API tools faq
paste
Advertisement
Guest User

mbam checklog

a guest
Apr 20th, 2013
220
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 39.00 KB | None | 0 0
raw download clone embed print report
  1. mbam-check result log version: 2.0.0.1000
  2.  
  3. Malwarebytes Version: REG_SZ 1.75.0.1300
  4.  
  5. Date Log Created: 04/20/13
  6. Time Log Created: 13:48:19
  7.  
  8. User Account type: Administrator
  9.  
  10. 64 bit Operating System
  11.  
  12. Product Name: REG_SZ Windows 7 Home Premium
  13.  
  14. Current Build Number: 7601
  15.  
  16. Current Version Number: 6.1
  17.  
  18. Current CSDVersion: Service Pack 1
  19.  
  20. Proxy Status: No proxy is Set
  21.  
  22. LAN Settings:
  23. =============
  24.  
  25. only 'Automatically detect settings' is selected
  26.  
  27. SystemPartition:
  28. ================
  29.  
  30. HKEY_LOCAL_MACHINE\SYSTEM\Setup\
  31. SystemPartition REG_SZ \Device\HarddiskVolume1
  32.  
  33. Balloon Tips Status:
  34. ====================
  35.  
  36. Enabled
  37.  
  38. Time Format Settings:
  39. =====================
  40.  
  41. Should be:
  42. h:mm:ss tt
  43. AM
  44. PM
  45. :
  46.  
  47. Currently:
  48. REG_SZ h:mm:ss tt
  49. REG_SZ AM
  50. REG_SZ PM
  51. REG_SZ :
  52.  
  53. Language and Regional Settings:
  54. ===============================
  55.  
  56. ACP: Language is English (United States)
  57. MACCP: Language is English (United States)
  58. OEMCP: 850 Please refer to this link for details:[url=http://technet.microsoft.com/en-us/library/cc775938(WS.10).aspx] Here [/url]
  59.  
  60. Startup Folders for Error_Expanding_Variables Check:
  61. ====================================================
  62.  
  63. All Users Startup Folder Exists.
  64. Current User's Startup Folder Exists.
  65.  
  66.  
  67. Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
  68. ===============================================================================
  69.  
  70. TERMService:
  71. ==============
  72. Type : 32
  73. State : 1 (The service is not running.) (State is stopped)
  74. WIN32_EXIT_CODE : 1077
  75. SERVICE_EXIT_CODE : 0
  76. CHECKPOINT : 0
  77. WAIT_HINT : 0
  78.  
  79.  
  80. TermService Start is set to: 3 (Manual Startup)
  81.  
  82. Compatibility Flag Settings (Any MBAM file listings should be removed):
  83. =======================================================================
  84.  
  85. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
  86. C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exeREG_SZ DISABLEUSERCALLBACKEXCEPTION
  87.  
  88.  
  89.  
  90.  
  91. Malwarebytes Anti-Malware Shell Extension Block Check:
  92. ======================================================
  93.  
  94.  
  95.  
  96. MBAM Startup Entries:
  97. =====================
  98. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
  99. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
  100. Malwarebytes Anti-Malware REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
  101. Malwarebytes Anti-Malware (cleanup)REG_SZ rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript
  102. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
  103. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
  104.  
  105. Service and Driver Status:
  106. ==========================
  107.  
  108. MBAMProtector:
  109. ==============
  110. Type : 2
  111. State : 1 (The service is not running.) (State is stopped)
  112. WIN32_EXIT_CODE : 1084
  113. SERVICE_EXIT_CODE : 0
  114. CHECKPOINT : 0
  115. WAIT_HINT : 0
  116.  
  117.  
  118. MBAMService:
  119. ==============
  120. Type : 16
  121. State : 1 (The service is not running.) (State is stopped)
  122. WIN32_EXIT_CODE : 1084
  123. SERVICE_EXIT_CODE : 0
  124. CHECKPOINT : 0
  125. WAIT_HINT : 0
  126.  
  127.  
  128. MBAMScheduler:
  129. ==============
  130. Type : 16
  131. State : 1 (The service is not running.) (State is stopped)
  132. WIN32_EXIT_CODE : 1084
  133. SERVICE_EXIT_CODE : 0
  134. CHECKPOINT : 0
  135. WAIT_HINT : 0
  136.  
  137.  
  138. <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
  139.  
  140.  
  141. MBAMProtector Registry Values:
  142. ==============================
  143.  
  144. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
  145. Type REG_DWORD 2
  146. Start REG_DWORD 3
  147. ErrorControl REG_DWORD 1
  148. ImagePath REG_EXPAND_SZ \??\C:\windows\system32\drivers\mbam.sys
  149. Group REG_SZ FSFilter Anti-Virus
  150. DependOnService REG_MULTI_SZ FltMgr
  151.  
  152. WOW64 REG_DWORD 1
  153. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
  154. DefaultInstance REG_SZ MBAMProtector Instance
  155. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
  156. Altitude REG_SZ 328800
  157. Flags REG_DWORD 0
  158. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
  159. 0 REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
  160. Count REG_DWORD 1
  161. NextInstance REG_DWORD 1
  162. MBAMService Registry Values:
  163. ============================
  164.  
  165. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
  166. Type REG_DWORD 16
  167. Start REG_DWORD 2
  168. ErrorControl REG_DWORD 1
  169. ImagePath REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
  170. DependOnService REG_MULTI_SZ MBAMProtector
  171.  
  172. WOW64 REG_DWORD 1
  173. ObjectName REG_SZ LocalSystem
  174. Description REG_SZ Malwarebytes Anti-Malware service
  175. DelayedAutostart REG_DWORD 0
  176. MBAMScheduler Registry Values:
  177. ==============================
  178.  
  179. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
  180. Type REG_DWORD 16
  181. Start REG_DWORD 2
  182. ErrorControl REG_DWORD 1
  183. ImagePath REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
  184. WOW64 REG_DWORD 1
  185. ObjectName REG_SZ LocalSystem
  186. Description REG_SZ Malwarebytes Anti-Malware scheduler
  187.  
  188. MBAM DLL's and Runtime Files:
  189. =============================
  190.  
  191. HKEY_CLASSES_ROOT\vbAcceleratorSGrid6.vbalGrid
  192. (Default): REG_SZ vbAccelerator Grid Control
  193. HKEY_CLASSES_ROOT\vbAcceleratorSGrid6.vbalGrid\Clsid
  194. (Default): REG_SZ {C5DA1F2B-B2BF-4DFC-BC9A-439133543A67}
  195.  
  196. HKEY_CLASSES_ROOT\SSubTimer6.GSubclass
  197. (Default): REG_SZ SSubTimer6.GSubclass
  198. HKEY_CLASSES_ROOT\SSubTimer6.GSubclass\Clsid
  199. (Default): REG_SZ {71A27032-C7D8-11D2-BEF8-525400DFB47A}
  200.  
  201. HKEY_CLASSES_ROOT\SSubTimer6.CTimer
  202. (Default): REG_SZ SSubTimer6.CTimer
  203. HKEY_CLASSES_ROOT\SSubTimer6.CTimer\Clsid
  204. (Default): REG_SZ {71A27034-C7D8-11D2-BEF8-525400DFB47A}
  205.  
  206. HKEY_CLASSES_ROOT\SSubTimer6.ISubclass
  207. (Default): REG_SZ SSubTimer6.ISubclass
  208. HKEY_CLASSES_ROOT\SSubTimer6.ISubclass\Clsid
  209. (Default): REG_SZ {71A2702F-C7D8-11D2-BEF8-525400DFB47A}
  210.  
  211.  
  212.  
  213.  
  214. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}
  215. (Default): REG_SZ SSubTimer6.ISubclass
  216. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories
  217. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}
  218. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\ProgID
  219. (Default): REG_SZ SSubTimer6.ISubclass
  220. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\Programmable
  221. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  222. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  223. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A2702F-C7D8-11D2-BEF8-525400DFB47A}\VERSION
  224. (Default): REG_SZ 1.0
  225.  
  226. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}
  227. (Default): REG_SZ SSubTimer6.GSubclass
  228. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories
  229. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}
  230. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\InprocServer32
  231. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll
  232. ThreadingModel REG_SZ Apartment
  233. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\ProgID
  234. (Default): REG_SZ SSubTimer6.GSubclass
  235. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\Programmable
  236. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  237. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  238. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}\VERSION
  239. (Default): REG_SZ 1.0
  240.  
  241. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}
  242. (Default): REG_SZ SSubTimer6.CTimer
  243. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories
  244. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}
  245. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\InprocServer32
  246. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll
  247. ThreadingModel REG_SZ Apartment
  248. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\ProgID
  249. (Default): REG_SZ SSubTimer6.CTimer
  250. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\Programmable
  251. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  252. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  253. HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}\VERSION
  254. (Default): REG_SZ 1.0
  255.  
  256.  
  257. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}
  258. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1
  259. (Default): REG_SZ vbAccelerator VB6 SGrid Control 2.0
  260. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\0
  261. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\0\win32
  262. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\vbalsgrid6.ocx
  263. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\FLAGS
  264. (Default): REG_SZ 2
  265. HKEY_CLASSES_ROOT\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\HELPDIR
  266. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  267. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}
  268. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1
  269. (Default): REG_SZ vbAccelerator VB6 SGrid Control 2.0
  270. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\0
  271. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\0\win32
  272. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\vbalsgrid6.ocx
  273. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\FLAGS
  274. (Default): REG_SZ 2
  275. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{DE8CE233-DD83-481D-844C-C07B96589D3A}\1.1\HELPDIR
  276. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  277. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  278. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0
  279. (Default): REG_SZ vbAccelerator VB6 Subclassing and Timer Assistant (with configurable message response, multi-control support + timer bug fix)
  280. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\0
  281. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\0\win32
  282. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll
  283. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\FLAGS
  284. (Default): REG_SZ 0
  285. HKEY_CLASSES_ROOT\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\HELPDIR
  286. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  287. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  288. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0
  289. (Default): REG_SZ vbAccelerator VB6 Subclassing and Timer Assistant (with configurable message response, multi-control support + timer bug fix)
  290. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\0
  291. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\0\win32
  292. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll
  293. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\FLAGS
  294. (Default): REG_SZ 0
  295. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{71A2702D-C7D8-11D2-BEF8-525400DFB47A}\1.0\HELPDIR
  296. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  297. HKEY_CLASSES_ROOT\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}
  298. (Default): REG_SZ _ISubclass
  299. HKEY_CLASSES_ROOT\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid32
  300. (Default): REG_SZ {00020424-0000-0000-C000-000000000046}
  301. HKEY_CLASSES_ROOT\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  302. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  303. Version REG_SZ 1.0
  304. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}
  305. (Default): REG_SZ ISubclass
  306. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid
  307. (Default): REG_SZ {00020424-0000-0000-C000-000000000046}
  308. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid32
  309. (Default): REG_SZ {00020424-0000-0000-C000-000000000046}
  310. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A2702E-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  311. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  312. Version REG_SZ 1.0
  313. HKEY_CLASSES_ROOT\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}
  314. (Default): REG_SZ __CTimer
  315. HKEY_CLASSES_ROOT\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid32
  316. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  317. HKEY_CLASSES_ROOT\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  318. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  319. Version REG_SZ 1.0
  320. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}
  321. (Default): REG_SZ CTimer
  322. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid
  323. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  324. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}\ProxyStubClsid32
  325. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  326. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{71A27036-C7D8-11D2-BEF8-525400DFB47A}\TypeLib
  327. (Default): REG_SZ {71A2702D-C7D8-11D2-BEF8-525400DFB47A}
  328. Version REG_SZ 1.0
  329. HKEY_CLASSES_ROOT\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}
  330. (Default): REG_SZ __vbalGrid
  331. HKEY_CLASSES_ROOT\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}\ProxyStubClsid32
  332. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  333. HKEY_CLASSES_ROOT\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}\TypeLib
  334. (Default): REG_SZ {DE8CE233-DD83-481D-844C-C07B96589D3A}
  335. Version REG_SZ 1.1
  336. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}
  337. (Default): REG_SZ vbalGrid
  338. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}\ProxyStubClsid
  339. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  340. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}\ProxyStubClsid32
  341. (Default): REG_SZ {00020420-0000-0000-C000-000000000046}
  342. HKEY_CLASSES_ROOT\Wow6432Node\Interface\{1EDFD7DF-030D-4144-952E-9D7D86691CDB}\TypeLib
  343. (Default): REG_SZ {DE8CE233-DD83-481D-844C-C07B96589D3A}
  344. Version REG_SZ 1.1
  345. MBAM Registry Settings and License Info:
  346. ========================================
  347.  
  348.  
  349. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
  350. advancedheuristics REG_DWORD 1
  351. downloadprogram REG_DWORD 1
  352. hidereg REG_DWORD 0
  353. detectp2p REG_DWORD 0
  354. detectpum REG_DWORD 1
  355. detectpup REG_DWORD 2
  356. updatewarn REG_DWORD 1
  357. updatewarndays REG_DWORD 7
  358. useproxy REG_DWORD 0
  359. useauthentication REG_DWORD 0
  360. contextmenu REG_DWORD 1
  361. reportthreats REG_DWORD 1
  362. startwithwindows REG_DWORD 1
  363. startfsdisabled REG_DWORD 0
  364. startipdisabled REG_DWORD 0
  365. silentipmode REG_DWORD 0
  366. autoquarantine REG_DWORD 0
  367. notifyinstallprogram REG_DWORD 1
  368. trialpromptshown REG_DWORD 1
  369. autoquarantinenotify REG_DWORD 1
  370. alwaysscanarchives REG_DWORD 1
  371. InstallPath REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  372. dbdate REG_SZ Tue, 16 Apr 2013 00:54:23 GMT
  373. dbversion REG_SZ v2013.04.16.01
  374. programversion REG_SZ 1.75.0.1300
  375. programbuild REG_SZ consumer
  376. trialended REG_DWORD 0
  377. SchedulerQueue REG_MULTI_SZ 6148, 30293275, 1533895600, 1, 23 | 30293347, 4235180591
  378.  
  379. ScanReboot REG_DWORD 1
  380.  
  381. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware (Trial)
  382. TrialId There is data here but it is hidden.
  383. StartDate REG_SZ Sat, 20 Apr 2013 00:58:21 UTC
  384. EndDate REG_SZ Sat, 04 May 2013 00:58:21 UTC
  385. HKEY_CURRENT_USER\SOFTWARE\Malwarebytes' Anti-Malware
  386. alwaysscanfiles REG_DWORD 1
  387. alwaysscanheuristics REG_DWORD 1
  388. alwaysscanmemory REG_DWORD 1
  389. alwaysscanregistry REG_DWORD 1
  390. alwaysscanstartups REG_DWORD 1
  391. autosavelog REG_DWORD 1
  392. openlog REG_DWORD 1
  393. defaultscan REG_DWORD 1
  394. terminateie REG_DWORD 0
  395. Language REG_SZ English.lng
  396. selectedrives REG_SZ C:\|D:\|Q:\|
  397. HKEY_USERS\S-1-5-18\SOFTWARE\Malwarebytes' Anti-Malware
  398. alwaysscanfiles REG_DWORD 1
  399. alwaysscanheuristics REG_DWORD 1
  400. alwaysscanmemory REG_DWORD 1
  401. alwaysscanregistry REG_DWORD 1
  402. alwaysscanstartups REG_DWORD 1
  403. autosavelog REG_DWORD 1
  404. openlog REG_DWORD 1
  405. defaultscan REG_DWORD 0
  406. terminateie REG_DWORD 0
  407. HKEY_USERS\.DEFAULT\SOFTWARE\Malwarebytes' Anti-Malware
  408. alwaysscanfiles REG_DWORD 1
  409. alwaysscanheuristics REG_DWORD 1
  410. alwaysscanmemory REG_DWORD 1
  411. alwaysscanregistry REG_DWORD 1
  412. alwaysscanstartups REG_DWORD 1
  413. autosavelog REG_DWORD 1
  414. openlog REG_DWORD 1
  415. defaultscan REG_DWORD 0
  416. terminateie REG_DWORD 0
  417.  
  418. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes' Anti-Malware_is1
  419. Inno Setup: Setup Version REG_SZ 5.5.3-dev (a)
  420. Inno Setup: App Path REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  421. InstallLocation REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\
  422. Inno Setup: Icon Group REG_SZ Malwarebytes' Anti-Malware
  423. Inno Setup: User REG_SZ Owner
  424. Inno Setup: Selected Tasks REG_SZ desktopicon
  425. Inno Setup: Deselected Tasks REG_SZ quicklaunchicon
  426. Inno Setup: Language REG_SZ English
  427. DisplayName REG_SZ Malwarebytes Anti-Malware version 1.75.0.1300
  428. DisplayIcon REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
  429. UninstallString REG_SZ "C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
  430. QuietUninstallString REG_SZ "C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe" /SILENT
  431. DisplayVersion REG_SZ 1.75.0.1300
  432. Publisher REG_SZ Malwarebytes Corporation
  433. URLInfoAbout REG_SZ http://www.malwarebytes.org
  434. NoModify REG_DWORD 1
  435. NoRepair REG_DWORD 1
  436. InstallDate REG_SZ 20130419
  437. MajorVersion REG_DWORD 1
  438. MinorVersion REG_DWORD 75
  439. EstimatedSize REG_DWORD 19743
  440. Pending File Rename Operations:
  441. ================================
  442. If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
  443.  
  444. Scheduler Queue:
  445. ================
  446.  
  447. Scheduled Item: Update Schedule Options: | Daily | Random
  448. Start Time: 2013-04-19 16:31 Repeating Every: 1 Recover if missed by: 23
  449.  
  450.  
  451.  
  452. Context Menu Entries:
  453. =====================
  454.  
  455. HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShlExt
  456. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  457.  
  458. HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\MBAMShlExt
  459. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  460.  
  461. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt
  462. (Default): REG_SZ MBAMShlExt Class
  463. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CLSID
  464. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  465. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CurVer
  466. (Default): REG_SZ MBAMExt.MBAMShlExt.1
  467. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1
  468. (Default): REG_SZ MBAMShlExt Class
  469. HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1\CLSID
  470. (Default): REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  471.  
  472.  
  473. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}
  474. (Default): REG_SZ IMBAMShlExt
  475. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\ProxyStubClsid32
  476. (Default): REG_SZ {00020424-0000-0000-C000-000000000046}
  477. HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\TypeLib
  478. (Default): REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  479. Version REG_SZ 1.0
  480. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}
  481. (Default): REG_SZ MBAMShlExt Class
  482. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\InprocServer32
  483. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
  484. ThreadingModel REG_SZ Apartment
  485. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\ProgID
  486. (Default): REG_SZ MBAMExt.MBAMShlExt.1
  487. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\TypeLib
  488. (Default): REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  489. HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\VersionIndependentProgID
  490. (Default): REG_SZ MBAMExt.MBAMShlExt
  491.  
  492. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  493. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
  494. (Default): REG_SZ MBAMExt 1.0 Type Library
  495. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
  496. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win64
  497. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
  498. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
  499. (Default): REG_SZ 0
  500. HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
  501. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  502. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
  503. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
  504. (Default): REG_SZ MBAMExt 1.0 Type Library
  505. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
  506. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win64
  507. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
  508. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
  509. (Default): REG_SZ 0
  510. HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
  511. (Default): REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
  512.  
  513.  
  514. MBAM Drivers:
  515. =============
  516.  
  517. C:\windows\system32\drivers\mbam.sys File Size: 25928 BYTES FileVersion: 1.60.2.0
  518.  
  519.  
  520. Required Dependencies:
  521. ======================
  522.  
  523. BFE:
  524. ==============
  525. Type : 32
  526. State : 4 (The service is running.)
  527. WIN32_EXIT_CODE : 0
  528. SERVICE_EXIT_CODE : 0
  529. CHECKPOINT : 0
  530. WAIT_HINT : 0
  531.  
  532.  
  533. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
  534. DisplayName REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
  535. Group REG_SZ NetworkProvider
  536. ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
  537. Description REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
  538. ObjectName REG_SZ NT AUTHORITY\LocalService
  539. ErrorControl REG_DWORD 1
  540. Start REG_DWORD 2
  541. Type REG_DWORD 32
  542. DependOnService REG_MULTI_SZ RpcSs
  543.  
  544. ServiceSidType REG_DWORD 3
  545. RequiredPrivileges REG_MULTI_SZ SeAuditPrivilege
  546.  
  547. FailureActions REG_BINARY Binary Data
  548.  
  549. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
  550. ServiceDll REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
  551. ServiceDllUnloadOnStop REG_DWORD 1
  552. ServiceMain REG_SZ BfeServiceMain
  553. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
  554. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
  555. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
  556. {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
  557.  
  558. {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
  559.  
  560. {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
  561.  
  562. {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
  563.  
  564. {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
  565.  
  566. {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
  567.  
  568. {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
  569.  
  570. {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
  571.  
  572. {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
  573.  
  574. {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
  575.  
  576. {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
  577.  
  578. {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
  579.  
  580. {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
  581.  
  582. {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
  583.  
  584. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
  585. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
  586. {22001ee0-8e87-4f75-ba58-248f5918a63a}REG_BINARY Binary Data
  587.  
  588. {79f2a265-b693-4cc9-b480-cbcd87bd4747}REG_BINARY Binary Data
  589.  
  590. {c4b50f21-503e-4d7a-abd4-ed0a823a2453}REG_BINARY Binary Data
  591.  
  592. {91e902db-2cef-4040-b8e2-02fe4fd49c25}REG_BINARY Binary Data
  593.  
  594. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
  595. {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
  596.  
  597. {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data
  598.  
  599. {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
  600.  
  601. {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
  602.  
  603. {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
  604.  
  605. {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
  606.  
  607. {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data
  608.  
  609. {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data
  610.  
  611. {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data
  612.  
  613. {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data
  614.  
  615. {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data
  616.  
  617. {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data
  618.  
  619. {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data
  620.  
  621. {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data
  622.  
  623. {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
  624.  
  625. {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
  626.  
  627. {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
  628.  
  629. {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
  630.  
  631. {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data
  632.  
  633. {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data
  634.  
  635. {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data
  636.  
  637. {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data
  638.  
  639. {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
  640.  
  641. {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data
  642.  
  643. {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
  644.  
  645. {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
  646.  
  647. {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data
  648.  
  649. {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data
  650.  
  651. {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
  652.  
  653. {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
  654.  
  655. {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data
  656.  
  657. {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data
  658.  
  659. {8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data
  660.  
  661. {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data
  662.  
  663. {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data
  664.  
  665. {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data
  666.  
  667. {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data
  668.  
  669. {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data
  670.  
  671. {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data
  672.  
  673. {56b4fdc4-bb4e-4c42-a9d8-f627ee15ac21}REG_BINARY Binary Data
  674.  
  675. {1ba41ed8-151d-4577-9272-317856bc637c}REG_BINARY Binary Data
  676.  
  677. {9248d57e-f843-4159-807d-3813173e2096}REG_BINARY Binary Data
  678.  
  679. {4658cd86-525d-44ed-98a5-791a7b8655f1}REG_BINARY Binary Data
  680.  
  681. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
  682. {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data
  683.  
  684. {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data
  685.  
  686. {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data
  687.  
  688. {aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data
  689.  
  690. {839cd73f-1907-49ea-9aa5-0e6be9048087}REG_BINARY Binary Data
  691.  
  692. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
  693. {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data
  694.  
  695. {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data
  696.  
  697. {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data
  698.  
  699. {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data
  700.  
  701. {8c36b346-4e0c-4049-8b55-5295ac35567c}REG_BINARY Binary Data
  702.  
  703. fltmgr:
  704. ==============
  705. Type : 2
  706. State : 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
  707. WIN32_EXIT_CODE : 0
  708. SERVICE_EXIT_CODE : 0
  709. CHECKPOINT : 0
  710. WAIT_HINT : 0
  711.  
  712.  
  713. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
  714. AttachWhenLoaded REG_DWORD 1
  715. DisplayName REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
  716. Group REG_SZ FSFilter Infrastructure
  717. ImagePath REG_EXPAND_SZ system32\drivers\fltmgr.sys
  718. Description REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
  719. ErrorControl REG_DWORD 3
  720. Start REG_DWORD 0
  721. Tag REG_DWORD 1
  722. Type REG_DWORD 2
  723. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
  724. 0 REG_SZ Root\LEGACY_FLTMGR\0000
  725. Count REG_DWORD 1
  726. NextInstance REG_DWORD 1
  727. C:\windows\system32\drivers\fltmgr.sys File Size: 289664 BYTES FileVersion: 6.1.7601.17514
  728. C:\windows\SysWOW64\olepro32.dll File Size: 90112 BYTES FileVersion: 6.1.7601.17514
  729.  
  730.  
  731. List of MBAM Related Directories:
  732. =================================
  733.  
  734. C:\Program Files (x86)\Malwarebytes' Anti-Malware
  735. 7z.dll File Size: 914432 BYTES FileVersion: 9.20.0.0
  736. changes.txt File Size: 200 BYTES
  737. license.rtf File Size: 17916 BYTES
  738. mbam.chm File Size: 474148 BYTES
  739. mbam.dll File Size: 527944 BYTES FileVersion: 1.70.0.0
  740. mbam.exe File Size: 887432 BYTES FileVersion: 1.75.0.1
  741. mbamcore.dll File Size: 1127496 BYTES FileVersion: 1.70.0.0
  742. mbamext.dll File Size: 95304 BYTES FileVersion: 1.70.0.0
  743. mbamgui.exe File Size: 532040 BYTES FileVersion: 1.70.0.0
  744. mbamnet.dll File Size: 2191944 BYTES FileVersion: 1.70.0.0
  745. mbampt.exe File Size: 40008 BYTES FileVersion: 1.70.0.0
  746. mbamscheduler.exe File Size: 418376 BYTES FileVersion: 1.70.0.0
  747. mbamservice.exe File Size: 701512 BYTES FileVersion: 1.70.0.0
  748. ssubtmr6.dll File Size: 46416 BYTES FileVersion: 1.1.0.3
  749. unins000.dat File Size: 15520 BYTES
  750. unins000.exe File Size: 712264 BYTES FileVersion: 51.52.0.0
  751. unins000.msg File Size: 11277 BYTES
  752. vbalsgrid6.ocx File Size: 496976 BYTES FileVersion: 2.0.0.40
  753.  
  754. C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon
  755. chameleon.chm File Size: 186068 BYTES
  756. firefox.com File Size: 218184 BYTES
  757. firefox.exe File Size: 218184 BYTES
  758. firefox.pif File Size: 218184 BYTES
  759. firefox.scr File Size: 218184 BYTES
  760. iexplore.exe File Size: 218184 BYTES
  761. mbam-chameleon.com File Size: 218184 BYTES
  762. mbam-chameleon.exe File Size: 218184 BYTES
  763. mbam-chameleon.pif File Size: 218184 BYTES
  764. mbam-chameleon.scr File Size: 218184 BYTES
  765. mbam-killer.exe File Size: 896072 BYTES
  766. rundll32.exe File Size: 218184 BYTES
  767. svchost.exe File Size: 218184 BYTES
  768. winlogon.exe File Size: 218184 BYTES
  769.  
  770. C:\Program Files (x86)\Malwarebytes' Anti-Malware\Languages
  771. arabic.lng File Size: 21894 BYTES
  772. belarusian.lng File Size: 26884 BYTES
  773. bosnian.lng File Size: 27108 BYTES
  774. bulgarian.lng File Size: 27574 BYTES
  775. catalan.lng File Size: 28252 BYTES
  776. chineseSI.lng File Size: 11024 BYTES
  777. chineseTR.lng File Size: 11952 BYTES
  778. croatian.lng File Size: 26670 BYTES
  779. czech.lng File Size: 24874 BYTES
  780. danish.lng File Size: 26582 BYTES
  781. dutch.lng File Size: 28342 BYTES
  782. english.lng File Size: 24542 BYTES
  783. estonian.lng File Size: 25146 BYTES
  784. finnish.lng File Size: 25950 BYTES
  785. french.lng File Size: 29830 BYTES
  786. german.lng File Size: 29894 BYTES
  787. greek.lng File Size: 29300 BYTES
  788. hebrew.lng File Size: 19362 BYTES
  789. hungarian.lng File Size: 28666 BYTES
  790. indonesian.lng File Size: 26854 BYTES
  791. italian.lng File Size: 28194 BYTES
  792. japanese.lng File Size: 16266 BYTES
  793. korean.lng File Size: 14188 BYTES
  794. latvian.lng File Size: 27100 BYTES
  795. lithuanian.lng File Size: 27838 BYTES
  796. norwegian.lng File Size: 25116 BYTES
  797. polish.lng File Size: 26644 BYTES
  798. portugueseBR.lng File Size: 28654 BYTES
  799. portuguesePT.lng File Size: 29062 BYTES
  800. romanian.lng File Size: 28290 BYTES
  801. russian.lng File Size: 27302 BYTES
  802. serbian.lng File Size: 26804 BYTES
  803. slovak.lng File Size: 25644 BYTES
  804. slovenian.lng File Size: 24852 BYTES
  805. spanish.lng File Size: 30060 BYTES
  806. swedish.lng File Size: 25992 BYTES
  807. thai.lng File Size: 26092 BYTES
  808. turkish.lng File Size: 25876 BYTES
  809. vietnamese.lng File Size: 29528 BYTES
  810.  
  811. C:\Users\Owner\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
  812.  
  813. C:\Users\Owner\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs
  814. mbam-log-2013-04-19 (19-01-30).txt File Size: 2936 BYTES
  815.  
  816. C:\Users\Owner\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine
  817.  
  818. C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware
  819. cleanup.dat File Size: 1237 BYTES
  820. cleanup.dll File Size: 1127496 BYTES FileVersion: 1.70.0.0
  821. rules.ref File Size: 6294544 BYTES
  822.  
  823. C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration
  824. build.conf File Size: 140 BYTES
  825. config.conf File Size: 3970 BYTES
  826. custom.conf File Size: 20 BYTES
  827. database.conf File Size: 432 BYTES
  828. html.conf File Size: 2762 BYTES
  829. local.conf File Size: 1030 BYTES
  830. manifest.conf File Size: 1752 BYTES
  831. messaging.conf File Size: 1430 BYTES
  832. news.conf File Size: 363 BYTES
  833.  
  834. C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs
  835. protection-log-2013-04-19.txt File Size: 3864 BYTES
  836. protection-log-2013-04-20.txt File Size: 1860 BYTES
  837.  
  838. C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine
  839.  
  840. ===============================================================
  841. END OF FILE
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!