Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My laptop is really screwed up after running window defender.


  • This topic is locked This topic is locked
2 replies to this topic

#1 sejun

sejun

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:08 PM

Posted 08 April 2013 - 01:12 PM

Hello
 
Please help me!
After window defender ran, My laptop doesn't boot up. It just blinks in dos mode. (Even I can't boot in safe window mode)
 
OS is window vista busineess 32bit. I used your tool "(Farbar Recoverty tool)FRST.exe"
I got following report.
 
Could you please tell me how I can recover my boot sector so that I can use my laptop continuously without installing OS newly?   Any comment and Fix I will appreciate.
 
So far, things I tried:
 
1) window repair mode -> didn't work. they just say they can't solve it.
2) bootrec /fixmr........et all -> It seems to do something...Still can't boot up in window mode.
3) I ran Kav_rescue to eliminate left bugs. It claim it eliminate all but still doesn't make sucessful window boot
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2013 (ATTENTION: FRST version is 26 days old)
Ran by SYSTEM at 08-04-2013 13:47:07
Running from F:\
Windows Vista ™ Business   (X86) OS Language: English(US)
The current controlset is ControlSet001
==================== Registry (Whitelisted) ===================
HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe [200704 2008-10-28] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2008-12-03] (Intel Corporation)
HKLM\...\Run: [CLIVFR] "C:\Program Files\Dell\Latitude ON Reader Data\CLIVFR.exe" [233472 2008-08-29] (CyberLink)
HKLM\...\Run: [BIOSEvent] "C:\Program Files\Dell\Latitude ON Reader Data\BIOSEvent.exe" [110592 2008-08-29] ()
HKLM\...\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [128296 2008-05-22] (CyberLink Corp.)
HKLM\...\Run: [Korean IME Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEKR\IMKRMIG.EXE /UNINSTALL [26400 2006-10-25] (Microsoft Corporation)
HKLM\...\Run: [snp2std] C:\Windows\vsnp2std.exe [675840 2006-09-14] (Sonix)
HKLM\...\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe [483420 2008-12-01] (IDT, Inc.)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [41208 2012-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-02] (Adobe Systems Incorporated)
HKLM\...\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [3524536 2012-08-06] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [mereur] "C:\Windows\System32\rundll32.exe" "C:\Users\???\AppData\Roaming\mereur.dll",HasKeyString [x]
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [947152 2013-01-27] (Microsoft Corporation)
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] fastprox.dll ATTENTION! ====> ZeroAccess
AppInit_DLLs: HIMYM.dll
==================== Services (Whitelisted) ===================
2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_505c1590\aestsrv.exe [81920 2008-12-01] (Andrea Electronics Corporation)
2 alssvc; "C:\Program Files\Dell\Ambient Light Sensor\AlsSvc.exe" [382232 2008-06-02] (Dell Inc.)
2 ASFAgent; C:\Program Files\Intel\ASF Agent\ASFAgent.exe [133968 2007-04-18] (Intel Corporation)
2 buttonsvc32; "C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe" [320800 2008-12-28] (Dell Inc.)
3 getPlus® Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [33176 2009-03-02] (NOS Microsystems Ltd.)
3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP2\RpcAgentSrv.exe [95896 2009-02-03] (SiSoftware)
2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_505c1590\STacSV.exe [241746 2008-12-01] (IDT, Inc.)
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [x]
3 NisSrv; "c:\Program Files\Microsoft Security Client\NisSrv.exe" [x]
2 RunS; C:\Users\???\AppData\Roaming\MULTID~1\MultiDownLoadSvc.exe [x]
2 sgsvc; C:\Program Files\AhnLab\SiteGuard2\sgsvc.exe [x]
==================== Drivers (Whitelisted) ====================
3 AhnFlt2k; \??\C:\Windows\system32\Drivers\AhnFlt2k.sys [54272 2013-02-15] (AhnLab, Inc.)
3 AhnRec2k; \??\C:\Windows\system32\Drivers\AhnRec2k.sys [22144 2013-02-15] (AhnLab, Inc.)
3 AsfAlrt; \??\C:\Windows\system32\Drivers\AsfAlrt.sys [42832 2007-04-18] (Intel Corporation)
3 cmusbser; C:\Windows\System32\DRIVERS\cmusbser.sys [87040 2006-12-13] (Cmotech Co.,Ltd)
3 cvusbdrv; C:\Windows\System32\Drivers\cvusbdrv.sys [32808 2008-07-22] (Broadcom Corporation)
3 FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [36640 2012-05-23] ()
4 HBtnKey; C:\Windows\system32\drivers\hbtnkey.sys [11392 2008-10-17] (Dell Inc.)
3 JRSKD24; \??\C:\Windows\system32\JRSKD24.SYS [25512 2011-01-11] (SoftForum Corporation)
3 JRSUKD25; \??\C:\Windows\system32\JRSUKD25.SYS [19496 2011-01-11] (Soft Security Corporation)
3 kcrtx86; \??\C:\Windows\system32\kcrtx86.sys [126048 2011-06-15] (Kings Information & Network)
0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
3 NETwNv32; C:\Windows\System32\DRIVERS\NETwNv32.sys [6680064 2010-07-13] (Intel Corporation)
3 NPIDS; \??\C:\Windows\system32\NpIdsVt.sys [47200 2010-09-07] (INCA Internet Co., Ltd.)
3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP2\WNt500x86\Sandra.sys [23112 2009-08-07] (SiSoftware)
2 scsk5; C:\Windows\System32\drivers\scsk5.sys [57144 2012-06-22] ()
3 SNP2STD; C:\Windows\System32\DRIVERS\snp2sxp.sys [12033024 2007-03-29] ()
1 7f274dda; \??\C:\Windows\system32\drivers\7f274dda.sys [x]
3 ATamptNt_ASG; \??\C:\Program Files\AhnLab\SiteGuard2\ATamptNt.sys [x]
3 HSBDrvNt; \??\C:\Windows\system32\drivers\HSBDrvNt.sys [x]
3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x]
3 neokdss; C:\Windows\System32\Drivers\neokdss.sys [x]
2 npkakl; \??\C:\Windows\system32\npkakl.sys [x]
3 npkcusb; \??\C:\Windows\system32\npkcusb.sys [x]
3 NvtSp50; C:\Windows\System32\Drivers\NvtSp50.sys [x]
3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x]
3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x]
0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [x]
3 ProDefense; \??\C:\Windows\system32\drivers\ProDefense.sys [x]
3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [x]
==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========
2013-04-08 13:46 - 2013-04-08 13:46 - 00000000 ____D C:\FRST
2013-04-08 01:21 - 2013-04-08 01:38 - 00024576 ____A C:\BCD_Backup
2013-04-08 01:21 - 2013-04-08 01:38 - 00021504 __ASH C:\BCD_Backup.LOG
2013-04-07 21:38 - 2013-04-07 21:38 - 00000000 ____D C:\Windows\Microsoft Antimalware
2013-04-07 16:38 - 2013-04-07 16:38 - 00002154 ____A C:\Windows\epplauncher.mif
2013-04-07 16:38 - 2013-04-07 16:38 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-04-07 16:37 - 2010-04-05 12:00 - 00221568 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2013-04-07 16:14 - 2013-04-07 16:14 - 00000129 ____A C:\Windows\System32\MRT.INI
2013-04-05 15:05 - 2013-04-05 15:05 - 00145144 ____A C:\Windows\Minidump\Mini040513-01.dmp
2013-04-03 04:34 - 2013-04-03 04:34 - 00145144 ____A C:\Windows\Minidump\Mini040313-02.dmp
2013-04-03 03:57 - 2013-02-01 20:09 - 12321792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-04-03 03:57 - 2013-02-01 19:42 - 09738240 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-04-03 03:57 - 2013-02-01 19:38 - 01800704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-04-03 03:57 - 2013-02-01 19:31 - 01103872 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-04-03 03:57 - 2013-02-01 19:30 - 01427968 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-04-03 03:57 - 2013-02-01 19:30 - 01129472 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-04-03 03:57 - 2013-02-01 19:29 - 00231936 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-04-03 03:57 - 2013-02-01 19:27 - 00065024 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-04-03 03:57 - 2013-02-01 19:26 - 00717824 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-04-03 03:57 - 2013-02-01 19:26 - 00420864 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-04-03 03:57 - 2013-02-01 19:26 - 00142848 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-04-03 03:57 - 2013-02-01 19:25 - 00607744 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-04-03 03:57 - 2013-02-01 19:23 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-04-03 03:57 - 2013-02-01 19:23 - 01796096 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-04-03 03:57 - 2013-02-01 19:23 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-04-03 03:57 - 2013-02-01 19:20 - 00176640 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-04-03 03:39 - 2013-04-03 03:39 - 00145136 ____A C:\Windows\Minidump\Mini040313-01.dmp
2013-04-03 03:36 - 2013-04-03 03:36 - 00000000 ____D C:\Program Files\GUMC071.tmp
2013-04-03 03:33 - 2013-04-03 03:33 - 00000000 ____D C:\3a1f6d366029e8ce9465c5
2013-04-02 08:17 - 2013-02-11 17:57 - 00015872 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2013-04-02 08:17 - 2013-01-03 17:38 - 02048512 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-04-02 08:17 - 2012-11-21 19:54 - 00353280 ____A (Microsoft Corporation) C:\Windows\System32\shlwapi.dll
2013-04-02 08:17 - 2012-11-19 20:22 - 00204288 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2013-04-02 08:17 - 2012-11-02 02:18 - 00376320 ____A (Microsoft Corporation) C:\Windows\System32\dpnet.dll
2013-04-02 08:17 - 2012-11-02 00:26 - 00023040 ____A (Microsoft Corporation) C:\Windows\System32\dpnsvr.exe
2013-04-02 08:17 - 2012-09-28 08:11 - 00892928 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2013-04-02 08:16 - 2013-01-04 03:28 - 00914792 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-04-02 08:16 - 2013-01-03 17:55 - 00031232 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2013-04-02 08:16 - 2012-11-12 17:29 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2013-04-02 08:16 - 2012-11-07 19:48 - 01314816 ____A (Microsoft Corporation) C:\Windows\System32\quartz.dll
2013-04-02 08:16 - 2012-11-02 02:19 - 01400832 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2013-04-01 07:08 - 2013-04-01 07:08 - 00145160 ____A C:\Windows\Minidump\Mini040113-01.dmp
2013-03-29 04:43 - 2013-03-29 04:43 - 00000000 __SHD C:\found.000
2013-03-23 06:59 - 2013-03-23 06:59 - 00000000 _RASH C:\MSDOS.SYS
2013-03-23 06:59 - 2013-03-23 06:59 - 00000000 _RASH C:\IO.SYS
2013-03-17 08:37 - 2008-01-20 18:24 - 00009216 ____A (Microsoft Corporation) C:\Windows\System32\wshtcptk.dll
2013-03-10 14:20 - 2013-03-10 14:20 - 00000000 ____D C:\Program Files\CrossCert
==================== One Month Modified Files and Folders ========
2013-04-08 13:46 - 2013-04-08 13:46 - 00000000 ____D C:\FRST
2013-04-08 01:40 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\LogFiles
2013-04-08 01:38 - 2013-04-08 01:21 - 00024576 ____A C:\BCD_Backup
2013-04-08 01:38 - 2013-04-08 01:21 - 00021504 __ASH C:\BCD_Backup.LOG
2013-04-07 23:54 - 2012-07-21 18:13 - 00000000 ____D C:\?????
2013-04-07 21:38 - 2013-04-07 21:38 - 00000000 ____D C:\Windows\Microsoft Antimalware
2013-04-07 17:24 - 2012-04-20 15:03 - 00000662 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-04-07 17:24 - 2009-04-09 18:48 - 00000012 ____A C:\Windows\bthservsdp.dat
2013-04-07 17:24 - 2006-11-02 05:01 - 00032678 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-04-07 17:24 - 2006-11-02 05:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-04-07 17:24 - 2006-11-02 04:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-04-07 17:24 - 2006-11-02 04:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-04-07 17:22 - 2006-11-02 05:00 - 00069002 ____A C:\Windows\PFRO.log
2013-04-07 17:21 - 2009-04-10 03:23 - 01275636 ____A C:\Windows\WindowsUpdate.log
2013-04-07 17:19 - 2010-10-06 18:22 - 00000354 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{E9D7E031-9BF2-4A34-ADF9-A67A587B3773}.job
2013-04-07 17:08 - 2008-01-20 22:00 - 01203378 ____A C:\Windows\System32\PerfStringBackup.INI
2013-04-07 17:08 - 2008-01-20 21:59 - 00401710 ____A C:\Windows\System32\perfh012.dat
2013-04-07 17:08 - 2008-01-20 21:59 - 00104690 ____A C:\Windows\System32\perfc012.dat
2013-04-07 16:58 - 2012-04-20 15:03 - 00000666 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-04-07 16:45 - 2012-11-05 15:16 - 00000622 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-04-07 16:38 - 2013-04-07 16:38 - 00002154 ____A C:\Windows\epplauncher.mif
2013-04-07 16:38 - 2013-04-07 16:38 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-04-07 16:28 - 2012-04-25 20:20 - 00000000 ____D C:\Program Files\Common Files\AhnLab
2013-04-07 16:14 - 2013-04-07 16:14 - 00000129 ____A C:\Windows\System32\MRT.INI
2013-04-07 16:14 - 2013-02-08 08:54 - 00002529 ____A C:\Users\Public\Desktop\TurboTax 2012.lnk
2013-04-07 16:10 - 2006-11-02 02:24 - 69796088 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-04-07 10:57 - 2013-02-08 07:15 - 00000000 ____D C:\Kiwidisk.com
2013-04-05 15:05 - 2013-04-05 15:05 - 00145144 ____A C:\Windows\Minidump\Mini040513-01.dmp
2013-04-05 15:05 - 2012-09-27 04:22 - 389849196 ____A C:\Windows\MEMORY.DMP
2013-04-05 15:05 - 2009-06-02 17:39 - 00000000 ____D C:\Windows\Minidump
2013-04-04 12:51 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-04-03 14:46 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\rescache
2013-04-03 04:34 - 2013-04-03 04:34 - 00145144 ____A C:\Windows\Minidump\Mini040313-02.dmp
2013-04-03 04:25 - 2006-11-02 04:47 - 00436120 ____A C:\Windows\System32\FNTCACHE.DAT
2013-04-03 04:24 - 2012-04-27 17:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-04-03 04:22 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\System32\ko-KR
2013-04-03 04:14 - 2009-04-16 01:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-04-03 03:39 - 2013-04-03 03:39 - 00145136 ____A C:\Windows\Minidump\Mini040313-01.dmp
2013-04-03 03:37 - 2012-04-20 15:03 - 00000000 ____D C:\Program Files\Google
2013-04-03 03:36 - 2013-04-03 03:36 - 00000000 ____D C:\Program Files\GUMC071.tmp
2013-04-03 03:33 - 2013-04-03 03:33 - 00000000 ____D C:\3a1f6d366029e8ce9465c5
2013-04-03 03:30 - 2009-04-15 21:18 - 00000000 ____D C:\ProgramData\Adobe
2013-04-01 07:08 - 2013-04-01 07:08 - 00145160 ____A C:\Windows\Minidump\Mini040113-01.dmp
2013-03-29 13:58 - 2012-07-21 18:11 - 00000000 ____D C:\Program Files\Common Files\GRETECH
2013-03-29 04:43 - 2013-03-29 04:43 - 00000000 __SHD C:\found.000
2013-03-23 06:59 - 2013-03-23 06:59 - 00000000 _RASH C:\MSDOS.SYS
2013-03-23 06:59 - 2013-03-23 06:59 - 00000000 _RASH C:\IO.SYS
2013-03-18 05:43 - 2012-12-28 06:43 - 02296432 ____A (AhnLab, Inc.) C:\v3engine.sys
2013-03-13 08:45 - 2012-11-05 15:16 - 00693976 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-03-13 08:45 - 2012-11-05 15:16 - 00073432 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-03-10 14:20 - 2013-03-10 14:20 - 00000000 ____D C:\Program Files\CrossCert
2013-03-09 16:07 - 2012-02-19 21:18 - 00002529 ____A C:\Users\Public\Desktop\TurboTax 2011.lnk
ZeroAccess:
C:\$Recycle.Bin\S-1-5-21-3750876746-3225378788-2484645521-1001\$a2543c3a4cff582b55ace4a85abfcf32
ZeroAccess:
C:\$Recycle.Bin\S-1-5-18\$a2543c3a4cff582b55ace4a85abfcf32
==================== Known DLLs (Whitelisted) =================

==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2012-12-14 09:16] - [2012-08-21 03:47] - 0224640 ____A (Microsoft Corporation) 786DB5771F05EF300390399F626BF30A

==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points  =========================

==================== Memory info ===========================
Percentage of memory in use: 10%
Total physical RAM: 5071.9 MB
Available physical RAM: 4542.9 MB
Total Pagefile: 5070.18 MB
Available Pagefile: 4551.25 MB
Total Virtual: 2047.88 MB
Available Virtual: 1954.3 MB
==================== Partitions =============================
1 Drive c: (OS) (Fixed) (Total:109.13 GB) (Free:31.55 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:3.96 GB) NTFS
3 Drive e: (GRMCPRFRER_EN_DVD) (CDROM) (Total:2.33 GB) (Free:0 GB) UDF
4 Drive f: () (Removable) (Total:0.98 GB) (Free:0.98 GB) FAT
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
  Disk ###  Status         Size     Free     Dyn  Gpt
  --------  -------------  -------  -------  ---  ---
  Disk 0    Online          119 GB      0 B        
  Disk 1    Online         1002 MB      0 B        
Partitions of Disk 0:
===============
Disk ID: 28000000
  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    OEM                117 MB    31 KB
  Partition 2    Primary             10 GB   118 MB
  Partition 3    Primary            109 GB    10 GB
=========================================================
Disk: 0
Partition 1
Type  : DE
Hidden: Yes
Active: No
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 4                      FAT    Partition    117 MB  Healthy    Hidden 
=========================================================
Disk: 0
Partition 2
Type  : 07
Hidden: No
Active: No
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 1     D   RECOVERY     NTFS   Partition     10 GB  Healthy           
=========================================================
Disk: 0
Partition 3
Type  : 07
Hidden: No
Active: Yes
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 2     C   OS           NTFS   Partition    109 GB  Healthy           
=========================================================
Partitions of Disk 1:
===============
Disk ID: 00000001
  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
* Partition 1    Primary           1002 MB      0 B
=========================================================
Disk: 1
There is no partition selected.
There is no partition selected.
Please select a partition and try again.
=========================================================
============================== MBR Partition Table ==================
==============================
Partitions of Disk 0:
===============
Disk ID: 28000000
Partition 1:
=========
Hex: 80001100000000001000000000000000
Active: YES
Type: 00
Size: 0 byte
ATTENTION ===> 0 byte partition bootkit on partition 1
Partition 2:
=========
Hex: 00010100DEFE3F0E3F00000010AD0300
Active: NO
Type: DE
Size: 118 MB
Partition 3:
=========
Hex: 000A3C0F07FEFFFF00B0030000004001
Active: NO
Type: 07 (NTFS)
Size: 10 GB
Partition 4:
=========
Hex: 80FEFFFF07FEFFFF00B043010008A40D
Active: YES
Type: 07 (NTFS)
Size: 109 GB
==============================
Partitions of Disk 1:
===============
Disk ID: 6F20736B
Partition 1:
=========
Hex: 6F74686572206D656469612EFF0D0A44
Active: NO
Type: 72
Size: 544 GB
Partition 2:
=========
Hex: 69736B206572726F72FF0D0A50726573
Active: NO
Type: 65
Size: 923 GB
Partition 3:
=========
Hex: 7320616E79206B657920746F20726573
Active: NO
Type: 79
Size: 923 GB
Partition 4:
=========
Hex: 746172740D0A00000000000000ACCBD8
Active: NO
Type: 0D
Size: -336763289600 byte

Last Boot: 2013-04-07 17:02
==================== End Of Log ============================

Edit: Moved topic from AntiVirus, Firewall and Privacy Products and Protection Methods to the more appropriate forum. ~ Animal


Edited by sejun, 08 April 2013 - 04:11 PM.


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,740 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:08 PM

Posted 13 April 2013 - 01:15 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/491108 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,740 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:08 PM

Posted 18 April 2013 - 01:20 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users