Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

lost "rookie"


  • This topic is locked This topic is locked
4 replies to this topic

#1 bubba1980

bubba1980

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:47 AM

Posted 29 January 2012 - 12:51 AM

posting dds logs.....Attached File  attach.txt   6.93KB   2 downloads

Agian i thank you all for your help
Marty

Attached Files

  • Attached File  dds.txt   9.58KB   9 downloads


BC AdBot (Login to Remove)

 


#2 bubba1980

bubba1980
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:47 AM

Posted 29 January 2012 - 12:56 AM

oops almost forgot the other file:


Copyright© 2011 AVAST Software
Run date: 2012-01-28 01:33:02
-----------------------------
01:33:02.447 OS Version: Windows 6.0.6002 Service Pack 2
01:33:02.447 Number of processors: 2 586 0x203
01:33:02.447 ComputerName: THEHENDERSON-PC UserName: the hendersons
01:33:02.993 Initialize success
01:36:36.620 AVAST engine defs: 12012701
01:36:41.393 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000058
01:36:41.393 Disk 0 Vendor: Hitachi_ ST2O Size: 305245MB BusType: 6
01:36:41.409 Disk 0 MBR read successfully
01:36:41.409 Disk 0 MBR scan
01:36:41.424 Disk 0 unknown MBR code
01:36:41.424 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 14336 MB offset 2048
01:36:41.440 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 145453 MB offset 29362176
01:36:41.471 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 145454 MB offset 327249920
01:36:41.487 Disk 0 scanning sectors +625139712
01:36:41.549 Disk 0 scanning C:\Windows\system32\drivers
01:36:48.460 Service scanning
01:36:49.458 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
01:36:50.098 Modules scanning
01:36:55.121 Disk 0 trace - called modules:
01:36:55.152 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys ndis.sys nvmfdx32.sys
01:36:55.152 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86249ac8]
01:36:55.168 3 CLASSPNP.SYS[8a3aa8b3] -> nt!IofCallDriver -> [0x85db4508]
01:36:55.168 5 acpi.sys[8060e6bc] -> nt!IofCallDriver -> \Device\00000058[0x85db49d0]
01:36:55.870 AVAST engine scan C:\Windows
01:37:05.214 AVAST engine scan C:\Windows\system32
01:39:18.532 AVAST engine scan C:\Windows\system32\drivers
01:39:27.908 AVAST engine scan C:\Users\the hendersons
01:39:55.192 Disk 0 MBR has been saved successfully to "C:\Users\the hendersons\Desktop\MBR.dat"
01:39:55.192 The log file has been saved successfully to "C:\Users\the hendersons\Desktop\aswMBR.txt"

#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:47 AM

Posted 02 February 2012 - 02:25 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) ( 511KB ) to your desktop. Double click the aswMBR.exe to run it

  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please post the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

===

Please post the logs for my review.

#4 bubba1980

bubba1980
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:05:47 AM

Posted 03 February 2012 - 09:31 PM

my computer finaly crashed..... wiped hard drive and installed XP, seems to be good now! I want to say thanks you all for the help!!
Marty.

#5 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:47 AM

Posted 04 February 2012 - 09:08 AM

Thank you for the feed back.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users