CMD: msiexec \x {35065F43-4BB2-439A-BFF7-0F1014F2E0CD} /q Task: {088482FA-65B8-4E17-9ABF-1DCD48E8D373} - \Microsoft\Windows\Tcpip\IpAddressConflict1 -> No File <==== ATTENTION Task: {09F06BFE-A3C8-40E3-846A-6E6F4000C238} - \Microsoft\Windows\Tcpip\IpAddressConflict2 -> No File <==== ATTENTION Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - \Microsoft\Windows\Shell\WindowsParentalControls -> No File <==== ATTENTION Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor -> No File <==== ATTENTION Task: {EACA24FF-236C-401D-A1E7-B3D5267B8A50} - \Microsoft\Windows\RAC\RacTask -> No File <==== ATTENTION FF Notifications: Mozilla\Firefox\Profiles\g6p9p80w.default -> hxxps://mail.virginmedia.com; hxxp://mail.virginmedia.com; hxxps://www.bingotastic.com; hxxps://www.youtube.com; hxxps://www.facebook.com; hxxps://www.ebay.co.uk; hxxps://www.epson.co.uk; hxxps://0.nextyourcontent.com; hxxps://1.nextyourcontent.com; hxxps://2.nextyourcontent.com FF NewTabOverride: Mozilla\Firefox\Profiles\g6p9p80w.default -> Disabled: _l4Members_@www.quicktemplatefinder.com FF Extension: (No Name) - C:\Users\Eddie\AppData\Roaming\Mozilla\Firefox\Profiles\g6p9p80w.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-02-13] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] S2 MBAMInstallerService; C:\Users\Eddie\AppData\Local\Temp\MBAMInstallerService.exe [5225688 2020-02-11] (Malwarebytes Inc -> Malwarebytes) <==== ATTENTION R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2020-01-07] (Malwarebytes Inc ->) REG: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\malwarebytes" 2020-01-30 00:44 - 2019-09-16 12:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes MSCONFIG\Services: MBAMInstallerService => 2 C:\Program Files\Malwarebytes C:\Windows\System32\DRIVERS\MbamElam.sys C:\Windows\System32\Drivers\mbamswissarmy.sys C:\Windows\system32\Drivers\mbae64.sys CMD: DISM /Online /Cleanup-Image /RestoreHealth CMD: SFC /scannow CMD: findstr /c:"[SR]" \windows\logs\cbs\cbs.log CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" Reboot: