Jump to content

Suspicious activity


Recommended Posts

I have been having problems with my computer. It seems that MBAM keeps on blocking outgoing/ingoing IPs. A popup would appear from the taskbar. Please have a look at them. I have attached the logs as required in http://forums.malwarebytes.org/index.php?showtopic=9573. If I have forgotten any, please do inform me.

Please instruct me on how to fix the problem, or if it is a problem at all in the first place. Thank you.

The following is my gmer text.

GMER 1.0.15.15640 - http://www.gmer.net

Rootkit scan 2011-06-17 13:25:57

Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST3320613AS rev.CC2F

Running: 9ktcrqym.exe; Driver: C:\DOCUME~1\Yamaki\LOCALS~1\Temp\pwxcifow.sys

---- System - GMER 1.0.15 ----

SSDT F7CC8D1E ZwCreateKey

SSDT F7CC8D14 ZwCreateThread

SSDT F7CC8D23 ZwDeleteKey

SSDT F7CC8D2D ZwDeleteValueKey

SSDT F7CC8D32 ZwLoadKey

SSDT F7CC8D00 ZwOpenProcess

SSDT F7CC8D05 ZwOpenThread

SSDT F7CC8D3C ZwReplaceKey

SSDT F7CC8D37 ZwRestoreKey

SSDT F7CC8D28 ZwSetValueKey

---- User code sections - GMER 1.0.15 ----

.text C:\WINDOWS\Explorer.EXE[356] SHELL32.dll!SHFileOperationW 7CA6D1B9 5 Bytes JMP 10001102 C:\Program Files\Unlocker\UnlockerHook.dll

.text C:\Program Files\Pando Networks\Media Booster\PMB.exe[2312] kernel32.dll!SetUnhandledExceptionFilter 7C810386 5 Bytes [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!ReadFile 7C80180E 7 Bytes JMP 0111867E C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 011185B2 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!CloseHandle 7C809B77 5 Bytes JMP 0111893B C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!CreateFileW 7C810976 5 Bytes JMP 01118618 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!GetFileSizeEx 7C810C21 5 Bytes JMP 011189C3 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!GetFileSize 7C810C8F 5 Bytes JMP 0111897C C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!SetFilePointer 7C810DA6 5 Bytes JMP 01118830 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!WriteFile 7C810F9F 7 Bytes JMP 01118730 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!SetFilePointerEx 7C81F475 5 Bytes JMP 0111888A C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!GetOverlappedResult 7C81FCF4 5 Bytes JMP 01118A0A C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!OpenFile 7C826B99 5 Bytes JMP 011187E2 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!ReadFileEx 7C8384C5 5 Bytes JMP 011186D7 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!WriteFileEx 7C85C4E1 3 Bytes JMP 01118789 C:\Program Files\PPStream\Vodres.dll (PPS ?????/PPStream Inc.)

.text C:\Program Files\PPStream\ppsap.exe[2388] kernel32.dll!WriteFileEx + 4 7C85C4E5 1 Byte [84]

.text C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe[2492] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 01D14B50 C:\Program Files\Common Files\PPLiveNetwork\TipsClient.dll

.text C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe[2492] kernel32.dll!CreateFileW 7C810976 5 Bytes JMP 01D14BB0 C:\Program Files\Common Files\PPLiveNetwork\TipsClient.dll

.text C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe[2492] USER32.dll!ShowWindow 77D4D4DE 5 Bytes JMP 01D149A0 C:\Program Files\Common Files\PPLiveNetwork\TipsClient.dll

.text C:\Program Files\PPStream\PPStream.exe[3000] kernel32.dll!FindResourceExW 7C80AB10 2 Bytes JMP 00581340 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] kernel32.dll!FindResourceExW + 3 7C80AB13 4 Bytes [D7, 83, CC, CC] {XLATB ; OR ESP, -0x34}

.text C:\Program Files\PPStream\PPStream.exe[3000] kernel32.dll!FindResourceExA 7C822C2D 7 Bytes JMP 00581310 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetScrollInfo 77D4902C 7 Bytes JMP 00581DE0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetWindowPos 77D4C78E 5 Bytes JMP 00580FB0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!FillRect 77D4D3C5 5 Bytes JMP 0057FE60 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!GetClassLongA 77D4E49A 7 Bytes JMP 00581C20 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DeleteMenu 77D4E87B 5 Bytes JMP 00581250 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawIconEx 77D4F38A 5 Bytes JMP 00580F20 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!FrameRect 77D4F5FE 5 Bytes JMP 0057FE30 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!GetScrollPos 77D4F66F 5 Bytes JMP 00581D30 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetScrollRange 77D4F6BB 5 Bytes JMP 00581EA0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetScrollPos 77D4F780 5 Bytes JMP 00581E40 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!GetScrollRange 77D4F7B7 5 Bytes JMP 00581D80 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawTextW 77D4FF89 5 Bytes JMP 00580BB0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!ShowScrollBar 77D50142 5 Bytes JMP 00581F00 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawTextExW 77D505D2 5 Bytes JMP 00580AF0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetWindowRgn 77D51DE0 7 Bytes JMP 005812C0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadIconW 77D52174 5 Bytes JMP 00580EF0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadIconA 77D521AE 5 Bytes JMP 00580EC0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!GetScrollInfo 77D53A2F 7 Bytes JMP 00581CE0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadImageW 77D542A4 5 Bytes JMP 00580E90 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadBitmapA 77D567A8 5 Bytes JMP 00580E20 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!AppendMenuA 77D5716C 5 Bytes JMP 00580740 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawIcon 77D601EF 5 Bytes JMP 00580F80 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawFrameControl 77D62420 7 Bytes JMP 00581450 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!InsertMenuA 77D64F9A 5 Bytes JMP 00581090 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawTextA 77D65D61 5 Bytes JMP 00580B20 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!DrawTextExA 77D65D98 5 Bytes JMP 00580AC0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!ModifyMenuW 77D66B6A 5 Bytes JMP 00580710 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!InsertMenuItemW 77D670FF 5 Bytes JMP 005811E0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!InsertMenuW 77D67145 5 Bytes JMP 00581100 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadBitmapW 77D67D6B 5 Bytes JMP 00580E40 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!MessageBoxIndirectA 77D6AEF1 5 Bytes JMP 005807E0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!AppendMenuW 77D6C170 5 Bytes JMP 00580770 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!GetMenu 77D6EABE 5 Bytes JMP 00580800 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!LoadImageA 77D6F4DC 5 Bytes JMP 00580E60 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!SetWindowsHookExA 77D702B2 5 Bytes JMP 005807A0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!ModifyMenuA 77D7EF2B 5 Bytes JMP 005806E0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!InsertMenuItemA 77D7F430 5 Bytes JMP 00581170 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!TrackPopupMenu 77D94F16 5 Bytes JMP 00580D70 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!EnableScrollBar 77D97BAD 7 Bytes JMP 00581C90 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] USER32.dll!TrackPopupMenuEx 77D9CAFE 5 Bytes JMP 00580CD0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!CreateSolidBrush 77F15FD5 5 Bytes JMP 005812F0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!GetTextExtentPointW 77F1694E 5 Bytes JMP 005808D0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!TextOutW 77F17CE8 5 Bytes JMP 00580A90 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!GetTextExtentPoint32W 77F18174 5 Bytes JMP 00580A30 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!GetTextExtentPointA 77F1C333 5 Bytes JMP 00580880 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!TextOutA 77F1C449 5 Bytes JMP 00580A60 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] GDI32.dll!GetTextExtentPoint32A 77F1D73B 5 Bytes JMP 00580A00 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] ADVAPI32.dll!RegQueryValueExW 77DD6FC8 5 Bytes JMP 005813B0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] ADVAPI32.dll!RegQueryValueExA 77DD7883 5 Bytes JMP 00581370 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] ADVAPI32.dll!RegSetValueExW 77DDD7CC 7 Bytes JMP 00581420 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Program Files\PPStream\PPStream.exe[3000] ADVAPI32.dll!RegSetValueExA 77DDEBE7 7 Bytes JMP 005813F0 C:\Program Files\PPStream\PPStream.exe (PPS????/PPStream Inc.)

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3028] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2]

.text C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe[3668] WS2_32.dll!connect 71AB406A 5 Bytes JMP 01C16480 C:\Program Files\Common Files\PPLiveNetwork\kernel\VAProxyD.dll (PP??????????????/PPLive Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...

Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x08 0x46 0x45 0x3A ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x08 0x46 0x45 0x3A ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x08 0x46 0x45 0x3A ...

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\eMule VeryCD

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\eMule VeryCD@SlowInfoCache 0x28 0x02 0x00 0x00 ...

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\eMule VeryCD@Changed 0

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\eMule VeryCD

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\eMule VeryCD@DisplayIcon C:\Program Files\eMule\eMule.exe

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\eMule VeryCD@DisplayName eMule VeryCD??

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\eMule VeryCD@UninstallString C:\Program Files\eMule\uninstall.exe

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PPS

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PPS@InstallLocation C:\Program Files\PPSGame

Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher@TracesProcessed 29

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?video 5.10 Compression Filter

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?video 5.10 Compression Filter@FriendlyName Indeo? video 5.10 Compression Filter

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?video 5.10 Compression Filter@CLSID {1F73E9B1-8C3A-11D0-A3BE-00A0C9244436}

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?video 5.10 Compression Filter@FilterData 0x02 0x00 0x00 0x00 ...

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?video 5.10 Compression Filter@EncoderType 1

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?Video 5.2 Compression Filter

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?Video 5.2 Compression Filter@FriendlyName Indeo? Video 5.2 Compression Filter

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?Video 5.2 Compression Filter@CLSID {1F73E9B1-8C3A-11D0-A3BE-00A0C9244436}

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?Video 5.2 Compression Filter@FilterData 0x02 0x00 0x00 0x00 ...

Reg HKLM\SOFTWARE\Classes\CLSID\{33D9A760-90C8-11d0-BD43-00A0C911CE86}\Instance\Indeo?Video 5.2 Compression Filter@EncoderType 1

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.o?

Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.o?\OpenWithList

---- EOF - GMER 1.0.15 ----

Here is my latest MBAM log:

00:00:40 Yamaki IP-BLOCK 58.241.73.183 (Type: outgoing)

00:11:12 Yamaki IP-BLOCK 219.147.28.138 (Type: outgoing)

00:14:34 Yamaki IP-BLOCK 222.70.112.156 (Type: outgoing)

00:21:34 Yamaki IP-BLOCK 222.70.97.33 (Type: outgoing)

00:34:57 Yamaki IP-BLOCK 222.71.216.213 (Type: outgoing)

04:29:37 (null) MESSAGE Protection started successfully

04:30:07 Yamaki MESSAGE IP Protection started successfully

04:31:31 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

04:31:53 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

04:31:56 Yamaki IP-BLOCK 58.241.10.242 (Type: outgoing)

04:31:59 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

04:32:37 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

04:32:48 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

04:32:51 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

04:32:57 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

04:33:04 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

04:33:11 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

04:33:16 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

04:34:49 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

04:35:00 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

04:35:06 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

04:35:12 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

04:35:17 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

04:35:38 Yamaki IP-BLOCK 94.100.17.52 (Type: outgoing)

04:35:48 Yamaki IP-BLOCK 94.100.17.52 (Type: outgoing)

04:35:51 Yamaki IP-BLOCK 94.100.17.52 (Type: outgoing)

04:43:12 Yamaki IP-BLOCK 222.68.184.18 (Type: outgoing)

04:47:46 Yamaki IP-BLOCK 222.69.244.114 (Type: outgoing)

04:56:47 Yamaki IP-BLOCK 121.10.0.140 (Type: outgoing)

04:56:48 Yamaki IP-BLOCK 222.70.97.23 (Type: outgoing)

04:57:36 Yamaki IP-BLOCK 58.241.186.98 (Type: outgoing)

04:58:16 Yamaki IP-BLOCK 222.71.216.213 (Type: outgoing)

05:00:17 Yamaki IP-BLOCK 222.71.24.245 (Type: outgoing)

05:00:17 Yamaki IP-BLOCK 58.240.5.145 (Type: outgoing)

05:01:13 Yamaki IP-BLOCK 58.241.73.183 (Type: outgoing)

05:02:55 Yamaki IP-BLOCK 121.125.83.68 (Type: outgoing)

05:07:58 Yamaki IP-BLOCK 220.248.235.186 (Type: outgoing)

05:13:48 Yamaki IP-BLOCK 222.65.106.108 (Type: outgoing)

05:18:01 (null) MESSAGE Protection started successfully

05:18:50 Yamaki MESSAGE IP Protection started successfully

05:23:07 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

05:23:10 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

05:23:16 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

05:29:18 Yamaki IP-BLOCK 222.69.38.78 (Type: outgoing)

05:31:03 Yamaki IP-BLOCK 222.68.184.18 (Type: outgoing)

05:32:39 Yamaki IP-BLOCK 222.69.178.42 (Type: outgoing)

05:34:07 Yamaki IP-BLOCK 222.69.38.78 (Type: outgoing)

05:35:14 Yamaki IP-BLOCK 222.69.38.78 (Type: outgoing)

05:36:07 Yamaki IP-BLOCK 222.70.42.104 (Type: outgoing)

05:39:35 Yamaki IP-BLOCK 222.71.216.213 (Type: outgoing)

05:46:44 Yamaki IP-BLOCK 222.71.24.245 (Type: outgoing)

05:47:39 Yamaki IP-BLOCK 222.69.178.42 (Type: outgoing)

05:58:07 Yamaki IP-BLOCK 222.65.106.108 (Type: outgoing)

06:05:12 Yamaki IP-BLOCK 77.221.143.246 (Type: outgoing)

06:10:30 Yamaki IP-BLOCK 222.70.42.104 (Type: outgoing)

06:14:50 Yamaki IP-BLOCK 201.43.66.121 (Type: outgoing)

06:44:41 Yamaki IP-BLOCK 222.71.216.213 (Type: outgoing)

07:18:26 Yamaki IP-BLOCK 222.70.97.173 (Type: outgoing)

08:16:51 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

08:17:13 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

08:18:51 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:19:41 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:20:49 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:22:09 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:23:39 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:25:25 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:27:09 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

08:27:23 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:27:31 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

08:29:04 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

08:29:26 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

08:29:30 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:31:56 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:34:59 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:38:15 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:41:58 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:45:57 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:47:01 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

08:47:23 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

08:48:56 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

08:49:18 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

08:49:58 Yamaki IP-BLOCK 219.146.102.150 (Type: outgoing)

08:59:14 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

08:59:36 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

09:18:29 Yamaki IP-BLOCK 222.76.215.205 (Type: outgoing)

09:42:44 Yamaki IP-BLOCK 89.149.194.253 (Type: outgoing)

09:51:24 Yamaki IP-BLOCK 222.65.251.151 (Type: outgoing)

09:56:56 Yamaki IP-BLOCK 222.70.97.23 (Type: outgoing)

09:57:00 Yamaki IP-BLOCK 121.10.0.140 (Type: outgoing)

09:57:06 Yamaki IP-BLOCK 222.186.196.169 (Type: outgoing)

09:58:40 Yamaki IP-BLOCK 218.10.85.43 (Type: outgoing)

10:00:47 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:00:50 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:00:56 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:06 Yamaki IP-BLOCK 222.76.69.96 (Type: outgoing)

10:01:14 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:17 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:23 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:47 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:50 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:01:56 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:02:23 Yamaki IP-BLOCK 218.7.9.237 (Type: outgoing)

10:02:31 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

10:02:48 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:02:51 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:02:53 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

10:02:57 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:03:28 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:03:31 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:03:37 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:04:12 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:04:15 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:04:21 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:04:40 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:41 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:43 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:44 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:45 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:46 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:47 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:48 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:49 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:50 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:51 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:52 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:54 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:55 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:56 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:57 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:58 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:04:59 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:05:00 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:05:01 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:05:02 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

10:05:09 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

10:05:14 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

10:05:15 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

10:05:16 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

10:37:33 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:34 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:35 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:36 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:37 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:38 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:39 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:40 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:41 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:43 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:44 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:45 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:46 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:47 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:48 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:49 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:50 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:51 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:52 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:53 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:37:55 Yamaki IP-BLOCK 95.143.193.70 (Type: outgoing)

10:37:57 Yamaki IP-BLOCK 222.186.74.100 (Type: outgoing)

10:38:01 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

10:38:07 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

10:38:08 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

10:38:09 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

10:41:51 Yamaki IP-BLOCK 218.9.149.30 (Type: outgoing)

10:55:13 (null) MESSAGE Protection started successfully

10:56:09 Yamaki MESSAGE IP Protection started successfully

10:57:36 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:57:39 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:57:45 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:58:20 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:58:23 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:58:29 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:58:44 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:58:47 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:58:54 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

10:59:18 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:59:21 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:59:27 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

10:59:28 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:59:31 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:59:37 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:59:46 Yamaki IP-BLOCK 208.77.45.142 (Type: outgoing)

10:59:56 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

10:59:59 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:00:05 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:02:36 Yamaki IP-BLOCK 208.77.45.142 (Type: outgoing)

11:10:22 Yamaki IP-BLOCK 222.68.178.5 (Type: outgoing)

11:13:30 Yamaki MESSAGE Protection started successfully

11:13:36 Yamaki MESSAGE IP Protection started successfully

11:14:48 Yamaki IP-BLOCK 222.76.215.214 (Type: outgoing)

11:15:44 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:15:46 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:15:52 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:16:13 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:16:16 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:16:22 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

11:16:35 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

11:16:38 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

11:16:45 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

11:16:47 Yamaki IP-BLOCK 58.241.197.97 (Type: outgoing)

11:16:53 Yamaki IP-BLOCK 222.65.201.55 (Type: outgoing)

11:17:01 Yamaki IP-BLOCK 222.70.128.215 (Type: outgoing)

11:17:06 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

11:17:08 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

11:17:15 Yamaki IP-BLOCK 222.64.219.110 (Type: outgoing)

11:18:25 Yamaki IP-BLOCK 89.28.90.165 (Type: outgoing)

11:22:47 Yamaki IP-BLOCK 222.65.116.247 (Type: outgoing)

11:23:38 Yamaki IP-BLOCK 218.10.70.27 (Type: outgoing)

11:24:51 Yamaki IP-BLOCK 58.241.54.163 (Type: outgoing)

11:25:43 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:25:46 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:25:52 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:11 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:11 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:14 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:14 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:20 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:20 Yamaki IP-BLOCK 95.143.193.31 (Type: outgoing)

11:26:41 Yamaki IP-BLOCK 222.68.178.5 (Type: outgoing)

11:30:55 Yamaki IP-BLOCK 58.241.117.122 (Type: outgoing)

11:32:18 Yamaki IP-BLOCK 218.8.146.254 (Type: outgoing)

11:32:44 Yamaki IP-BLOCK 222.71.202.253 (Type: outgoing)

11:36:31 Yamaki IP-BLOCK 124.217.246.169 (Type: outgoing)

11:37:29 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:32 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:38 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:54 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:54 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:57 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:37:57 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:38:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:03 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:38:03 Yamaki IP-BLOCK 208.73.210.29 (Type: outgoing)

11:38:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:09 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:09 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:27 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:38:33 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:30 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:35 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:38 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:38 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:56 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:56 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:56 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:56 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:59 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:59 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:39:59 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:02 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:11 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:15 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:18 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:32 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:35 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:39 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:39 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:42 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:48 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:40:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:01 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:09 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:30 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:42 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:42 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:41:51 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:06 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:06 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:12 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:12 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:27 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:33 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:33 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:48 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:48 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:54 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:42:54 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:31 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:37 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:43:58 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:19 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:31 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:34 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:40 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:44:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:01 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:01 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:45:22 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:52:34 Yamaki IP-BLOCK 222.71.196.234 (Type: outgoing)

11:53:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:53:19 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:53:25 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:17 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:20 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:23 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:26 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

11:56:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:02 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:04 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:04 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:13 Yamaki IP-BLOCK 93.174.93.194 (Type: outgoing)

12:00:14 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:15 Yamaki IP-BLOCK 93.174.93.194 (Type: outgoing)

12:00:21 Yamaki IP-BLOCK 93.174.93.194 (Type: outgoing)

12:00:25 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:34 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:37 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:38 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:41 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:47 Yamaki IP-BLOCK 188.95.52.206 (Type: outgoing)

12:00:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:50 Yamaki IP-BLOCK 188.95.52.206 (Type: outgoing)

12:00:54 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:00:56 Yamaki IP-BLOCK 188.95.52.206 (Type: outgoing)

12:01:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:31 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:37 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:01:58 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:12 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:15 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:29 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:32 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:38 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:50 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:50 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:53 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:59 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:02:59 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:11 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:14 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:20 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:32 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:35 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:03:41 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:04:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:04:43 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:04:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:05:04 Yamaki IP-BLOCK 222.70.42.104 (Type: outgoing)

12:07:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:07:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:07:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:10:42 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:10:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:10:48 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:10:51 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:03 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:09 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:09 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:24 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:28 Yamaki IP-BLOCK 222.65.89.59 (Type: outgoing)

12:11:30 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:30 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:30 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:42 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:43 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:43 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:51 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:11:52 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:04 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:04 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:04 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:13 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:25 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:25 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:27 Yamaki IP-BLOCK 219.146.124.66 (Type: outgoing)

12:12:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:34 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:49 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:12:55 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:14:15 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:14:18 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:15:00 Yamaki IP-BLOCK 222.70.192.144 (Type: outgoing)

12:15:12 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:15:15 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:15:21 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:17:02 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:17:05 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:17:11 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:17:51 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:17:54 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:18:00 Yamaki IP-BLOCK 222.65.133.55 (Type: outgoing)

12:20:31 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:20:34 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:20:40 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:22:39 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

12:23:02 Yamaki IP-BLOCK 193.169.86.73 (Type: outgoing)

12:34:00 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

12:34:23 Yamaki IP-BLOCK 95.143.193.66 (Type: outgoing)

12:36:49 Yamaki IP-BLOCK 222.76.69.96 (Type: outgoing)

12:37:41 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

12:38:04 Yamaki IP-BLOCK 222.186.190.39 (Type: outgoing)

12:42:56 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:42:58 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:14 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:25 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:34 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:36 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:39 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:40 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:45 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:46 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:43:57 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:00 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:06 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:19 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:19 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:22 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:22 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:28 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:44 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:47 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:47 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:53 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:44:53 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:05 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:07 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:08 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:10 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:14 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:14 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:16 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:26 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:29 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

12:45:34 Yamaki MESSAGE Scheduled update executed successfully

12:45:37 Yamaki MESSAGE IP Protection stopped

12:46:36 Yamaki MESSAGE Database updated successfully

12:46:41 Yamaki MESSAGE IP Protection started successfully

12:57:14 Yamaki IP-BLOCK 222.65.207.43 (Type: incoming)

12:57:46 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

12:58:08 Yamaki IP-BLOCK 95.143.193.64 (Type: outgoing)

13:07:39 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

13:07:40 Yamaki IP-BLOCK 222.70.97.48 (Type: incoming)

13:07:46 Yamaki IP-BLOCK 222.70.97.48 (Type: incoming)

13:08:02 Yamaki IP-BLOCK 95.143.193.68 (Type: outgoing)

13:13:05 Yamaki IP-BLOCK 217.23.15.170 (Type: outgoing)

13:13:08 Yamaki IP-BLOCK 217.23.15.170 (Type: outgoing)

13:13:14 Yamaki IP-BLOCK 217.23.15.170 (Type: outgoing)

13:13:26 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

13:13:29 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

13:13:35 Yamaki IP-BLOCK 109.236.84.120 (Type: outgoing)

13:16:58 Yamaki IP-BLOCK 220.189.253.35 (Type: outgoing)

13:17:43 Yamaki IP-BLOCK 222.70.97.48 (Type: incoming)

attach.zip

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, download DDS by sUBs and save it to your Desktop.

Double-click on the DDS icon and let the scan run. When it has run two logs will be produced, please post only DDS.txt directly into your reply.

Link to post
Share on other sites

The logs requested are as follows:

Malwarebytes' Anti-Malware 1.51.0.1200

www.malwarebytes.org

Database version: 6901

Windows 5.1.2600 Service Pack 2

Internet Explorer 6.0.2900.2180

6/20/2011 6:51:04 PM

mbam-log-2011-06-20 (18-51-04).txt

Scan type: Quick scan

Objects scanned: 176172

Time elapsed: 9 minute(s), 39 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

.

DDS (Ver_2011-06-12.02) - NTFSx86

Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_17

Run by Yamaki at 18:36:36 on 2011-06-20

Microsoft Windows XP Professional 5.1.2600.2.936.86.1033.18.1013.203 [GMT 8:00]

.

AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Autorun Eater\oldmcdonald.exe

C:\Program Files\Unlocker\UnlockerAssistant.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\Program Files\Autorun Eater\billy.exe

C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe

C:\Program Files\PPStream\ppsap.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe

C:\Program Files\eMule\emule.exe

C:\Program Files\Orbitdownloader\orbitdm.exe

C:\Program Files\PPStream\PPStream.exe

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Yamaki\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\system32\conime.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.ask.com/?o=14597&l=dis

uSearch Page = hxxp://www.google.com

uSearch Bar = hxxp://www.google.com/ie

mDefault_Search_URL = hxxp://www.google.com/ie

uInternet Connection Wizard,ShellNext = hxxp://www.verycd.com/search/files/Micheal%20jackson

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

mSearchAssistant = hxxp://www.google.com/ie

uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll

BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - c:\program files\orbitdownloader\orbitcth.dll

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll

BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn1\YTSingleInstance.dll

TB: Grab Pro: {c55bbcd6-41ad-48ad-9953-3609c48eacc7} - c:\program files\orbitdownloader\GrabPro.dll

TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

EB: Groove Folder Synchronization: {2a541ae1-5bf6-4665-a8a3-cfa9672e4291} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [msnmsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background

uRun: [Messenger (Yahoo!)] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet

uRun: [Pando Media Booster] c:\program files\pando networks\media booster\PMB.exe

uRun: [PPS Accelerator] c:\program files\ppstream\ppsap.exe

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [AdobeUpdater] "c:\program files\common files\adobe\updater5\AdobeUpdater.exe"

uRun: [Google Update] "c:\documents and settings\yamaki\local settings\application data\google\update\GoogleUpdate.exe" /c

uRun: [PPAP] "c:\program files\common files\pplivenetwork\PPAP.exe" -background

uRun: [skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized

uRun: [eMuleAutoStart] c:\program files\emule\emule.exe -AutoStart

mRun: [iMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC

mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [Alcmtr] ALCMTR.EXE

mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"

mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"

mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"

mRun: [Autorun Eater] c:\program files\autorun eater\oldmcdonald.exe

mRun: [unlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"

mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min

mRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"

mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

mRun: [Adobe_ID0EYTHM] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE

StartupFolder: c:\docume~1\yamaki\startm~1\programs\startup\pps.lnk - c:\program files\ppstream\PPStream.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\orbit.lnk - c:\program files\orbitdownloader\orbitdm.exe

IE: &Download by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/201

IE: &Grab video by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/204

IE: Do&wnload selected by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/203

IE: Down&load all by Orbit - c:\program files\orbitdownloader\orbitmxt.dll/202

IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html

IE: ????

Link to post
Share on other sites

  • 1 month later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.