Antivirus Software Alert - Cant run Malwarebytes

[Maniac]

• Download MBRCheck to your desktop
  
• For Windows XP: Double click on MBRCheck.exe to run it.
  
• For Windows Vista/7: Right click on MBRCheck.exe and select Run as Administrator
  
• It will show a black screen with some data on it
  
• Don't run any of the options!!!
  
• When it's done, Press Enter to close the program
  
• A file will called MBRCheck_ will appear on your desktop
  
• Please copy into to your next reply
  

[rwt]

MBRCheck, version 1.2.3

© 2010, AD

Command-line:

Windows Version: Windows Vista Ultimate Edition

Windows Information: Service Pack 2 (build 6002), 64-bit

Base Board Manufacturer: ASUSTeK Computer INC.

BIOS Manufacturer: Phoenix Technologies, LTD

System Manufacturer: System manufacturer

System Product Name: System Product Name

Logical Drives Mask: 0x0000000d

Kernel Drivers (total 146):

0x02816000 \SystemRoot\system32\ntoskrnl.exe

0x02D2D000 \SystemRoot\system32\hal.dll

0x00603000 \SystemRoot\system32\kdcom.dll

0x0060D000 \SystemRoot\system32\PSHED.dll

0x00621000 \SystemRoot\system32\CLFS.SYS

0x0067E000 \SystemRoot\system32\CI.dll

0x00807000 \SystemRoot\system32\drivers\Wdf01000.sys

0x008E1000 \SystemRoot\system32\drivers\WDFLDR.SYS

0x008EF000 \SystemRoot\system32\drivers\acpi.sys

0x00945000 \SystemRoot\system32\drivers\WMILIB.SYS

0x0094E000 \SystemRoot\system32\drivers\msisadrv.sys

0x00958000 \SystemRoot\system32\drivers\pci.sys

0x00988000 \SystemRoot\System32\drivers\partmgr.sys

0x0099D000 \SystemRoot\system32\drivers\volmgr.sys

0x00730000 \SystemRoot\System32\drivers\volmgrx.sys

0x009B1000 \SystemRoot\system32\drivers\pciide.sys

0x009B8000 \SystemRoot\system32\drivers\PCIIDEX.SYS

0x009C8000 \SystemRoot\System32\drivers\mountmgr.sys

0x009DB000 \SystemRoot\system32\drivers\atapi.sys

0x00796000 \SystemRoot\system32\drivers\ataport.SYS

0x00A08000 \SystemRoot\system32\drivers\fltmgr.sys

0x00A4F000 \SystemRoot\system32\drivers\fileinfo.sys

0x00A63000 \SystemRoot\System32\Drivers\ksecdd.sys

0x00C02000 \SystemRoot\system32\drivers\ndis.sys

0x00AEA000 \SystemRoot\system32\drivers\msrpc.sys

0x00B3A000 \SystemRoot\system32\drivers\NETIO.SYS

0x00E0B000 \SystemRoot\System32\drivers\tcpip.sys

0x00F81000 \SystemRoot\System32\drivers\fwpkclnt.sys

0x01002000 \SystemRoot\System32\Drivers\Ntfs.sys

0x01182000 \SystemRoot\system32\drivers\volsnap.sys

0x011C6000 \SystemRoot\System32\Drivers\spldr.sys

0x011CE000 \SystemRoot\System32\Drivers\mup.sys

0x00FAD000 \SystemRoot\System32\drivers\ecache.sys

0x00DC5000 \SystemRoot\System32\DRIVERS\fvevol.sys

0x011E0000 \SystemRoot\system32\drivers\disk.sys

0x00B93000 \SystemRoot\system32\drivers\CLASSPNP.SYS

0x011F4000 \SystemRoot\system32\drivers\crcdisk.sys

0x00DEE000 \SystemRoot\system32\DRIVERS\tunnel.sys

0x00E00000 \SystemRoot\system32\DRIVERS\tunmp.sys

0x00BD2000 \SystemRoot\system32\DRIVERS\amdk8.sys

0x02208000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys

0x02CD4000 \SystemRoot\system32\DRIVERS\nvBridge.kmd

0x02CD6000 \SystemRoot\System32\drivers\dxgkrnl.sys

0x02DB9000 \SystemRoot\System32\drivers\watchdog.sys

0x02DC9000 \SystemRoot\system32\DRIVERS\Rtlh64.sys

0x00BE6000 \SystemRoot\system32\DRIVERS\usbohci.sys

0x007BA000 \SystemRoot\system32\DRIVERS\USBPORT.SYS

0x009E3000 \SystemRoot\system32\DRIVERS\usbehci.sys

0x02E09000 \SystemRoot\system32\DRIVERS\cdrom.sys

0x02E25000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys

0x02E32000 \SystemRoot\system32\DRIVERS\HDAudBus.sys

0x02F1F000 \SystemRoot\system32\DRIVERS\fdc.sys

0x02F2C000 \SystemRoot\system32\DRIVERS\serial.sys

0x02F49000 \SystemRoot\system32\DRIVERS\serenum.sys

0x02F55000 \SystemRoot\system32\DRIVERS\parport.sys

0x02F71000 \SystemRoot\system32\DRIVERS\i8042prt.sys

0x02F87000 \SystemRoot\system32\DRIVERS\mouclass.sys

0x02F93000 \SystemRoot\system32\DRIVERS\ASACPI.sys

0x02F9B000 \SystemRoot\system32\DRIVERS\msiscsi.sys

0x03005000 \SystemRoot\system32\DRIVERS\storport.sys

0x03062000 \SystemRoot\system32\DRIVERS\TDI.SYS

0x0306F000 \SystemRoot\system32\DRIVERS\rasl2tp.sys

0x03092000 \SystemRoot\system32\DRIVERS\ndistapi.sys

0x0309E000 \SystemRoot\system32\DRIVERS\ndiswan.sys

0x030CF000 \SystemRoot\system32\DRIVERS\raspppoe.sys

0x030DF000 \SystemRoot\system32\DRIVERS\raspptp.sys

0x030FD000 \SystemRoot\system32\DRIVERS\rassstp.sys

0x03115000 \SystemRoot\system32\DRIVERS\rdpdr.sys

0x031AF000 \SystemRoot\system32\DRIVERS\termdd.sys

0x031C2000 \SystemRoot\system32\DRIVERS\kbdclass.sys

0x031D0000 \SystemRoot\system32\DRIVERS\swenum.sys

0x03206000 \SystemRoot\system32\DRIVERS\ks.sys

0x0323A000 \SystemRoot\system32\DRIVERS\mssmbios.sys

0x03245000 \SystemRoot\system32\DRIVERS\umbus.sys

0x03255000 \SystemRoot\system32\DRIVERS\usbhub.sys

0x0329D000 \SystemRoot\system32\DRIVERS\flpydisk.sys

0x032A8000 \SystemRoot\System32\Drivers\NDProxy.SYS

0x032BC000 \SystemRoot\system32\drivers\HdAudio.sys

0x03305000 \SystemRoot\system32\drivers\portcls.sys

0x03340000 \SystemRoot\system32\drivers\drmk.sys

0x03363000 \SystemRoot\system32\drivers\ksthunk.sys

0x03369000 \SystemRoot\System32\Drivers\Fs_Rec.SYS

0x03373000 \SystemRoot\System32\Drivers\Null.SYS

0x03387000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS

0x0338F000 \SystemRoot\System32\drivers\vga.sys

0x0339D000 \SystemRoot\System32\drivers\VIDEOPRT.SYS

0x033C2000 \SystemRoot\System32\DRIVERS\RDPCDD.sys

0x033CB000 \SystemRoot\system32\drivers\rdpencdd.sys

0x033D4000 \SystemRoot\System32\Drivers\Msfs.SYS

0x033DF000 \SystemRoot\System32\Drivers\Npfs.SYS

0x033F0000 \SystemRoot\System32\DRIVERS\rasacd.sys

0x031D2000 \SystemRoot\system32\DRIVERS\tdx.sys

0x031EF000 \SystemRoot\System32\Drivers\aswTdi.SYS

0x02FD4000 \SystemRoot\system32\DRIVERS\smb.sys

0x03A00000 \SystemRoot\system32\drivers\afd.sys

0x03A6B000 \SystemRoot\System32\Drivers\aswRdr.SYS

0x03A75000 \SystemRoot\System32\DRIVERS\netbt.sys

0x03AB9000 \SystemRoot\system32\DRIVERS\pacer.sys

0x03AD7000 \SystemRoot\system32\DRIVERS\netbios.sys

0x03AE6000 \SystemRoot\system32\DRIVERS\wanarp.sys

0x03B01000 \SystemRoot\system32\DRIVERS\rdbss.sys

0x03B4E000 \SystemRoot\system32\drivers\nsiproxy.sys

0x03B5A000 \SystemRoot\system32\drivers\csc.sys

0x03BD0000 \SystemRoot\System32\Drivers\dfsc.sys

0x03E02000 \SystemRoot\System32\Drivers\aswSP.SYS

0x03E25000 \SystemRoot\SysWow64\drivers\AsIO.sys

0x03E2C000 \SystemRoot\system32\DRIVERS\usbprint.sys

0x03E37000 \SystemRoot\system32\DRIVERS\USBD.SYS

0x03E39000 \SystemRoot\system32\DRIVERS\usbccgp.sys

0x03E55000 \SystemRoot\system32\DRIVERS\hidusb.sys

0x03E5E000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS

0x03E70000 \SystemRoot\system32\DRIVERS\kbdhid.sys

0x03E7B000 \SystemRoot\system32\DRIVERS\NuidFltr.sys

0x03E84000 \SystemRoot\system32\DRIVERS\mouhid.sys

0x03EA0000 \SystemRoot\system32\DRIVERS\cdfs.sys

0x03EBC000 \SystemRoot\System32\Drivers\crashdmp.sys

0x03ECA000 \SystemRoot\System32\Drivers\dump_dumpata.sys

0x03ED6000 \SystemRoot\System32\Drivers\dump_atapi.sys

0x03EDE000 \SystemRoot\System32\Drivers\dump_dumpfve.sys

0x00080000 \SystemRoot\System32\win32k.sys

0x03EF1000 \SystemRoot\System32\drivers\Dxapi.sys

0x03EFD000 \SystemRoot\system32\DRIVERS\monitor.sys

0x00480000 \SystemRoot\System32\TSDDD.dll

0x006E0000 \SystemRoot\System32\cdd.dll

0x03F10000 \SystemRoot\system32\drivers\luafv.sys

0x03F32000 \??\C:\Windows\system32\drivers\aswMonFlt.sys

0x03F6C000 \SystemRoot\System32\Drivers\aswFsBlk.SYS

0x08001000 \SystemRoot\system32\drivers\spsys.sys

0x0809B000 \SystemRoot\system32\DRIVERS\lltdio.sys

0x080AF000 \SystemRoot\system32\DRIVERS\rspndr.sys

0x080C7000 \SystemRoot\system32\DRIVERS\asyncmac.sys

0x080D2000 \SystemRoot\system32\drivers\HTTP.sys

0x08175000 \SystemRoot\System32\DRIVERS\srvnet.sys

0x0819E000 \SystemRoot\system32\DRIVERS\bowser.sys

0x081BC000 \SystemRoot\System32\drivers\mpsdrv.sys

0x081D6000 \SystemRoot\system32\drivers\mrxdav.sys

0x03F75000 \SystemRoot\system32\DRIVERS\mrxsmb.sys

0x03F9E000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys

0x00FD9000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys

0x09206000 \SystemRoot\System32\DRIVERS\srv2.sys

0x09238000 \SystemRoot\System32\DRIVERS\srv.sys

0x092CC000 \SystemRoot\system32\drivers\peauth.sys

0x09382000 \SystemRoot\System32\Drivers\secdrv.SYS

0x0938D000 \SystemRoot\System32\drivers\tcpipreg.sys

0x00850000 \SystemRoot\System32\ATMFD.DLL

0x77150000 \Windows\System32\ntdll.dll

Processes (total 81):

0 System Idle Process

4 System

420 C:\Windows\System32\smss.exe

552 csrss.exe

596 C:\Windows\System32\wininit.exe

624 csrss.exe

652 C:\Windows\System32\services.exe

664 C:\Windows\System32\lsass.exe

672 C:\Windows\System32\lsm.exe

748 C:\Windows\System32\winlogon.exe

860 C:\Windows\System32\svchost.exe

916 C:\Windows\System32\nvvsvc.exe

944 C:\Windows\System32\svchost.exe

340 C:\Windows\System32\Ati2evxx.exe

360 C:\Windows\System32\svchost.exe

304 C:\Windows\System32\svchost.exe

520 C:\Windows\System32\svchost.exe

1040 C:\Windows\System32\audiodg.exe

1072 C:\Windows\System32\svchost.exe

1096 C:\Windows\System32\SLsvc.exe

1128 C:\Windows\System32\svchost.exe

1324 C:\Windows\System32\svchost.exe

1372 C:\Windows\System32\nvvsvc.exe

1416 C:\Windows\System32\Ati2evxx.exe

1480 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

1736 C:\Windows\System32\dwm.exe

1760 C:\Windows\explorer.exe

1836 C:\Program Files\Windows Sidebar\sidebar.exe

1844 C:\Program Files (x86)\Steam\steam.exe

1860 C:\Windows\ehome\ehtray.exe

1868 C:\Program Files (x86)\AIM6\aim6.exe

1876 C:\Program Files (x86)\Skype\Phone\Skype.exe

1884 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

1896 C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

1088 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

1332 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

1640 C:\Program Files (x86)\iTunes\iTunesHelper.exe

1616 C:\Windows\System32\taskeng.exe

792 C:\Windows\System32\spoolsv.exe

2024 C:\Windows\System32\svchost.exe

1964 C:\Windows\System32\taskeng.exe

2576 C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe

2584 HP1006MC.EXE

2608 C:\Windows\ehome\ehmsas.exe

2768 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

2804 C:\Program Files (x86)\Bonjour\mDNSResponder.exe

2848 C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe

2064 C:\Windows\SysWOW64\PnkBstrA.exe

1828 C:\Windows\System32\svchost.exe

1548 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

2424 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

2280 C:\Windows\System32\svchost.exe

2420 C:\Windows\System32\svchost.exe

2904 C:\Windows\System32\SearchIndexer.exe

3964 C:\Program Files\iPod\bin\iPodService.exe

4056 C:\Program Files\Windows Media Player\wmpnscfg.exe

2676 C:\Program Files\Windows Media Player\wmpnetwk.exe

3664 unsecapp.exe

3636 WmiPrvSE.exe

1352 C:\Program Files (x86)\AIM6\aolsoftware.exe

2068 C:\Windows\System32\svchost.exe

4220 C:\Program Files (x86)\Common Files\Steam\SteamService.exe

4480 C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe

4488 C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe

4756 C:\Windows\System32\wuauclt.exe

4820 C:\Windows\splwow64.exe

3248 C:\Program Files (x86)\Internet Explorer\ielowutil.exe

1568 C:\Program Files\Alwil Software\Avast5\AvastUI.exe

5804 C:\Program Files (x86)\Internet Explorer\iexplore.exe

5836 C:\Program Files (x86)\Internet Explorer\iexplore.exe

5044 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

3796 C:\Program Files (x86)\Skype\Toolbars\Shared\SkypeNames2.exe

5428 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe

3472 C:\Program Files (x86)\Internet Explorer\iexplore.exe

460 C:\Windows\System32\SearchFilterHost.exe

2564 C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE

2972 C:\Windows\System32\SearchProtocolHost.exe

4492 C:\Program Files (x86)\Internet Explorer\iexplore.exe

5880 <unknown>

3312 <unknown>

6064 C:\Users\Taylor\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DDX5W5RP\MBRCheck[1].exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)

PhysicalDrive0 Model Number: ST3750640AS, Rev: 3.AAE

Size Device Name MBR Status

--------------------------------------------

698 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected

SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979

Done!

[Maniac]

I really have no idea how to fix this one. Please try to temporarily uninstall TuneUp Companion 1.9.0 .

[rwt]

I discovered that the sound is associated with the start up of Skype. I didn't realize it until I restarted tonight and watched the toolbar in the lower right. When I quit Skype, it made the same sound in reverse.

I think my computer is fixed --- Thanks to all your help.

Should I do anything to clean up the stuff I've loaded to fix all this?

Should I run any of the scans routinely in the future?

I really appreciate all your help and apologize about dragging out the issue.

[Maniac]

You really did a great job! I'm sorry, because of distance is extremely difficult to fix a similar problem.

Last steps for you

Step 1

• Double-click OTL.exe to start the program.
  
• Close all other programs apart from OTL as this step will require a reboot
  
• On the OTL main screen, press the CLEANUP button
  
• Say Yes to the prompt and then allow the program to reboot your computer.
  

Step 2

Please uninstall HiJackThis, ESET Online Scanner and Kaspersky.

Step 3

Please manually delete RKill and MBRCheck.

Step 4

Keep your software up-to-date:

http://www.bleepingcomputer.com/tutorials/tutorial174.html

Some malware preventions:

http://forums.malwarebytes.org/index.php?showtopic=9365

Safe surfing!

[LDTate]

Since this issue is resolved I will close the thread to prevent others from posting here. If you need assistance please start your own topic and someone will be happy to assist you.