Unable to download MBAM, probably infected

[LDTate]

Try this

http://forums.malwarebytes.org/index.php?showtopic=100876

[ziggywiggy]

Tried and failed once more.

[LDTate]

I know ZoneAlarm caused that before but I don't see that in your log.

What firewall are you using?

[LDTate]

Have you tried the download with IE and FireFox?

[ziggywiggy]

Just the Windows firewall - which I turned off before some of the install attempts, to no avail.

[ziggywiggy]

Have you tried the download with IE and FireFox?

Just FF, and also from a flash drive.

[LDTate]

Try it with IE.

If that doesn't work try this:

Close mbam.

Delete the file rules.ref found at:

C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

Open mbam and update.

You'll have to show hidden files & folders.

[LDTate]

Do you still need help with this?

[LDTate]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

[LDTate]

Topic re-opened by request.

Please post a new DDS log and let me know what issues are still present.

[ziggywiggy]

Same old same old. Everything seems fine except I can't download mbam.

13:03:19.0375 3532 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32

13:03:19.0687 3532 ============================================================

13:03:19.0687 3532 Current date / time: 2012/07/24 13:03:19.0687

13:03:19.0687 3532 SystemInfo:

13:03:19.0687 3532

13:03:19.0687 3532 OS Version: 5.1.2600 ServicePack: 3.0

13:03:19.0687 3532 Product type: Workstation

13:03:19.0687 3532 ComputerName: RKMEEE

13:03:19.0687 3532 UserName: User

13:03:19.0687 3532 Windows directory: C:\WINDOWS

13:03:19.0687 3532 System windows directory: C:\WINDOWS

13:03:19.0687 3532 Processor architecture: Intel x86

13:03:19.0687 3532 Number of processors: 1

13:03:19.0687 3532 Page size: 0x1000

13:03:19.0687 3532 Boot type: Normal boot

13:03:19.0687 3532 ============================================================

13:03:25.0171 3532 Drive \Device\Harddisk0\DR0 - Size: 0xF07EC000 (3.76 Gb), SectorSize: 0x200, Cylinders: 0x1EA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

13:03:25.0171 3532 Drive \Device\Harddisk1\DR1 - Size: 0x3C1FB0000 (15.03 Gb), SectorSize: 0x200, Cylinders: 0x7AA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

13:03:25.0281 3532 ============================================================

13:03:25.0281 3532 \Device\Harddisk0\DR0:

13:03:25.0281 3532 MBR partitions:

13:03:25.0281 3532 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x77DE6A

13:03:25.0281 3532 \Device\Harddisk1\DR1:

13:03:25.0281 3532 MBR partitions:

13:03:25.0281 3532 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1E0F2EB

13:03:25.0281 3532 ============================================================

13:03:25.0312 3532 C: <-> \Device\Harddisk0\DR0\Partition0

13:03:25.0312 3532 D: <-> \Device\Harddisk1\DR1\Partition0

13:03:25.0312 3532 ============================================================

13:03:25.0312 3532 Initialize success

13:03:25.0312 3532 ============================================================

13:04:52.0734 2012 ============================================================

13:04:52.0734 2012 Scan started

13:04:52.0734 2012 Mode: Manual; SigCheck; TDLFS;

13:04:52.0734 2012 ============================================================

13:04:52.0984 2012 Abiosdsk - ok

13:04:53.0015 2012 abp480n5 - ok

13:04:53.0140 2012 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

13:04:55.0296 2012 ACPI - ok

13:04:55.0312 2012 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

13:04:55.0609 2012 ACPIEC - ok

13:04:55.0718 2012 ACS (34f47d90cba04fe11c9848c8c54274c1) C:\WINDOWS\system32\acs.exe

13:04:56.0078 2012 ACS ( UnsignedFile.Multi.Generic ) - warning

13:04:56.0078 2012 ACS - detected UnsignedFile.Multi.Generic (1)

13:04:56.0156 2012 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

13:04:56.0203 2012 AdobeFlashPlayerUpdateSvc - ok

13:04:56.0218 2012 adpu160m - ok

13:04:56.0265 2012 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

13:04:56.0734 2012 aec - ok

13:04:56.0765 2012 AFD (e3049b90fe06f3f740b7cfda44995e2c) C:\WINDOWS\System32\drivers\afd.sys

13:04:56.0953 2012 AFD - ok

13:04:56.0968 2012 Aha154x - ok

13:04:56.0984 2012 aic78u2 - ok

13:04:57.0000 2012 aic78xx - ok

13:04:57.0015 2012 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll

13:04:57.0453 2012 Alerter - ok

13:04:57.0468 2012 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe

13:04:57.0625 2012 ALG - ok

13:04:57.0640 2012 AliIde - ok

13:04:57.0656 2012 amsint - ok

13:04:57.0906 2012 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll

13:04:58.0406 2012 AppMgmt - ok

13:04:58.0703 2012 AR5211 (6d5f95602b8d0d994d31a864872b38ef) C:\WINDOWS\system32\DRIVERS\ar5211.sys

13:04:58.0968 2012 AR5211 ( UnsignedFile.Multi.Generic ) - warning

13:04:58.0968 2012 AR5211 - detected UnsignedFile.Multi.Generic (1)

13:04:59.0250 2012 AR5416 (6c21f270afec1e423c00e96d3bd234dc) C:\WINDOWS\system32\DRIVERS\athw.sys

13:04:59.0796 2012 AR5416 - ok

13:04:59.0812 2012 asc - ok

13:04:59.0828 2012 asc3350p - ok

13:04:59.0843 2012 asc3550 - ok

13:05:00.0109 2012 aspnet_state (d33c507942299753868204cc7642fa27) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

13:05:00.0140 2012 aspnet_state - ok

13:05:00.0171 2012 AsusACPI (784fcb197f9a50a419d8ce4980655ae4) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys

13:05:00.0390 2012 AsusACPI - ok

13:05:00.0406 2012 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

13:05:00.0765 2012 AsyncMac - ok

13:05:00.0781 2012 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

13:05:01.0156 2012 atapi - ok

13:05:01.0171 2012 AtcL002 (83ef26c44c53581bdb67866b922aed93) C:\WINDOWS\system32\DRIVERS\l251x86.sys

13:05:01.0203 2012 AtcL002 - ok

13:05:01.0218 2012 Atdisk - ok

13:05:01.0234 2012 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

13:05:01.0859 2012 Atmarpc - ok

13:05:01.0875 2012 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll

13:05:02.0265 2012 AudioSrv - ok

13:05:02.0265 2012 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

13:05:02.0656 2012 audstub - ok

13:05:02.0671 2012 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

13:05:03.0062 2012 Beep - ok

13:05:03.0156 2012 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll

13:05:03.0718 2012 BITS - ok

13:05:03.0750 2012 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll

13:05:04.0140 2012 Browser - ok

13:05:04.0156 2012 catchme - ok

13:05:04.0156 2012 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

13:05:04.0531 2012 cbidf2k - ok

13:05:04.0546 2012 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

13:05:04.0921 2012 CCDECODE - ok

13:05:04.0921 2012 cd20xrnt - ok

13:05:04.0937 2012 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

13:05:05.0375 2012 Cdaudio - ok

13:05:05.0406 2012 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

13:05:05.0765 2012 Cdfs - ok

13:05:05.0796 2012 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

13:05:06.0156 2012 Cdrom - ok

13:05:06.0156 2012 Changer - ok

13:05:06.0171 2012 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe

13:05:06.0546 2012 CiSvc - ok

13:05:06.0578 2012 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe

13:05:06.0953 2012 ClipSrv - ok

13:05:06.0968 2012 clr_optimization_v2.0.50727_32 (3c4d595e7f9b747325aef28b4adcaae5) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

13:05:07.0015 2012 clr_optimization_v2.0.50727_32 - ok

13:05:07.0015 2012 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

13:05:07.0421 2012 CmBatt - ok

13:05:07.0437 2012 CmdIde - ok

13:05:07.0453 2012 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

13:05:07.0812 2012 Compbatt - ok

13:05:07.0828 2012 COMSysApp - ok

13:05:07.0859 2012 Cpqarray - ok

13:05:07.0875 2012 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll

13:05:08.0234 2012 CryptSvc - ok

13:05:08.0234 2012 dac2w2k - ok

13:05:08.0250 2012 dac960nt - ok

13:05:08.0375 2012 DcomLaunch (2589fe6015a316c0f5d5112b4da7b509) C:\WINDOWS\system32\rpcss.dll

13:05:08.0843 2012 DcomLaunch - ok

13:05:08.0875 2012 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll

13:05:09.0343 2012 Dhcp - ok

13:05:09.0390 2012 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

13:05:10.0703 2012 Disk - ok

13:05:10.0875 2012 dmadmin - ok

13:05:11.0187 2012 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

13:05:11.0843 2012 dmboot - ok

13:05:11.0890 2012 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

13:05:12.0281 2012 dmio - ok

13:05:12.0312 2012 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

13:05:12.0718 2012 dmload - ok

13:05:12.0734 2012 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll

13:05:13.0140 2012 dmserver - ok

13:05:13.0156 2012 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

13:05:13.0515 2012 DMusic - ok

13:05:13.0546 2012 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll

13:05:13.0906 2012 Dnscache - ok

13:05:13.0953 2012 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll

13:05:14.0343 2012 Dot3svc - ok

13:05:14.0359 2012 dpti2o - ok

13:05:14.0390 2012 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

13:05:14.0765 2012 drmkaud - ok

13:05:14.0781 2012 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll

13:05:15.0140 2012 EapHost - ok

13:05:15.0156 2012 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll

13:05:15.0578 2012 ERSvc - ok

13:05:15.0609 2012 Eventlog (0e776ed5f7cc9f94299e70461b7b8185) C:\WINDOWS\system32\services.exe

13:05:16.0000 2012 Eventlog - ok

13:05:16.0062 2012 EventSystem (19a799805b24990867b00c120d300c3a) C:\WINDOWS\system32\es.dll

13:05:16.0453 2012 EventSystem - ok

13:05:16.0500 2012 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

13:05:16.0843 2012 Fastfat - ok

13:05:16.0875 2012 FastUserSwitchingCompatibility (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll

13:05:17.0250 2012 FastUserSwitchingCompatibility - ok

13:05:17.0265 2012 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

13:05:17.0609 2012 Fdc - ok

13:05:17.0640 2012 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

13:05:18.0093 2012 Fips - ok

13:05:18.0109 2012 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

13:05:18.0484 2012 Flpydisk - ok

13:05:18.0531 2012 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys

13:05:19.0031 2012 FltMgr - ok

13:05:19.0140 2012 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

13:05:19.0687 2012 Fs_Rec - ok

13:05:19.0734 2012 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

13:05:20.0250 2012 Ftdisk - ok

13:05:20.0250 2012 getPlusHelper - ok

13:05:20.0281 2012 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

13:05:20.0875 2012 Gpc - ok

13:05:20.0921 2012 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

13:05:21.0265 2012 HDAudBus - ok

13:05:21.0390 2012 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

13:05:21.0781 2012 helpsvc - ok

13:05:21.0796 2012 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll

13:05:22.0109 2012 HidServ - ok

13:05:22.0140 2012 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

13:05:22.0468 2012 hidusb - ok

13:05:22.0500 2012 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll

13:05:22.0828 2012 hkmsvc - ok

13:05:22.0843 2012 hpn - ok

13:05:22.0906 2012 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys

13:05:23.0343 2012 HTTP - ok

13:05:23.0390 2012 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll

13:05:23.0750 2012 HTTPFilter - ok

13:05:23.0765 2012 i2omgmt - ok

13:05:23.0781 2012 i2omp - ok

13:05:23.0859 2012 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

13:05:24.0359 2012 i8042prt - ok

13:05:24.0656 2012 ialm (6fcb904910da07c9dc2593d66438fa29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

13:05:24.0984 2012 ialm - ok

13:05:25.0015 2012 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

13:05:25.0359 2012 Imapi - ok

13:05:25.0421 2012 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe

13:05:25.0734 2012 ImapiService - ok

13:05:25.0750 2012 ini910u - ok

13:05:26.0671 2012 IntcAzAudAddService (cc8e47e97e4cb382c842a3066b1dfa7d) C:\WINDOWS\system32\drivers\RtkHDAud.sys

13:05:27.0703 2012 IntcAzAudAddService - ok

13:05:27.0812 2012 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys

13:05:28.0125 2012 IntelIde - ok

13:05:28.0156 2012 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

13:05:28.0468 2012 intelppm - ok

13:05:28.0484 2012 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

13:05:28.0828 2012 Ip6Fw - ok

13:05:28.0843 2012 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

13:05:29.0171 2012 IpFilterDriver - ok

13:05:29.0203 2012 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

13:05:29.0515 2012 IpInIp - ok

13:05:29.0562 2012 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

13:05:29.0875 2012 IpNat - ok

13:05:29.0906 2012 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

13:05:30.0265 2012 IPSec - ok

13:05:30.0500 2012 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

13:05:30.0656 2012 IRENUM - ok

13:05:30.0687 2012 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

13:05:31.0000 2012 isapnp - ok

13:05:31.0031 2012 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

13:05:31.0578 2012 Kbdclass - ok

13:05:31.0609 2012 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys

13:05:31.0921 2012 kbdhid - ok

13:05:31.0968 2012 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

13:05:32.0281 2012 kmixer - ok

13:05:32.0546 2012 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys

13:05:32.0812 2012 KSecDD - ok

13:05:32.0843 2012 LanmanServer (f385f4b02c535bffe1d70cab80838123) C:\WINDOWS\System32\srvsvc.dll

13:05:33.0218 2012 LanmanServer - ok

13:05:33.0250 2012 lanmanworkstation (1b67b632786fef1c1bbaef46c2f3f2e6) C:\WINDOWS\System32\wkssvc.dll

13:05:33.0781 2012 lanmanworkstation - ok

13:05:33.0796 2012 lbrtfdc - ok

13:05:33.0859 2012 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll

13:05:34.0250 2012 LmHosts - ok

13:05:34.0265 2012 MCSTRM - ok

13:05:34.0328 2012 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll

13:05:34.0687 2012 Messenger - ok

13:05:34.0703 2012 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

13:05:35.0062 2012 Modem - ok

13:05:35.0078 2012 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

13:05:35.0406 2012 Mouclass - ok

13:05:35.0437 2012 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys

13:05:35.0781 2012 mouhid - ok

13:05:35.0812 2012 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

13:05:36.0375 2012 MountMgr - ok

13:05:36.0390 2012 MozillaMaintenance - ok

13:05:36.0406 2012 mraid35x - ok

13:05:36.0453 2012 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

13:05:36.0750 2012 MRxDAV - ok

13:05:36.0843 2012 MRxSmb (68755f0ff16070178b54674fe5b847b0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

13:05:37.0546 2012 MRxSmb - ok

13:05:38.0500 2012 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe

13:05:39.0250 2012 MSDTC - ok

13:05:39.0406 2012 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

13:05:40.0250 2012 Msfs - ok

13:05:40.0343 2012 MSIServer - ok

13:05:40.0390 2012 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

13:05:40.0734 2012 MSKSSRV - ok

13:05:40.0734 2012 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

13:05:41.0046 2012 MSPCLOCK - ok

13:05:41.0062 2012 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

13:05:41.0390 2012 MSPQM - ok

13:05:41.0406 2012 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

13:05:41.0734 2012 mssmbios - ok

13:05:41.0765 2012 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys

13:05:42.0078 2012 MSTEE - ok

13:05:42.0125 2012 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys

13:05:42.0437 2012 Mup - ok

13:05:42.0609 2012 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

13:05:43.0093 2012 NABTSFEC - ok

13:05:43.0218 2012 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll

13:05:43.0562 2012 napagent - ok

13:05:43.0656 2012 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

13:05:44.0062 2012 NDIS - ok

13:05:44.0078 2012 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys

13:05:44.0437 2012 NdisIP - ok

13:05:44.0453 2012 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

13:05:45.0078 2012 NdisTapi - ok

13:05:45.0093 2012 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

13:05:45.0453 2012 Ndisuio - ok

13:05:45.0484 2012 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

13:05:45.0828 2012 NdisWan - ok

13:05:45.0859 2012 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys

13:05:46.0187 2012 NDProxy - ok

13:05:46.0218 2012 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

13:05:46.0562 2012 NetBIOS - ok

13:05:46.0593 2012 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

13:05:46.0953 2012 NetBT - ok

13:05:46.0984 2012 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe

13:05:47.0359 2012 NetDDE - ok

13:05:47.0359 2012 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe

13:05:47.0718 2012 NetDDEdsdm - ok

13:05:47.0750 2012 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:05:48.0046 2012 Netlogon - ok

13:05:48.0109 2012 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll

13:05:48.0484 2012 Netman - ok

13:05:48.0703 2012 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll

13:05:49.0125 2012 Nla - ok

13:05:49.0156 2012 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

13:05:49.0484 2012 Npfs - ok

13:05:49.0609 2012 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

13:05:50.0062 2012 Ntfs - ok

13:05:50.0078 2012 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:05:50.0390 2012 NtLmSsp - ok

13:05:50.0546 2012 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll

13:05:50.0984 2012 NtmsSvc - ok

13:05:50.0984 2012 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

13:05:51.0343 2012 Null - ok

13:05:51.0390 2012 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

13:05:51.0687 2012 NwlnkFlt - ok

13:05:51.0718 2012 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

13:05:52.0000 2012 NwlnkFwd - ok

13:05:52.0046 2012 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

13:05:52.0359 2012 Parport - ok

13:05:52.0390 2012 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

13:05:52.0687 2012 PartMgr - ok

13:05:52.0703 2012 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

13:05:53.0015 2012 ParVdm - ok

13:05:53.0046 2012 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

13:05:53.0531 2012 PCI - ok

13:05:53.0546 2012 PCIDump - ok

13:05:54.0078 2012 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys

13:05:54.0421 2012 PCIIde - ok

13:05:54.0484 2012 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys

13:05:54.0796 2012 Pcmcia - ok

13:05:54.0796 2012 PDCOMP - ok

13:05:54.0828 2012 PDFRAME - ok

13:05:54.0828 2012 PDRELI - ok

13:05:54.0843 2012 PDRFRAME - ok

13:05:54.0859 2012 perc2 - ok

13:05:54.0875 2012 perc2hib - ok

13:05:54.0937 2012 PlugPlay (0e776ed5f7cc9f94299e70461b7b8185) C:\WINDOWS\system32\services.exe

13:05:55.0234 2012 PlugPlay - ok

13:05:55.0250 2012 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:05:55.0562 2012 PolicyAgent - ok

13:05:55.0593 2012 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

13:05:55.0890 2012 PptpMiniport - ok

13:05:55.0921 2012 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys

13:05:55.0921 2012 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning

13:05:55.0921 2012 PQNTDrv - detected UnsignedFile.Multi.Generic (1)

13:05:55.0937 2012 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:05:56.0250 2012 ProtectedStorage - ok

13:05:56.0281 2012 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

13:05:56.0578 2012 PSched - ok

13:05:56.0609 2012 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

13:05:56.0906 2012 Ptilink - ok

13:05:56.0921 2012 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys

13:05:57.0015 2012 PxHelp20 - ok

13:05:57.0031 2012 ql1080 - ok

13:05:57.0046 2012 Ql10wnt - ok

13:05:57.0062 2012 ql12160 - ok

13:05:57.0078 2012 ql1240 - ok

13:05:57.0093 2012 ql1280 - ok

13:05:57.0109 2012 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

13:05:57.0421 2012 RasAcd - ok

13:05:57.0453 2012 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll

13:05:57.0765 2012 RasAuto - ok

13:05:57.0812 2012 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

13:05:58.0140 2012 Rasl2tp - ok

13:05:58.0203 2012 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll

13:05:58.0515 2012 RasMan - ok

13:05:58.0625 2012 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

13:05:59.0156 2012 RasPppoe - ok

13:05:59.0171 2012 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

13:05:59.0593 2012 Raspti - ok

13:05:59.0671 2012 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

13:05:59.0984 2012 Rdbss - ok

13:06:00.0000 2012 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

13:06:00.0359 2012 RDPCDD - ok

13:06:00.0453 2012 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

13:06:00.0796 2012 rdpdr - ok

13:06:00.0843 2012 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys

13:06:01.0359 2012 RDPWD - ok

13:06:01.0421 2012 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe

13:06:02.0375 2012 RDSessMgr - ok

13:06:02.0421 2012 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

13:06:02.0718 2012 redbook - ok

13:06:02.0765 2012 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll

13:06:03.0531 2012 RemoteAccess - ok

13:06:03.0562 2012 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll

13:06:03.0859 2012 RemoteRegistry - ok

13:06:03.0890 2012 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe

13:06:04.0203 2012 RpcLocator - ok

13:06:04.0281 2012 RpcSs (2589fe6015a316c0f5d5112b4da7b509) C:\WINDOWS\System32\rpcss.dll

13:06:04.0765 2012 RpcSs - ok

13:06:04.0796 2012 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe

13:06:05.0093 2012 RSVP - ok

13:06:05.0093 2012 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:06:05.0406 2012 SamSs - ok

13:06:05.0437 2012 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe

13:06:05.0765 2012 SCardSvr - ok

13:06:06.0000 2012 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll

13:06:06.0781 2012 Schedule - ok

13:06:06.0796 2012 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

13:06:07.0343 2012 Secdrv - ok

13:06:07.0468 2012 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll

13:06:07.0812 2012 seclogon - ok

13:06:07.0828 2012 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll

13:06:08.0156 2012 SENS - ok

13:06:08.0187 2012 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys

13:06:08.0640 2012 Serial - ok

13:06:08.0671 2012 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

13:06:09.0140 2012 Sfloppy - ok

13:06:09.0218 2012 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll

13:06:10.0187 2012 SharedAccess - ok

13:06:10.0218 2012 ShellHWDetection (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll

13:06:10.0531 2012 ShellHWDetection - ok

13:06:10.0546 2012 Simbad - ok

13:06:10.0562 2012 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys

13:06:11.0046 2012 SLIP - ok

13:06:11.0062 2012 Sparrow - ok

13:06:11.0078 2012 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

13:06:11.0421 2012 splitter - ok

13:06:11.0453 2012 Spooler (d8e14a61acc1d4a6cd0d38aebac7fa3b) C:\WINDOWS\system32\spoolsv.exe

13:06:11.0781 2012 Spooler - ok

13:06:11.0812 2012 Sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

13:06:11.0968 2012 Sr - ok

13:06:12.0015 2012 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll

13:06:12.0421 2012 srservice - ok

13:06:12.0515 2012 Srv (5252605079810904e31c332e241cd59b) C:\WINDOWS\system32\DRIVERS\srv.sys

13:06:12.0906 2012 Srv - ok

13:06:12.0937 2012 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll

13:06:13.0109 2012 SSDPSRV - ok

13:06:13.0171 2012 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll

13:06:13.0578 2012 stisvc - ok

13:06:13.0593 2012 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys

13:06:13.0890 2012 streamip - ok

13:06:13.0890 2012 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

13:06:14.0250 2012 swenum - ok

13:06:14.0281 2012 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

13:06:14.0671 2012 swmidi - ok

13:06:14.0687 2012 SwPrv - ok

13:06:14.0703 2012 symc810 - ok

13:06:14.0703 2012 symc8xx - ok

13:06:14.0718 2012 sym_hi - ok

13:06:14.0734 2012 sym_u3 - ok

13:06:14.0765 2012 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

13:06:15.0546 2012 sysaudio - ok

13:06:15.0734 2012 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe

13:06:16.0031 2012 SysmonLog - ok

13:06:16.0093 2012 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll

13:06:16.0875 2012 TapiSrv - ok

13:06:16.0984 2012 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

13:06:17.0625 2012 Tcpip - ok

13:06:17.0640 2012 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

13:06:18.0046 2012 TDPIPE - ok

13:06:18.0062 2012 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

13:06:18.0375 2012 TDTCP - ok

13:06:18.0406 2012 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

13:06:18.0890 2012 TermDD - ok

13:06:19.0015 2012 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll

13:06:19.0484 2012 TermService - ok

13:06:19.0531 2012 Themes (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll

13:06:19.0875 2012 Themes - ok

13:06:19.0906 2012 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe

13:06:20.0062 2012 TlntSvr - ok

13:06:20.0078 2012 TosIde - ok

13:06:20.0109 2012 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll

13:06:20.0390 2012 TrkWks - ok

13:06:20.0421 2012 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

13:06:20.0718 2012 Udfs - ok

13:06:20.0734 2012 ultra - ok

13:06:20.0843 2012 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

13:06:21.0265 2012 Update - ok

13:06:21.0515 2012 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll

13:06:21.0687 2012 upnphost - ok

13:06:21.0703 2012 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe

13:06:21.0968 2012 UPS - ok

13:06:22.0015 2012 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

13:06:22.0265 2012 usbccgp - ok

13:06:22.0390 2012 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

13:06:22.0718 2012 usbhub - ok

13:06:22.0750 2012 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

13:06:23.0015 2012 usbstor - ok

13:06:23.0031 2012 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

13:06:23.0359 2012 usbuhci - ok

13:06:23.0515 2012 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys

13:06:23.0984 2012 usbvideo - ok

13:06:24.0031 2012 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys

13:06:24.0296 2012 usb_rndisx - ok

13:06:24.0390 2012 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

13:06:24.0656 2012 VgaSave - ok

13:06:24.0671 2012 ViaIde - ok

13:06:24.0703 2012 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

13:06:24.0968 2012 VolSnap - ok

13:06:25.0046 2012 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe

13:06:25.0203 2012 VSS - ok

13:06:25.0250 2012 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll

13:06:25.0546 2012 W32Time - ok

13:06:25.0593 2012 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

13:06:25.0890 2012 Wanarp - ok

13:06:25.0906 2012 WDICA - ok

13:06:25.0937 2012 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

13:06:26.0234 2012 wdmaud - ok

13:06:26.0281 2012 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll

13:06:26.0656 2012 WebClient - ok

13:06:26.0718 2012 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll

13:06:27.0015 2012 winmgmt - ok

13:06:27.0046 2012 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll

13:06:27.0093 2012 WmdmPmSN - ok

13:06:27.0218 2012 Wmi (bab489a5fe26f2d0c910cf7af7e4cf92) C:\WINDOWS\System32\advapi32.dll

13:06:27.0640 2012 Wmi - ok

13:06:27.0687 2012 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe

13:06:28.0046 2012 WmiApSrv - ok

13:06:28.0046 2012 WMPNetworkSvc - ok

13:06:28.0218 2012 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys

13:06:28.0250 2012 WpdUsb - ok

13:06:28.0265 2012 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys

13:06:28.0593 2012 WS2IFSL - ok

13:06:28.0640 2012 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll

13:06:29.0046 2012 wscsvc - ok

13:06:29.0203 2012 WSIMD (8fede6cf2eb103ef1274ce2c9d8ee0e7) C:\WINDOWS\system32\DRIVERS\wsimd.sys

13:06:29.0218 2012 WSIMD - ok

13:06:29.0234 2012 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll

13:06:29.0578 2012 wuauserv - ok

13:06:29.0609 2012 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

13:06:29.0656 2012 WudfPf - ok

13:06:29.0703 2012 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

13:06:29.0750 2012 WudfRd - ok

13:06:29.0781 2012 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll

13:06:29.0812 2012 WudfSvc - ok

13:06:29.0906 2012 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll

13:06:30.0375 2012 WZCSVC - ok

13:06:30.0406 2012 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll

13:06:30.0703 2012 xmlprov - ok

13:06:30.0734 2012 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0

13:06:32.0109 2012 \Device\Harddisk0\DR0 - ok

13:06:32.0109 2012 MBR (0x1B8) (f24b3ae7198b90414576e70e4c3af238) \Device\Harddisk1\DR1

13:06:32.0203 2012 \Device\Harddisk1\DR1 - ok

13:06:32.0203 2012 Boot (0x1200) (d7ea64ac27df0b7994fbbdd3ae4e6b2d) \Device\Harddisk0\DR0\Partition0

13:06:32.0203 2012 \Device\Harddisk0\DR0\Partition0 - ok

13:06:32.0218 2012 Boot (0x1200) (56ebb5112dded8224c2e104315e190e8) \Device\Harddisk1\DR1\Partition0

13:06:32.0218 2012 \Device\Harddisk1\DR1\Partition0 - ok

13:06:32.0218 2012 ============================================================

13:06:32.0218 2012 Scan finished

13:06:32.0218 2012 ============================================================

13:06:32.0343 0204 Detected object count: 3

13:06:32.0343 0204 Actual detected object count: 3

13:08:32.0109 0204 ACS ( UnsignedFile.Multi.Generic ) - skipped by user

13:08:32.0109 0204 ACS ( UnsignedFile.Multi.Generic ) - User select action: Skip

13:08:32.0109 0204 AR5211 ( UnsignedFile.Multi.Generic ) - skipped by user

13:08:32.0109 0204 AR5211 ( UnsignedFile.Multi.Generic ) - User select action: Skip

13:08:32.0109 0204 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user

13:08:32.0109 0204 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip

13:09:05.0390 3028 Deinitialize success

[LDTate]

• Download mbam-check.exe from
  here and save it to your desktop
  
• Double-click on mbam-check.exe to run it, it should then open a log file
  
• Please copy and paste the entire contents of the log into your next post, or, if you prefer, you may
  attach the CheckResults.txt file which should now be located on your desktop to your next post
  instead
  

[ziggywiggy]

CheckResults.txt Downloaded this on 6/2/12. Here are the current results.

mbam-check result log version: 1.10.0.1000

Date Log Created: 07/28/12

Time Log Created: 21:46:57

32 bit Operating System

Product Name: REG_SZ Microsoft Windows XP

Current Build Number: 2600

Current Version Number: 5.1

Current CSDVersion: Service Pack 3

OS Product Info: Professional

Proxy Status: No proxy is Set

LAN Settings:

=============

No Settings are Set <--NOT DETECTING SETTING AUTOMATICALLY

SystemPartition:

================

HKEY_LOCAL_MACHINE\SYSTEM\Setup\

SystemPartition REG_SZ \Device\HarddiskVolume1

Balloon Tips Status:

====================

Disabled <--BALLOON TOOLTIPS ARE DISABLED!

Time Format Settings:

=====================

Should be:

h:mm:ss tt

AM

PM

:

Currently:

REG_SZ h:mm:ss tt

REG_SZ AM

REG_SZ PM

REG_SZ :

Language and Regional Settings:

===============================

ACP: Language is English (United States)

MACCP: Language is English (United States)

OEMCP: Language is English (United States)

Startup Folders for Error_Expanding_Variables Check:

====================================================

All Users Startup Folder Exists.

Current User's startup Folder Exists.

Terminal Services Status for (null) entries in PM logs and GetUserToken errors:

===============================================================================

TERMService:

==============

Type : 32

State : 4 (The service is running.) (State is stopped)

WIN32_EXIT_CODE : 0

SERVICE_EXIT_CODE : 0

CHECKPOINT : 0

WAIT_HINT : 0

TermService Start is set to: 3 (Manual Startup)

Compatibility Flag Settings (Any MBAM file listings should be removed):

=======================================================================

Malwarebytes Anti-Malware Shell Extension Block Check:

======================================================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked

MBAM Startup Entries:

=====================

Service and Driver Status:

==========================

Can not open SC_HANDLE, Service not running for MBAMProtector

Can not open SC_HANDLE, Service not running for MBAMService

MBAMProtector Registry Values:

==============================

MBAMService Registry Values:

============================

MBAM DLL's and Runtime Files:

=============================

MBAM Registry Settings and License Info:

========================================

Pending File Rename Operations:

================================

If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\

PendingFileRenameOperations REG_MULTI_SZ \??\C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe

Context Menu Entries:

=====================

MBAM Drivers:

=============

Required Dependencies:

======================

fltmgr:

==============

Type : 2

State : 4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)

WIN32_EXIT_CODE : 0

SERVICE_EXIT_CODE : 0

CHECKPOINT : 0

WAIT_HINT : 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr

Type REG_DWORD 2

Start REG_DWORD 0

ErrorControl REG_DWORD 1

Tag REG_DWORD 4

ImagePath REG_EXPAND_SZ system32\DRIVERS\fltMgr.sys

DisplayName REG_SZ FltMgr

Group REG_SZ FSFilter Infrastructure

Description REG_SZ File System Filter Manager Driver

AttachWhenLoaded REG_DWORD 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Security

Security REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum

0 REG_SZ Root\LEGACY_FLTMGR\0000

Count REG_DWORD 1

NextInstance REG_DWORD 1

C:\WINDOWS\system32\drivers\fltmgr.sys File Size: 129792 BYTES FileVersion: 5.1.2600.5512

C:\WINDOWS\system32\mscomctl.ocx File Size: 1081616 BYTES FileVersion: 6.1.97.82

C:\WINDOWS\system32\olepro32.dll File Size: 84992 BYTES FileVersion: 5.1.2600.5512

List of MBAM Related Directories:

=================================

===============================================================

END OF FILE

[LDTate]

Same old same old. Everything seems fine except I can't download mbam.

You can't download it or install / run MBAM?

Looking at the scan results shows no MBAM services are running.

The below shows you need to restart

Pending File Rename Operations:

================================

If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\

PendingFileRenameOperations REG_MULTI_SZ \??\C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe

[ziggywiggy]

I downloaded and tried to install mbam multiple times with the same result - upgrade from version 000.00.0 corrupted, please reinstall. downloaded and ran mbam clean, tried again, same result. downloaded from IE, same result. loaded from flash drive, same result. ran mbam clean, shut the computer off for a week, tried again, same result. ran mbam clean after each failure.

[LDTate]

Try this.

DO NOT use or try this on anything except XP

Using this on Vista or Windows 7 will cause more problems

Download this file to your computer.

http://kixhelp.com/wr/files/mb/fixacls2.zip

Then open the zip file and copy the subinacl.exe file to the C:\Windows

folder.

Then copy the fixacls.bat to your desktop

Then close all open applications and browsers and temporarily disable all Anti-Virus or other security tools and double-click on the fixacls.bat on the desktop.

It should run for a while and when done restart the computer on it's own.

I would also run a full disk check AFTER the computer restarts again.

Click on START - RUN and copy / paste the following entry into the box and click OK

CMD /C ECHO Y|CHKDSK C: /R | SHUTDOWN /R /T 30

Let me know if that did the trick.

[LDTate]

Do you still need help with this?

[LDTate]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!