API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 15th, 2016
68
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.88 KB | None | 0 0
raw download clone embed print report
  1. ---------------------------------------
  2. Malwarebytes Anti-Rootkit BETA 1.09.3.1001
  3.  
  4. (c) Malwarebytes Corporation 2011-2012
  5.  
  6. OS version: 10.0.9200 Windows 10 x64
  7.  
  8. Account is Administrative
  9.  
  10. Internet Explorer version: 11.162.10586.0
  11.  
  12. File system is: NTFS
  13. Disk drives: C:\ DRIVE_FIXED, F:\ DRIVE_FIXED
  14. CPU speed: 3.060000 GHz
  15. Memory total: 17076756480, free: 11107098624
  16.  
  17. Downloaded database version: v2016.04.15.02
  18. Canceled update
  19. =======================================
  20.  
  21.  
  22. ---------------------------------------
  23. Malwarebytes Anti-Rootkit BETA 1.09.3.1001
  24.  
  25. (c) Malwarebytes Corporation 2011-2012
  26.  
  27. OS version: 10.0.9200 Windows 10 x64
  28.  
  29. Account is Administrative
  30.  
  31. Internet Explorer version: 11.162.10586.0
  32.  
  33. File system is: NTFS
  34. Disk drives: C:\ DRIVE_FIXED, F:\ DRIVE_FIXED
  35. CPU speed: 3.060000 GHz
  36. Memory total: 17076756480, free: 11116199936
  37.  
  38. Downloaded database version: v2016.04.15.02
  39. Downloaded database version: v2016.04.09.01
  40. Downloaded database version: v2016.04.12.01
  41. Initializing...
  42. =======================================
  43. Driver version: 0.3.0.4
  44. ------------ Kernel report ------------
  45. 04/15/2016 19:46:36
  46. ------------ Loaded modules -----------
  47. \SystemRoot\system32\ntoskrnl.exe
  48. \SystemRoot\system32\hal.dll
  49. \SystemRoot\system32\kd.dll
  50. \SystemRoot\system32\mcupdate_GenuineIntel.dll
  51. \SystemRoot\System32\drivers\werkernel.sys
  52. \SystemRoot\System32\drivers\CLFS.SYS
  53. \SystemRoot\System32\drivers\tm.sys
  54. \SystemRoot\system32\PSHED.dll
  55. \SystemRoot\system32\BOOTVID.dll
  56. \SystemRoot\System32\drivers\cmimcext.sys
  57. \SystemRoot\System32\drivers\ntosext.sys
  58. \SystemRoot\system32\CI.dll
  59. \SystemRoot\System32\drivers\msrpc.sys
  60. \SystemRoot\System32\drivers\FLTMGR.SYS
  61. \SystemRoot\System32\drivers\ksecdd.sys
  62. \SystemRoot\System32\drivers\clipsp.sys
  63. \SystemRoot\system32\drivers\Wdf01000.sys
  64. \SystemRoot\system32\drivers\WDFLDR.SYS
  65. \SystemRoot\System32\Drivers\acpiex.sys
  66. \SystemRoot\System32\Drivers\WppRecorder.sys
  67. \SystemRoot\System32\Drivers\cng.sys
  68. \SystemRoot\System32\drivers\ACPI.sys
  69. \SystemRoot\System32\drivers\WMILIB.SYS
  70. \SystemRoot\system32\drivers\WindowsTrustedRT.sys
  71. \SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys
  72. \SystemRoot\System32\drivers\pcw.sys
  73. \SystemRoot\System32\drivers\msisadrv.sys
  74. \SystemRoot\System32\drivers\pci.sys
  75. \SystemRoot\System32\drivers\vdrvroot.sys
  76. \SystemRoot\system32\drivers\pdc.sys
  77. \SystemRoot\system32\drivers\CEA.sys
  78. \SystemRoot\System32\drivers\partmgr.sys
  79. \SystemRoot\System32\drivers\spaceport.sys
  80. \SystemRoot\System32\drivers\volmgr.sys
  81. \SystemRoot\System32\drivers\volmgrx.sys
  82. \SystemRoot\System32\drivers\vmci.sys
  83. \SystemRoot\system32\drivers\vsock.sys
  84. \SystemRoot\System32\drivers\mountmgr.sys
  85. \SystemRoot\System32\drivers\storahci.sys
  86. \SystemRoot\System32\drivers\storport.sys
  87. \SystemRoot\System32\drivers\EhStorClass.sys
  88. \SystemRoot\System32\drivers\fileinfo.sys
  89. \SystemRoot\System32\Drivers\Wof.sys
  90. \SystemRoot\System32\Drivers\NTFS.sys
  91. \SystemRoot\System32\Drivers\Fs_Rec.sys
  92. \SystemRoot\system32\drivers\ndis.sys
  93. \SystemRoot\system32\drivers\NETIO.SYS
  94. \SystemRoot\System32\Drivers\ksecpkg.sys
  95. \SystemRoot\System32\drivers\tcpip.sys
  96. \SystemRoot\System32\drivers\fwpkclnt.sys
  97. \SystemRoot\System32\drivers\wfplwfs.sys
  98. \SystemRoot\System32\drivers\asstor64.sys
  99. \SystemRoot\System32\DRIVERS\fvevol.sys
  100. \SystemRoot\System32\drivers\volsnap.sys
  101. \SystemRoot\System32\drivers\rdyboost.sys
  102. \SystemRoot\System32\Drivers\mup.sys
  103. \SystemRoot\system32\DRIVERS\iaStorF.sys
  104. \SystemRoot\System32\drivers\disk.sys
  105. \SystemRoot\System32\drivers\CLASSPNP.SYS
  106. \SystemRoot\System32\Drivers\crashdmp.sys
  107. \SystemRoot\System32\DRIVERS\cmderd.sys
  108. \SystemRoot\System32\drivers\cdrom.sys
  109. \SystemRoot\system32\drivers\filecrypt.sys
  110. \SystemRoot\system32\drivers\tbs.sys
  111. \SystemRoot\system32\DRIVERS\cmdguard.sys
  112. \SystemRoot\system32\DRIVERS\CFRMD.sys
  113. \SystemRoot\System32\Drivers\Null.SYS
  114. \SystemRoot\System32\Drivers\Beep.SYS
  115. \SystemRoot\System32\drivers\BasicDisplay.sys
  116. \SystemRoot\System32\drivers\watchdog.sys
  117. \SystemRoot\System32\drivers\dxgkrnl.sys
  118. \SystemRoot\System32\drivers\BasicRender.sys
  119. \SystemRoot\System32\Drivers\Npfs.SYS
  120. \SystemRoot\System32\Drivers\Msfs.SYS
  121. \SystemRoot\system32\DRIVERS\tdx.sys
  122. \SystemRoot\system32\DRIVERS\TDI.SYS
  123. \SystemRoot\system32\drivers\ws2ifsl.sys
  124. \SystemRoot\System32\DRIVERS\netbt.sys
  125. \SystemRoot\system32\DRIVERS\cmdhlp.sys
  126. \SystemRoot\system32\drivers\afd.sys
  127. \SystemRoot\system32\DRIVERS\inspect.sys
  128. \SystemRoot\System32\drivers\vwififlt.sys
  129. \SystemRoot\System32\drivers\pacer.sys
  130. \SystemRoot\system32\drivers\netbios.sys
  131. \SystemRoot\system32\DRIVERS\avkmgr.sys
  132. \SystemRoot\system32\DRIVERS\avipbb.sys
  133. \SystemRoot\system32\DRIVERS\rdbss.sys
  134. \SystemRoot\system32\drivers\nsiproxy.sys
  135. \SystemRoot\System32\drivers\npsvctrig.sys
  136. \SystemRoot\System32\drivers\mssmbios.sys
  137. \SystemRoot\System32\drivers\gpuenergydrv.sys
  138. \??\C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
  139. \SystemRoot\System32\Drivers\dfsc.sys
  140. \SystemRoot\SysWow64\drivers\AsIO.sys
  141. \SystemRoot\system32\DRIVERS\ahcache.sys
  142. \SystemRoot\System32\drivers\tap0901.sys
  143. \SystemRoot\system32\DRIVERS\vmnetadapter.sys
  144. \SystemRoot\system32\DRIVERS\VMNET.SYS
  145. \SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
  146. \SystemRoot\System32\drivers\kdnic.sys
  147. \SystemRoot\System32\drivers\umbus.sys
  148. \SystemRoot\System32\drivers\intelppm.sys
  149. \SystemRoot\System32\drivers\wmiacpi.sys
  150. \SystemRoot\system32\DRIVERS\nvlddmkm.sys
  151. \SystemRoot\System32\drivers\HDAudBus.sys
  152. \SystemRoot\System32\drivers\portcls.sys
  153. \SystemRoot\System32\drivers\drmk.sys
  154. \SystemRoot\System32\drivers\ks.sys
  155. \SystemRoot\System32\drivers\USBXHCI.SYS
  156. \SystemRoot\system32\drivers\ucx01000.sys
  157. \SystemRoot\system32\DRIVERS\TeeDriverx64.sys
  158. \SystemRoot\System32\drivers\e1i63x64.sys
  159. \SystemRoot\System32\drivers\usbehci.sys
  160. \SystemRoot\System32\drivers\USBPORT.SYS
  161. \SystemRoot\system32\DRIVERS\bcmwl664.sys
  162. \SystemRoot\System32\drivers\vwifibus.sys
  163. \SystemRoot\system32\drivers\nvvad64v.sys
  164. \SystemRoot\system32\drivers\ksthunk.sys
  165. \SystemRoot\System32\drivers\NdisVirtualBus.sys
  166. \SystemRoot\System32\drivers\swenum.sys
  167. \SystemRoot\System32\drivers\CorsairVBusDriver.sys
  168. \SystemRoot\system32\drivers\LGBusEnum.sys
  169. \SystemRoot\system32\drivers\LGJoyXlCore.sys
  170. \SystemRoot\System32\drivers\rdpbus.sys
  171. \SystemRoot\System32\drivers\usbhub.sys
  172. \SystemRoot\System32\drivers\USBD.SYS
  173. \SystemRoot\system32\DRIVERS\USBPcap.sys
  174. \SystemRoot\System32\drivers\HIDCLASS.SYS
  175. \SystemRoot\System32\drivers\HIDPARSE.SYS
  176. \SystemRoot\system32\drivers\nvhda64v.sys
  177. \SystemRoot\System32\drivers\UsbHub3.sys
  178. \SystemRoot\system32\drivers\RTKVHD64.sys
  179. \SystemRoot\System32\drivers\mouhid.sys
  180. \SystemRoot\System32\drivers\mouclass.sys
  181. \SystemRoot\System32\drivers\kbdhid.sys
  182. \SystemRoot\System32\drivers\kbdclass.sys
  183. \SystemRoot\System32\drivers\xusb22.sys
  184. \SystemRoot\System32\drivers\hidusb.sys
  185. \SystemRoot\system32\drivers\bcbtums.sys
  186. \SystemRoot\System32\drivers\BTHUSB.sys
  187. \SystemRoot\System32\drivers\bthport.sys
  188. \SystemRoot\System32\drivers\usbccgp.sys
  189. \SystemRoot\System32\drivers\BthLEEnum.sys
  190. \SystemRoot\System32\drivers\rfcomm.sys
  191. \SystemRoot\System32\drivers\BthEnum.sys
  192. \SystemRoot\System32\drivers\bthpan.sys
  193. \SystemRoot\system32\drivers\usbaudio.sys
  194. \SystemRoot\System32\win32k.sys
  195. \SystemRoot\System32\win32kfull.sys
  196. \SystemRoot\System32\win32kbase.sys
  197. \SystemRoot\System32\Drivers\dump_diskdump.sys
  198. \SystemRoot\System32\Drivers\dump_storahci.sys
  199. \SystemRoot\System32\Drivers\dump_dumpfve.sys
  200. \SystemRoot\System32\drivers\dxgmms2.sys
  201. \SystemRoot\System32\drivers\monitor.sys
  202. \SystemRoot\System32\TSDDD.dll
  203. \SystemRoot\System32\ATMFD.DLL
  204. \SystemRoot\System32\cdd.dll
  205. \SystemRoot\system32\drivers\WudfPf.sys
  206. \SystemRoot\system32\drivers\luafv.sys
  207. \SystemRoot\system32\drivers\storqosflt.sys
  208. \SystemRoot\system32\DRIVERS\avgntflt.sys
  209. \SystemRoot\system32\DRIVERS\WUDFRd.sys
  210. \SystemRoot\System32\drivers\rdpvideominiport.sys
  211. \SystemRoot\System32\drivers\rdpdr.sys
  212. \SystemRoot\system32\DRIVERS\bowser.sys
  213. \SystemRoot\system32\DRIVERS\mrxsmb.sys
  214. \SystemRoot\system32\DRIVERS\mrxsmb20.sys
  215. \SystemRoot\system32\drivers\mmcss.sys
  216. \??\C:\Program Files\Sandboxie\SbieDrv.sys
  217. \SystemRoot\system32\DRIVERS\vmnetbridge.sys
  218. \SystemRoot\System32\DRIVERS\wanarp.sys
  219. \SystemRoot\system32\drivers\mslldp.sys
  220. \SystemRoot\system32\drivers\rspndr.sys
  221. \SystemRoot\system32\drivers\lltdio.sys
  222. \SystemRoot\system32\drivers\ndisuio.sys
  223. \SystemRoot\system32\DRIVERS\nwifi.sys
  224. \SystemRoot\system32\drivers\HTTP.sys
  225. \SystemRoot\System32\drivers\condrv.sys
  226. \SystemRoot\System32\drivers\mpsdrv.sys
  227. \??\C:\WINDOWS\system32\drivers\vmx86.sys
  228. \??\C:\WINDOWS\system32\drivers\hcmon.sys
  229. \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
  230. \SystemRoot\system32\DRIVERS\avnetflt.sys
  231. \SystemRoot\System32\DRIVERS\srvnet.sys
  232. \SystemRoot\System32\DRIVERS\srv2.sys
  233. \??\C:\WINDOWS\system32\drivers\vmnetuserif.sys
  234. \SystemRoot\system32\drivers\npf.sys
  235. \SystemRoot\system32\drivers\peauth.sys
  236. \SystemRoot\system32\DRIVERS\mrxsmb10.sys
  237. \SystemRoot\system32\drivers\Ndu.sys
  238. \SystemRoot\System32\drivers\tcpipreg.sys
  239. \SystemRoot\system32\drivers\mqac.sys
  240. \SystemRoot\System32\DRIVERS\srv.sys
  241. \??\C:\WINDOWS\system32\Drivers\iqvw64e.sys
  242. \SystemRoot\System32\drivers\tunnel.sys
  243. \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
  244. \SystemRoot\system32\drivers\LGVirHid.sys
  245. \SystemRoot\System32\drivers\CorsairVHidDriver.sys
  246. \??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
  247. \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
  248. ----------- End -----------
  249. Done!
  250.  
  251. Scan started
  252. Database versions:
  253. main: v2016.04.15.02
  254. rootkit: v2016.04.09.01
  255.  
  256. <<<2>>>
  257. Physical Sector Size: 512
  258. Drive: 1, DevicePointer: 0xffffe0015409f310, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
  259. --------- Disk Stack ------
  260. DevicePointer: 0xffffe00154000b10, DeviceName: Unknown, DriverName: \Driver\partmgr\
  261. DevicePointer: 0xffffe0015409f310, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
  262. DevicePointer: 0xffffe00153ffdc50, DeviceName: Unknown, DriverName: \Driver\iaStorF\
  263. DevicePointer: 0xffffe00153df9060, DeviceName: \Device\0000003f\, DriverName: \Driver\storahci\
  264. ------------ End ----------
  265. Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
  266. Upper DeviceData: 0x0, 0x0, 0x0
  267. Lower DeviceData: 0x0, 0x0, 0x0
  268. <<<3>>>
  269. Volume: C:
  270. File system type: NTFS
  271. SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
  272. <<<2>>>
  273. <<<3>>>
  274. Volume: C:
  275. File system type: NTFS
  276. SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
  277. Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
  278. Done!
  279. Physical Sector Size: 512
  280. Drive: 0, DevicePointer: 0xffffe001540d1310, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
  281. --------- Disk Stack ------
  282. DevicePointer: 0xffffe00153ff5b10, DeviceName: Unknown, DriverName: \Driver\partmgr\
  283. DevicePointer: 0xffffe001540d1310, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
  284. DevicePointer: 0xffffe00153ff6ab0, DeviceName: Unknown, DriverName: \Driver\iaStorF\
  285. DevicePointer: 0xffffe00153dfb060, DeviceName: \Device\0000003e\, DriverName: \Driver\storahci\
  286. ------------ End ----------
  287. Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
  288. Upper DeviceData: 0x0, 0x0, 0x0
  289. Lower DeviceData: 0x0, 0x0, 0x0
  290. Drive 0
  291. Scanning MBR on drive 0...
  292. Inspecting partition table:
  293. MBR Signature: 55AA
  294. Disk Signature: EE53509A
  295.  
  296. Partition information:
  297.  
  298. Partition 0 type is Primary (0x7)
  299. Partition is ACTIVE.
  300. Partition starts at LBA: 2048 Numsec = 4294963200
  301. Partition is bootable
  302. Partition file system is NTFS
  303.  
  304. Partition 1 type is Empty (0x0)
  305. Partition is NOT ACTIVE.
  306. Partition starts at LBA: 0 Numsec = 0
  307. Partition is not bootable
  308.  
  309. Partition 2 type is Empty (0x0)
  310. Partition is NOT ACTIVE.
  311. Partition starts at LBA: 0 Numsec = 0
  312. Partition is not bootable
  313.  
  314. Partition 3 type is Empty (0x0)
  315. Partition is NOT ACTIVE.
  316. Partition starts at LBA: 0 Numsec = 0
  317. Partition is not bootable
  318.  
  319. Disk Size: 4000787030016 bytes
  320. Sector size: 512 bytes
  321.  
  322. Done!
  323. Drive 1
  324. This is a System drive
  325. Scanning MBR on drive 1...
  326. Inspecting partition table:
  327. MBR Signature: 55AA
  328. Disk Signature: EE535082
  329.  
  330. Partition information:
  331.  
  332. Partition 0 type is Primary (0x7)
  333. Partition is NOT ACTIVE.
  334. Partition starts at LBA: 2048 Numsec = 499191808
  335. Partition is not bootable
  336. Partition file system is NTFS
  337.  
  338. Partition 1 type is Other (0x27)
  339. Partition is NOT ACTIVE.
  340. Partition starts at LBA: 499193856 Numsec = 921600
  341. Partition is not bootable
  342. Partition file system is NTFS
  343.  
  344. Partition 2 type is Empty (0x0)
  345. Partition is NOT ACTIVE.
  346. Partition starts at LBA: 0 Numsec = 0
  347. Partition is not bootable
  348.  
  349. Partition 3 type is Empty (0x0)
  350. Partition is NOT ACTIVE.
  351. Partition starts at LBA: 0 Numsec = 0
  352. Partition is not bootable
  353.  
  354. Disk Size: 256060514304 bytes
  355. Sector size: 512 bytes
  356.  
  357. Done!
  358. File "C:\Users\Being\AppData\Local\Comms\UnistoreDB\store.vol" is sparse (flags = 32768)
  359. File "C:\Windows\System32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat" is sparse (flags = 32768)
  360. Scan finished
  361. =======================================
  362.  
  363.  
  364. Removal queue found; removal started
  365. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
  366. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
  367. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
  368. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...
  369. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-0-2048-i.mbam...
  370. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-1-499193856-i.mbam...
  371. Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
  372. Removal finished
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!