [aa880f6aa62b5421b137115eb65483b4]
  626. manifest.conf File Size: 3412 BYTES FileVersion: N/A MD5: [9e0f6752052fd779632291d590aae87f]
  627. marketing.conf File Size: 7318 BYTES FileVersion: N/A MD5: [5c86b541dc9031e2957ebbf0be5d4c6a]
  628. net.conf File Size: 7336 BYTES FileVersion: N/A MD5: [c5b5c06c2789f1dfadc262039e7e3df2]
  629. notifications.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  630. scheduler.conf File Size: 2201 BYTES FileVersion: N/A MD5: [bfc49a7d90de3307f9de571bd77c8f31]
  631. settings.conf File Size: 2120 BYTES FileVersion: N/A MD5: [0fcf95bf504cbeb586ed015bd1563b6f]
  632. statistics.conf File Size: 513 BYTES FileVersion: N/A MD5: [165b0e724fe766eaa1c2882ca799b194]
  633.  
  634. C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
  635. build.conf File Size: 4179 BYTES FileVersion: N/A MD5: [20d9566b3cf94f1e395de8f40046fc68]
  636. database.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  637. gatekeeper.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  638. license.conf File Size: 23 BYTES FileVersion: N/A MD5: [0ec01df616b565180556881d8042255b]
  639. manifest.conf File Size: 3171 BYTES FileVersion: N/A MD5: [a6e5576f7723acab40490fb9e64dfc1c]
  640. marketing.conf File Size: 6974 BYTES FileVersion: N/A MD5: [53bbca93e7bbeb7f5dca1ef9419ccb28]
  641. net.conf File Size: 6530 BYTES FileVersion: N/A MD5: [9fb4acfdc11c7af48a760db4c7bfebf0]
  642. notifications.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  643. scheduler.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  644. settings.conf File Size: 1724 BYTES FileVersion: N/A MD5: [e27b42126b89352fdaae8f1630b9a8d8]
  645. statistics.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2]
  646.  
  647. C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
  648. mbam-log-2016-09-25 (09-41-37).xml File Size: 2604 BYTES FileVersion: N/A MD5: [de215ca304f01ea8257ca6f2d61cf6e4]
  649. mbam-log-2016-09-26 (05-00-20).xml File Size: 2962 BYTES FileVersion: N/A MD5: [a579241abec4983dc1ea2e699212a9b2]
  650. mbam-log-2016-09-27 (20-24-46).xml File Size: 3040 BYTES FileVersion: N/A MD5: [d8a8c9c1ea4116a7a53abf4384e60d37]
  651. mbam-log-2016-09-28 (02-28-33).xml File Size: 2638 BYTES FileVersion: N/A MD5: [683c0e4767b485b96a6cdadd32f69464]
  652. mbam-log-2016-09-29 (02-29-30).xml File Size: 2638 BYTES FileVersion: N/A MD5: [b49ada35b5713c3dcf50c0be9e54db68]
  653. mbam-log-2016-09-30 (02-24-22).xml File Size: 2638 BYTES FileVersion: N/A MD5: [1789741a0cf4d4d35f36eea39046cb9a]
  654. mbam-log-2016-10-01 (02-19-09).xml File Size: 2638 BYTES FileVersion: N/A MD5: [61be403b62ef5608865c5cca71c30780]
  655. mbam-log-2016-10-01 (02-27-14).xml File Size: 2638 BYTES FileVersion: N/A MD5: [5fcb59749a43343363794d4753e1096b]
  656. mbam-log-2016-10-01 (12-08-20).xml File Size: 2638 BYTES FileVersion: N/A MD5: [1e07689a95fb9ebd718c63b0c0e5ecf0]
  657. mbam-log-2016-10-07 (07-36-19).xml File Size: 2640 BYTES FileVersion: N/A MD5: [5f152215009970d3065df754ff82e677]
  658. protection-log-2016-09-25.xml File Size: 27037 BYTES FileVersion: N/A MD5: [de384e92ea52fb508f9bffe843a0bb39]
  659. protection-log-2016-09-26.xml File Size: 8288 BYTES FileVersion: N/A MD5: [68a0c876d6a1c677c8759e0e36ada4cc]
  660. protection-log-2016-09-27.xml File Size: 3886 BYTES FileVersion: N/A MD5: [8ca3a9aebcf5e13e58a7224194a2fb01]
  661. protection-log-2016-09-28.xml File Size: 36873 BYTES FileVersion: N/A MD5: [faa30d895006bc7e30745be1c6366a18]
  662. protection-log-2016-09-29.xml File Size: 28651 BYTES FileVersion: N/A MD5: [24e8696cf2cfdff470199385cdc94e01]
  663. protection-log-2016-09-30.xml File Size: 26179 BYTES FileVersion: N/A MD5: [8c4ce45824f14474007beb6d6aded23a]
  664. protection-log-2016-10-01.xml File Size: 11323 BYTES FileVersion: N/A MD5: [5e28881c1e1b5e123dd4602a4199906a]
  665. protection-log-2016-10-07.xml File Size: 14871 BYTES FileVersion: N/A MD5: [3612d0c3f8d2341adc297d6bffe7a7af]
  666.  
  667. C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
  668. 0012959513.data File Size: 724 BYTES FileVersion: N/A MD5: [bb22eb42149ae767bc7465ce9841954b]
  669. 0012959513.quar File Size: 152064 BYTES FileVersion: N/A MD5: [7954194473cb870fff75c8b9cc6e268c]
  670. 5030371964.data File Size: 704 BYTES FileVersion: N/A MD5: [de2d1e7654ade806ba2c1985b3c1665c]
  671. 5030371964.quar File Size: 1278384 BYTES FileVersion: N/A MD5: [3da556daebc98b1a187cf8b77c5b89e4]
  672. 5042266222.data File Size: 795 BYTES FileVersion: N/A MD5: [122c3d526718c0e9b6de1bfd6b061ff9]
  673. 5042266222.quar File Size: 2088960 BYTES FileVersion: N/A MD5: [2112712cfff30998a33425a68443e029]
  674.  
  675. Malware Exclusions:
  676. ===================
  677. Web Exclusions:
  678. ================
  679. Quarantined Items:
  680. ===================
  681. Vendor: PUP.Optional.DealPly, Date: 2016/09/27 19:25:03, Type: File, Location: C:\Users\Miles\AppData\Local\Temp\nsd26207693426\EnigmaEncode.exe
  682. Vendor: PUP.Optional.InstallCore, Date: 2016/09/26 04:00:21, Type: File, Location: C:\Users\Miles\Downloads\BitlordSetup.exe
  683. Vendor: CrackTool.SpectraLayers.Keygen, Date: 2016/09/29 19:31:26, Type: File, Location: C:\Users\Miles\Downloads\Sony Vegas Pro 13.0 Build 453 (x64) + Patch DI\Keygen & Patch bY DI\Keygen.exe
  684. ===============================================================
  685. END OF FILE
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!