mbam-check result log version: 2.1.1.1001 ======================================== User Account type: Administrator OS: Windows 8.1 64 bit Operating System Current Version and Build: 6.3.9200.0 Malwarebytes Anti-Malware: 2.1.8.1057 Installed On: 2015/07/01 Malware Database: 2015.06.03.03 Rootkit Database: 2015.06.02.01 Remediation Database: 2015.05.13.01 IP Database: 0000.00.00.00 Domain Database: 0000.00.00.00 License: Free Malware Protection: 1 (The service is not running.) Malicious Website Protection: 1 (The service is not running.) Chameleon: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon Log Created: 2015/07/01 20:39:38 Compatibility Flag Settings: ================================= HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers G:\Downloads\USB_setup.exe REG_SZ ~ WINXPSP3 SIGN.MEDIA=27931C30 sp1aexpress_usa.exeREG_SZ $ ElevateCreateProcess G:\Downloads\gfwlivesetup.exe REG_SZ ~ WIN7RTM C:\Program Files\VstPlugins\Toontrack\Toontrack_DLL.exeREG_SZ ~ RUNASADMIN WIN7RTM Malwarebytes Anti-Malware Shell Extension Block Check: ====================================================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked: MBAM Startup Entries: ===================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce Malwarebytes Anti-Malware Service and Driver Status: ======================================================= --------------Driver File Info:-------------- C:\Windows\system32\drivers\mbam.sys File Size: 25816 BYTES FileVersion: 0.1.15.0 MD5: [a8d28d5b3e2a528d1ef0e338e44f2820] C:\Windows\system32\drivers\mwac.sys File Size: 64216 BYTES FileVersion: 1.0.6.0 MD5: [85cfe7ab85b43b6b7ac7961aa3983a9f] C:\Windows\system32\drivers\mbamswissarmy.sys File Size: 119000 BYTES FileVersion: 0.1.3.0 MD5: [b429327b1ccd987efd87fa603870827d] C:\Windows\system32\drivers\mbamchameleon.sys File Size: 109272 BYTES FileVersion: 1.1.20.0 MD5: [e681ce4ae5c09651d53cb4387ca3560e] --------------MBAMProtector:-------------- Type: 2 State: 1 (The service is not running.) (State is stopped) WIN32_EXIT_CODE: 1077 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 --------------MBAMService:-------------- Type: 16 State: 1 (The service is not running.) (State is stopped) WIN32_EXIT_CODE: 1077 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 --------------MBAMScheduler:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMScheduler WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMChameleon:-------------- Type: N/A State: 0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon WIN32_EXIT_CODE: N/A SERVICE_EXIT_CODE: N/A CHECKPOINT: N/A WAIT_HINT: N/A --------------MBAMWebAccessControl:-------------- Type: 2 State: 1 (The service is not running.) (State is stopped) WIN32_EXIT_CODE: 1077 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 Required Dependencies: ====================== --------------BFE:-------------- Type: 32 State: 4 (The service is running.) WIN32_EXIT_CODE: 0 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE DisplayName REG_SZ @%SystemRoot%\system32\bfe.dll,-1001 ErrorControl REG_DWORD 1 Group REG_SZ NetworkProvider ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Start REG_DWORD 2 Type REG_DWORD 32 Description REG_SZ @%SystemRoot%\system32\bfe.dll,-1002 DependOnService REG_MULTI_SZ RpcSs WfpLwfs ObjectName REG_SZ NT AUTHORITY\LocalService ServiceSidType REG_DWORD 3 RequiredPrivileges REG_MULTI_SZ SeAuditPrivilege FailureActions REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters ServiceDllUnloadOnStop REG_DWORD 1 ServiceMain REG_SZ BfeServiceMain ServiceDll REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data {89a89b7c-b5ab-4ed6-bf05-d3059281a5c5}REG_BINARY Binary Data {84750a0c-b836-48e3-ab80-104985c857db}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Options EnablePacketQueue REG_DWORD 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data {8b50e2ec-7cF0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data {70694559-714a-4a38-a0cd-51439e06f1d8}REG_BINARY Binary Data {89a89b7c-b5ab-4ed6-bf05-d3059281a5c5}REG_BINARY Binary Data {84750a0c-b836-48e3-ab80-104985c857db}REG_BINARY Binary Data {e72646bc-7d3f-4c5c-a679-b3716f8c6cc8}REG_BINARY Binary Data {b98b75dc-17c0-4e84-bd4e-2080527ca6a6}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data {aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data --------------fltmgr:-------------- Type: 2 State: 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN) WIN32_EXIT_CODE: 0 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr AttachWhenLoaded REG_DWORD 1 DisplayName REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001 ErrorControl REG_DWORD 3 Group REG_SZ FSFilter Infrastructure ImagePath REG_EXPAND_SZ system32\drivers\fltmgr.sys Start REG_DWORD 0 Tag REG_DWORD 1 Type REG_DWORD 2 Description REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000 C:\Windows\system32\drivers\fltmgr.sys File Size: 354112 BYTES FileVersion: 6.3.9600.17326 MD5: [c1fb505a73fa2e9019d32444ab33b75a] C:\Windows\SysWOW64\mscomctl.ocx File Size: 1070232 BYTES FileVersion: 6.1.98.39 MD5: [766f501b61c22723536af696a74133d4] C:\Windows\SysWOW64\olepro32.dll File Size: 86016 BYTES FileVersion: 6.3.9600.17415 MD5: [afe3ca77ff01edcb79ab3f9e87b7a50b] MBAM Registry Settings and License Info: ======================================== --------------Settings:-------------- Advanced: AutomaticQuarantine: true AutostartProtection: true LimitedMode: false StartSilentMode: false StartupDelay: 0 ApplicationState: First-Run-After-Installation: true General: DaysUntilNotifyExpiration: 5 Language: en RightClickAccess: false SilentErrors: false Logging: ExportLog: true Notification: ProtectionTray: DisplayMilliseconds: 3000 ScanHistory: Duration_Driver: 0 Duration_Filesystem: 96000 Duration_Heuristics: 8000 Duration_Loading: 0 Duration_MasterBootRecord: 0 Duration_Memory: 40000 Duration_PreScan: 44000 Duration_Registry: 3000 Duration_Sector: 0 Duration_Startup: 7000 ItemCount_Driver: 0 ItemCount_Filesystem: 6890 ItemCount_Heuristics: 108509 ItemCount_Loading: 0 ItemCount_MasterBootRecord: 0 ItemCount_Memory: 2797 ItemCount_PreScan: 0 ItemCount_Registry: 38948 ItemCount_Sector: 0 ItemCount_Startup: 447 LastScanDateEpoch: 0 LastScanType: 0 (No Previous Scans) Update: NotifyInstallReady: true NotifyOutdatedDatabase: 7 ProxyPassword: ProxyPort: 0 ProxyServer: ProxyUsername: UseProxy: false UseProxyAuthentication: false --------------Account:-------------- Account Status: Free Expiration Time: Activation Time: Trial Used: false --------------Access Policies:-------------- Scheduler Queue: ================ Pending File Rename Operations: ================================ If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation. Pending File Rename Operations: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\ PendingFileRenameOperations REG_MULTI_SZ \??\C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll.old MBAMProtector Registry Values: ============================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector Type REG_DWORD 2 Start REG_DWORD 3 ErrorControl REG_DWORD 1 ImagePath REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys Group REG_SZ FSFilter Anti-Virus DependOnService REG_MULTI_SZ FltMgr WOW64 REG_DWORD 1 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances DefaultInstance REG_SZ MBAMProtector Instance HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance Altitude REG_SZ 328800 Flags REG_DWORD 0 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters PassThruFile REG_SZ mbampt.exe ProductPath REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware MBAMService Registry Values: ============================ HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService Type REG_DWORD 16 Start REG_DWORD 2 ErrorControl REG_DWORD 1 ImagePath REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" DependOnService REG_MULTI_SZ MBAMProtector WOW64 REG_DWORD 1 ObjectName REG_SZ LocalSystem Description REG_SZ Malwarebytes Anti-Malware service DelayedAutostart REG_DWORD 0 MBAMScheduler Registry Values: ============================== Terminal Services Status for (null) entries in PM logs and GetUserToken errors: =============================================================================== --------------TERMService:-------------- Type: 32 State: 4 (The service is running.) WIN32_EXIT_CODE: 0 SERVICE_EXIT_CODE: 0 CHECKPOINT: 0 WAIT_HINT: 0 TermService Start is set to: 3 (Manual Startup) Proxy Status: No proxy is Set LAN Settings: ============= only 'Automatically detect settings' is selected SystemPartition: ================ HKEY_LOCAL_MACHINE\SYSTEM\Setup\ SystemPartition REG_SZ \Device\HarddiskVolume1 Balloon Tips Status: ==================== Enabled Time Format Settings: ===================== Should be: h:mm:ss tt AM PM : Currently: REG_SZ h:mm:ss tt REG_SZ AM REG_SZ PM REG_SZ : Language and Regional Settings: =============================== ACP: Language is English (United States) MACCP: Language is English (United States) OEMCP: Language is English (United States) Startup Folders for Error_Expanding_Variables Check: ==================================================== All Users Startup Folder Exists. Current User's Startup Folder Exists. Context Menu Entries: ===================== List of MBAM Related Directories: ================================= C:\Program Files (x86)\Malwarebytes Anti-Malware\ 7z.dll File Size: 920888 BYTES FileVersion: 9.20.0.0 MD5: [90cc5c5c5347eee0909d5bbbe4ea4321] changes.txt File Size: 3003 BYTES FileVersion: N/A MD5: [17b6dc5b45f9558ea11ee7b95da9b684] cloud-enumeration.dll File Size: 286008 BYTES FileVersion: 1.0.0.0 MD5: [932c98b79d8dc1409d6c74efd715135e] cloud.dll File Size: 351544 BYTES FileVersion: 1.0.0.0 MD5: [5d383e601d77e4e82b64c6c3e4b823b3] license.rtf File Size: 235316 BYTES FileVersion: N/A MD5: [5980b191ffe5d53bfef600b97ad533b5] master.conf File Size: 1258 BYTES FileVersion: N/A MD5: [9702ca5e82d3756c6d8af34a2ababaea] mbam.dll File Size: 602936 BYTES FileVersion: 1.0.37.0 MD5: [a3043182dcef5612c928517985bd545a] mbam.exe File Size: 6554424 BYTES FileVersion: 2.3.55.0 MD5: [abff2b3a80aa5348be5e43efd6b415d1] mbamcore.dll File Size: 1971512 BYTES FileVersion: 1.3.11.0 MD5: [51b5bea5015b2e37c4f4d496441f8369] mbamdor.exe File Size: 54072 BYTES FileVersion: 1.0.1.0 MD5: [a994a921e954ba55bea4cc8767f64e0f] mbamext.dll File Size: 310584 BYTES FileVersion: 3.0.6.0 MD5: [7a4c3c98cc41d06e26cc4cc5d9d06200] mbampt.exe File Size: 39736 BYTES FileVersion: 1.0.0.0 MD5: [f872caff0cc1fe69d55cbb10c087a00a] mbamresearch.exe File Size: 1947960 BYTES FileVersion: 1.1.0.0 MD5: [7fb4e7cfabfdc99b88165ecfc0c532c5] mbamscheduler.exe File Size: 1871160 BYTES FileVersion: 3.1.3.0 MD5: [301e3fdfcf33640bb8763ba444bc5093] mbamservice.exe File Size: 1133880 BYTES FileVersion: 3.2.13.0 MD5: [83c982a395d00baff6515fb38424ea76] mbamsrv.dll File Size: 3841336 BYTES FileVersion: 2.1.2.0 MD5: [b3273340603058e7e89964abeea0aa4b] mbamtoast.dll File Size: 96568 BYTES FileVersion: 1.70.0.0 MD5: [595eaba9462f8fdfbe6246bbaaa40f4e] msvcp100.dll File Size: 421688 BYTES FileVersion: 10.0.40219.325 MD5: [650f2286252c8854ac5846940d181d3a] msvcr100.dll File Size: 774456 BYTES FileVersion: 10.0.40219.325 MD5: [005f96c221719c03671c0262a4a93521] Qt5Core.dll File Size: 4645688 BYTES FileVersion: 5.4.1.0 MD5: [a8fceb6261751b709a84ce4a3726439f] Qt5Gui.dll File Size: 4639032 BYTES FileVersion: 5.4.1.0 MD5: [cdfa353db0a56a394b1fd8346c905069] Qt5Network.dll File Size: 672056 BYTES FileVersion: 5.4.1.0 MD5: [e4fd655cc85eb6063a8cef66f4e5ed55] Qt5Widgets.dll File Size: 4473656 BYTES FileVersion: 5.4.1.0 MD5: [5a48fe8fc8b20960713e172a83cca0f5] Third-party-notices.txt File Size: 70041 BYTES FileVersion: N/A MD5: [915ab4fe416654fbc412019a0a1002ac] unins000.dat File Size: 30960 BYTES FileVersion: N/A MD5: [7491e8ecdb0342cdd4ecc5b2a2476a50] unins000.exe File Size: 718037 BYTES FileVersion: 51.52.0.0 MD5: [d2796ecf50731e696f0c065d24c0827a] C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows chameleon.chm File Size: 235882 BYTES FileVersion: N/A MD5: [c4190b71f037714aa77aba294434ba5b] firefox.com File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] firefox.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] firefox.pif File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] firefox.scr File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] iexplore.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] mbam-chameleon.com File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] mbam-chameleon.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] mbam-chameleon.pif File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] mbam-chameleon.scr File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] mbam-killer.exe File Size: 1496888 BYTES FileVersion: 3.0.13.0 MD5: [10ddd12d628a5388865f2ae25019dd76] rundll32.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] svchost.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] windows.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] winlogon.exe File Size: 893752 BYTES FileVersion: 3.1.25.0 MD5: [0692c8163852ab5674e2eb3b36131ef3] C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats qgif.dll File Size: 28472 BYTES FileVersion: 5.4.1.0 MD5: [8858629a544c7c0536c35561040a2d78] C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages lang_ar.qm File Size: 87320 BYTES FileVersion: N/A MD5: [7a7c7e14fcf3f14d6b269295e877750c] lang_bg.qm File Size: 109563 BYTES FileVersion: N/A MD5: [654b95c228a72131aca7cb26e964dcf9] lang_ca.qm File Size: 92640 BYTES FileVersion: N/A MD5: [533208d2306e5ad1e5972650f69d8c22] lang_cs.qm File Size: 105006 BYTES FileVersion: N/A MD5: [508844d9e9aa364aa53bc77adf4f42a8] lang_da.qm File Size: 88045 BYTES FileVersion: N/A MD5: [e3bc3cdfcf360d319319299d8cd66506] lang_de.qm File Size: 133736 BYTES FileVersion: N/A MD5: [9b6c6a0d6bc188c1d86ea9342b8035da] lang_el.qm File Size: 126414 BYTES FileVersion: N/A MD5: [3d112a79eca581d1775fd96b3c5870bb] lang_en.qm File Size: 2849 BYTES FileVersion: N/A MD5: [d495fecf1db29d41317196416d5ea6c2] lang_es.qm File Size: 132948 BYTES FileVersion: N/A MD5: [455f47414f13f8942ee6652dd194c46a] lang_et.qm File Size: 107454 BYTES FileVersion: N/A MD5: [ef9d8fcc151759a2cf100afe2889d5e5] lang_fi.qm File Size: 89336 BYTES FileVersion: N/A MD5: [09f12751811f8c1a46f6308ab1968ff7] lang_fr.qm File Size: 136774 BYTES FileVersion: N/A MD5: [581b5833e2fa89003ff8349390323790] lang_he.qm File Size: 98616 BYTES FileVersion: N/A MD5: [a9cb152f93da040fb9451d750f359c3e] lang_hu.qm File Size: 108619 BYTES FileVersion: N/A MD5: [042e132aa420bb7807dc6ea150d21c84] lang_id.qm File Size: 105573 BYTES FileVersion: N/A MD5: [1352510fd6296523d239363d90d493ad] lang_it.qm File Size: 129004 BYTES FileVersion: N/A MD5: [993c14184487084aedf79471b337606b] lang_ja.qm File Size: 73730 BYTES FileVersion: N/A MD5: [e1ae65ac342628156abb2cdc36508929] lang_ko.qm File Size: 85538 BYTES FileVersion: N/A MD5: [e495736a22b566cd27cef405507c0b55] lang_lt.qm File Size: 90775 BYTES FileVersion: N/A MD5: [2605701cc94ca4ee2ef0be3aaa617d64] lang_lv.qm File Size: 90647 BYTES FileVersion: N/A MD5: [c9dda1e18b4869c60b8df14907dd5e46] lang_nl.qm File Size: 128186 BYTES FileVersion: N/A MD5: [193e199cefe0429da41d564af35786e7] lang_no.qm File Size: 118156 BYTES FileVersion: N/A MD5: [a7a243c9ac9e1efc71f8cdeb8c6ed4bf] lang_pl.qm File Size: 128623 BYTES FileVersion: N/A MD5: [9e4c6ca1532843c77ddb07b8a1bcac08] lang_pt_BR.qm File Size: 131550 BYTES FileVersion: N/A MD5: [418b8766d7e7a2a4806ed4d97d18e80f] lang_pt_PT.qm File Size: 131702 BYTES FileVersion: N/A MD5: [34f70f2a89733552373fa935200c2a0a] lang_ro.qm File Size: 90440 BYTES FileVersion: N/A MD5: [24bf3ee283cf5a3fd4c93bba6c9fc12b] lang_ru.qm File Size: 132186 BYTES FileVersion: N/A MD5: [08e1303dba20e8e1957ae1de2ccb4550] lang_sk.qm File Size: 89139 BYTES FileVersion: N/A MD5: [82ddef8ec6d13b1d4601e7104243ecc9] lang_sl.qm File Size: 107472 BYTES FileVersion: N/A MD5: [c8e3fae6ae3980aec292baa6cb8eac89] lang_sv.qm File Size: 105939 BYTES FileVersion: N/A MD5: [646ad8e20658650d4d1daa63b5abb9b6] lang_tr.qm File Size: 88788 BYTES FileVersion: N/A MD5: [6c4e9b16e496ab46d4a1d3333d972762] lang_vi.qm File Size: 105393 BYTES FileVersion: N/A MD5: [d1b2c9264ef72792b53255d4dfeb3098] lang_zh_TW.qm File Size: 87358 BYTES FileVersion: N/A MD5: [1ebfe79770cf695df897750b3c2d5a08] C:\Program Files (x86)\Malwarebytes Anti-Malware\\platforms qwindows.dll File Size: 928568 BYTES FileVersion: 5.4.1.0 MD5: [15d93b1f5171eacf7724b2f728a064c4] C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins fixdamage.exe File Size: 821560 BYTES FileVersion: 1.1.0.1010 MD5: [57da74e5d020877f0aa23133081a1d5c] C:\Users\Jason\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware actions.ref File Size: 1064 BYTES FileVersion: N/A MD5: [82d5c75c4414aca1215937ee1713407b] domains.ref File Size: 87 BYTES FileVersion: N/A MD5: [9221d8d8a0d59f0c393f95223104efbe] exclusions.dat File Size: 0 BYTES FileVersion: N/A MD5: [d41d8cd98f00b204e9800998ecf8427e] ips.ref File Size: 79 BYTES FileVersion: N/A MD5: [73e98acd217a7c1d5c251d0142905f42] rules.ref File Size: 12314305 BYTES FileVersion: N/A MD5: [68336937fb035b9e6f0f482ef303101b] swissarmy.ref File Size: 25177 BYTES FileVersion: N/A MD5: [b84b389d68bc052011e628051e20d340] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration build.conf File Size: 4609 BYTES FileVersion: N/A MD5: [f7fe0417edcae5592911683762972841] database.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] gatekeeper.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] license.conf File Size: 23 BYTES FileVersion: N/A MD5: [0ec01df616b565180556881d8042255b] manifest.conf File Size: 2836 BYTES FileVersion: N/A MD5: [12da8707e6aa5c2dfafca55395a8bdbd] marketing.conf File Size: 11105 BYTES FileVersion: N/A MD5: [4bbcad9dd8e558eb9996d32f37cd25e2] net.conf File Size: 6905 BYTES FileVersion: N/A MD5: [0ae797f8963fc62a87aedf43f59593b1] notifications.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] scheduler.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] settings.conf File Size: 1809 BYTES FileVersion: N/A MD5: [de148404fcf9faa514c9c77b68f1fd95] statistics.conf File Size: 513 BYTES FileVersion: N/A MD5: [ce20fa45d973c9f60da607c8f095c216] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore build.conf File Size: 4194 BYTES FileVersion: N/A MD5: [402aa68f7a914337069a7a826a856503] database.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] gatekeeper.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] license.conf File Size: 23 BYTES FileVersion: N/A MD5: [0ec01df616b565180556881d8042255b] manifest.conf File Size: 2836 BYTES FileVersion: N/A MD5: [12da8707e6aa5c2dfafca55395a8bdbd] marketing.conf File Size: 11105 BYTES FileVersion: N/A MD5: [4bbcad9dd8e558eb9996d32f37cd25e2] net.conf File Size: 6133 BYTES FileVersion: N/A MD5: [78d9d986b84b11f36330303a86a2be82] notifications.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] scheduler.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] settings.conf File Size: 1725 BYTES FileVersion: N/A MD5: [5454026126dac24f6e96eeb0c64123d3] statistics.conf File Size: 4 BYTES FileVersion: N/A MD5: [2261e7eca4cd0615a97263c0ad5045c2] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine Malware Exclusions: =================== Web Exclusions: ================ Quarantined Items: =================== =============================================================== END OF FILE