Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Yet another "Congratulatios, you won" infestation, help!


  • Please log in to reply
16 replies to this topic

#1 schatze

schatze

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 02 August 2010 - 04:06 PM

My PC is another victim of the "Congratulations, you won" sound byte. I also get other audio ads. I've run malware checkers and have cleaned out things but the problem remains. I could use some help, please.



schatze

Edited by Orange Blossom, 02 August 2010 - 11:05 PM.
Move to AII as no logs posted and prep. guide not followed. ~ OB


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 03 August 2010 - 07:10 AM

It's possible that you have an infected Master Boot Record (MBR) so lets check it to be sure.

Please download MBRCheck.exe by a_d_13 from one of the links provided below and save it to your desktop.Link 1
Link 2
Link 3
  • Double-click on MBRCheck.exe to run it. Vista/Windows 7 users right-click and select Run As Administrator.
  • It will open a black screen with some data on it...please do not fix anything (if it gives you an option).
  • When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.
  • A log named MBRCheck_date_time.txt (i.e. MBRCheck_07.21.10_10.22.51.txt) will be created on the desktop.
  • Copy and paste the contents of that log in your next reply.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 03 August 2010 - 01:20 PM

Thank you for you assistance. It says I have a known -bad MBR code detected (Whistler /Black Internet). Here is the log file:


MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell DXP061
Logical Drives Mask: 0x0000023c

Kernel Drivers (total 205):
0x81E53000 \SystemRoot\system32\ntkrnlpa.exe
0x81E1C000 \SystemRoot\system32\halmacpi.dll
0x81BF8000 \SystemRoot\system32\kdcom.dll
0x8843A000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x884B2000 \SystemRoot\system32\PSHED.dll
0x884C3000 \SystemRoot\system32\BOOTVID.dll
0x884CB000 \SystemRoot\system32\CLFS.SYS
0x8850D000 \SystemRoot\system32\CI.dll
0x8862D000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8869E000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x886AC000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x886F4000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x886FD000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x88705000 \SystemRoot\system32\DRIVERS\pci.sys
0x8872F000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x8873A000 \SystemRoot\System32\drivers\partmgr.sys
0x8874B000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x8875B000 \SystemRoot\System32\drivers\volmgrx.sys
0x887A6000 \SystemRoot\System32\drivers\mountmgr.sys
0x88835000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x88910000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x889C8000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x88800000 \SystemRoot\system32\drivers\fltmgr.sys
0x889D1000 \SystemRoot\system32\drivers\fileinfo.sys
0x889E2000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88A30000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88B5F000 \SystemRoot\System32\Drivers\msrpc.sys
0x88B8A000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88B9D000 \SystemRoot\System32\Drivers\cng.sys
0x88A00000 \SystemRoot\System32\drivers\pcw.sys
0x88A0E000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x88C23000 \SystemRoot\system32\drivers\ndis.sys
0x88CDA000 \SystemRoot\system32\drivers\NETIO.SYS
0x88D18000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x88E21000 \SystemRoot\System32\drivers\tcpip.sys
0x88F6A000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88D3D000 \SystemRoot\system32\DRIVERS\timntr.sys
0x88F9B000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x8900A000 \SystemRoot\system32\DRIVERS\tdrpm258.sys
0x890E7000 \SystemRoot\System32\Drivers\spldr.sys
0x890EF000 \SystemRoot\system32\DRIVERS\snapman.sys
0x89116000 \SystemRoot\System32\drivers\rdyboost.sys
0x89143000 \SystemRoot\System32\Drivers\mup.sys
0x89153000 \SystemRoot\System32\drivers\hwpolicy.sys
0x8915B000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x8918D000 \SystemRoot\system32\DRIVERS\disk.sys
0x8919E000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x8CEF5000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8CF14000 \SystemRoot\System32\Drivers\Null.SYS
0x8CF1B000 \SystemRoot\System32\Drivers\Beep.SYS
0x8CF22000 \SystemRoot\System32\drivers\vga.sys
0x8CF2E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8CF4F000 \SystemRoot\System32\drivers\watchdog.sys
0x8CF5C000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8CF64000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8CF6C000 \SystemRoot\system32\drivers\rdprefmp.sys
0x8CF74000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8CF7F000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8CF8D000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8CFA4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8CFAF000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8D401000 \SystemRoot\system32\drivers\afd.sys
0x8D45B000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8D460000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8D492000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x8D499000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8D4B8000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8D4C6000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8D4D9000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D4E9000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8D52A000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8D534000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8D53E000 \SystemRoot\System32\drivers\discache.sys
0x8D54A000 \SystemRoot\System32\Drivers\dfsc.sys
0x8D562000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x8D570000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8D597000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8D5B8000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D823000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8D639000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D6F0000 \SystemRoot\System32\drivers\dxgmms1.sys
0x8D729000 \SystemRoot\system32\DRIVERS\e1e6032.sys
0x8D760000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D76B000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8D7B6000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8D7C5000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8E189000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x8D600000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E626000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8E728000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8E7DD000 \SystemRoot\system32\drivers\modem.sys
0x8E7EA000 \SystemRoot\system32\drivers\Afc.sys
0x8E7F2000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8E600000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x8E60D000 \SystemRoot\system32\DRIVERS\wacomvhid.sys
0x8E610000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8E7F8000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E623000 \SystemRoot\system32\DRIVERS\WacomVKHid.sys
0x8D634000 \SystemRoot\system32\DRIVERS\WacomVTHid.sys
0x8D7E4000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x8E1D5000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8E1ED000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8D800000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8D5CA000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8D5E2000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8CFB9000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8CFD0000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8CFDD000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D7F6000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8CFEA000 \SystemRoot\system32\DRIVERS\umbus.sys
0x887BC000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x891D0000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8D7F8000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys
0x891DB000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x891E7000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x9023A000 \SystemRoot\system32\drivers\stwrt.sys
0x9028D000 \SystemRoot\system32\drivers\portcls.sys
0x902BC000 \SystemRoot\system32\drivers\drmk.sys
0x90480000 \SystemRoot\System32\win32k.sys
0x902D5000 \SystemRoot\System32\drivers\Dxapi.sys
0x902DF000 \SystemRoot\System32\Drivers\crashdmp.sys
0x902EC000 \SystemRoot\System32\Drivers\dump_iaStorV.sys
0x903C7000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x903D8000 \SystemRoot\System32\Drivers\LUsbFilt.Sys
0x903DE000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x903E9000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x903EB000 \SystemRoot\system32\DRIVERS\LHidFilt.Sys
0x903F3000 \SystemRoot\system32\DRIVERS\LMouFilt.Sys
0x81013000 \SystemRoot\system32\DRIVERS\snpstd3.sys
0x819DB000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x819E9000 \SystemRoot\system32\DRIVERS\monitor.sys
0x906E0000 \SystemRoot\System32\TSDDD.dll
0x90710000 \SystemRoot\System32\cdd.dll
0x90730000 \SystemRoot\System32\ATMFD.DLL
0x90200000 \SystemRoot\system32\drivers\luafv.sys
0x9021B000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x819F4000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x81000000 \SystemRoot\system32\DRIVERS\tifsfilt.sys
0x8CE00000 \SystemRoot\system32\drivers\WudfPf.sys
0x8CE1A000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x8100A000 \SystemRoot\system32\DRIVERS\nmsgopro.sys
0x8CE2A000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x8CE3D000 \SystemRoot\system32\drivers\HTTP.sys
0x8CEC2000 \SystemRoot\system32\DRIVERS\bowser.sys
0x8CEDB000 \SystemRoot\System32\drivers\mpsdrv.sys
0x88FDA000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x885B8000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x88E00000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x88DCA000 \SystemRoot\system32\DRIVERS\afcdp.sys
0x81011000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0x819F7000 \SystemRoot\system32\DRIVERS\nmsunidr.sys
0xA7800000 \SystemRoot\system32\drivers\peauth.sys
0xA7897000 \??\C:\Windows\system32\drivers\pmemnt.sys
0xA7899000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA78A3000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA78C4000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA78D1000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA7920000 \SystemRoot\System32\DRIVERS\srv.sys
0xA7971000 \SystemRoot\system32\drivers\tdtcp.sys
0xA797B000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA7988000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xA79B9000 \SystemRoot\System32\Drivers\fastfat.SYS
0xB9475000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xB947E000 \SystemRoot\system32\drivers\MSPQM.sys
0xB9516000 \SystemRoot\system32\DRIVERS\usbprint.sys
0xB9521000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x77890000 \Windows\System32\ntdll.dll
0x48200000 \Windows\System32\smss.exe
0x77AD0000 \Windows\System32\apisetschema.dll
0x00A80000 \Windows\System32\autochk.exe
0x77A70000 \Windows\System32\Wldap32.dll
0x77A40000 \Windows\System32\imagehlp.dll
0x77800000 \Windows\System32\clbcatq.dll
0x76BB0000 \Windows\System32\shell32.dll
0x76AE0000 \Windows\System32\msctf.dll
0x77A00000 \Windows\System32\ws2_32.dll
0x76A40000 \Windows\System32\advapi32.dll
0x779F0000 \Windows\System32\nsi.dll
0x76990000 \Windows\System32\msvcrt.dll
0x76900000 \Windows\System32\oleaut32.dll
0x767A0000 \Windows\System32\ole32.dll
0x766F0000 \Windows\System32\rpcrt4.dll
0x76690000 \Windows\System32\shlwapi.dll
0x779D0000 \Windows\System32\sechost.dll
0x76490000 \Windows\System32\iertutil.dll
0x76390000 \Windows\System32\wininet.dll
0x76250000 \Windows\System32\urlmon.dll
0x76240000 \Windows\System32\lpk.dll
0x761F0000 \Windows\System32\gdi32.dll
0x76150000 \Windows\System32\usp10.dll
0x75FB0000 \Windows\System32\setupapi.dll
0x75F50000 \Windows\System32\difxapi.dll
0x75E70000 \Windows\System32\kernel32.dll
0x75E60000 \Windows\System32\psapi.dll
0x75D90000 \Windows\System32\user32.dll
0x75D70000 \Windows\System32\imm32.dll
0x75D60000 \Windows\System32\normaliz.dll
0x75CE0000 \Windows\System32\comdlg32.dll
0x75C90000 \Windows\System32\KernelBase.dll
0x75C70000 \Windows\System32\devobj.dll
0x75C40000 \Windows\System32\wintrust.dll
0x75BB0000 \Windows\System32\comctl32.dll
0x75B80000 \Windows\System32\cfgmgr32.dll
0x75A60000 \Windows\System32\crypt32.dll
0x75A50000 \Windows\System32\msasn1.dll

Processes (total 152):
0 System Idle Process
4 System
464 C:\Windows\System32\smss.exe
552 csrss.exe
608 C:\Windows\System32\wininit.exe
616 csrss.exe
664 C:\Windows\System32\services.exe
676 C:\Windows\System32\lsass.exe
688 C:\Windows\System32\lsm.exe
740 C:\Windows\System32\winlogon.exe
852 C:\Windows\System32\svchost.exe
952 C:\Windows\System32\svchost.exe
1040 C:\Windows\System32\svchost.exe
1120 C:\Windows\System32\svchost.exe
1144 C:\Windows\System32\svchost.exe
1260 C:\Windows\System32\svchost.exe
1320 C:\Program Files\WTouch\WTouchService.exe
1376 C:\Windows\System32\wisptis.exe
1512 C:\Windows\System32\svchost.exe
1564 C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
1592 C:\Windows\System32\svchost.exe
1608 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1724 C:\Windows\System32\wisptis.exe
1744 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1756 C:\Windows\System32\dwm.exe
1780 C:\Windows\explorer.exe
1844 C:\Program Files\WTouch\WTouchUser.exe
1244 C:\Windows\System32\svchost.exe
1520 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
1456 C:\Windows\vsnpstd3.exe
1472 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
1964 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
1032 C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
1688 C:\Windows\StartupMonitor.exe
1444 C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
2132 C:\Program Files\Epson Software\Event Manager\EEventManager.exe
2152 C:\Program Files\Unlocker\UnlockerAssistant.exe
2176 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
2196 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2208

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 03 August 2010 - 01:54 PM

Please post the complete log which starts with the header MBRCheck, version 1.2.3 and ends with Done!
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 03 August 2010 - 02:37 PM

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell DXP061
Logical Drives Mask: 0x0000023c

Kernel Drivers (total 205):
0x81E53000 \SystemRoot\system32\ntkrnlpa.exe
0x81E1C000 \SystemRoot\system32\halmacpi.dll
0x81BF8000 \SystemRoot\system32\kdcom.dll
0x8843A000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x884B2000 \SystemRoot\system32\PSHED.dll
0x884C3000 \SystemRoot\system32\BOOTVID.dll
0x884CB000 \SystemRoot\system32\CLFS.SYS
0x8850D000 \SystemRoot\system32\CI.dll
0x8862D000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8869E000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x886AC000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x886F4000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x886FD000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x88705000 \SystemRoot\system32\DRIVERS\pci.sys
0x8872F000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x8873A000 \SystemRoot\System32\drivers\partmgr.sys
0x8874B000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x8875B000 \SystemRoot\System32\drivers\volmgrx.sys
0x887A6000 \SystemRoot\System32\drivers\mountmgr.sys
0x88835000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x88910000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x889C8000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x88800000 \SystemRoot\system32\drivers\fltmgr.sys
0x889D1000 \SystemRoot\system32\drivers\fileinfo.sys
0x889E2000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88A30000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88B5F000 \SystemRoot\System32\Drivers\msrpc.sys
0x88B8A000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88B9D000 \SystemRoot\System32\Drivers\cng.sys
0x88A00000 \SystemRoot\System32\drivers\pcw.sys
0x88A0E000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x88C23000 \SystemRoot\system32\drivers\ndis.sys
0x88CDA000 \SystemRoot\system32\drivers\NETIO.SYS
0x88D18000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x88E21000 \SystemRoot\System32\drivers\tcpip.sys
0x88F6A000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88D3D000 \SystemRoot\system32\DRIVERS\timntr.sys
0x88F9B000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x8900A000 \SystemRoot\system32\DRIVERS\tdrpm258.sys
0x890E7000 \SystemRoot\System32\Drivers\spldr.sys
0x890EF000 \SystemRoot\system32\DRIVERS\snapman.sys
0x89116000 \SystemRoot\System32\drivers\rdyboost.sys
0x89143000 \SystemRoot\System32\Drivers\mup.sys
0x89153000 \SystemRoot\System32\drivers\hwpolicy.sys
0x8915B000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x8918D000 \SystemRoot\system32\DRIVERS\disk.sys
0x8919E000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x8CEF5000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8CF14000 \SystemRoot\System32\Drivers\Null.SYS
0x8CF1B000 \SystemRoot\System32\Drivers\Beep.SYS
0x8CF22000 \SystemRoot\System32\drivers\vga.sys
0x8CF2E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8CF4F000 \SystemRoot\System32\drivers\watchdog.sys
0x8CF5C000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8CF64000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8CF6C000 \SystemRoot\system32\drivers\rdprefmp.sys
0x8CF74000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8CF7F000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8CF8D000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8CFA4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8CFAF000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8D401000 \SystemRoot\system32\drivers\afd.sys
0x8D45B000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8D460000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8D492000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x8D499000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8D4B8000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8D4C6000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8D4D9000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D4E9000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8D52A000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8D534000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8D53E000 \SystemRoot\System32\drivers\discache.sys
0x8D54A000 \SystemRoot\System32\Drivers\dfsc.sys
0x8D562000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x8D570000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8D597000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8D5B8000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D823000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8D639000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8D6F0000 \SystemRoot\System32\drivers\dxgmms1.sys
0x8D729000 \SystemRoot\system32\DRIVERS\e1e6032.sys
0x8D760000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D76B000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8D7B6000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8D7C5000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8E189000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x8D600000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E626000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8E728000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8E7DD000 \SystemRoot\system32\drivers\modem.sys
0x8E7EA000 \SystemRoot\system32\drivers\Afc.sys
0x8E7F2000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8E600000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x8E60D000 \SystemRoot\system32\DRIVERS\wacomvhid.sys
0x8E610000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8E7F8000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E623000 \SystemRoot\system32\DRIVERS\WacomVKHid.sys
0x8D634000 \SystemRoot\system32\DRIVERS\WacomVTHid.sys
0x8D7E4000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x8E1D5000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8E1ED000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8D800000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8D5CA000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8D5E2000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8CFB9000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8CFD0000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8CFDD000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D7F6000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8CFEA000 \SystemRoot\system32\DRIVERS\umbus.sys
0x887BC000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x891D0000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8D7F8000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys
0x891DB000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x891E7000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x9023A000 \SystemRoot\system32\drivers\stwrt.sys
0x9028D000 \SystemRoot\system32\drivers\portcls.sys
0x902BC000 \SystemRoot\system32\drivers\drmk.sys
0x90480000 \SystemRoot\System32\win32k.sys
0x902D5000 \SystemRoot\System32\drivers\Dxapi.sys
0x902DF000 \SystemRoot\System32\Drivers\crashdmp.sys
0x902EC000 \SystemRoot\System32\Drivers\dump_iaStorV.sys
0x903C7000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x903D8000 \SystemRoot\System32\Drivers\LUsbFilt.Sys
0x903DE000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x903E9000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x903EB000 \SystemRoot\system32\DRIVERS\LHidFilt.Sys
0x903F3000 \SystemRoot\system32\DRIVERS\LMouFilt.Sys
0x81013000 \SystemRoot\system32\DRIVERS\snpstd3.sys
0x819DB000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x819E9000 \SystemRoot\system32\DRIVERS\monitor.sys
0x906E0000 \SystemRoot\System32\TSDDD.dll
0x90710000 \SystemRoot\System32\cdd.dll
0x90730000 \SystemRoot\System32\ATMFD.DLL
0x90200000 \SystemRoot\system32\drivers\luafv.sys
0x9021B000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x819F4000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x81000000 \SystemRoot\system32\DRIVERS\tifsfilt.sys
0x8CE00000 \SystemRoot\system32\drivers\WudfPf.sys
0x8CE1A000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x8100A000 \SystemRoot\system32\DRIVERS\nmsgopro.sys
0x8CE2A000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x8CE3D000 \SystemRoot\system32\drivers\HTTP.sys
0x8CEC2000 \SystemRoot\system32\DRIVERS\bowser.sys
0x8CEDB000 \SystemRoot\System32\drivers\mpsdrv.sys
0x88FDA000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x885B8000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x88E00000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x88DCA000 \SystemRoot\system32\DRIVERS\afcdp.sys
0x81011000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0x819F7000 \SystemRoot\system32\DRIVERS\nmsunidr.sys
0xA7800000 \SystemRoot\system32\drivers\peauth.sys
0xA7897000 \??\C:\Windows\system32\drivers\pmemnt.sys
0xA7899000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA78A3000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA78C4000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA78D1000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA7920000 \SystemRoot\System32\DRIVERS\srv.sys
0xA7971000 \SystemRoot\system32\drivers\tdtcp.sys
0xA797B000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA7988000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xA79B9000 \SystemRoot\System32\Drivers\fastfat.SYS
0xB9475000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xB947E000 \SystemRoot\system32\drivers\MSPQM.sys
0xB9516000 \SystemRoot\system32\DRIVERS\usbprint.sys
0xB9521000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x77890000 \Windows\System32\ntdll.dll
0x48200000 \Windows\System32\smss.exe
0x77AD0000 \Windows\System32\apisetschema.dll
0x00A80000 \Windows\System32\autochk.exe
0x77A70000 \Windows\System32\Wldap32.dll
0x77A40000 \Windows\System32\imagehlp.dll
0x77800000 \Windows\System32\clbcatq.dll
0x76BB0000 \Windows\System32\shell32.dll
0x76AE0000 \Windows\System32\msctf.dll
0x77A00000 \Windows\System32\ws2_32.dll
0x76A40000 \Windows\System32\advapi32.dll
0x779F0000 \Windows\System32\nsi.dll
0x76990000 \Windows\System32\msvcrt.dll
0x76900000 \Windows\System32\oleaut32.dll
0x767A0000 \Windows\System32\ole32.dll
0x766F0000 \Windows\System32\rpcrt4.dll
0x76690000 \Windows\System32\shlwapi.dll
0x779D0000 \Windows\System32\sechost.dll
0x76490000 \Windows\System32\iertutil.dll
0x76390000 \Windows\System32\wininet.dll
0x76250000 \Windows\System32\urlmon.dll
0x76240000 \Windows\System32\lpk.dll
0x761F0000 \Windows\System32\gdi32.dll
0x76150000 \Windows\System32\usp10.dll
0x75FB0000 \Windows\System32\setupapi.dll
0x75F50000 \Windows\System32\difxapi.dll
0x75E70000 \Windows\System32\kernel32.dll
0x75E60000 \Windows\System32\psapi.dll
0x75D90000 \Windows\System32\user32.dll
0x75D70000 \Windows\System32\imm32.dll
0x75D60000 \Windows\System32\normaliz.dll
0x75CE0000 \Windows\System32\comdlg32.dll
0x75C90000 \Windows\System32\KernelBase.dll
0x75C70000 \Windows\System32\devobj.dll
0x75C40000 \Windows\System32\wintrust.dll
0x75BB0000 \Windows\System32\comctl32.dll
0x75B80000 \Windows\System32\cfgmgr32.dll
0x75A60000 \Windows\System32\crypt32.dll
0x75A50000 \Windows\System32\msasn1.dll

Processes (total 153):
0 System Idle Process
4 System
464 C:\Windows\System32\smss.exe
552 csrss.exe
608 C:\Windows\System32\wininit.exe
616 csrss.exe
664 C:\Windows\System32\services.exe
676 C:\Windows\System32\lsass.exe
688 C:\Windows\System32\lsm.exe
740 C:\Windows\System32\winlogon.exe
852 C:\Windows\System32\svchost.exe
952 C:\Windows\System32\svchost.exe
1040 C:\Windows\System32\svchost.exe
1120 C:\Windows\System32\svchost.exe
1144 C:\Windows\System32\svchost.exe
1260 C:\Windows\System32\svchost.exe
1320 C:\Program Files\WTouch\WTouchService.exe
1376 C:\Windows\System32\wisptis.exe
1512 C:\Windows\System32\svchost.exe
1564 C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
1592 C:\Windows\System32\svchost.exe
1608 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1724 C:\Windows\System32\wisptis.exe
1744 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1756 C:\Windows\System32\dwm.exe
1780 C:\Windows\explorer.exe
1844 C:\Program Files\WTouch\WTouchUser.exe
1244 C:\Windows\System32\svchost.exe
1520 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
1456 C:\Windows\vsnpstd3.exe
1472 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
1964 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
1032 C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
1688 C:\Windows\StartupMonitor.exe
1444 C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
2132 C:\Program Files\Epson Software\Event Manager\EEventManager.exe
2152 C:\Program Files\Unlocker\UnlockerAssistant.exe
2176 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
2196 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2208 C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
2236 C:\Program Files\AnswersThatWork\A Really Small App\A_Really_Small_App.exe
2252 C:\Program Files\Desktop Icon Toy\DesktopIconToy.exe
2276 C:\Program Files\MSGTAG\MSGTAG.exe
2284 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
2388 C:\Program Files\AWS\WeatherBug\Weather.exe
2404 C:\Program Files\DellSupport\DSAgnt.exe
2424 C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
2436 C:\Program Files\Lower Case Switcher\LowerCaseSW.exe
2460 C:\Program Files\Logitech\SetPoint\SetPoint.exe
2476 C:\Program Files\ClickTray Calendar\ClickTray.exe
2504 C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
2616 C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
3376 C:\Windows\System32\spoolsv.exe
3408 C:\Windows\System32\svchost.exe
3468 C:\Windows\System32\taskhost.exe
3580 C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
3600 C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
3696 C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
3716 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
3764 C:\Program Files\Bonjour\mDNSResponder.exe
3824 C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
3860 C:\Windows\System32\CTSVCCDA.EXE
3896 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
3968 C:\Windows\System32\svchost.exe
4052 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
2524 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
3016 C:\Program Files\Dell Support Center\bin\sprtsvc.exe
2124 C:\Windows\System32\stacsv.exe
2788 C:\Windows\System32\svchost.exe
3460 C:\Windows\System32\Pen_Tablet.exe
3676 C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
3812 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
4408 C:\Windows\System32\WTablet\Pen_TabletUser.exe
4424 C:\Windows\System32\Pen_Tablet.exe
4568 C:\Windows\System32\SearchIndexer.exe
4924 C:\Program Files\Windows Media Player\wmpnetwk.exe
5732 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5768 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4436 C:\Windows\System32\svchost.exe
4972 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5596 RBroker.exe
2216 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5108 C:\Windows\System32\svchost.exe
3084 C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
3388 C:\Windows\System32\wuauclt.exe
5064 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5968 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5880 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2268 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4952 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2968 C:\Program Files\TweetDeck\TweetDeck.exe
4396 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
2800 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5316 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeNotify.exe
1372 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
4892 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
964 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1668 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5900 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5228 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4804 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5648 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5464 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1052 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4284 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6100 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2996 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7004 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7724 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3124 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6256 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2924 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6616 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
8020 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7808 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5876 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5556 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
8140 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3248 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7188 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1288 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7296 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7860 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7204 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6624 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7996 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3056 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
8160 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2876 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6648 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7572 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6832 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7040 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6536 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6444 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6772 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7916 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6048 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3256 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7616 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6968 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6336 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5292 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7384 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7904 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7812 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7472 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7836 C:\Program Files\Mozilla Firefox\firefox.exe
7980 C:\Windows\System32\SearchProtocolHost.exe
6976 C:\Windows\System32\SearchFilterHost.exe
6288 C:\Users\Marian\Desktop\MBRCheck.exe
6816 C:\Windows\System32\conhost.exe
7468 C:\Windows\System32\dllhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`82000000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`02000000 (NTFS)

PhysicalDrive0 Model Number: WDCWD3200AAKS-75VYA0, Rev: 12.01B02

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Known-bad MBR code detected (Whistler / Black Internet)!
SHA1: 89D73202BD35D91022941C82F1009B9A877E814C


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:

Done!

#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 03 August 2010 - 02:48 PM

Your log indicates you have an infected Master Boot Record (MBR). To learn more about this infection please refer to:Rerun MBRCheck.exe again by double-clicking on it. Vista/Windows 7 users right-click and select Run As Administrator.
  • Wait until you see the following line: Enter 'Y' and hit ENTER for more options, or 'N' to exit:
  • Enter 'Y' and then press Enter.
  • When asked: 'Enter your choice:', select option [2] (Restore the MBR of a physical disk with a standard boot code) and press the Enter key.
  • Now the program will ask: 'Enter the physical disk number to fix (0-99, -1 to cancel)'
  • Enter [0] (for PhysicalDrive0) and press the Enter key.
  • The program will show Available MBR codes followed by a list of operating systems as shown below.

    Available MBR codes:
    [ 0] Default (Windows XP)
    [ 1] Windows XP
    [ 2] Windows Server 2003
    [ 3] Windows Vista
    [ 4] Windows 2008
    [ 5] Windows 7
    [-1] Cancel
    Please select the MBR code to write to this drive:

  • Please select your version of Windows from the list and enter the corresponding number (For example, type 0 or 1 for XP, type 3 for Vista, type 5 for Windows 7, etc) and then press Enter. Be careful...if the wrong OS is used, it will render the computer unbootable.
  • When prompted for confirmation: 'Do you want to fix the MBR code?'. Type the full word Yes (not Y or the fix will not work) and press Enter.
  • Left-click on the title bar (where program name and path is written).
  • From the menu chose Edit -> Select All.
  • Press the Enter key on your keyboard to copy selected text.
  • Open Notepad, paste that text into it and save to your desktop as MBRCheck.txt.
  • When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.
  • Reboot your computer to complete the fix and copy/paste MBRCheck.txt in your next reply.
  • If your computer does not restart on its own, please restart it manually.
Important Note: While fixing the Master Boot Record (MBR) is generally safe, there is a small risk of damaging the operating system so that it will not boot up or the partitions may become corrupted. Further, Vista does not always use the same MBR code as it depends on the type of install that was used. I recommend you have your Windows CD available which will allow recovering the boot code via the Windows Recovery Console (XP) or Recovery Environment Startup Repair (Vista, Windows 7) in case of any problems, or install the XP Recovery Console before proceeding with the above fix. Then if any problems occur, the links below explain how to use and repair the MBR:
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 03 August 2010 - 03:49 PM

When I entered choice [2] it merely said "Done! press ENTER to exit"

#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 03 August 2010 - 05:22 PM

I have asked the developer about this.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#9 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 04 August 2010 - 11:21 AM

I tried again today and was successful. Here is the MBRCheck.txt :

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell DXP061
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 176):
0x81E04000 \SystemRoot\system32\ntkrnlpa.exe
0x82214000 \SystemRoot\system32\halmacpi.dll
0x81C0C000 \SystemRoot\system32\kdcom.dll
0x8840B000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x88483000 \SystemRoot\system32\PSHED.dll
0x88494000 \SystemRoot\system32\BOOTVID.dll
0x8849C000 \SystemRoot\system32\CLFS.SYS
0x884DE000 \SystemRoot\system32\CI.dll
0x88589000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8861B000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x88629000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x88671000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x8867A000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x88682000 \SystemRoot\system32\DRIVERS\pci.sys
0x886AC000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x886B7000 \SystemRoot\System32\drivers\partmgr.sys
0x886C8000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x886D8000 \SystemRoot\System32\drivers\volmgrx.sys
0x88723000 \SystemRoot\System32\drivers\mountmgr.sys
0x88812000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x888ED000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x889A5000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x889AE000 \SystemRoot\system32\drivers\fltmgr.sys
0x889E2000 \SystemRoot\system32\drivers\fileinfo.sys
0x889F3000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88A17000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88B46000 \SystemRoot\System32\Drivers\msrpc.sys
0x88B71000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88B84000 \SystemRoot\System32\Drivers\cng.sys
0x88BE1000 \SystemRoot\System32\drivers\pcw.sys
0x88BEF000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x88739000 \SystemRoot\system32\drivers\ndis.sys
0x88C35000 \SystemRoot\system32\drivers\NETIO.SYS
0x88C73000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x88C98000 \SystemRoot\System32\drivers\tcpip.sys
0x88C00000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88E2A000 \SystemRoot\system32\DRIVERS\timntr.sys
0x88EB7000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x88EF6000 \SystemRoot\system32\DRIVERS\tdrpm258.sys
0x88FD3000 \SystemRoot\System32\Drivers\spldr.sys
0x88E00000 \SystemRoot\system32\DRIVERS\snapman.sys
0x89022000 \SystemRoot\System32\drivers\rdyboost.sys
0x8904F000 \SystemRoot\System32\Drivers\mup.sys
0x8905F000 \SystemRoot\System32\drivers\hwpolicy.sys
0x89067000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x89099000 \SystemRoot\system32\DRIVERS\disk.sys
0x890AA000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x891C8000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x891E7000 \SystemRoot\System32\Drivers\Null.SYS
0x891EE000 \SystemRoot\System32\Drivers\Beep.SYS
0x89000000 \SystemRoot\System32\drivers\vga.sys
0x88FDB000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8900C000 \SystemRoot\System32\drivers\watchdog.sys
0x89019000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x891F5000 \SystemRoot\system32\drivers\rdpencdd.sys
0x88DE1000 \SystemRoot\system32\drivers\rdprefmp.sys
0x88DE9000 \SystemRoot\System32\Drivers\Msfs.SYS
0x88A00000 \SystemRoot\System32\Drivers\Npfs.SYS
0x88600000 \SystemRoot\system32\DRIVERS\tdx.sys
0x88DF4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x88800000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8D23E000 \SystemRoot\system32\drivers\afd.sys
0x8D298000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8D29D000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8D2CF000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x8D2D6000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8D2F5000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8D303000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8D316000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D326000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8D367000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8D371000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8D37B000 \SystemRoot\System32\drivers\discache.sys
0x8D387000 \SystemRoot\System32\Drivers\dfsc.sys
0x8D39F000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x8D3AD000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8D3D4000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8D200000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D632000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8C035000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8C0EC000 \SystemRoot\System32\drivers\dxgmms1.sys
0x8C125000 \SystemRoot\system32\DRIVERS\e1e6032.sys
0x8C15C000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8C167000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8C1B2000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8C1C1000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8DF98000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x8C000000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E222000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8E324000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8E3D9000 \SystemRoot\system32\drivers\modem.sys
0x8E3E6000 \SystemRoot\system32\drivers\Afc.sys
0x8E3EE000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8E200000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x8E20D000 \SystemRoot\system32\DRIVERS\wacomvhid.sys
0x8C1E0000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8E210000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E217000 \SystemRoot\system32\DRIVERS\WacomVKHid.sys
0x8E219000 \SystemRoot\system32\DRIVERS\WacomVTHid.sys
0x8DFE4000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x8D600000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8E3F4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8D212000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8D618000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8E627000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8E63E000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8E655000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8E662000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8E66F000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8E671000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8E67F000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8E6C3000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8E6CE000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys
0x8E6D6000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8E6E2000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8E6F3000 \SystemRoot\system32\drivers\stwrt.sys
0x8E746000 \SystemRoot\system32\drivers\portcls.sys
0x8E775000 \SystemRoot\system32\drivers\drmk.sys
0x8E78E000 \SystemRoot\System32\Drivers\crashdmp.sys
0x890CF000 \SystemRoot\System32\Drivers\dump_iaStorV.sys
0x8E79B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x8E7AC000 \SystemRoot\system32\DRIVERS\usbprint.sys
0x8E7B7000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8E7B9000 \SystemRoot\System32\Drivers\LUsbFilt.Sys
0x8E7BF000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x8E7CA000 \SystemRoot\system32\DRIVERS\LHidFilt.Sys
0x8E7D2000 \SystemRoot\system32\DRIVERS\LMouFilt.Sys
0x80E26000 \SystemRoot\system32\DRIVERS\snpstd3.sys
0x817EE000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x90180000 \SystemRoot\System32\win32k.sys
0x80E00000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E7DA000 \SystemRoot\system32\DRIVERS\monitor.sys
0x903E0000 \SystemRoot\System32\TSDDD.dll
0x90020000 \SystemRoot\System32\cdd.dll
0x90040000 \SystemRoot\System32\ATMFD.DLL
0x8E7E5000 \SystemRoot\system32\drivers\luafv.sys
0x8E600000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x80E21000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x8E617000 \SystemRoot\system32\DRIVERS\tifsfilt.sys
0x891AA000 \SystemRoot\system32\drivers\WudfPf.sys
0x887F0000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x8E21B000 \SystemRoot\system32\DRIVERS\nmsgopro.sys
0x98631000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x98644000 \SystemRoot\System32\Drivers\fastfat.SYS
0x9866E000 \SystemRoot\system32\drivers\HTTP.sys
0x986F3000 \SystemRoot\system32\DRIVERS\bowser.sys
0x9870C000 \SystemRoot\System32\drivers\mpsdrv.sys
0x9871E000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x98741000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9877C000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x987AF000 \SystemRoot\system32\DRIVERS\afcdp.sys
0x987D5000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0x987D7000 \SystemRoot\system32\DRIVERS\nmsunidr.sys
0xA7A1B000 \SystemRoot\system32\drivers\peauth.sys
0xA7AB2000 \??\C:\Windows\system32\drivers\pmemnt.sys
0xA7AB4000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA7ABE000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA7ADF000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA7AEC000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA7B3B000 \SystemRoot\System32\DRIVERS\srv.sys
0xA7B8C000 \SystemRoot\system32\drivers\tdtcp.sys
0xA7B96000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA7BA3000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xBB48B000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xBB494000 \SystemRoot\system32\drivers\MSPQM.sys
0x77950000 \Windows\System32\ntdll.dll
0x47750000 \Windows\System32\smss.exe
0x77B90000 \Windows\System32\apisetschema.dll
0x00AF0000 \Windows\System32\autochk.exe
0x77AE0000 \Windows\System32\advapi32.dll
0x77A90000 \Windows\System32\Wldap32.dll
0x77880000 \Windows\System32\user32.dll
0x77820000 \Windows\System32\difxapi.dll
0x77780000 \Windows\System32\usp10.dll
0x776A0000 \Windows\System32\kernel32.dll
0x76A50000 \Windows\System32\shell32.dll

Processes (total 128):
0 System Idle Process
4 System
464 C:\Windows\System32\smss.exe
556 csrss.exe
652 C:\Windows\System32\wininit.exe
668 csrss.exe
712 C:\Windows\System32\services.exe
724 C:\Windows\System32\lsass.exe
736 C:\Windows\System32\lsm.exe
788 C:\Windows\System32\winlogon.exe
880 C:\Windows\System32\svchost.exe
980 C:\Windows\System32\svchost.exe
1052 C:\Windows\System32\svchost.exe
1124 C:\Windows\System32\svchost.exe
1180 C:\Windows\System32\svchost.exe
1288 C:\Windows\System32\svchost.exe
1360 C:\Program Files\WTouch\WTouchService.exe
1372 C:\Windows\System32\wisptis.exe
1548 C:\Windows\System32\svchost.exe
1604 C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
1644 C:\Windows\System32\svchost.exe
1652 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1748 C:\Windows\System32\wisptis.exe
1756 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1800 C:\Program Files\WTouch\WTouchUser.exe
1852 C:\Windows\System32\dwm.exe
1884 C:\Windows\explorer.exe
1476 C:\Windows\System32\svchost.exe
1704 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
1560 C:\Windows\vsnpstd3.exe
1692 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
1160 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
2116 C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
2124 C:\Windows\StartupMonitor.exe
2164 C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
2276 C:\Program Files\Epson Software\Event Manager\EEventManager.exe
2300 C:\Program Files\Unlocker\UnlockerAssistant.exe
2308 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
2336 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2344 C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
2360 C:\Program Files\AnswersThatWork\A Really Small App\A_Really_Small_App.exe
2368 C:\Program Files\Desktop Icon Toy\DesktopIconToy.exe
2384 C:\Program Files\MSGTAG\MSGTAG.exe
2396 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
2436 C:\Program Files\AWS\WeatherBug\Weather.exe
2448 C:\Program Files\DellSupport\DSAgnt.exe
2464 C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
2528 C:\Program Files\Lower Case Switcher\LowerCaseSW.exe
2560 C:\Program Files\Logitech\SetPoint\SetPoint.exe
2608 C:\Program Files\ClickTray Calendar\ClickTray.exe
2632 C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
2704 C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
3480 C:\Windows\System32\spoolsv.exe
3516 C:\Windows\System32\taskhost.exe
3552 C:\Windows\System32\svchost.exe
3676 C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
3700 C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
3796 C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
3816 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
3836 C:\Program Files\Bonjour\mDNSResponder.exe
3900 C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
3948 C:\Windows\System32\CTSVCCDA.EXE
3988 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
4076 C:\Windows\System32\svchost.exe
2324 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
2920 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
2616 C:\Program Files\Dell Support Center\bin\sprtsvc.exe
1140 C:\Windows\System32\stacsv.exe
2984 C:\Windows\System32\svchost.exe
3488 C:\Windows\System32\Pen_Tablet.exe
4048 C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
2456 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
4448 C:\Windows\System32\WTablet\Pen_TabletUser.exe
4464 C:\Windows\System32\Pen_Tablet.exe
4504 C:\Windows\System32\SearchIndexer.exe
4980 C:\Program Files\Windows Media Player\wmpnetwk.exe
5712 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5816 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5060 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4424 C:\Windows\System32\svchost.exe
5916 RBroker.exe
3764 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2760 C:\Windows\System32\svchost.exe
3960 C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
4560 C:\Windows\System32\wuauclt.exe
3008 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5048 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5372 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4276 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2712 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2656 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeNotify.exe
5100 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
6040 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
888 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
5420 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3708 C:\Program Files\TweetDeck\TweetDeck.exe
3340 C:\Program Files\Mozilla Firefox\firefox.exe
5176 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3016 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2404 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
844 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2428 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5644 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3168 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1116 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4484 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3396 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
768 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5452 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5732 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5188 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5628 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1436 C:\Program Files\Mozilla Firefox\plugin-container.exe
4100 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1796 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7400 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
8116 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6952 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4972 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7656 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6344 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7864 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6496 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6260 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6832 C:\Windows\System32\audiodg.exe
7080 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4924 C:\Users\Marian\Desktop\MBRCheck.exe
1408 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`82000000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`02000000 (NTFS)

PhysicalDrive0 Model Number: WDCWD3200AAKS-75VYA0, Rev: 12.01B02

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Known-bad MBR code detected (Whistler / Black Internet)!
SHA1: 89D73202BD35D91022941C82F1009B9A877E814C


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel): 0Available MBR codes:
[ 0] Default (Windows 7)
[ 1] Windows XP
[ 2] Windows Server 2003
[ 3] Windows Vista
[ 4] Windows 2008
[ 5] Windows 7
[-1] Cancel

Please select the MBR code to write to this drive: 5
Do you want to fix the MBR code? Type 'YES' and hit ENTER to continue: YES
Successfully wrote new MBR code!
Please reboot your computer to complete the fix.


Done!

#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 04 August 2010 - 12:03 PM

This log appears to be missing some user inputs that you would have entered. Could you please repost it?
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#11 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 04 August 2010 - 01:12 PM

Here it is again. MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell DXP061
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 176):
0x81E04000 \SystemRoot\system32\ntkrnlpa.exe
0x82214000 \SystemRoot\system32\halmacpi.dll
0x81C0C000 \SystemRoot\system32\kdcom.dll
0x8840B000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x88483000 \SystemRoot\system32\PSHED.dll
0x88494000 \SystemRoot\system32\BOOTVID.dll
0x8849C000 \SystemRoot\system32\CLFS.SYS
0x884DE000 \SystemRoot\system32\CI.dll
0x88589000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8861B000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x88629000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x88671000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x8867A000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x88682000 \SystemRoot\system32\DRIVERS\pci.sys
0x886AC000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x886B7000 \SystemRoot\System32\drivers\partmgr.sys
0x886C8000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x886D8000 \SystemRoot\System32\drivers\volmgrx.sys
0x88723000 \SystemRoot\System32\drivers\mountmgr.sys
0x88812000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x888ED000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x889A5000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x889AE000 \SystemRoot\system32\drivers\fltmgr.sys
0x889E2000 \SystemRoot\system32\drivers\fileinfo.sys
0x889F3000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88A17000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88B46000 \SystemRoot\System32\Drivers\msrpc.sys
0x88B71000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88B84000 \SystemRoot\System32\Drivers\cng.sys
0x88BE1000 \SystemRoot\System32\drivers\pcw.sys
0x88BEF000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x88739000 \SystemRoot\system32\drivers\ndis.sys
0x88C35000 \SystemRoot\system32\drivers\NETIO.SYS
0x88C73000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x88C98000 \SystemRoot\System32\drivers\tcpip.sys
0x88C00000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88E2A000 \SystemRoot\system32\DRIVERS\timntr.sys
0x88EB7000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x88EF6000 \SystemRoot\system32\DRIVERS\tdrpm258.sys
0x88FD3000 \SystemRoot\System32\Drivers\spldr.sys
0x88E00000 \SystemRoot\system32\DRIVERS\snapman.sys
0x89022000 \SystemRoot\System32\drivers\rdyboost.sys
0x8904F000 \SystemRoot\System32\Drivers\mup.sys
0x8905F000 \SystemRoot\System32\drivers\hwpolicy.sys
0x89067000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x89099000 \SystemRoot\system32\DRIVERS\disk.sys
0x890AA000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x891C8000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x891E7000 \SystemRoot\System32\Drivers\Null.SYS
0x891EE000 \SystemRoot\System32\Drivers\Beep.SYS
0x89000000 \SystemRoot\System32\drivers\vga.sys
0x88FDB000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8900C000 \SystemRoot\System32\drivers\watchdog.sys
0x89019000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x891F5000 \SystemRoot\system32\drivers\rdpencdd.sys
0x88DE1000 \SystemRoot\system32\drivers\rdprefmp.sys
0x88DE9000 \SystemRoot\System32\Drivers\Msfs.SYS
0x88A00000 \SystemRoot\System32\Drivers\Npfs.SYS
0x88600000 \SystemRoot\system32\DRIVERS\tdx.sys
0x88DF4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x88800000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8D23E000 \SystemRoot\system32\drivers\afd.sys
0x8D298000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8D29D000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8D2CF000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x8D2D6000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8D2F5000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8D303000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8D316000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8D326000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8D367000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8D371000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8D37B000 \SystemRoot\System32\drivers\discache.sys
0x8D387000 \SystemRoot\System32\Drivers\dfsc.sys
0x8D39F000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x8D3AD000 \SystemRoot\System32\Drivers\aswSP.SYS
0x8D3D4000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8D200000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D632000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8C035000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8C0EC000 \SystemRoot\System32\drivers\dxgmms1.sys
0x8C125000 \SystemRoot\system32\DRIVERS\e1e6032.sys
0x8C15C000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8C167000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8C1B2000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8C1C1000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8DF98000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x8C000000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E222000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8E324000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8E3D9000 \SystemRoot\system32\drivers\modem.sys
0x8E3E6000 \SystemRoot\system32\drivers\Afc.sys
0x8E3EE000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8E200000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x8E20D000 \SystemRoot\system32\DRIVERS\wacomvhid.sys
0x8C1E0000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8E210000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E217000 \SystemRoot\system32\DRIVERS\WacomVKHid.sys
0x8E219000 \SystemRoot\system32\DRIVERS\WacomVTHid.sys
0x8DFE4000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x8D600000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8E3F4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8D212000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8D618000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8E627000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8E63E000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8E655000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8E662000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8E66F000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8E671000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8E67F000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8E6C3000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8E6CE000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys
0x8E6D6000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8E6E2000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8E6F3000 \SystemRoot\system32\drivers\stwrt.sys
0x8E746000 \SystemRoot\system32\drivers\portcls.sys
0x8E775000 \SystemRoot\system32\drivers\drmk.sys
0x8E78E000 \SystemRoot\System32\Drivers\crashdmp.sys
0x890CF000 \SystemRoot\System32\Drivers\dump_iaStorV.sys
0x8E79B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x8E7AC000 \SystemRoot\system32\DRIVERS\usbprint.sys
0x8E7B7000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8E7B9000 \SystemRoot\System32\Drivers\LUsbFilt.Sys
0x8E7BF000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x8E7CA000 \SystemRoot\system32\DRIVERS\LHidFilt.Sys
0x8E7D2000 \SystemRoot\system32\DRIVERS\LMouFilt.Sys
0x80E26000 \SystemRoot\system32\DRIVERS\snpstd3.sys
0x817EE000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x90180000 \SystemRoot\System32\win32k.sys
0x80E00000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E7DA000 \SystemRoot\system32\DRIVERS\monitor.sys
0x903E0000 \SystemRoot\System32\TSDDD.dll
0x90020000 \SystemRoot\System32\cdd.dll
0x90040000 \SystemRoot\System32\ATMFD.DLL
0x8E7E5000 \SystemRoot\system32\drivers\luafv.sys
0x8E600000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x80E21000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x8E617000 \SystemRoot\system32\DRIVERS\tifsfilt.sys
0x891AA000 \SystemRoot\system32\drivers\WudfPf.sys
0x887F0000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x8E21B000 \SystemRoot\system32\DRIVERS\nmsgopro.sys
0x98631000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x98644000 \SystemRoot\System32\Drivers\fastfat.SYS
0x9866E000 \SystemRoot\system32\drivers\HTTP.sys
0x986F3000 \SystemRoot\system32\DRIVERS\bowser.sys
0x9870C000 \SystemRoot\System32\drivers\mpsdrv.sys
0x9871E000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x98741000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9877C000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x987AF000 \SystemRoot\system32\DRIVERS\afcdp.sys
0x987D5000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0x987D7000 \SystemRoot\system32\DRIVERS\nmsunidr.sys
0xA7A1B000 \SystemRoot\system32\drivers\peauth.sys
0xA7AB2000 \??\C:\Windows\system32\drivers\pmemnt.sys
0xA7AB4000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA7ABE000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA7ADF000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA7AEC000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA7B3B000 \SystemRoot\System32\DRIVERS\srv.sys
0xA7B8C000 \SystemRoot\system32\drivers\tdtcp.sys
0xA7B96000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA7BA3000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xBB48B000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xBB494000 \SystemRoot\system32\drivers\MSPQM.sys
0x77950000 \Windows\System32\ntdll.dll
0x47750000 \Windows\System32\smss.exe
0x77B90000 \Windows\System32\apisetschema.dll
0x00AF0000 \Windows\System32\autochk.exe
0x77AE0000 \Windows\System32\advapi32.dll
0x77A90000 \Windows\System32\Wldap32.dll
0x77880000 \Windows\System32\user32.dll
0x77820000 \Windows\System32\difxapi.dll
0x77780000 \Windows\System32\usp10.dll
0x776A0000 \Windows\System32\kernel32.dll
0x76A50000 \Windows\System32\shell32.dll

Processes (total 128):
0 System Idle Process
4 System
464 C:\Windows\System32\smss.exe
556 csrss.exe
652 C:\Windows\System32\wininit.exe
668 csrss.exe
712 C:\Windows\System32\services.exe
724 C:\Windows\System32\lsass.exe
736 C:\Windows\System32\lsm.exe
788 C:\Windows\System32\winlogon.exe
880 C:\Windows\System32\svchost.exe
980 C:\Windows\System32\svchost.exe
1052 C:\Windows\System32\svchost.exe
1124 C:\Windows\System32\svchost.exe
1180 C:\Windows\System32\svchost.exe
1288 C:\Windows\System32\svchost.exe
1360 C:\Program Files\WTouch\WTouchService.exe
1372 C:\Windows\System32\wisptis.exe
1548 C:\Windows\System32\svchost.exe
1604 C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
1644 C:\Windows\System32\svchost.exe
1652 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1748 C:\Windows\System32\wisptis.exe
1756 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1800 C:\Program Files\WTouch\WTouchUser.exe
1852 C:\Windows\System32\dwm.exe
1884 C:\Windows\explorer.exe
1476 C:\Windows\System32\svchost.exe
1704 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
1560 C:\Windows\vsnpstd3.exe
1692 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
1160 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
2116 C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
2124 C:\Windows\StartupMonitor.exe
2164 C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
2276 C:\Program Files\Epson Software\Event Manager\EEventManager.exe
2300 C:\Program Files\Unlocker\UnlockerAssistant.exe
2308 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
2336 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2344 C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
2360 C:\Program Files\AnswersThatWork\A Really Small App\A_Really_Small_App.exe
2368 C:\Program Files\Desktop Icon Toy\DesktopIconToy.exe
2384 C:\Program Files\MSGTAG\MSGTAG.exe
2396 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
2436 C:\Program Files\AWS\WeatherBug\Weather.exe
2448 C:\Program Files\DellSupport\DSAgnt.exe
2464 C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
2528 C:\Program Files\Lower Case Switcher\LowerCaseSW.exe
2560 C:\Program Files\Logitech\SetPoint\SetPoint.exe
2608 C:\Program Files\ClickTray Calendar\ClickTray.exe
2632 C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
2704 C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
3480 C:\Windows\System32\spoolsv.exe
3516 C:\Windows\System32\taskhost.exe
3552 C:\Windows\System32\svchost.exe
3676 C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
3700 C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
3796 C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
3816 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
3836 C:\Program Files\Bonjour\mDNSResponder.exe
3900 C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
3948 C:\Windows\System32\CTSVCCDA.EXE
3988 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
4076 C:\Windows\System32\svchost.exe
2324 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
2920 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
2616 C:\Program Files\Dell Support Center\bin\sprtsvc.exe
1140 C:\Windows\System32\stacsv.exe
2984 C:\Windows\System32\svchost.exe
3488 C:\Windows\System32\Pen_Tablet.exe
4048 C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
2456 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
4448 C:\Windows\System32\WTablet\Pen_TabletUser.exe
4464 C:\Windows\System32\Pen_Tablet.exe
4504 C:\Windows\System32\SearchIndexer.exe
4980 C:\Program Files\Windows Media Player\wmpnetwk.exe
5712 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5816 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5060 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4424 C:\Windows\System32\svchost.exe
5916 RBroker.exe
3764 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2760 C:\Windows\System32\svchost.exe
3960 C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
4560 C:\Windows\System32\wuauclt.exe
3008 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5048 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5372 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4276 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2712 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2656 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeNotify.exe
5100 C:\Program Files\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
6040 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
888 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
5420 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3708 C:\Program Files\TweetDeck\TweetDeck.exe
3340 C:\Program Files\Mozilla Firefox\firefox.exe
5176 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3016 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2404 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
844 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2428 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5644 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3168 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1116 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4484 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3396 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
768 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5452 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5732 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5188 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5628 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1436 C:\Program Files\Mozilla Firefox\plugin-container.exe
4100 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1796 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7400 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
8116 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6952 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4972 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7656 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6344 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7864 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6496 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6260 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6832 C:\Windows\System32\audiodg.exe
7080 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4924 C:\Users\Marian\Desktop\MBRCheck.exe
1408 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`82000000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`02000000 (NTFS)

PhysicalDrive0 Model Number: WDCWD3200AAKS-75VYA0, Rev: 12.01B02

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Known-bad MBR code detected (Whistler / Black Internet)!
SHA1: 89D73202BD35D91022941C82F1009B9A877E814C


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel): 0Available MBR codes:
[ 0] Default (Windows 7)
[ 1] Windows XP
[ 2] Windows Server 2003
[ 3] Windows Vista
[ 4] Windows 2008
[ 5] Windows 7
[-1] Cancel

Please select the MBR code to write to this drive: 5
Do you want to fix the MBR code? Type 'YES' and hit ENTER to continue: YES
Successfully wrote new MBR code!
Please reboot your computer to complete the fix.


Done!

#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 04 August 2010 - 01:36 PM

It still doesn't show what I was looking for but it does say Successfully wrote new MBR code!...Please reboot your computer to complete the fix so lets confirm.

After rebooting, rerunMBRCheck.exe once more by double-clicking on it (do not run any options).
  • It will open a black screen with some data on it and continue to run.
  • When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.
  • A new log named MBRCheck_date_time.txt will appear on the desktop.
  • Do not get this log confused with any previous logs (check the date and time if unsure).
  • Copy and paste the contents of that log in your next reply.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 04 August 2010 - 02:22 PM

Looks like it didn't fix it. This is the latest version:

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell DXP061
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 204):
0x81E0D000 \SystemRoot\system32\ntkrnlpa.exe
0x8221D000 \SystemRoot\system32\halmacpi.dll
0x81C42000 \SystemRoot\system32\kdcom.dll
0x88409000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x88481000 \SystemRoot\system32\PSHED.dll
0x88492000 \SystemRoot\system32\BOOTVID.dll
0x8849A000 \SystemRoot\system32\CLFS.SYS
0x884DC000 \SystemRoot\system32\CI.dll
0x88587000 \SystemRoot\system32\drivers\Wdf01000.sys
0x88617000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x88625000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x8866D000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x88676000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x8867E000 \SystemRoot\system32\DRIVERS\pci.sys
0x886A8000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x886B3000 \SystemRoot\System32\drivers\partmgr.sys
0x886C4000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x886D4000 \SystemRoot\System32\drivers\volmgrx.sys
0x8871F000 \SystemRoot\System32\drivers\mountmgr.sys
0x88809000 \SystemRoot\system32\DRIVERS\iaStorV.sys
0x888E4000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x8899C000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x889A5000 \SystemRoot\system32\drivers\fltmgr.sys
0x889D9000 \SystemRoot\system32\drivers\fileinfo.sys
0x889EA000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88A39000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88B68000 \SystemRoot\System32\Drivers\msrpc.sys
0x88B93000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88735000 \SystemRoot\System32\Drivers\cng.sys
0x88BA6000 \SystemRoot\System32\drivers\pcw.sys
0x88BB4000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x88C3F000 \SystemRoot\system32\drivers\ndis.sys
0x88CF6000 \SystemRoot\system32\drivers\NETIO.SYS
0x88D34000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x88E16000 \SystemRoot\System32\drivers\tcpip.sys
0x88F5F000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88D59000 \SystemRoot\system32\DRIVERS\timntr.sys
0x88F90000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x89004000 \SystemRoot\system32\DRIVERS\tdrpm258.sys
0x890E1000 \SystemRoot\System32\Drivers\spldr.sys
0x890E9000 \SystemRoot\system32\DRIVERS\snapman.sys
0x89110000 \SystemRoot\System32\drivers\rdyboost.sys
0x8913D000 \SystemRoot\System32\Drivers\mup.sys
0x8914D000 \SystemRoot\System32\drivers\hwpolicy.sys
0x89155000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x89187000 \SystemRoot\system32\DRIVERS\disk.sys
0x89198000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x8CEEF000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8CF0E000 \SystemRoot\System32\Drivers\Null.SYS
0x8CF15000 \SystemRoot\System32\Drivers\Beep.SYS
0x8CF1C000 \SystemRoot\System32\drivers\vga.sys
0x8CF28000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8CF49000 \SystemRoot\System32\drivers\watchdog.sys
0x8CF56000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8CF5E000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8CF66000 \SystemRoot\system32\drivers\rdprefmp.sys
0x8CF6E000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8CF79000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8CF87000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8CF9E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8CFA9000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x88792000 \SystemRoot\system32\drivers\afd.sys
0x8CFB3000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8CFB8000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8CFEA000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x891CA000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8CFF1000 \SystemRoot\system32\DRIVERS\netbios.sys
0x891E9000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x88FCF000 \SystemRoot\system32\DRIVERS\termdd.sys
0x88BBD000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x88FDF000 \SystemRoot\system32\drivers\nsiproxy.sys
0x88FE9000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88FF3000 \SystemRoot\System32\drivers\discache.sys
0x88DE6000 \SystemRoot\System32\Drivers\dfsc.sys
0x88E00000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x88C00000 \SystemRoot\System32\Drivers\aswSP.SYS
0x88A00000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x88C27000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8D41A000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8C215000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8C2CC000 \SystemRoot\System32\drivers\dxgmms1.sys
0x8C305000 \SystemRoot\system32\DRIVERS\e1e6032.sys
0x8C33C000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8C347000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8C392000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8C3A1000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8DD80000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x8C3C0000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E020000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8E122000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8E1D7000 \SystemRoot\system32\drivers\modem.sys
0x8E1E4000 \SystemRoot\system32\drivers\Afc.sys
0x8E1EC000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8E1F2000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x8E000000 \SystemRoot\system32\DRIVERS\wacomvhid.sys
0x8E003000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x8E016000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8E01D000 \SystemRoot\system32\DRIVERS\WacomVKHid.sys
0x8C3F4000 \SystemRoot\system32\DRIVERS\WacomVTHid.sys
0x8C200000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x8DDCC000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8DDE4000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8E632000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8E654000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8E66C000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8E683000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8E69A000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8E6A7000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8E6B4000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8E6B6000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8E6C4000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8E708000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8E713000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys
0x8E71B000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8E727000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8E738000 \SystemRoot\system32\drivers\stwrt.sys
0x8E78B000 \SystemRoot\system32\drivers\portcls.sys
0x8E7BA000 \SystemRoot\system32\drivers\drmk.sys
0x902D0000 \SystemRoot\System32\win32k.sys
0x8E7D3000 \SystemRoot\System32\drivers\Dxapi.sys
0x8E7DD000 \SystemRoot\system32\DRIVERS\usbprint.sys
0x8E7E8000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8E7EA000 \SystemRoot\System32\Drivers\LUsbFilt.Sys
0x8E7F0000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x8E600000 \SystemRoot\system32\DRIVERS\LHidFilt.Sys
0x8E608000 \SystemRoot\system32\DRIVERS\LMouFilt.Sys
0x8E610000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8CE00000 \SystemRoot\System32\Drivers\dump_iaStorV.sys
0x8E61D000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x81021000 \SystemRoot\system32\DRIVERS\snpstd3.sys
0x819E9000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x81000000 \SystemRoot\system32\DRIVERS\monitor.sys
0x90530000 \SystemRoot\System32\TSDDD.dll
0x90560000 \SystemRoot\System32\cdd.dll
0x90580000 \SystemRoot\System32\ATMFD.DLL
0x95801000 \SystemRoot\system32\drivers\luafv.sys
0x9581C000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x95833000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x95836000 \SystemRoot\system32\DRIVERS\tifsfilt.sys
0x95840000 \SystemRoot\system32\drivers\WudfPf.sys
0x9585A000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x9586A000 \SystemRoot\system32\DRIVERS\nmsgopro.sys
0x95871000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x95884000 \SystemRoot\system32\drivers\HTTP.sys
0x95909000 \SystemRoot\system32\DRIVERS\bowser.sys
0x95922000 \SystemRoot\System32\drivers\mpsdrv.sys
0x95934000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x95957000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x95992000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x959C5000 \SystemRoot\system32\DRIVERS\afcdp.sys
0x959EB000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0x959ED000 \SystemRoot\system32\DRIVERS\nmsunidr.sys
0xA5A19000 \SystemRoot\system32\drivers\peauth.sys
0xA5AB0000 \??\C:\Windows\system32\drivers\pmemnt.sys
0xA5AB2000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA5ABC000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA5ADD000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA5AEA000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA5B39000 \SystemRoot\System32\DRIVERS\srv.sys
0xA5B8A000 \SystemRoot\system32\drivers\tdtcp.sys
0xA5B94000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA5BA1000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xA5BD2000 \SystemRoot\System32\Drivers\fastfat.SYS
0xAB67A000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xAB683000 \SystemRoot\system32\drivers\MSPQM.sys
0x77890000 \Windows\System32\ntdll.dll
0x475A0000 \Windows\System32\smss.exe
0x77AD0000 \Windows\System32\apisetschema.dll
0x007E0000 \Windows\System32\autochk.exe
0x77A30000 \Windows\System32\oleaut32.dll
0x77A20000 \Windows\System32\normaliz.dll
0x77A10000 \Windows\System32\lpk.dll
0x777E0000 \Windows\System32\msvcrt.dll
0x779F0000 \Windows\System32\sechost.dll
0x77700000 \Windows\System32\kernel32.dll
0x77630000 \Windows\System32\msctf.dll
0x775B0000 \Windows\System32\comdlg32.dll
0x77510000 \Windows\System32\advapi32.dll
0x77440000 \Windows\System32\user32.dll
0x779E0000 \Windows\System32\psapi.dll
0x77340000 \Windows\System32\wininet.dll
0x77300000 \Windows\System32\ws2_32.dll
0x77260000 \Windows\System32\usp10.dll
0x77240000 \Windows\System32\imm32.dll
0x770A0000 \Windows\System32\setupapi.dll
0x77070000 \Windows\System32\imagehlp.dll
0x76420000 \Windows\System32\shell32.dll
0x763D0000 \Windows\System32\Wldap32.dll
0x76290000 \Windows\System32\urlmon.dll
0x76200000 \Windows\System32\clbcatq.dll
0x761A0000 \Windows\System32\shlwapi.dll
0x76140000 \Windows\System32\difxapi.dll
0x760F0000 \Windows\System32\gdi32.dll
0x76040000 \Windows\System32\rpcrt4.dll
0x75EE0000 \Windows\System32\ole32.dll
0x779D0000 \Windows\System32\nsi.dll
0x75CE0000 \Windows\System32\iertutil.dll
0x75CB0000 \Windows\System32\cfgmgr32.dll
0x75B90000 \Windows\System32\crypt32.dll
0x75B40000 \Windows\System32\KernelBase.dll
0x75B20000 \Windows\System32\devobj.dll
0x75A90000 \Windows\System32\comctl32.dll
0x75A60000 \Windows\System32\wintrust.dll
0x75A50000 \Windows\System32\msasn1.dll

Processes (total 136):
0 System Idle Process
4 System
464 C:\Windows\System32\smss.exe
552 csrss.exe
608 C:\Windows\System32\wininit.exe
616 csrss.exe
664 C:\Windows\System32\services.exe
680 C:\Windows\System32\lsass.exe
692 C:\Windows\System32\lsm.exe
740 C:\Windows\System32\winlogon.exe
828 C:\Windows\System32\svchost.exe
916 C:\Windows\System32\svchost.exe
984 C:\Windows\System32\svchost.exe
1080 C:\Windows\System32\svchost.exe
1124 C:\Windows\System32\svchost.exe
1236 C:\Windows\System32\svchost.exe
1284 C:\Windows\System32\svchost.exe
1308 C:\Program Files\WTouch\WTouchService.exe
1352 C:\Windows\System32\wisptis.exe
1480 C:\Windows\System32\svchost.exe
1560 C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
1604 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1720 C:\Windows\System32\wisptis.exe
1732 C:\Windows\System32\dwm.exe
1740 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
1764 C:\Windows\explorer.exe
1796 C:\Program Files\WTouch\WTouchUser.exe
508 C:\Windows\System32\svchost.exe
1520 C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
1580 C:\Windows\vsnpstd3.exe
1384 C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
1780 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
1068 C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
1676 C:\Windows\StartupMonitor.exe
1648 C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe
2064 C:\Program Files\Epson Software\Event Manager\EEventManager.exe
2080 C:\Program Files\Unlocker\UnlockerAssistant.exe
2088 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
2120 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2132 C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
2148 C:\Program Files\AnswersThatWork\A Really Small App\A_Really_Small_App.exe
2172 C:\Program Files\Desktop Icon Toy\DesktopIconToy.exe
2388 C:\Program Files\MSGTAG\MSGTAG.exe
2400 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
2452 C:\Program Files\AWS\WeatherBug\Weather.exe
2460 C:\Program Files\DellSupport\DSAgnt.exe
2480 C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
2496 C:\Program Files\Lower Case Switcher\LowerCaseSW.exe
2528 C:\Program Files\Logitech\SetPoint\SetPoint.exe
2552 C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
2620 C:\Program Files\ClickTray Calendar\ClickTray.exe
2748 C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
3476 C:\Windows\System32\spoolsv.exe
3516 C:\Windows\System32\svchost.exe
3584 C:\Windows\System32\taskhost.exe
3688 C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
3716 C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
3840 C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
3908 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
3984 C:\Program Files\Bonjour\mDNSResponder.exe
4024 C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
4056 C:\Windows\System32\CTSVCCDA.EXE
2104 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
2252 C:\Windows\System32\svchost.exe
2108 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
2336 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
2744 C:\Program Files\Dell Support Center\bin\sprtsvc.exe
3244 C:\Windows\System32\stacsv.exe
3560 C:\Windows\System32\svchost.exe
3572 C:\Windows\System32\Pen_Tablet.exe
2204 C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
4120 C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
4448 C:\Windows\System32\WTablet\Pen_TabletUser.exe
4484 C:\Windows\System32\Pen_Tablet.exe
4520 C:\Windows\System32\SearchIndexer.exe
5196 C:\Program Files\Windows Media Player\wmpnetwk.exe
5348 RBroker.exe
5596 C:\Program Files\Windows Live\Contacts\wlcomm.exe
5768 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3876 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5856 C:\Windows\System32\svchost.exe
6000 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
632 C:\Windows\System32\svchost.exe
3332 C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
5332 C:\Windows\System32\wuauclt.exe
2952 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
1172 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2032 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4604 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3156 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5232 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4428 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4968 C:\Program Files\TweetDeck\TweetDeck.exe
1060 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1872 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4972 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3180 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2188 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3568 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5476 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2920 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3376 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
1076 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3136 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4020 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3708 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4008 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4900 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5908 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2776 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2156 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4624 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3076 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
2476 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4816 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6008 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
4948 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5116 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
3408 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5836 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
5540 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6608 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7596 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7864 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7120 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
7412 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6948 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6644 C:\Windows\System32\audiodg.exe
6448 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6604 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6672 C:\Program Files\Siber Systems\AI RoboForm\identities.exe
6340 C:\Program Files\Mozilla Firefox\firefox.exe
6656 C:\Windows\System32\SearchProtocolHost.exe
7684 C:\Windows\System32\SearchFilterHost.exe
4272 C:\Users\Marian\Desktop\MBRCheck.exe
6184 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`82000000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`02000000 (NTFS)

PhysicalDrive0 Model Number: WDCWD3200AAKS-75VYA0, Rev: 12.01B02

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Known-bad MBR code detected (Whistler / Black Internet)!
SHA1: 89D73202BD35D91022941C82F1009B9A877E814C


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:01 AM

Posted 04 August 2010 - 04:43 PM

I am still waiting for the developer to have a look. Staff members are all volunteers and we assist other members as well as you when time permits. He is probably busy at the moment helping at another site but he does check our discussion topic here at BC for issues.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 schatze

schatze
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:01 PM

Posted 04 August 2010 - 04:48 PM

Thanks. I appreciate any and all help and understand this can't happen instantly but I would like this thing off my computer.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users