Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

OpenCloud Security, google redirects to Norton Antivirus, Windows Security Center unavailable


  • This topic is locked This topic is locked
21 replies to this topic

#1 romag14

romag14

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 02 October 2011 - 03:47 PM

I've tried both AVG Antivirus and Ad-Aware with no luck. Windows Security Center is turned off and when I go to turn it on I get "The Windows Security Center service can't be started". Windows update runs like every time I start up the computer so I don't know if it's having an issue installing whatever it is. Occasionally while online the screen will flash and the taskbar will get messed up (looks like old Windows 95 style).

This has been going on for weeks, the original problem left me with all of my file associations messed including .exe (I think from running CCleaner and scanning/fixing the registry). I downloaded the .exe file association from Microsoft, put it on a jump drive and got it on my computer, fixing that problem, but I think the overall lingering issue remained. If I go to look at my Programs and Features there's only a fraction of the programs I know that I have installed that are shown. Earlier in the week I was trying to fix it, I went to install Microsoft Security Essentials and the computer went to a bluescreen and restarted. I fought with this all night with no luck, the next morning it wouldn't start at all and windows startup repair got it back to status quo (with the viruses like the day before but no blue screen and restart).

I can see the OpenCloud Security icon on my desktop, so I know that is one of the main issues. Whenever I search on google, it redirects to some norton antivirus page.

Please help, I need this laptop to do schoolwork!

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_20
Run by Adam at 14:46:05 on 2011-10-02
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\fsproflt.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\My Lockbox\mylbx.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe
C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Adam\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bing.com/?pc=Z045&form=ZGAPHP
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [PMBVolumeWatcher] c:\program files\sony\pmb\PMBVolumeWatcher.exe
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
dRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
Trusted Zone: dell.com\support
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{9164ABC1-6431-4722-9FD8-551AF0E2F250} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{D7A2A451-DFEE-4369-ABAD-AA6AE39A8B85} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{D7A2A451-DFEE-4369-ABAD-AA6AE39A8B85}\86F6D65674 : DhcpNameServer = 192.168.2.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
STS: {136F24A7-6C64-4EBE-B271-6B5C65DBB8E0} - No File
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
Hosts: 95.64.61.141 www.google.com
Hosts: 95.64.61.142 www.bing.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\adam\appdata\roaming\mozilla\firefox\profiles\ziko5up9.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?pc=Z045&form=ZGAADF&q=
FF - component: c:\program files\avg\avg10\firefox\components\avgssff.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npRLCT4Player.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\adam\appdata\roaming\mozilla\firefox\profiles\ziko5up9.default\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false
============= SERVICES / DRIVERS ===============
.
R? b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? gupdate;Google Update Service (gupdate)
R? gupdatem;Google Update Service (gupdatem)
R? Lavasoft Kernexplorer;Lavasoft helper driver
R? pbfilter;pbfilter
R? RdpVideoMiniport;Remote Desktop Video Miniport Driver
R? StorSvc;Storage Service
R? Synth3dVsc;Synth3dVsc
R? TsUsbFlt;TsUsbFlt
R? tsusbhub;tsusbhub
R? VGPU;VGPU
R? WatAdminSvc;Windows Activation Technologies Service
R? WSDPrintDevice;WSD Print Support via UMB
R? WSDScan;WSD Scan Support via UMB
S? AdobeARMservice;Adobe Acrobat Update Service
S? AVGIDSAgent;AVGIDSAgent
S? AVGIDSDriver;AVGIDSDriver
S? AVGIDSEH;AVGIDSEH
S? AVGIDSFilter;AVGIDSFilter
S? AVGIDSShim;AVGIDSShim
S? Avgldx86;AVG AVI Loader Driver
S? Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield
S? Avgrkx86;AVG Anti-Rootkit Driver
S? Avgtdix;AVG TDI Driver
S? avgwd;AVG WatchDog
S? FSProFilter;FSPro File Filter
S? fsproflt;FSPro Filter Service
S? Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service
S? Lbd;Lbd
S? PMBDeviceInfoProvider;PMBDeviceInfoProvider
S? SmartDefragDriver;SmartDefragDriver
S? SrvHsfHDA;SrvHsfHDA
S? SrvHsfV92;SrvHsfV92
S? SrvHsfWinac;SrvHsfWinac
S? vwififlt;Virtual WiFi Filter Driver
S? vwifimp;Microsoft Virtual WiFi Miniport Service
.
=============== Created Last 30 ================
.
2011-10-01 21:10:08 -------- d-----w- c:\users\adam\appdata\roaming\AVG2012
2011-10-01 21:06:45 -------- d-----w- c:\programdata\AVG2012
2011-10-01 20:36:33 388096 ----a-r- c:\users\adam\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-10-01 20:36:32 -------- d-----w- c:\program files\Trend Micro
2011-10-01 06:26:22 -------- d-----w- c:\program files\Microsoft Games
2011-09-30 15:36:46 -------- d-----w- c:\program files\Microsoft Security Client
2011-09-30 15:36:02 -------- d-----w- C:\6f32b758fc7b4a9a67177c5eee93b401
2011-09-19 15:48:06 -------- d-----w- c:\users\adam\appdata\roaming\OpenCloud Security
2011-09-18 22:40:57 -------- d-----w- C:\OpenCloud Security
2011-09-11 17:52:27 -------- d-----w- c:\windows\pss
2011-09-05 21:16:21 64512 ----a-w- c:\windows\system32\drivers\Lbd.sys
2011-09-04 18:50:25 913920 ----a-w- c:\programdata\A16F.tmp
2011-09-03 18:51:56 898560 ----a-w- c:\programdata\C4E7.tmp
.
==================== Find3M ====================
.
2011-09-10 19:42:03 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-06 19:43:32 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-08-04 22:46:36 0 ----a-w- c:\programdata\ysph.exe
2011-08-04 22:46:36 0 ----a-w- c:\programdata\tysh.exe
2011-08-04 22:46:36 0 ----a-w- c:\programdata\obfu.exe
2011-08-04 22:46:36 0 ----a-w- c:\programdata\abjn.exe
2011-07-22 02:54:43 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-07-22 02:48:26 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-07-22 02:44:36 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-07-16 04:27:30 290816 ----a-w- c:\windows\system32\KernelBase.dll
2011-07-16 02:17:19 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-13 04:43:29 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-07-11 06:14:38 295248 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2011-07-11 06:14:16 16720 ----a-w- c:\windows\system32\drivers\AVGIDSShim.sys
2011-07-11 06:14:14 24272 ----a-w- c:\windows\system32\drivers\AVGIDSFilter.sys
2011-07-11 06:14:12 23120 ----a-w- c:\windows\system32\drivers\AVGIDSEH.sys
2011-07-11 06:14:12 134736 ----a-w- c:\windows\system32\drivers\AVGIDSDriver.sys
2011-07-11 06:13:46 229840 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2011-07-11 06:13:42 32464 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2011-07-09 04:29:46 2048 ----a-w- c:\windows\system32\tzres.dll
2011-07-09 02:30:00 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
.
============= FINISH: 14:51:53.30 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 06 October 2011 - 01:19 PM

Hello and Welcome to the forums!

My name is Gringo and I'll be glad to help you with your computer problems.

Somethings to remember while we are working together.

  • Do not run any other tool untill instructed to do so!
  • please Do not Attach logs or put in code boxes.
  • Tell me about any problems that have occurred during the fix.
  • Tell me of any other symptoms you may be having as these can help also.
  • Do not run anything while running a fix.
  • Do not run any other tool untill instructed to do so!


Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 08 October 2011 - 11:42 PM

Hello

48 Hour bump

It has been more than 48 hours since my last post.

  • do you still need help with this?
  • do you need more time?
  • are you having problems following my instructions?
  • if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#4 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 09 October 2011 - 08:41 PM

I ran combofix, it restarted my computer, when it came back up the startup repair had to run. It was unable to repair itself, and just turned off. I can't get windows to open now.

#5 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 10 October 2011 - 06:23 AM

System Recovery Environment

To access the System Recovery Environment in Windows 7, simply boot your PC,

  • just before the system loads the Windows operating system, hit the [F8] Function 8 key on your keyboard which will launch the Advanced Boot Options menu.
  • There you will see a new option 'Repair Your Computer', select this option and hit 'Enter' on your keyboard.
  • Now, from the System Recovery Options dialog, select the "Operating System" you want to repair, then click Next:
  • From the "Choose a Recovery Tool" dialog menu, select "Command Prompt":
  • Type the following into the "Command Prompt Window": and press enter

    bootrec.exe /fixmbr

If you have problems booting the computer after you have run that command boot back into the System Recovery Environment and Type the following into the "Command Prompt Window": and press enter

bootrec.exe /fixboot
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#6 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 10 October 2011 - 06:57 PM

still isn't booting, wants to launch startup repair every time.

#7 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 10 October 2011 - 07:31 PM

Try this please. You will need a USB drive.

Download http://unetbootin.sourceforge.net/unetbootin-xpud-windows-latest.exe & http://noahdfear.net/downloads/bootable/xPUD/xpud-0.9.2.iso to the desktop of your clean computer
  • Insert your USB drive
  • Press Start > My Computer > right click your USB drive > choose Format > Quick format
  • Double click the unetbootin-xpud-windows-387.exe that you just downloaded
  • Press Run then OK
  • Select the DiskImage option then click the browse button located on the right side of the textbox field.
  • Browse to and select the xpud-0.9.2.iso file you downloaded
  • Verify the correct drive letter is selected for your USB device then click OK
  • It will install a little bootable OS on your USB device
  • Once the files have been written to the device you will be prompted to reboot ~ do not reboot and instead just Exit the UNetbootin interface
  • After it has completed do not choose to reboot the clean computer simply close the installer
  • Next download http://noahdfear.net/downloads/driver.sh to your USB
  • Remove the USB and insert it in the sick computer
  • Boot the Sick computer
  • Press F12 and choose to boot from the USB
  • Follow the prompts
  • A Welcome to xPUD screen will appear
  • Press File
  • Expand mnt
  • sda1,2...usually corresponds to your HDD
  • sdb1 is likely your USB
  • Click on the folder that represents your USB drive (sdb1 ?)
  • Confirm that you see driver.sh that you downloaded there
  • Press Tool at the top
  • Choose Open Terminal
  • Type bash driver.sh
  • Press Enter
  • After it has finished a report will be located on your USB drive named report.txt
  • Remove the USB drive and insert back in your working computer and navigate to report.txt

    Please note - all text entries are case sensitive
Copy and paste the report.txt for my review
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#8 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 11 October 2011 - 12:15 AM

Mon Oct 10 23:52:50 UTC 2011
Driver report for /mnt/sda5/windows/system32/drivers

009927db8019c54477dabf6f9d795053 1394bus.sys
Microsoft Corporation

a10c7534f7223f4a73a948967d00e69b acpi.sys
Microsoft Corporation

841f385c6cfaf66b58fbd898722bb4f0 aec.sys
Microsoft Corporation

5ac495f4cb807b2b98ad2ad591e6d92e afd.sys
Microsoft Corporation

efbb0956baed786e137351b5ca272aef AmdK8.sys
Advanced Micro Devices

090880e9bf20f928bc341f96d27c019e Apfiltr.sys
Alps Electric

f0d692b0bffb46e30eb3cea168bbc49f arp1394.sys
Microsoft Corporation

02000abf34af4c218c35d257024807d6 asyncmac.sys
Microsoft Corporation

cdfe4411a69c224bd1d11b2da92dac51 atapi.sys
Microsoft Corporation

05f5ac22540160e381b3e2ac30c4ccf6 ati2mtag.sys
ATI Technologies

d9f724aa26c010a217c97606b160ed68 audstub.sys
Microsoft Corporation

ea22edadf90c0aba8319454b2a07b700 battc.sys
Microsoft Corporation

e82c5ae309ab903d1019a240e5e469a9 bdasup.sys
Microsoft Corporation

6163ed60b684bab19d3352ab22fc48b2 ccdecode.sys
Microsoft Corporation

cd7d5152df32b47f4e36f710b35aae02 cdfs.sys
Microsoft Corporation

af9c19b3100fe010496b1a27181fbf72 cdrom.sys
Microsoft Corporation

d86173b401470f06d9810f7962969ddf classpnp.sys
Microsoft Corporation

8a252d42cc836b949f226a08cb36323e clsupper.sys
Windows DDK provider

4266be808f85826aedf3c64c1e240203 CmBatt.sys
Microsoft Corporation

df1b1a24bf52d0ebc01ed4ece8979f50 compbatt.sys
Microsoft Corporation

d16c81677a9be399c63cd2ea486472a5 diskdump.sys
Microsoft Corporation

00ca44e4534865f8a3b64f7c0984bff0 disk.sys
Microsoft Corporation

c0fbb516e06e243f0cf31f597e7ebf7d dmboot.sys
Microsoft Corp

f5e7b358a732d09f4bcf2824b88b9e28 dmio.sys
Microsoft Corp

e9317282a63ca4d188c0df5e09c6ac5f dmload.sys
Microsoft Corp

a6f881284ac1150e37d9ae47ff601267 dmusic.sys
Microsoft Corporation

1ed4dbbae9f5d558dbba4cc450e3eb2e drmkaud.sys
Microsoft Corporation

1efd70465fe2814be93b11c70d6adc1a drmk.sys
Microsoft Corporation

fe97d0343acfdebdd578fc67cc91fa87 dxapi.sys
Microsoft Corporation

d3dac8432110aad0b02a58b4459ab835 dxg.sys
Microsoft Corporation

a73f5d6705b1d820c19b18782e176efd dxgthk.sys
Microsoft Corporation

80d1b490b60e74e002dc116ec5d41748 enum1394.sys
Microsoft Corporation

3117f595e9615e04f05a54fc15a03b20 fastfat.sys
Microsoft Corporation

e153ab8a11de5452bcf5ac7652dbf3ed fips.sys
Microsoft Corporation

3e1e2bd4f39b0e2b7dc4f4d2bcc2779a fs_rec.sys
Microsoft Corporation

6ac26732762483366c3969c9e4d2259d ftdisk.sys
Microsoft Corporation

e31363d186b3e1d7c4e9117884a6aee5 hdaudbus.sys
Windows Server DDK provider

378055ab8dda86228683c697c4e11685 hidclass.sys
Microsoft Corporation

442915553e99782fa5713b04c3eeb94a hidir.sys
Microsoft Corporation

5fff41cd5108e9051d255c37825af697 hidparse.sys
Microsoft Corporation

1de6783b918f540149aa69943bdfeba8 hidusb.sys
Microsoft Corporation

5502b58eef7486ee6f93f3f164dcb808 i8042prt.sys
Microsoft Corporation

f67260eb3ce6e154597477469c2529f1 iaStor.sys
Intel Corporation

f8aa320c6a0409c0380e5d8a99d76ec6 imapi.sys
Microsoft Corporation

4448006b6bc60e6c027932cfc38d6855 ip6fw.sys
Microsoft Corporation

e1ec7f5da720b640cd8fb8424f1b14bb ipinip.sys
Microsoft Corporation

b5a8e215ac29d24d60b4d1250ef05ace ipnat.sys
Microsoft Corporation

64537aa5c003a6afeee1df819062d0d1 ipsec.sys
Microsoft Corporation

9d0f94e4feb6dcddaef975def0a32949 IrBus.sys
Microsoft Corporation

e504f706ccb699c2596e9a3da1596e87 isapnp.sys
Microsoft Corporation

ebdee8a2ee5393890a1acee971c4c246 kbdclass.sys
Microsoft Corporation

e182fa8e49e8ee41b4adc53093f3c7e6 kbdhid.sys
Microsoft Corporation

d93cad07c5683db066b0b2d2d3790ead kmixer.sys
Microsoft Corporation

eb7ffe87fd367ea8fca0506f74a87fbb ksecdd.sys
Microsoft Corporation

b9540e258f952650de8dec68719a5c97 ks.sys
Microsoft Corporation

4ae068242760a1fb6e1a44bf4e16afa6 mnmdd.sys
Microsoft Corporation

1992e0d143b09653ab0f9c5e04b0fd65 modemcsa.sys
Microsoft Corporation

34e1f0031153e491910e12551400192c mouclass.sys
Microsoft Corporation

b1c303e17fb9d46e87a98e4ba6769685 mouhid.sys
Microsoft Corporation

65653f3b4477f3c63e68a9659f85ee2e mountmgr.sys
Microsoft Corporation

55a9a7e6bb297bf0f5b144029dcb79cc mpe.sys
Microsoft Corporation

1fd607fc67f7f7c633c3da65bfc53d18 mrxsmb.sys
Microsoft Corporation

8575d788395c4d6378d98d1ed7cdadb9 msdv.sys
Microsoft Corporation

561b3a4333ca2dbdba28b5b956822519 msfs.sys
Microsoft Corporation

c0f1d4a21de5a415df8170616703debf msgpc.sys
Microsoft Corporation

ae431a8dd3c1d0d0610cdbac16057ad0 mskssrv.sys
Microsoft Corporation

13e75fef9dfeb08eeded9d0246e1f448 mspclock.sys
Microsoft Corporation

1988a33ff19242576c3d0ef9ce785da7 mspqm.sys
Microsoft Corporation

469541f8bfd2b32659d5d463a6714bce mssmbios.sys
Microsoft Corporation

bf13612142995096ab084f2db7f40f77 mstee.sys
Microsoft Corporation

82035e0f41c2dd05ae41d27fe6cf7de1 mup.sys
Microsoft Corporation

5c8dc6429c43dc6177c1fa5b76290d1a nabtsfec.sys
Microsoft Corporation

abd7629cf2796250f315c1dd0b6cf7a0 ndisip.sys
Microsoft Corporation

558635d3af1c7546d26067d5d9b6959e ndis.sys
Microsoft Corporation

08d43bbdacdf23f34d79e44ed35c1b4c ndistapi.sys
Microsoft Corporation

34d6cd56409da9a7ed573e1c90a308bf ndisuio.sys
Microsoft Corporation

0b90e255a9490166ab368cd55a529893 ndiswan.sys
Microsoft Corporation

59fc3fb44d2669bc144fd87826bb571f ndproxy.sys
Microsoft Corporation

3a2aca8fc1d7786902ca434998d7ceb4 netbios.sys
Microsoft Corporation

0c80e410cd2f47134407ee7dd19cc86b netbt.sys
Microsoft Corporation

5c5c53db4fef16cf87b9911c7e8c6fbc nic1394.sys
Microsoft Corporation

4f601bcb8f64ea3ac0994f98fed03f8e npfs.sys
Microsoft Corporation

b78be402c3f63dd55521f73876951cdd ntfs.sys
Microsoft Corporation

0951db8e5823ea366b0e408d71e1ba2a ohci1394.sys
Microsoft Corporation

3334430c29dc338092f79c38ef7b4cd0 partmgr.sys
Microsoft Corporation

ccf5f451bb1a5a2a522a76e670000ff0 pciide.sys
Microsoft Corporation

520b91ab011456b940d9b05fc91108ff pciidex.sys
Microsoft Corporation

8086d9979234b603ad5bc2f5d890b234 pci.sys
Microsoft Corporation

9f467463f3fa660dcd3bada82354cd20 portcls.sys
Microsoft Corporation

0d97d88720a4087ec93af7dbb303b30a processr.sys
Microsoft Corporation

48671f327553dcf1d27f6197f622a668 psched.sys
Microsoft Corporation

80d317bd1c3dbc5d4fe7b1678c60cadd ptilink.sys
Parallel Technologies

fe0d99d6f31e4fad8159f690d68ded9c rasacd.sys
Microsoft Corporation

98faeb4a4dcf812ba1c6fca4aa3e115c rasl2tp.sys
Microsoft Corporation

7306eeed8895454cbed4669be9f79faa raspppoe.sys
Microsoft Corporation

1c5cc65aac0783c344f16353e60b72ac raspptp.sys
Microsoft Corporation

fdbb1d60066fcfbb7452fd8f9829b242 raspti.sys
Microsoft Corporation

29d66245adba878fff574cd66abd2884 rdbss.sys
Microsoft Corporation

4912d5b403614ce99c28420f75353332 rdpcdd.sys
Microsoft Corporation

a2cae2c60bc37e0751ef9dda7ceaf4ad rdpdr.sys
Microsoft Corporation

d4f5643d7714ef499ae9527fdcd50894 rdpwd.sys
Microsoft Corporation

b31b4588e4086d8d84adbf9845c2402b redbook.sys
Microsoft Corporation

d85e3fa9f5b1f29bb4ed185c450d1470 rimmptsk.sys
Ricoh Company

db8eb01c58c9fada00c70b1775278ae0 rimsptsk.sys
Ricoh Company

6c1f93c0760c9f79a1869d07233df39d rixdptsk.sys
Ricoh Company

d8b0b4ade32574b2d9c5cc34dc0dbbe7 rootmdm.sys
Microsoft Corporation

d7fd0ff761e28ac0ea35ad71e0cd67e9 scsiport.sys
Microsoft Corporation

4acfb25ecc8dd21707f747b28216cea1 scsiscan.sys
Microsoft Corporation

02fc71b020ec8700ee8a46c58bc6f276 sdbus.sys
Microsoft Corporation

1d9f1bec651815741f088a8fb88e17ee sffdisk.sys
Microsoft Corporation

586499fd312ffd7f78553f408e71682e sffp_sd.sys
Microsoft Corporation

5caeed86821fa2c6139e32e9e05ccdc9 slip.sys
Microsoft Corporation

8e186b8f23295d1e42c573b82b80d548 splitter.sys
Microsoft Corporation

20b7e396720353e4117d64d9dcb926ca srv.sys
Microsoft Corporation

31ba85e1cff39a57f702a2a0877bb8e1 sthda.sys
SigmaTel

a9f9fd0212e572b84edb9eb661f6bc04 streamip.sys
Microsoft Corporation

6a6f1bde18f309c47f36a5dc0a62f02c stream.sys
Microsoft Corporation

03c1bae4766e2450219d20b993d6e046 swenum.sys
Microsoft Corporation

94abc808fc4b6d7d2bbf42b85e25bb4d swmidi.sys
Microsoft Corporation

650ad082d46bac0e64c9c0e0928492fd sysaudio.sys
Microsoft Corporation

4d58bb1ae8841aafd8790ad7e1e3b8ea tcpip6.sys
Microsoft Corporation

9f4b36614a0fc234525ba224957de55c tcpip.sys
Microsoft Corporation

3fc234c9e20918ce856ffa42c421e678 tdasync.sys
Microsoft Corporation

182a77eecbdea330472a9a7a6f1457ce tdipx.sys
Microsoft Corporation

6891b74ab9a016064e82a419388d0601 tdi.sys
Microsoft Corporation

38d437cf2d98965f239b0abcd66dcb0f tdpipe.sys
Microsoft Corporation

5fb281f720939cbe9961d1808cc270e9 tdspx.sys
Microsoft Corporation

ed0580af02502d00ad8c4c066b156be9 tdtcp.sys
Microsoft Corporation

a540a99c281d933f3d69d55e48727f47 termdd.sys
Microsoft Corporation

87a0e9e18c10a9e454238e3330e2a26d tunmp.sys
Microsoft Corporation

12f70256f140cd7d52c58c7048fde657 udfs.sys
Microsoft Corporation

aff2e5045961bbc0a602bb6f95eb1345 update.sys
Microsoft Corporation

bffd9f120cc63bcbaa3d840f3eef9f79 usbccgp.sys
Microsoft Corporation

596eb39b50d6ebd9b734dc4ae0544693 usbd.sys
Microsoft Corporation

15e993ba2f6946b2bfbbfcd30398621e usbehci.sys
Microsoft Corporation

c72f40947f92cea56a8fb532edf025f1 usbhub.sys
Microsoft Corporation

bdfe799a8531bad8a5a985821fe78760 usbohci.sys
Microsoft Corporation

2034ca78f9c6e787b4b76d81ac888351 usbport.sys
Microsoft Corporation

a6bc71402f4f7dd5b77fd7f4a8ddba85 usbscan.sys
Microsoft Corporation

6cd7b22193718f1d17a47a1cd6d37e75 usbstor.sys
Microsoft Corporation

8a60edd72b4ea5aea8202daf0e427925 vga.sys
Microsoft Corporation

d5a9d123f5ed7c9965a481bd20cf66d8 videoprt.sys
Microsoft Corporation

ee4660083deba849ff6c485d944b379b volsnap.sys
Microsoft Corporation

984ef0b9788abf89974cfed4bfbaacbc wanarp.sys
Microsoft Corporation

2797f33ebf50466020c430ee4f037933 wdmaud.sys
Microsoft Corporation

ae2c8544e747c20062db27456ea2d67a wmiacpi.sys
Microsoft Corporation

2f31b7f954bed437f2c75026c65caf7b wmilib.sys
Microsoft Corporation

1385e5aa9c9821790d33a9563b8d2dd0 wpdusb.sys
Microsoft Corporation

6abe6e225adb5a751622a9cc3bc19ce8 ws2ifsl.sys
Microsoft Corporation

233cdd1c06942115802eb7ce6669e099 wstcodec.sys
Microsoft Corporation

Driver report for /mnt/sda3/Qoobox/Quarantine/C/Windows/system32/Drivers

Driver report for /mnt/sda3/Windows/System32/drivers
bf302072dc8374cf4e118fd88aa817a2 SmartDefragDriver.sys has NO Company Name!

fbce2f43185104ae8bf4d32571b19203 1394bus.sys
Microsoft Corporation

1b133875b8aa8ac48969bd3458afe9f5 1394ohci.sys
Microsoft Corporation

1efbc664abff416d1d07db115dcb264f acpipmi.sys
Microsoft Corporation

cea80c80bed809aa0da6febc04733349 acpi.sys
Microsoft Corporation

21e785ebd7dc90a06391141aac7892fb adp94xx.sys
Adaptec

0c676bc278d5b59ff5abd57bbe9123f2 adpahci.sys
Adaptec

7c7b5ee4b7b822ec85321fe23a27db33 adpu320.sys
Adaptec

9ebbba55060f786f0fcaa3893bfa2806 afd.sys
Microsoft Corporation

57ec4aef73660166074d8f7f31c0d4fd agilevpn.sys
Microsoft Corporation

507812c3054c21cef746b6ee3d04dd6e AGP440.sys
Microsoft Corporation

0d40bcf52ea90fc7df2aeab6503dea44 aliide.sys
Acer Laboratories

3c6600a0696e90a463771c7422e23ab5 AMDAGP.SYS
Microsoft Corporation

cd5914170297126b6266860198d1d4f0 amdide.sys
Microsoft Corporation

00dda200d71bac534bf56a9db5dfd666 amdk8.sys
Microsoft Corporation

3cbf30f5370fda40dd3e87df38ea53b6 amdppm.sys
Microsoft Corporation

d320bf87125326f996d4904fe24300fc amdsata.sys
Advanced Micro Devices

ea43af0c423ff267355f74e7a53bdaba amdsbs.sys
AMD Technologies

46387fb17b086d16dea267d5be23a2f2 amdxata.sys
Advanced Micro Devices

d7723a101c5cb4c0fa979e4dda732ec0 Apfiltr.sys
Alps Electric

aea177f783e20150ace5383ee368da19 appid.sys
Microsoft Corporation

5d6f36c46fd283ae1b57bd2e9feb0bc7 arcsas.sys
Adaptec

2932004f49677bd84dbc72edb754ffb3 arc.sys
Adaptec

add2ade1c2b285ab8378d2daaf991481 asyncmac.sys
Microsoft Corporation

338c86357871c167a96ab976519bf59e atapi.sys
Microsoft Corporation

4b55c9f9a93b3bfd01ed7366eb0b9d2e ataport.sys
Microsoft Corporation

389a2668e0c0c6698a6b565632c7f43a atikmdag.sys
ATI Technologies

f6878b90a8a9795116bce335238e65af AVGIDSDriver.sys
AVG Technologies

19a08a6728a6e02099d64268218cd799 AVGIDSEH.sys
AVG Technologies

f8927ab1dd086edeff2924a64dc89869 AVGIDSFilter.sys
AVG Technologies

44d562825d811eea3c8cd6140cbad5d0 AVGIDSShim.sys
AVG Technologies

f4dbbc8d3c5338693da23c59a50f8abc avgldx86.sys
AVG Technologies

1c77ef67f196466adc9924cb288afe87 avgmfx86.sys
AVG Technologies

4def59ff7d09b9ce59739102b49fd526 avgrkx86.sys
AVG Technologies

a6d562b612216d8d02a35ebeb92366bd avgtdix.sys
AVG Technologies

bd8869eb9cde6bbe4508d869929869ee b57nd60x.sys
Broadcom Corporation

2b8ee031fd700ab942ebe60665440e83 battc.sys
Microsoft Corporation

82dd21bfa8bbe0a3a3833a1bd8e86158 bcm4sbxp.sys
Broadcom Corporation

f9ce9b5e049efc66b8e6c73c18ee8438 BCMWL6.SYS
Broadcom Corporation

505506526a9d467307b3c393dedaf858 beep.sys
Microsoft Corporation

2287078ed48fcfc477b05b20cf38f36f blbdrive.sys
Microsoft Corporation

8f2da3028d5fcbd1a060a3de64cd6506 bowser.sys
Microsoft Corporation

9f9acc7f7ccde8a15c282d3f88b43309 BrFiltLo.sys
Brother Industries

56801ad62213a41f6497f96dee83755a BrFiltUp.sys
Brother Industries

77361d72a04f18809d0efb6cceb74d4b bridge.sys
Microsoft Corporation

845b8ce732e67f3b4133164868c666ea BrSerId.sys
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries
Brother Industries

203f0b1e73adadbbb7b7b1fabd901f6b BrSerWdm.sys
Brother Industries

bd456606156ba17e60a04e18016ae54b BrUsbMdm.sys
Brother Industries

af72ed54503f717a43268b3cc5faec2e BrUsbSer.sys
Brother Industries

ed3df7c56ce0084eb2034432fc56565a bthmodem.sys
Microsoft Corporation

1a231abec60fd316ec54c66715543cec bxvbdx.sys
Broadcom Corporation

77ea11b065e0a8ab902d78145ca51e10 cdfs.sys
Microsoft Corporation

9714b7c918c6543d69074ec101f86ac4 cdr4_xp.sys
Sonic Solutions

0d856d16c08440bfb566d6cdd9948d4e cdralw2k.sys
Sonic Solutions

be167ed0fdb9c1fa1133953c18d5a6c9 cdrom.sys
Microsoft Corporation

3fe3fe94a34df6fb06e6418d0f6a0060 circlass.sys
Microsoft Corporation

a6388a5abf92c7927c085db0a958125f Classpnp.sys
Microsoft Corporation

dea805815e587dad1dd2c502220b5616 CmBatt.sys
Microsoft Corporation

c537b1db64d495b9b4717b4d6d9edbf2 cmdide.sys
CMD Technology

1b675691ed940766149c93e8f4488d68 cng.sys
Microsoft Corporation

a6023d3823c37043986713f118a89bee compbatt.sys
Microsoft Corporation

cbe8c58a8579cfe5fccf809e6f114e89 CompositeBus.sys
Microsoft Corporation

b7efef22ff426ec4158a177cb3b558d3 crashdmp.sys
Microsoft Corporation

2c4ebcfc84a9b44f209dff6c6e6c61d1 crcdisk.sys
Microsoft Corporation

3c2177a897b4ca2788c6fb0c3fd81d4b csc.sys
Microsoft Corporation

f024449c97ec1e464aaffda18593db88 dfsc.sys
Microsoft Corporation

1a050b0274bfb3890703d490f330c0da discache.sys
Microsoft Corporation

d0f0d7a97c90fe72a79732812e65f822 Diskdump.sys
Microsoft Corporation

565003f326f99802e68ca78f2a68e9ff disk.sys
Microsoft Corporation

8b30250d573a8f6b4bd23195160d8707 djsvs.sys
Adaptec

b918e7c5f9bf77202f89e1a9539f2eb4 drmkaud.sys
Microsoft Corporation

27f9288af019e6daca281ede51ff5928 drmk.sys
Microsoft Corporation

5428227d4730ebdfc842e9fb593f8c8a Dumpata.sys
Microsoft Corporation

62a63ef2f3053b461cb327e4d69aaa74 dumpfve.sys
Microsoft Corporation

5fcd3320aae71506b43f9e12e4e72172 dxapi.sys
Microsoft Corporation

23f5d28378a160352ba8f817bd8c71cb dxgkrnl.sys
Microsoft Corporation

d458d1c7f1d49869000668e3c3bb0d4d dxgmms1.sys
Microsoft Corporation

1b6242b20cb56f85a158e67f09ee84fe dxg.sys
Microsoft Corporation

0ed67910c8c326796faa00b2bf6d9d3c elxstor.sys
Emulex

8fc3208352dd3912c94367a206ab3f11 errdev.sys
Microsoft Corporation

024e1b5cac09731e4d868e64dbfb4ab0 evbdx.sys
Broadcom Corporation

2dc9108d74081149cc8b651d3a26207f exfat.sys
Microsoft Corporation

7e0ab74553476622fb6ae36f73d97d35 fastfat.sys
Microsoft Corporation

e817a017f82df2a1f8cfdbda29388b29 fdc.sys
Microsoft Corporation

6cf00369c97f3cf563be99be983d13d8 fileinfo.sys
Microsoft Corporation

42c51dc94c91da21cb9196eb64c45db9 filetrace.sys
Microsoft Corporation

87907aa70cb3c56600f1c2fb8841579b flpydisk.sys
Microsoft Corporation

7520ec808e0c35e0ee6f841294316653 fltMgr.sys
Microsoft Corporation

1a16b57943853e598cff37fe2b8cbf1d fsdepends.sys
Microsoft Corporation

3528c9ec493ca524a877d217c7d51600 FSPFltd.sys
tH`VS_VERSION_INFOaaaa?aStringFileInfobvCompanyNameFSProLabsZFileDescriptionFSProFileSystemFilter*FileVersionRInternalNameFSProFileSystemFilterv)LegalCopyrightCopyright©AlfaCorporation-@bOriginalFilenamefspfltd.sysRProductNameFSProFileSystemFilter.ProductVersionvLicensedToFSProLabs^Builddate&time//-::UTCDVarFileInfo$Translationt

a574b4360e438977038aae4bf60d79a2 fs_rec.sys
Microsoft Corporation

8a73e79089b282100b9393b644cb853b fvevol.sys
Microsoft Corporation

56e5c9b62bad9ec85bc76940d28b6c11 FWPKCLNT.SYS
Microsoft Corporation

65ee0c7a58b65e74ae05637418153938 GAGP30KX.SYS
Microsoft Corporation

8182ff89c65e4d38b2de4bb0fb18564e GEARAspiWDM.sys
GEAR Software

c44e3c2bab6837db337ddee7544736db hcw85cir.sys
Hauppauge Computer Works

9036377b8a6c15dc2eec53e489d159b5 hdaudbus.sys
Microsoft Corporation

a5ef29d5315111c80a5c1abad14c8972 HdAudio.sys
Microsoft Corporation

1d58a7f3e11a9731d0eaaaa8405acc36 hidbatt.sys
Microsoft Corporation

89448f40e6df260c206a193a4683ba78 hidbth.sys
Microsoft Corporation

931a1df1520abc6e84ba4a75e6957025 hidclass.sys
Microsoft Corporation

cf50b4cf4a4f229b9f3c08351f99ca5e hidir.sys
Microsoft Corporation

6c26122f1931d4d7810240f32ddce890 hidparse.sys
Microsoft Corporation

10c19f8290891af023eaec0832e1eb4d hidusb.sys
Microsoft Corporation

295fdc419039090eb8b49ffdbb374549 HpSAMD.sys
Hewlett-Packard

871917b07a141bff43d76d8844d48106 http.sys
Microsoft Corporation

0c4e035c7f105f1299258c90886c64c5 hwpolicy.sys
Microsoft Corporation

f151f0bdc47f4a28b1b20a0818ea36d6 i8042prt.sys
Microsoft Corporation

5cd5f9a5444e6cdcb0ac89bd62d8b76e iaStorV.sys
Intel Corporation

4173ff5708f3236cf25195fecd742915 iirsp.sys
Intel Corp

a0f12f2c9ba6c72f3987ce780e77c130 intelide.sys
Microsoft Corporation

3b514d27bfc4accb4037bc6685f766e0 intelppm.sys
Microsoft Corporation

709d1761d3b19a932ff0238ea6d50200 ipfltdrv.sys
Microsoft Corporation

4bd7134618c1d2a27466a099062547bf IPMIDrv.sys
Microsoft Corporation

a5fa468d67abcdaa36264e463a7bb0cd ipnat.sys
Microsoft Corporation

9f7e491fb0ba0f9e370163834fc1fe31 irda.sys
Microsoft Corporation

42996cff20a3084a56017b7902307e9f irenum.sys
Microsoft Corporation

1f32bb6b38f62f7df1a7ab7292638a35 isapnp.sys
Microsoft Corporation

adef52ca1aeae82b50df86b56413107e kbdclass.sys
Microsoft Corporation

9e3ced91863e6ee98c24794d05e27a71 kbdhid.sys
Microsoft Corporation

412cea1aa78cc02a447f5c9e62b32ff1 ksecdd.sys
Microsoft Corporation

26c046977e85b95036453d7b88ba1820 ksecpkg.sys
Microsoft Corporation

5dcef0c32be0f33277326586fa503689 ks.sys
Microsoft Corporation

336abe8721cbc3110f1c6426da633417 Lbd.sys
Lavasoft

f7611ec07349979da9b0ae1f18ccc7a6 lltdio.sys
Microsoft Corporation

eb119a53ccf2acc000ac71b065b78fef lsi_fc.sys
LSI Corporation

dc9dc3d3daa0e276fd2ec262e38b11e9 lsi_sas2.sys
LSI Corporation

8ade1c877256a22e49b75d1cc9161f9c lsi_sas.sys
LSI Corporation

0a036c7d7cab643a7f07135ac47e0524 lsi_scsi.sys
LSI Corporation

6703e366cc18d3b6e534f5cf7df39cee luafv.sys
Microsoft Corporation

ef08d2ebe3eabba43cc57eee001027b6 mcd.sys
Microsoft Corporation

0fff5b045293002ab38eb1fd1fc2fb74 megasas.sys
LSI Corporation

dcbab2920c75f390caf1d29f675d03d6 MegaSR.sys
LSI Corporation

f001861e5700ee84e2d4e52c712f4964 modem.sys
Microsoft Corporation

79d10964de86b292320e9dfe02282a23 monitor.sys
Microsoft Corporation

fb18cc1d4c2e716b6b903b0ac0cc0609 mouclass.sys
Microsoft Corporation

2c388d2cd01c9042596cf3c8f3c7b24d mouhid.sys
Microsoft Corporation

fc8771f45ecccfd89684e38842539b9b mountmgr.sys
Microsoft Corporation

2d699fb6e89ce0d8da14ecc03b3edfe0 mpio.sys
Microsoft Corporation

ad2723a7b53dd1aacae6ad8c0bfbf4d0 mpsdrv.sys
Microsoft Corporation

ceb46ab7c01c9f825f8cc6babc18166a mrxdav.sys
Microsoft Corporation

6d17a4791aca19328c685d256349fefc mrxsmb10.sys
Microsoft Corporation

b81f204d146000be76651a50670a5e9e mrxsmb20.sys
Microsoft Corporation

5d16c921e3671636c0eba3bbaac5fd25 mrxsmb.sys
Microsoft Corporation

012c5f4e9349e711e11e0f19a8589f0a msahci.sys
Microsoft Corporation

55055f8ad8be27a64c831322a780a228 msdsm.sys
Microsoft Corporation

daefb28e3af5a76abcc2c3078c07327f msfs.sys
Microsoft Corporation

3e1e5767043c5af9367f0056295e9f84 mshidkmdf.sys
Microsoft Corporation

0a4e5757ae09fa9622e3158cc1aef114 msisadrv.sys
Microsoft Corporation

cb7a9abb12b8415bce5d74994c7ba3ae msiscsi.sys
Microsoft Corporation

8c0860d6366aaffb6c5bb9df9448e631 mskssrv.sys
Microsoft Corporation

3ea8b949f963562cedbb549eac0c11ce mspclock.sys
Microsoft Corporation

f456e973590d663b1073e9c463b40932 mspqm.sys
Microsoft Corporation

0e008fc4819d238c51d7c93e7b41e560 msrpc.sys
Microsoft Corporation

fc6b9ff600cc585ea38b12589bd4e246 mssmbios.sys
Microsoft Corporation

b42c6b921f61a6e55159b8be6cd54a36 mstee.sys
Microsoft Corporation

33599130f44e1f34631cea241de8ac84 MTConfig.sys
Microsoft Corporation

159fad02f64e6381758c990f753bcc80 mup.sys
Microsoft Corporation

0e1787aa6c9191d3d319e8bafe86f80c ndiscap.sys
Microsoft Corporation

e7c54812a2aaf43316eb6930c1ffa108 ndis.sys
Microsoft Corporation

e4a8aec125a2e43a9e32afeea7c9c888 ndistapi.sys
Microsoft Corporation

d8a65dafb3eb41cbb622745676fcd072 ndisuio.sys
Microsoft Corporation

38fbe267e7e6983311179230facb1017 ndiswan.sys
Microsoft Corporation

a4bdc541e69674fbff1a8ff00be913f2 ndproxy.sys
Microsoft Corporation

80b275b1ce3b0e79909db7b39af74d51 netbios.sys
Microsoft Corporation

280122ddcf04b378edd1ad54d71c1e54 netbt.sys
Microsoft Corporation

2899ef7aeef6913ed4fcb0e8a7a04f46 netio.sys
Microsoft Corporation

1d85c4b390b0ee09c7a46b91efb2c097 nfrd960.sys
IBM Corp

1db262a9f8c087e8153d89bef3d2235f npfs.sys
Microsoft Corporation

e9a0a4d07e53d8fea2bb8387a3293c58 nsiproxy.sys
Microsoft Corporation

81189c3d7763838e55c397759d49007a ntfs.sys
Microsoft Corporation

f9756a98d69098dca8945d62858a812c null.sys
Microsoft Corporation

5a0983915f02bae73267cc2a041f717d NV_AGP.SYS
Microsoft Corporation

b3e25ee28883877076e0e1ff877d02e0 nvraid.sys
NVIDIA Corporation

4380e59a170d88c4f1022eff6719a8a4 nvstor.sys
NVIDIA Corporation

26384429fcd85d83746f63e798ab1480 nwifi.sys
Microsoft Corporation

58f478fd0115012ceec75fb73628901c OEM02Afx.sys
Creative Technology

19cac780b858822055f46c58a111723c OEM02Dev.sys
Creative Technology

86326062a90494bdd79ce383511d7d69 OEM02Vfx.sys
tHppVS_VERSION_INFO?StringFileInfobRCompanyNameEyePowerGamesPte.Ltd./FileDescriptionAdvancedVideoFXFilternDriver(WinKbased)vFileVersion....LegalCopyrightCopyright©EyePowerGamesnPte.Ltd.,DVarFileInfo$Translationt

08a70a1f2cdde9bb49b885cb817a66eb ohci1394.sys
Microsoft Corporation

6270ccae2a86de6d146529fe55b3246a pacer.sys
Microsoft Corporation

2ea877ed5dd9713c5ac74e8ea7348d14 parport.sys
Microsoft Corporation

bf8f6af06da75b336f07e23aef97d93b partmgr.sys
Microsoft Corporation

eb0a59f29c19b86479d36b35983daadc parvdm.sys
Microsoft Corporation

afe86f419014db4e5593f69ffe26ce0a pciide.sys
Microsoft Corporation

ede040d666ff81bf1978d0f19f799e7a pciidex.sys
Microsoft Corporation

673e55c3498eb970088e812ea820aa8f pci.sys
Microsoft Corporation

f396431b31693e71e8a80687ef523506 pcmcia.sys
Microsoft Corporation

250f6b43d2b613172035c6747aeeb19f pcw.sys
Microsoft Corporation

9e0104ba49f4e6973749a02bf41344ed PEAuth.sys
Microsoft Corporation

d72708c9f49500c13d7d067e169b7715 portcls.sys
Microsoft Corporation

85b1e3a0c7585bc4aae6899ec6fcf011 processr.sys
Microsoft Corporation

153d02480a0a2f45785522e814c634b6 pxhelp20.sys
Sonic Solutions

ab95ecf1f6659a60ddc166d8315b0751 ql2300.sys
QLogic Corporation

b4dd51dd25182244b86737dc51af2270 ql40xx.sys
QLogic Corporation

584078ca1b95ca72df2a27c336f9719d qwavedrv.sys
Microsoft Corporation

30a81b53c766d0133bb86d234e5556ab rasacd.sys
Microsoft Corporation

d9f91eafec2815365cbe6d167e4e332a rasl2tp.sys
Microsoft Corporation

0fe8b15916307a6ac12bfb6a63e45507 raspppoe.sys
Microsoft Corporation

631e3e205ad6d86f2aed6a4a8e69f2db raspptp.sys
Microsoft Corporation

44101f495a83ea6401d886e7fd70096b rassstp.sys
Microsoft Corporation

d528bc58a489409ba40334ebf96a311b rdbss.sys
Microsoft Corporation

0d8f05481cb76e70e1da06ee9f0da9df rdpbus.sys
Microsoft Corporation

23dae03f29d253ae74c44f99e515f9a1 RDPCDD.sys
Microsoft Corporation

b973fcfc50dc1434e1970a146f7e3885 rdpdr.sys
Microsoft Corporation

5a53ca1598dd4156d44196d200c94b8a RDPENCDD.sys
Microsoft Corporation

44b0a53cd4f27d50ed461dae0c0b4e1f RDPREFMP.sys
Microsoft Corporation

68a0387f58e226deee23d9715955572a rdpvideominiport.sys
Microsoft Corporation

288b06960d78428ff89e811632684e20 rdpwd.sys
Microsoft Corporation

518395321dc96fe2c9f0e96ac743b656 rdyboost.sys
Microsoft Corporation

d85e3fa9f5b1f29bb4ed185c450d1470 rimmptsk.sys
Ricoh Company

db8eb01c58c9fada00c70b1775278ae0 rimsptsk.sys
Ricoh Company

6c1f93c0760c9f79a1869d07233df39d rixdptsk.sys
Ricoh Company

906dcfc5ebf4ec0433f8d4fffb0ba334 rmcast.sys
Microsoft Corporation

7400cfab5cf36f2294e80b3f3bda3ebc RNDISMP.sys
Microsoft Corporation

564297827d213f52c7a3a2ff749568ca rootmdm.sys
Microsoft Corporation

032b0d36ad92b582d869879f5af5b928 rspndr.sys
Microsoft Corporation

05d860da1040f111503ac416ccef2bca sbp2port.sys
Microsoft Corporation

0505da5d357f18a5d42fc5dede6bc9a0 SBREDrv.sys
m?nStringFileInfoeBCompanyNameSunbeltSoftwarePFileDescriptionAnti-RootkitEnginetFileVersion..tInternalNameSBRE.sys=LegalCopyrightCopyright-SunbeltSoftware.Allrightsreserved.LegalTrademarksSUNBELTSOFTWAREandthe"S"logoareregisteredtrademarksofSunbeltSoftware.CounterSpySDKisatrademarkofSunbeltSoftware.:tOriginalFilenameSBRE.sysvProductNameCounterSpytProductVersion..VProductBuildDate//::AMDVarFileInfo$TranslationtPADDINGXXPAD

0693b5ec673e34dc147e195779a4dcf6 scfilter.sys
Microsoft Corporation

099972e1faf4950d3994fbab9dd21253 scsiport.sys
Microsoft Corporation

0328be1c7f1cba23848179f8762e391c sdbus.sys
Microsoft Corporation

90a3935d05b494a5a39d37e71f09a677 secdrv.sys
Macrovision Corporation

9ad8b8b515e3df6acd4212ef465de2d1 serenum.sys
Microsoft Corporation

5fb7fcea0490d821f26f39cc5ea3d1e2 serial.sys
Microsoft Corporation

79bffb520327ff916a582dfea17aa813 sermouse.sys
Microsoft Corporation

9f976e1eb233df46fce808d9dea3eb9c sffdisk.sys
Microsoft Corporation

932a68ee27833cfd57c1639d375f2731 sffp_mmc.sys
Microsoft Corporation

6d4ccaedc018f1cf52866bbbaa235982 sffp_sd.sys
Microsoft Corporation

db96666cc8312ebc45032f30b007a547 sfloppy.sys
Microsoft Corporation

2565cac0dc9fe0371bdce60832582b2e SISAGP.SYS
Microsoft Corporation

a9f0486851becb6dda1d89d381e71055 sisraid2.sys
Silicon Integrated Systems

3727097b55738e2f554972c3be5bc1aa sisraid4.sys
Silicon Integrated Systems

bf302072dc8374cf4e118fd88aa817a2 SmartDefragDriver.sys

3e21c083b8a01cb70ba1f09303010fce smb.sys
Microsoft Corporation

2e467e6ca8e0a140c08011844c0d3936 smclib.sys
Microsoft Corporation

95cf1ae7527fb70f7816563cbc09d942 spldr.sys
Microsoft Corporation

d16d818e9930a6e5b4f6476dd0998d1a spsys.sys
Microsoft Corporation

03f0545bd8d4c77fa0ae1ceedfcc71ab srv2.sys
Microsoft Corporation

be6bd660caa6f291ae06a718a4fa8abc srvnet.sys
Microsoft Corporation

e4c2764065d66ea1d2d3ebc28fe99c46 srv.sys
Microsoft Corporation

db32d325c192b801df274bfd12a7e72b stexstor.sys
Promise Technology

ef3d32464ebbb10449465c8cab57ca19 storport.sys
Microsoft Corporation

dcaffd62259e0bdb433dd67b5bb37619 storvsc.sys
Microsoft Corporation

45b44fc9e5ac0db02b19d515ee809de5 stream.sys
Microsoft Corporation

e58c78a848add9610a4db6d214af5224 swenum.sys
Microsoft Corporation

dd17b63f26430e179ef6bdef5ac735bd SynTP.sys
Synaptics

949c35bf4ae6c110a924ab5e2175dda7 tape.sys
Microsoft Corporation

cca24162e055c3714ce5a88b100c64ed tcpipreg.sys
Microsoft Corporation

04e4a7d53a7ace02e8c55b17a498f631 tcpip.sys
Microsoft Corporation

2f885864d5bc8a16c86bee595969a48a tdi.sys
Microsoft Corporation

1cb91b2bd8f6dd367dfc2ef26fd751b2 tdpipe.sys
Microsoft Corporation

2c10395baa4847f83042813c515cc289 tdtcp.sys
Microsoft Corporation

b459575348c20e8121d6039da063c704 tdx.sys
Microsoft Corporation

04dbf4b01ea4bf25a9a3e84affac9b20 termdd.sys
Microsoft Corporation

254bb140eee3c59d6114c1a86b636877 tssecsrv.sys
Microsoft Corporation

fd1d6c73e6333be727cbcc6054247654 TsUsbFlt.sys
Microsoft Corporation

b2fa25d9b17a68bb93d58b0556e8c90d tunnel.sys
Microsoft Corporation

750fbcb269f4d7dd2e420c56b795db6d UAGP35.SYS
Microsoft Corporation

ee43346c7e4b5e63e54f927babbb32ff udfs.sys
Microsoft Corporation

44e8048ace47befbfdc2e9be4cbc8880 ULIAGPKX.SYS
Microsoft Corporation

d295bed4b898f0fd999fcfa9b32b071b umbus.sys
Microsoft Corporation

7550ad0c6998ba1cb4843e920ee0feac umpass.sys
Microsoft Corporation

b71da871254d96d0349639d03e4c1cc1 usb8023.sys
Microsoft Corporation

e071e5be621fec4590117c488a78ae32 USBCAMD2.sys
Microsoft Corporation

fd82d2b38c465a55c527e339ba1201b1 USBCAMD.sys
Microsoft Corporation

bd9c55d7023c5de374507acc7a14e2ac usbccgp.sys
Microsoft Corporation

04ec7cec62ec3b6d9354eee93327fc82 usbcir.sys
Microsoft Corporation

5787196f32d043572ec6565c0ef1b8e0 usbd.sys
Microsoft Corporation

f92de757e4b7ce9c07c5e65423f3ae3b usbehci.sys
Microsoft Corporation

8dc94aec6a7e644a06135ae7506dc2e9 usbhub.sys
Microsoft Corporation

e185d44fac515a18d9deddc23c2cdf44 usbohci.sys
Microsoft Corporation

3aa940aa9ac3055fe32ff2d3d20ccd28 usbport.sys
Microsoft Corporation

797d862fe0875e75c7cc4c1ad7b30252 usbprint.sys
Microsoft Corporation

1a078c3fe1c1f9c8561cd600c69ad300 usbrpm.sys
Microsoft Corporation

576096ccbc07e7c4ea4f5e6686d6888f usbscan.sys
Microsoft Corporation

f991ab9cc6b908db552166768176896a USBSTOR.SYS
Microsoft Corporation

68df884cf41cdada664beb01daf67e3d usbuhci.sys
Microsoft Corporation

45f4e7bf43db40a6c6b4d92c76cbc3f2 usbvideo.sys
Microsoft Corporation

a059c4c3edb09e07d21a8e5c0aabd3cb vdrvroot.sys
Microsoft Corporation

17c408214ea61696cec9c66e388b14f3 vgapnp.sys
Microsoft Corporation

8e38096ad5c8570a6f1570a61e251561 vga.sys
Microsoft Corporation

5461686cca2fda57b024547733ab42e3 vhdmp.sys
Microsoft Corporation

c829317a37b4bea8f39735d4b076e923 VIAAGP.SYS
Microsoft Corporation

e02f079a6aa107f06b16549c6e5c7b74 viac7.sys
Microsoft Corporation

e43574f6a56a0ee11809b48c09e4fd3c viaide.sys
VIA Technologies

15c126d1b55814b9e5cab10a9c1f4c67 videoprt.sys
Microsoft Corporation

d4d77455211e204f370d08f4963063ce VMBusHID.sys
Microsoft Corporation

c2f2911156fdc7817c52829c86da494e vmbus.sys
Microsoft Corporation

7fa7f2e249a5dcbb7970630e15e1f482 vms3cap.sys
Microsoft Corporation

472af0311073dceceaa8fa18ba2bdf89 vmstorfl.sys
Microsoft Corporation

4c63e00f2f4b5f86ab48a58cd990f212 volmgr.sys
Microsoft Corporation

b5bb72067ddddbbfb04b2f89ff8c3c87 volmgrx.sys
Microsoft Corporation

f497f67932c6fa693d7de2780631cfe7 volsnap.sys
Microsoft Corporation

9dfa0cc2f8855a04816729651175b631 vsmraid.sys
VIA Technologies

e00fdfaff025e94f9821153750c35a6d VSTAZL3.SYS
Conexant

bc0c7ea89194c299f051c24119000e17 VSTCNXT3.SYS
Conexant

ceb4e3b6890e1e42dca6694d9e59e1a0 VSTDPV3.SYS
Conexant

90567b1e658001e79d7c8bbd3dde5aa6 vwifibus.sys
Microsoft Corporation

7090d3436eeb4e7da3373090a23448f7 vwififlt.sys
Microsoft Corporation

a3f04cbea6c2a10e6cb01f8b47611882 vwifimp.sys
Microsoft Corporation

de3721e89c653aa281428c8a69745d90 wacompen.sys
Microsoft Corporation

3c3c78515f5ab448b022bdf5b8ffdd2e wanarp.sys
Microsoft Corporation

cb45a417c8ef7ba6bac67edcdded8700 watchdog.sys
Microsoft Corporation

9950e3d0f08141c7e89e64456ae7dc73 Wdf01000.sys
Microsoft Corporation

fe7a7675c26fe936226641ef32ae9bb5 WdfLdr.sys
Microsoft Corporation

1112a9badacb47b7c0bb0392e3158dff wd.sys
Microsoft Corporation

8b9a943f3b53861f2bfaf6c186168f79 wfplwf.sys
Microsoft Corporation

5cf95b35e59e2a38023836fff31be64c wimmount.sys
Microsoft Corporation

62ba4fdca65bdb69695e0d1157c57717 winhv.sys
Microsoft Corporation

0217679b8fca58714c3bf2726d2ca84e wmiacpi.sys
Microsoft Corporation

9a5b1059fe015db5269fbb25acbf841d wmilib.sys
Microsoft Corporation

6db3276587b853bf886b69528fdb048c ws2ifsl.sys
Microsoft Corporation

553f6ccd7c58eb98d4a8fbdaf283d7a9 WSDPrint.sys
Microsoft Corporation

7dc0270cfd4a05b4112e3ebbf083b595 WSDScan.sys
Microsoft Corporation

e714a1c0354636837e20ccbf00888ee7 WUDFPf.sys
Microsoft Corporation

1023ee888c9b47178c5293ed5336ab69 WUDFRd.sys
Microsoft Corporation

#9 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 11 October 2011 - 06:25 PM

  • Download xPUDtestdisk.exe and save it to the USB device
  • Double click xPUDtestdisk.exe to extract the contents to your USB device
  • Remove the USB.
  • Boot the ailing computer with to xPUD
  • A Welcome to xPUD screen will appear
  • Click the File
  • Expand mnt icon on the left
  • sda1,2...usually corresponds to your HDD
  • sdb1 is likely your USB
  • Click on the folder that represents your USB drive (sdb1 ?)
  • Press Tool at the top
  • Choose Open Terminal
  • Type testdisk/testdisk_static
  • Press Enter
  • The TestDisk command window will open
  • Choose Create and press Enter
  • TestDisk will now detect all local hard drives
  • Use the arrow (up and down) keys to highlight the disk called /dev/sda if it represents your primary hard drive and press Enter
  • If your not sure then note everything you see and post it for my review
  • Select [Intel] and press Enter
  • Use the arrows and select [MBR Code] and press Enter.
  • You will be presented with a question,"Write a new copy of MBR to first sector? (Y/N)". Type Y and press Enter.
  • Remove the flash drive and put it back in the working computer, then post the contents of (or attach) the testdisk.log file on the flash drive.

Attempt to boot normally. Let me know the outcome.
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#10 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 13 October 2011 - 12:16 AM

Something tells me this didn't work right, this was all that was in the file....

Thu Oct 13 00:10:29 2011
Command line: TestDisk



When I restarted again, it brought up the Windows Boot Manager. It wants me to insert my Windows install disc and restart, "repair your computer"
Status: 0xc000000e
Info: The boot selection failed because a required device is inaccessible

Attached Files


Edited by romag14, 13 October 2011 - 02:57 AM.


#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 13 October 2011 - 09:28 AM

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.



Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 13 October 2011 - 03:02 PM

Is one of the two methods of getting there preferred? I do have the windows disc somewhere around here, I can go dig it up, or I could just go the first route much quicker. Does it matter?

#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 13 October 2011 - 04:03 PM

which ever one works - start with the first one and if it works great


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 romag14

romag14
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:07:33 PM

Posted 14 October 2011 - 07:39 PM

I might not get to it til after the weekend, please don't delete

#15 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:09:33 PM

Posted 14 October 2011 - 08:19 PM

thanks for letting me know


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users