Author Topic: cycbot removal = internet loss (Read 18413 times)

washingmachine · « **Reply #15 on:** March 12, 2012, 12:03:23 PM »

The Laptop has been working good for the last few days. Malwarebytes still blocks C:\Windows\svchost.exe when ever it tries to run on laptop. On another note my wife and I now use my desktop for anything online that has to do with purchases or email. With that being said I went onto my hotmail account on the laptop and a few days later windows hotmail blocked my account. Windows had never blocked my account before but a few months ago my email account did send out spam to my contact list. Not sure if this is related or not. We are worried if we do anything on the laptop someone will get out accounts and info. I will run the ESET scanner later today. Thank you.

SuperDave · « **Reply #16 on:** March 12, 2012, 12:40:53 PM »

Quote

With that being said I went onto my hotmail account on the laptop and a few days later windows hotmail blocked my account.

Hotmail usually blocks accounts when they have been hacked. You will need to change your password. Good luck with that.

Please download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan

Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives

On completion of the scan click save log, save it to your desktop and post in your next reply

washingmachine · « **Reply #17 on:** March 12, 2012, 07:04:45 PM »

Here is the scan of ESET and aswMBR

C:\ProgramData\Microsoft\Windows\DRM\16C0.tmp   Win64/Olmarik.AD trojan   cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\16C1.tmp   Win64/Olmarik.AD trojan   cleaned by deleting - quarantined
C:\Users\Invisigoth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XTVA1QJY\main[2].htm   JS/Kryptik.JL trojan   cleaned by deleting - quarantined
C:\Users\Invisigoth\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\864e612-3b1c64d9   Java/Exploit.CVE-2011-3544.BA trojan   deleted - quarantined

aswMBR version 0.9.9.1649 Copyright(c) 2011 AVAST Software
Run date: 2012-03-12 18:00:23
-----------------------------
18:00:23.708 OS Version: Windows x64 6.1.7600
18:00:23.708 Number of processors: 2 586 0x170A
18:00:23.708 ComputerName: INVISIGOTH-PC UserName: Invisigoth
18:00:26.812 Initialize success
18:01:03.427 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
18:01:03.427 Disk 0 Vendor: Hitachi_HTS545032B9A300 PB3OCA0G Size: 305245MB BusType: 11
18:01:03.443 Device \Driver\atapi -> MajorFunction fffffa8004f975c4
18:01:03.443 Disk 0 MBR read successfully
18:01:03.443 Disk 0 MBR scan
18:01:03.458 Disk 0 TDL4@MBR code has been found
18:01:03.458 Disk 0 MBR hidden
18:01:03.474 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
18:01:03.474 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 292890 MB offset 409600
18:01:03.521 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12154 MB offset 600248320
18:01:03.521 Disk 0 MBR [TDL4] **ROOTKIT**
18:01:03.536 Disk 0 trace - called modules:
18:01:03.552 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa8004f975c4]<<
18:01:03.552 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a63060]
18:01:03.568 3 CLASSPNP.SYS[fffff8800112443f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004739060]
18:01:03.568 \Driver\atapi[0xfffffa8004f0fc10] -> IRP_MJ_CREATE -> 0xfffffa8004f975c4
18:01:03.583 Scan finished successfully
18:01:41.928 Disk 0 MBR has been saved successfully to "C:\Users\Invisigoth\Desktop\MBR.dat"
18:01:41.928 The log file has been saved successfully to "C:\Users\Invisigoth\Desktop\aswMBR.txt"

Thank you.

SuperDave · « **Reply #18 on:** March 12, 2012, 07:48:38 PM »

Download TDSSKiller and save it to your Desktop.
Extract its contents to your desktop.
Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
If an infected file is detected, the default action will be Cure, click on Continue.
If a suspicious file is detected, the default action will be Skip, click on Continue.
It may ask you to reboot the computer to complete the process. Click on Reboot Now.
Click the Report button and copy/paste the contents of it into your next reply

Note:It will also create a log in the C:\ directory..

washingmachine · « **Reply #19 on:** March 12, 2012, 08:44:07 PM »

I ran the TDSSKiller but did not get the report before it asked me to reboot. After reboot I scaned again and not problems were found. Here are the results I did say.

19:32:25.0576 5604   TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
19:32:26.0076 5604   ============================================================
19:32:26.0076 5604   Current date / time: 2012/03/12 19:32:26.0076
19:32:26.0076 5604   SystemInfo:
19:32:26.0076 5604
19:32:26.0076 5604   OS Version: 6.1.7600 ServicePack: 0.0
19:32:26.0076 5604   Product type: Workstation
19:32:26.0076 5604   ComputerName: INVISIGOTH-PC
19:32:26.0076 5604   UserName: Invisigoth
19:32:26.0076 5604   Windows directory: C:\Windows
19:32:26.0076 5604   System windows directory: C:\Windows
19:32:26.0076 5604   Running under WOW64
19:32:26.0076 5604   Processor architecture: Intel x64
19:32:26.0076 5604   Number of processors: 2
19:32:26.0076 5604   Page size: 0x1000
19:32:26.0076 5604   Boot type: Normal boot
19:32:26.0076 5604   ============================================================
19:32:27.0074 5604   Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x13135, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x7F, Type 'K0', Flags 0x00000040
19:32:27.0090 5604   \Device\Harddisk0\DR0:
19:32:27.0090 5604   MBR used
19:32:27.0090 5604   \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
19:32:27.0090 5604   \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23C0D000
19:32:27.0090 5604   \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x23C71000, BlocksNum 0x17BD000
19:32:27.0152 5604   Initialize success
19:32:27.0152 5604   ============================================================
19:32:29.0929 6104   ============================================================
19:32:29.0929 6104   Scan started
19:32:29.0929 6104   Mode: Manual;
19:32:29.0929 6104   ============================================================
19:32:31.0302 6104   1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
19:32:31.0302 6104   1394ohci - ok
19:32:31.0442 6104   ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
19:32:31.0442 6104   ACPI - ok
19:32:31.0489 6104   AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
19:32:31.0489 6104   AcpiPmi - ok
19:32:31.0598 6104   adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:32:31.0598 6104   adp94xx - ok
19:32:31.0754 6104   adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:32:31.0770 6104   adpahci - ok
19:32:31.0848 6104   adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:32:31.0848 6104   adpu320 - ok
19:32:31.0972 6104   AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
19:32:31.0988 6104   AFD - ok
19:32:32.0113 6104   agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
19:32:32.0113 6104   agp440 - ok
19:32:32.0362 6104   aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
19:32:32.0362 6104   aliide - ok
19:32:32.0440 6104   amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
19:32:32.0440 6104   amdide - ok
19:32:32.0503 6104   AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:32:32.0503 6104   AmdK8 - ok
19:32:32.0565 6104   AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys19:32:32.0565 6104   AmdPPM - ok
19:32:32.0737 6104   amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
19:32:32.0737 6104   amdsata - ok
19:32:32.0830 6104   amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:32:32.0830 6104   amdsbs - ok
19:32:33.0080 6104   amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
19:32:33.0080 6104   amdxata - ok
19:32:33.0252 6104   AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
19:32:33.0252 6104   AppID - ok
19:32:33.0486 6104   arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:32:33.0486 6104   arc - ok
19:32:33.0517 6104   arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:32:33.0532 6104   arcsas - ok
19:32:33.0642 6104   AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:32:33.0642 6104   AsyncMac - ok
19:32:33.0704 6104   atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
19:32:33.0704 6104   atapi - ok
19:32:33.0813 6104   b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:32:33.0813 6104   b06bdrv - ok
19:32:33.0876 6104   b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:32:33.0876 6104   b57nd60a - ok
19:32:33.0985 6104   Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:32:33.0985 6104   Beep - ok
19:32:34.0063 6104   blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:32:34.0063 6104   blbdrive - ok
19:32:34.0188 6104   bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
19:32:34.0188 6104   bowser - ok
19:32:34.0250 6104   BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:32:34.0250 6104   BrFiltLo - ok
19:32:34.0328 6104   BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:32:34.0328 6104   BrFiltUp - ok
19:32:34.0406 6104   BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
19:32:34.0406 6104   BridgeMP - ok
19:32:34.0468 6104   Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:32:34.0468 6104   Brserid - ok
19:32:34.0531 6104   BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:32:34.0531 6104   BrSerWdm - ok
19:32:34.0578 6104   BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:32:34.0578 6104   BrUsbMdm - ok
19:32:34.0718 6104   BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:32:34.0718 6104   BrUsbSer - ok
19:32:34.0858 6104   BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:32:34.0858 6104   BTHMODEM - ok
19:32:34.0890 6104   catchme - ok
19:32:35.0092 6104   CAXHWAZL (d1787e11c6a0078ddeaf8cf3ee2ab293) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
19:32:35.0092 6104   CAXHWAZL - ok
19:32:35.0311 6104   cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:32:35.0311 6104   cdfs - ok
19:32:35.0389 6104   cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
19:32:35.0389 6104   cdrom - ok
19:32:35.0514 6104   circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:32:35.0514 6104   circlass - ok
19:32:35.0545 6104   CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:32:35.0560 6104   CLFS - ok
19:32:35.0716 6104   CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:32:35.0732 6104   CmBatt - ok
19:32:35.0748 6104   cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
19:32:35.0748 6104   cmdide - ok
19:32:35.0779 6104   CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
19:32:35.0779 6104   CNG - ok
19:32:35.0935 6104   CnxtHdAudService (3cb10294f7a59fd22501f4bad915f250) C:\Windows\system32\drivers\CHDRT64.sys
19:32:35.0950 6104   CnxtHdAudService - ok
19:32:36.0106 6104   Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:32:36.0106 6104   Compbatt - ok
19:32:36.0216 6104   CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:32:36.0216 6104   CompositeBus - ok
19:32:36.0340 6104   cpuz134 (17719a7f571d4cd08223f0b30f71b8b8) C:\Windows\system32\drivers\cpuz134_x64.sys
19:32:36.0340 6104   cpuz134 - ok
19:32:36.0418 6104   crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:32:36.0418 6104   crcdisk - ok
19:32:36.0574 6104   DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
19:32:36.0574 6104   DfsC - ok
19:32:36.0606 6104   discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:32:36.0606 6104   discache - ok
19:32:36.0715 6104   Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:32:36.0715 6104   Disk - ok
19:32:36.0840 6104   drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:32:36.0840 6104   drmkaud - ok
19:32:37.0011 6104   DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
19:32:37.0027 6104   DXGKrnl - ok
19:32:37.0308 6104   ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:32:37.0323 6104   ebdrv - ok
19:32:37.0417 6104   eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:32:37.0432 6104   eeCtrl - ok
19:32:37.0542 6104   elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:32:37.0542 6104   elxstor - ok
19:32:37.0682 6104   EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:32:37.0682 6104   EraserUtilRebootDrv - ok
19:32:37.0744 6104   ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
19:32:37.0744 6104   ErrDev - ok
19:32:37.0854 6104   exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:32:37.0854 6104   exfat - ok
19:32:37.0885 6104   fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:32:37.0885 6104   fastfat - ok
19:32:37.0963 6104   fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:32:37.0963 6104   fdc - ok
19:32:38.0056 6104   FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:32:38.0056 6104   FileInfo - ok
19:32:38.0088 6104   Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:32:38.0088 6104   Filetrace - ok
19:32:38.0166 6104   flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:32:38.0166 6104   flpydisk - ok
19:32:38.0228 6104   FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
19:32:38.0228 6104   FltMgr - ok
19:32:38.0306 6104   FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:32:38.0306 6104   FsDepends - ok
19:32:38.0337 6104   Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
19:32:38.0337 6104   Fs_Rec - ok
19:32:38.0400 6104   fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:32:38.0400 6104   fvevol - ok
19:32:38.0540 6104   gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:32:38.0540 6104   gagp30kx - ok
19:32:38.0680 6104   GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:32:38.0680 6104   GEARAspiWDM - ok
19:32:38.0930 6104   hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:32:38.0930 6104   hcw85cir - ok
19:32:39.0070 6104   HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
19:32:39.0070 6104   HdAudAddService - ok
19:32:39.0226 6104   HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:32:39.0226 6104   HDAudBus - ok
19:32:39.0258 6104   HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:32:39.0258 6104   HidBatt - ok
19:32:39.0398 6104   HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:32:39.0398 6104   HidBth - ok
19:32:39.0429 6104   HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:32:39.0429 6104   HidIr - ok
19:32:39.0554 6104   HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
19:32:39.0554 6104   HidUsb - ok
19:32:39.0632 6104   HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
19:32:39.0632 6104   HpqKbFiltr - ok
19:32:39.0741 6104   HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:32:39.0741 6104   HpSAMD - ok
19:32:39.0913 6104   HSF_DPV (26c5d00321937e49b6bc91029947d094) C:\Windows\system32\DRIVERS\CAX_DPV.sys
19:32:39.0928 6104   HSF_DPV - ok
19:32:40.0084 6104   HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
19:32:40.0084 6104   HTTP - ok
19:32:40.0287 6104   hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
19:32:40.0287 6104   hwpolicy - ok
19:32:40.0412 6104   i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:32:40.0412 6104   i8042prt - ok
19:32:40.0490 6104   iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
19:32:40.0506 6104   iaStorV - ok
19:32:40.0974 6104   igfx (677aa5991026a65ada128c4b59cf2bad) C:\Windows\system32\DRIVERS\igdkmd64.sys
19:32:41.0052 6104   igfx - ok
19:32:41.0410 6104   iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:32:41.0426 6104   iirsp - ok
19:32:41.0551 6104   IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\Windows\system32\drivers\IntcHdmi.sys
19:32:41.0551 6104   IntcHdmiAddService - ok
19:32:41.0582 6104   intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
19:32:41.0598 6104   intelide - ok
19:32:41.0707 6104   intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:32:41.0707 6104   intelppm - ok
19:32:41.0738 6104   IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:32:41.0738 6104   IpFilterDriver - ok
19:32:41.0847 6104   IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:32:41.0847 6104   IPMIDRV - ok
19:32:41.0972 6104   IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:32:41.0988 6104   IPNAT - ok
19:32:42.0066 6104   IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:32:42.0066 6104   IRENUM - ok
19:32:42.0175 6104   isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
19:32:42.0175 6104   isapnp - ok
19:32:42.0284 6104   iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
19:32:42.0284 6104   iScsiPrt - ok
19:32:42.0393 6104   kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:32:42.0393 6104   kbdclass - ok
19:32:42.0440 6104   kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
19:32:42.0440 6104   kbdhid - ok
19:32:42.0627 6104   KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
19:32:42.0627 6104   KSecDD - ok
19:32:42.0924 6104   KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
19:32:42.0924 6104   KSecPkg - ok
19:32:43.0064 6104   ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:32:43.0064 6104   ksthunk - ok
19:32:43.0423 6104   lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:32:43.0423 6104   lltdio - ok
19:32:43.0610 6104   LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:32:43.0610 6104   LSI_FC - ok
19:32:43.0672 6104   LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:32:43.0672 6104   LSI_SAS - ok
19:32:43.0860 6104   LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:32:43.0860 6104   LSI_SAS2 - ok
19:32:44.0031 6104   LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:32:44.0031 6104   LSI_SCSI - ok
19:32:44.0078 6104   luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:32:44.0078 6104   luafv - ok
19:32:44.0343 6104   MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
19:32:44.0343 6104   MBAMProtector - ok
19:32:44.0702 6104   mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:32:44.0702 6104   mdmxsdk - ok
19:32:45.0279 6104   megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:32:45.0279 6104   megasas - ok
19:32:45.0420 6104   MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:32:45.0420 6104   MegaSR - ok
19:32:45.0498 6104   Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:32:45.0498 6104   Modem - ok
19:32:45.0654 6104   monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:32:45.0654 6104   monitor - ok
19:32:45.0747 6104   mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:32:45.0747 6104   mouclass - ok
19:32:45.0856 6104   mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:32:45.0856 6104   mouhid - ok
19:32:46.0028 6104   mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
19:32:46.0028 6104   mountmgr - ok
19:32:46.0184 6104   mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
19:32:46.0184 6104   mpio - ok
19:32:46.0574 6104   mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:32:46.0574 6104   mpsdrv - ok
19:32:46.0792 6104   MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
19:32:46.0792 6104   MRxDAV - ok
19:32:47.0198 6104   mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:32:47.0198 6104   mrxsmb - ok
19:32:47.0572 6104   mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:32:47.0588 6104   mrxsmb10 - ok
19:32:47.0806 6104   mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:32:47.0806 6104   mrxsmb20 - ok
19:32:47.0931 6104   msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
19:32:47.0931 6104   msahci - ok
19:32:47.0994 6104   msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
19:32:48.0009 6104   msdsm - ok
19:32:48.0103 6104   Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:32:48.0103 6104   Msfs - ok
19:32:48.0243 6104   mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:32:48.0243 6104   mshidkmdf - ok
19:32:48.0368 6104   msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
19:32:48.0368 6104   msisadrv - ok
19:32:48.0524 6104   MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:32:48.0524 6104   MSKSSRV - ok
19:32:48.0696 6104   MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:32:48.0696 6104   MSPCLOCK - ok
19:32:48.0883 6104   MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:32:48.0883 6104   MSPQM - ok
19:32:49.0117 6104   MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
19:32:49.0117 6104   MsRPC - ok
19:32:49.0351 6104   mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:32:49.0351 6104   mssmbios - ok
19:32:49.0413 6104   MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:32:49.0413 6104   MSTEE - ok
19:32:49.0507 6104   MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:32:49.0507 6104   MTConfig - ok
19:32:49.0554 6104   Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:32:49.0554 6104   Mup - ok
19:32:49.0850 6104   NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:32:49.0850 6104   NativeWifiP - ok
19:32:50.0053 6104   NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120213.002\ENG64.SYS
19:32:50.0053 6104   NAVENG - ok
19:32:50.0131 6104   NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120213.002\EX64.SYS
19:32:50.0146 6104   NAVEX15 - ok
19:32:50.0380 6104   NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
19:32:50.0396 6104   NDIS - ok
19:32:50.0521 6104   NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:32:50.0521 6104   NdisCap - ok
19:32:50.0568 6104   NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:32:50.0568 6104   NdisTapi - ok
19:32:50.0802 6104   Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
19:32:50.0802 6104   Ndisuio - ok
19:32:51.0114 6104   NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:32:51.0114 6104   NdisWan - ok
19:32:51.0207 6104   NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
19:32:51.0207 6104   NDProxy - ok
19:32:51.0238 6104   NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:32:51.0254 6104   NetBIOS - ok
19:32:51.0285 6104   NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
19:32:51.0285 6104   NetBT - ok
19:32:51.0644 6104   NETw1v64 (e72f4522801ffb8f0456924fb0017bff) C:\Windows\system32\DRIVERS\NETw1v64.sys
19:32:51.0691 6104   NETw1v64 - ok
19:32:51.0987 6104   NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys
19:32:52.0034 6104   NETw5s64 - ok
19:32:52.0627 6104   netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
19:32:52.0658 6104   netw5v64 - ok
19:32:52.0798 6104   nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:32:52.0798 6104   nfrd960 - ok
19:32:52.0876 6104   Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:32:52.0876 6104   Npfs - ok
19:32:53.0017 6104   nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:32:53.0017 6104   nsiproxy - ok
19:32:53.0438 6104   Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
19:32:53.0454 6104   Ntfs - ok
19:32:53.0625 6104   Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:32:53.0625 6104   Null - ok
19:32:53.0703 6104   nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
19:32:53.0703 6104   nvraid - ok
19:32:53.0875 6104   nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
19:32:53.0875 6104   nvstor - ok
19:32:53.0984 6104   nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
19:32:53.0984 6104   nv_agp - ok
19:32:54.0031 6104   ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
19:32:54.0031 6104   ohci1394 - ok
19:32:54.0249 6104   Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:32:54.0249 6104   Parport - ok
19:32:54.0343 6104   partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
19:32:54.0343 6104   partmgr - ok
19:32:54.0546 6104   pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
19:32:54.0546 6104   pci - ok
19:32:54.0764 6104   pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
19:32:54.0764 6104   pciide - ok
19:32:54.0904 6104   pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:32:54.0920 6104   pcmcia - ok
19:32:55.0107 6104   pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:32:55.0107 6104   pcw - ok
19:32:55.0294 6104   PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:32:55.0294 6104   PEAUTH - ok
19:32:55.0466 6104   PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
19:32:55.0482 6104   PptpMiniport - ok
19:32:55.0575 6104   Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:32:55.0591 6104   Processor - ok
19:32:55.0778 6104   Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
19:32:55.0778 6104   Psched - ok
19:32:55.0887 6104   ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:32:55.0903 6104   ql2300 - ok
19:32:56.0028 6104   ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:32:56.0028 6104   ql40xx - ok
19:32:56.0215 6104   QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:32:56.0215 6104   QWAVEdrv - ok
19:32:56.0293 6104   RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:32:56.0293 6104   RasAcd - ok
19:32:56.0340 6104   RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:32:56.0340 6104   RasAgileVpn - ok
19:32:56.0449 6104   Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:32:56.0449 6104   Rasl2tp - ok
19:32:56.0542 6104   RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:32:56.0542 6104   RasPppoe - ok
19:32:56.0620 6104   RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:32:56.0620 6104   RasSstp - ok
19:32:56.0652 6104   rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
19:32:56.0652 6104   rdbss - ok
19:32:56.0823 6104   rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:32:56.0823 6104   rdpbus - ok
19:32:56.0870 6104   RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:32:56.0870 6104   RDPCDD - ok
19:32:56.0995 6104   RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:32:56.0995 6104   RDPENCDD - ok
19:32:57.0042 6104   RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:32:57.0042 6104   RDPREFMP - ok
19:32:57.0073 6104   RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
19:32:57.0073 6104   RDPWD - ok
19:32:57.0166 6104   rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
19:32:57.0166 6104   rdyboost - ok
19:32:57.0354 6104   rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:32:57.0354 6104   rspndr - ok
19:32:57.0510 6104   RSUSBSTOR (2db8116d52b19216812c4e6d5d837810) C:\Windows\system32\Drivers\RtsUStor.sys
19:32:57.0510 6104   RSUSBSTOR - ok
19:32:57.0666 6104   RTL8167 (b49dc435ae3695bac5623dd94b05732d) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:32:57.0666 6104   RTL8167 - ok
19:32:57.0759 6104   RtsUIR - ok
19:32:57.0853 6104   SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:32:57.0853 6104   SASDIFSV - ok
19:32:57.0884 6104   SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:32:57.0884 6104   SASKUTIL - ok
19:32:58.0009 6104   sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
19:32:58.0009 6104   sbp2port - ok
19:32:58.0040 6104   scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
19:32:58.0040 6104   scfilter - ok
19:32:58.0258 6104   sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
19:32:58.0258 6104   sdbus - ok
19:32:58.0321 6104   secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:32:58.0321 6104   secdrv - ok
19:32:58.0446 6104   Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:32:58.0446 6104   Serenum - ok
19:32:58.0492 6104   Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:32:58.0492 6104   Serial - ok
19:32:58.0524 6104   sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:32:58.0524 6104   sermouse - ok
19:32:58.0680 6104   sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
19:32:58.0680 6104   sffdisk - ok
19:32:58.0711 6104   sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:32:58.0711 6104   sffp_mmc - ok
19:32:58.0773 6104   sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:32:58.0773 6104   sffp_sd - ok
19:32:58.0851 6104   sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:32:58.0851 6104   sfloppy - ok
19:32:58.0960 6104   SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:32:58.0960 6104   SiSRaid2 - ok
19:32:59.0038 6104   SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:32:59.0038 6104   SiSRaid4 - ok
19:32:59.0132 6104   Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:32:59.0132 6104   Smb - ok
19:32:59.0319 6104   spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:32:59.0319 6104   spldr - ok
19:32:59.0413 6104   SRTSP (32900ac9cfdc578531279886ca16a4df) C:\Windows\system32\Drivers\SRTSP64.SYS
19:32:59.0428 6104   SRTSP - ok
19:32:59.0522 6104   SRTSPL (8929566d1f14685fd78eaf25bee3ecc7) C:\Windows\system32\Drivers\SRTSPL64.SYS
19:32:59.0522 6104   SRTSPL - ok
19:32:59.0616 6104   SRTSPX (cb2fdf47ee67f8cca5362ed9b94fe955) C:\Windows\system32\Drivers\SRTSPX64.SYS
19:32:59.0616 6104   SRTSPX - ok
19:32:59.0678 6104   srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
19:32:59.0678 6104   srv - ok
19:32:59.0974 6104   srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
19:32:59.0974 6104   srv2 - ok
19:33:00.0271 6104   SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:33:00.0271 6104   SrvHsfHDA - ok
19:33:00.0583 6104   SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:33:00.0583 6104   SrvHsfV92 - ok
19:33:00.0926 6104   SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:33:00.0942 6104   SrvHsfWinac - ok
19:33:01.0098 6104   srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
19:33:01.0098 6104   srvnet - ok
19:33:01.0222 6104   stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:33:01.0222 6104   stexstor - ok
19:33:01.0254 6104   swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:33:01.0254 6104   swenum - ok
19:33:01.0394 6104   SymEvent (7e4d281982e19abd06728c7ee9ac40a8) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:33:01.0394 6104   SymEvent - ok
19:33:01.0441 6104   SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys
19:33:01.0456 6104   SynTP - ok
19:33:01.0753 6104   Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
19:33:01.0768 6104   Tcpip - ok
19:33:01.0956 6104   TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
19:33:01.0971 6104   TCPIP6 - ok
19:33:02.0112 6104   tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
19:33:02.0112 6104   tcpipreg - ok
19:33:02.0158 6104   TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:33:02.0158 6104   TDPIPE - ok
19:33:02.0205 6104   TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
19:33:02.0221 6104   TDTCP - ok
19:33:02.0283 6104   tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
19:33:02.0299 6104   tdx - ok
19:33:02.0330 6104   Teefer2 (13657dc475de564247745bf4da23207c) C:\Windows\system32\DRIVERS\teefer2.sys
19:33:02.0330 6104   Teefer2 - ok
19:33:02.0470 6104   TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
19:33:02.0470 6104   TermDD - ok
19:33:02.0595 6104   tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:33:02.0595 6104   tssecsrv - ok
19:33:02.0642 6104   tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
19:33:02.0658 6104   tunnel - ok
19:33:02.0798 6104   uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:33:02.0798 6104   uagp35 - ok
19:33:02.0954 6104   udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
19:33:02.0954 6104   udfs - ok
19:33:03.0079 6104   uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:33:03.0079 6104   uliagpkx - ok
19:33:03.0110 6104   umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
19:33:03.0110 6104   umbus - ok
19:33:03.0141 6104   UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:33:03.0141 6104   UmPass - ok
19:33:03.0250 6104   USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
19:33:03.0250 6104   USBAAPL64 - ok
19:33:03.0313 6104   usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
19:33:03.0313 6104   usbccgp - ok
19:33:03.0453 6104   USBCCID - ok
19:33:03.0547 6104   usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
19:33:03.0547 6104   usbcir - ok
19:33:03.0656 6104   usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
19:33:03.0656 6104   usbehci - ok
19:33:03.0812 6104   usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
19:33:03.0812 6104   usbhub - ok
19:33:03.0968 6104   usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
19:33:03.0968 6104   usbohci - ok
19:33:04.0030 6104   usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:33:04.0030 6104   usbprint - ok
19:33:04.0233 6104   USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:33:04.0233 6104   USBSTOR - ok
19:33:04.0483 6104   usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:33:04.0483 6104   usbuhci - ok
19:33:04.0982 6104   usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
19:33:04.0982 6104   usbvideo - ok
19:33:05.0154 6104   usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
19:33:05.0154 6104   usb_rndisx - ok
19:33:05.0341 6104   vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:33:05.0341 6104   vdrvroot - ok
19:33:05.0434 6104   vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:33:05.0434 6104   vga - ok
19:33:05.0528 6104   VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:33:05.0528 6104   VgaSave - ok
19:33:05.0653 6104   vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
19:33:05.0653 6104   vhdmp - ok
19:33:05.0762 6104   viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
19:33:05.0778 6104   viaide - ok
19:33:05.0887 6104   volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
19:33:05.0887 6104   volmgr - ok
19:33:05.0980 6104   volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
19:33:05.0980 6104   volmgrx - ok
19:33:06.0105 6104   volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
19:33:06.0121 6104   volsnap - ok
19:33:06.0246 6104   vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:33:06.0261 6104   vsmraid - ok
19:33:06.0417 6104   vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:33:06.0417 6104   vwifibus - ok
19:33:06.0573 6104   vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:33:06.0573 6104   vwififlt - ok
19:33:06.0667 6104   WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:33:06.0667 6104   WacomPen - ok
19:33:06.0792 6104   WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:33:06.0792 6104   WANARP - ok
19:33:06.0823 6104   Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:33:06.0823 6104   Wanarpv6 - ok
19:33:06.0963 6104   Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:33:06.0979 6104   Wd - ok
19:33:07.0088 6104   Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:33:07.0088 6104   Wdf01000 - ok
19:33:07.0244 6104   WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:33:07.0244 6104   WfpLwf - ok
19:33:07.0291 6104   WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:33:07.0291 6104   WIMMount - ok
19:33:07.0462 6104   winachsf (a6ea7a3fc4b00f48535b506db1e86efd) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
19:33:07.0478 6104   winachsf - ok
19:33:07.0603 6104   WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:33:07.0603 6104   WmiAcpi - ok
19:33:07.0712 6104   WPS (6cab753b203f39b4ce05ff10013de2ef) C:\Windows\system32\drivers\wpsdrvnt.sys
19:33:07.0712 6104   WPS - ok
19:33:07.0743 6104   WpsHelper (d9b5a13804b7d97770c42da484a9d86e) C:\Windows\system32\drivers\WpsHelper.sys
19:33:07.0743 6104   WpsHelper - ok
19:33:07.0837 6104   ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:33:07.0837 6104   ws2ifsl - ok
19:33:07.0884 6104   WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
19:33:07.0884 6104   WudfPf - ok
19:33:07.0993 6104   WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:33:07.0993 6104   WUDFRd - ok
19:33:08.0071 6104   XAudio (e8f3fa126a06f8e7088f63757112a186) C:\Windows\system32\DRIVERS\XAudio64.sys
19:33:08.0071 6104   XAudio - ok
19:33:08.0180 6104   yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
19:33:08.0180 6104   yukonw7 - ok
19:33:08.0227 6104   MBR (0x1B8) (de23ad1285d12ab3358945dc7628786c) \Device\Harddisk0\DR0
19:33:08.0289 6104   \Device\Harddisk0\DR0 - ok
19:33:08.0305 6104   Boot (0x1200) (fb66b5aa8fc754b3e8d6cbe53e923388) \Device\Harddisk0\DR0\Partition0
19:33:08.0305 6104   \Device\Harddisk0\DR0\Partition0 - ok
19:33:08.0336 6104   Boot (0x1200) (eb4ff44826345e9bf9d9ee2dffa708a8) \Device\Harddisk0\DR0\Partition1
19:33:08.0352 6104   \Device\Harddisk0\DR0\Partition1 - ok
19:33:08.0398 6104   Boot (0x1200) (4bd104a4728070cb0b19a1e50009d080) \Device\Harddisk0\DR0\Partition2
19:33:08.0445 6104   \Device\Harddisk0\DR0\Partition2 - ok
19:33:08.0445 6104   ============================================================
19:33:08.0445 6104   Scan finished
19:33:08.0445 6104   ============================================================
19:33:08.0461 2376   Detected object count: 0
19:33:08.0461 2376   Actual detected object count: 0

SuperDave · « **Reply #20 on:** March 13, 2012, 11:36:08 AM »

Could you please run aswMBR.exe as described in Reply # 16?

washingmachine · « **Reply #21 on:** March 13, 2012, 09:46:27 PM »

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-03-13 20:40:03
-----------------------------
20:40:03.044 OS Version: Windows x64 6.1.7600
20:40:03.044 Number of processors: 2 586 0x170A
20:40:03.044 ComputerName: INVISIGOTH-PC UserName: Invisigoth
20:40:04.589 Initialize success
20:41:05.462 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:41:05.462 Disk 0 Vendor: Hitachi_HTS545032B9A300 PB3OCA0G Size: 305245MB BusType: 11
20:41:05.493 Disk 0 MBR read successfully
20:41:05.493 Disk 0 MBR scan
20:41:05.493 Disk 0 unknown MBR code
20:41:05.509 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
20:41:05.524 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 292890 MB offset 409600
20:41:05.555 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12154 MB offset 600248320
20:41:05.587 Disk 0 scanning C:\Windows\system32\drivers
20:41:11.795 Service scanning
20:41:27.333 Service Teefer2 C:\Windows\system32\DRIVERS\teefer2.sys **LOCKED** 32
20:41:30.032 Service WPS C:\Windows\system32\drivers\wpsdrvnt.sys **LOCKED** 32
20:41:30.094 Service WpsHelper C:\Windows\system32\drivers\WpsHelper.sys **LOCKED** 32
20:41:31.592 Modules scanning
20:41:32.107 Disk 0 trace - called modules:
20:41:32.138 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
20:41:32.138 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004922660]
20:41:32.153 3 CLASSPNP.SYS[fffff880010fa43f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80046fa060]
20:41:32.169 Scan finished successfully
20:43:45.783 Disk 0 MBR has been saved successfully to "C:\Users\Invisigoth\Desktop\MBR.dat"
20:43:45.799 The log file has been saved successfully to "C:\Users\Invisigoth\Desktop\aswMBR.txt"

SuperDave · « **Reply #22 on:** March 14, 2012, 12:31:04 PM »

Please download MBRCheck.exe by a_d_13 from one of the links provided below and save it to your desktop.

Link 1
Link 2
Link 3

•Double-click on MBRCheck.exe to run it.

•It will open a black window...please do not fix anything (if it gives you an option).

•When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.

•A log named MBRCheck_date_time.txt (i.e. MBRCheck_07.21.10_10.22.51.txt) will appear on the desktop.
•Please copy and paste the contents of that log in your next reply.

washingmachine · « **Reply #23 on:** March 14, 2012, 07:31:18 PM »

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version:      Windows 7 Home Premium Edition
Windows Information:       (build 7600), 64-bit
Base Board Manufacturer:   Wistron
BIOS Manufacturer:      Hewlett-Packard
System Manufacturer:      Hewlett-Packard
System Product Name:      HP G60 Notebook PC
Logical Drives Mask:      0x0000001c

Kernel Drivers (total 240):
0x02C49000 \SystemRoot\system32\ntoskrnl.exe
0x02C00000 \SystemRoot\system32\hal.dll
0x00BC7000 \SystemRoot\system32\kdcom.dll
0x00CC5000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00D09000 \SystemRoot\system32\PSHED.dll
0x00D1D000 \SystemRoot\system32\CLFS.SYS
0x00C00000 \SystemRoot\system32\CI.dll
0x00EF7000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F9B000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00E00000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00E57000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00E60000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00E6A000 \SystemRoot\system32\DRIVERS\pci.sys
0x00E9D000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00EAA000 \SystemRoot\system32\DRIVERS\isapnp.sys
0x00EB3000 \SystemRoot\system32\DRIVERS\mpio.sys
0x00EDD000 \SystemRoot\System32\drivers\partmgr.sys
0x00FAA000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00FB3000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00FBF000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00D7B000 \SystemRoot\System32\drivers\volmgrx.sys
0x00FD4000 \SystemRoot\system32\DRIVERS\intelide.sys
0x00FDC000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x00FEC000 \SystemRoot\system32\DRIVERS\aliide.sys
0x00FF3000 \SystemRoot\system32\DRIVERS\amdide.sys
0x00DD7000 \SystemRoot\system32\DRIVERS\cmdide.sys
0x00DDF000 \SystemRoot\System32\drivers\mountmgr.sys
0x0105C000 \SystemRoot\system32\DRIVERS\msdsm.sys
0x01082000 \SystemRoot\system32\drivers\nvraid.sys
0x010AA000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x010DA000 \SystemRoot\system32\DRIVERS\pciide.sys
0x010E1000 \SystemRoot\system32\DRIVERS\viaide.sys
0x0129E000 \SystemRoot\system32\drivers\iaStorV.sys
0x013BC000 \SystemRoot\system32\DRIVERS\atapi.sys
0x013C5000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x01200000 \SystemRoot\system32\DRIVERS\lsi_sas.sys
0x0121D000 \SystemRoot\system32\DRIVERS\storport.sys
0x0127F000 \SystemRoot\system32\DRIVERS\msahci.sys
0x010E9000 \SystemRoot\system32\DRIVERS\HpSAMD.sys
0x01100000 \SystemRoot\system32\DRIVERS\adp94xx.sys
0x0117B000 \SystemRoot\system32\DRIVERS\adpahci.sys
0x011D1000 \SystemRoot\system32\DRIVERS\adpu320.sys
0x01000000 \SystemRoot\system32\drivers\amdsata.sys
0x01434000 \SystemRoot\system32\DRIVERS\amdsbs.sys
0x0147B000 \SystemRoot\system32\drivers\amdxata.sys
0x01486000 \SystemRoot\system32\DRIVERS\arc.sys
0x0149F000 \SystemRoot\system32\DRIVERS\arcsas.sys
0x014BA000 \SystemRoot\system32\DRIVERS\elxstor.sys
0x01541000 \SystemRoot\system32\DRIVERS\iirsp.sys
0x01552000 \SystemRoot\system32\DRIVERS\lsi_fc.sys
0x01571000 \SystemRoot\system32\DRIVERS\lsi_sas2.sys
0x01584000 \SystemRoot\system32\DRIVERS\lsi_scsi.sys
0x015A3000 \SystemRoot\system32\DRIVERS\megasas.sys
0x016E4000 \SystemRoot\system32\DRIVERS\MegaSR.sys
0x01788000 \SystemRoot\system32\DRIVERS\nfrd960.sys
0x01798000 \SystemRoot\system32\drivers\nvstor.sys
0x0181F000 \SystemRoot\system32\DRIVERS\ql2300.sys
0x01600000 \SystemRoot\system32\DRIVERS\ql40xx.sys
0x019C3000 \SystemRoot\system32\DRIVERS\SiSRaid2.sys
0x019D1000 \SystemRoot\system32\DRIVERS\sisraid4.sys
0x019E9000 \SystemRoot\system32\DRIVERS\stexstor.sys
0x0165F000 \SystemRoot\system32\DRIVERS\vsmraid.sys
0x01689000 \SystemRoot\system32\drivers\fltmgr.sys
0x01800000 \SystemRoot\system32\drivers\fileinfo.sys
0x01A5A000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01C9B000 \SystemRoot\System32\Drivers\msrpc.sys
0x01CF9000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01D13000 \SystemRoot\System32\Drivers\cng.sys
0x01D86000 \SystemRoot\System32\drivers\pcw.sys
0x01D97000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01E8B000 \SystemRoot\system32\drivers\ndis.sys
0x01F7D000 \SystemRoot\system32\drivers\NETIO.SYS
0x01E00000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x02000000 \SystemRoot\System32\drivers\tcpip.sys
0x01E2B000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01E75000 \SystemRoot\system32\DRIVERS\wd.sys
0x01DA1000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x01E7D000 \SystemRoot\System32\Drivers\spldr.sys
0x01FDD000 \SystemRoot\system32\DRIVERS\sbp2port.sys
0x01C00000 \SystemRoot\System32\drivers\rdyboost.sys
0x01C3A000 \SystemRoot\System32\Drivers\mup.sys
0x01C4C000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01C55000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01A00000 \SystemRoot\system32\DRIVERS\disk.sys
0x017C3000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x034C6000 \SystemRoot\System32\Drivers\SRTSP64.SYS
0x04204000 \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120213.002\EX64.SYS
0x0353A000 \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
0x03570000 \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120213.002\ENG64.SYS
0x03590000 \SystemRoot\System32\Drivers\SRTSPX64.SYS
0x035A4000 \SystemRoot\System32\Drivers\Null.SYS
0x035AD000 \SystemRoot\System32\Drivers\Beep.SYS
0x035B4000 \SystemRoot\System32\drivers\vga.sys
0x035C2000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x035E7000 \SystemRoot\System32\drivers\watchdog.sys
0x035F7000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x03400000 \SystemRoot\system32\drivers\rdpencdd.sys
0x03409000 \SystemRoot\system32\drivers\rdprefmp.sys
0x03412000 \SystemRoot\System32\Drivers\Msfs.SYS
0x0341D000 \SystemRoot\System32\Drivers\Npfs.SYS
0x0342E000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0344C000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x03459000 \??\C:\Windows\system32\drivers\wpsdrvnt.sys
0x044B7000 \SystemRoot\system32\drivers\afd.sys
0x04540000 \SystemRoot\System32\DRIVERS\netbt.sys
0x04585000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x04590000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x04599000 \SystemRoot\system32\DRIVERS\pacer.sys
0x045BF000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x045D5000 \SystemRoot\system32\DRIVERS\netbios.sys
0x0441D000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x04438000 \SystemRoot\system32\DRIVERS\termdd.sys
0x0444C000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
0x04456000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
0x04460000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x045E4000 \SystemRoot\system32\drivers\nsiproxy.sys
0x045F0000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x04698000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
0x04711000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
0x04737000 \SystemRoot\System32\drivers\discache.sys
0x04746000 \SystemRoot\System32\Drivers\dfsc.sys
0x04764000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x04775000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x0479B000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x047B1000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x050F9000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
0x05000000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x05B18000 \SystemRoot\System32\drivers\dxgmms1.sys
0x05B5E000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x05B6B000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x05BC1000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x05BD2000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x047BA000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x05E7C000 \SystemRoot\system32\DRIVERS\NETw5s64.sys
0x065DB000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x05E00000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x05E1E000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x05E2A000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x04600000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x05E39000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x05E3B000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x05E4A000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x05E4F000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x05E5C000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x065E8000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04649000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x05E6C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x0346C000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x0466D000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x0349B000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x04400000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x01A34000 \SystemRoot\system32\DRIVERS\teefer2.sys
0x05E78000 \SystemRoot\system32\DRIVERS\swenum.sys
0x015AF000 \SystemRoot\system32\DRIVERS\ks.sys
0x017ED000 \SystemRoot\system32\DRIVERS\umbus.sys
0x04A79000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x04AD3000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x04AE8000 \SystemRoot\system32\drivers\CHDRT64.sys
0x04B94000 \SystemRoot\system32\drivers\portcls.sys
0x04BD1000 \SystemRoot\system32\drivers\drmk.sys
0x04BF3000 \SystemRoot\system32\drivers\ksthunk.sys
0x04A00000 \SystemRoot\system32\DRIVERS\CAXHWAZL.sys
0x08218000 \SystemRoot\system32\DRIVERS\CAX_DPV.sys
0x08477000 \SystemRoot\system32\DRIVERS\CAX_CNXT.sys
0x08542000 \SystemRoot\system32\drivers\modem.sys
0x08551000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x08578000 \SystemRoot\System32\Drivers\crashdmp.sys
0x08586000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x08592000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x085AF000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x085BA000 \SystemRoot\System32\Drivers\usbvideo.sys
0x085E8000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00030000 \SystemRoot\System32\win32k.sys
0x08400000 \SystemRoot\System32\drivers\Dxapi.sys
0x0840C000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00540000 \SystemRoot\System32\TSDDD.dll
0x007B0000 \SystemRoot\System32\cdd.dll
0x00940000 \SystemRoot\System32\ATMFD.DLL
0x0841A000 \SystemRoot\system32\drivers\luafv.sys
0x0843D000 \SystemRoot\system32\drivers\WudfPf.sys
0x0845E000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x0838C000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x083DF000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x08200000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x0309A000 \SystemRoot\system32\drivers\HTTP.sys
0x03162000 \??\C:\Windows\system32\drivers\WpsHelper.sys
0x0319D000 \SystemRoot\system32\DRIVERS\bowser.sys
0x031BB000 \SystemRoot\System32\drivers\mpsdrv.sys
0x031D3000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x03000000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0304E000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x03071000 \??\C:\Windows\system32\drivers\cpuz134_x64.sys
0x0307A000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0x09426000 \SystemRoot\system32\drivers\peauth.sys
0x094CC000 \SystemRoot\System32\Drivers\secdrv.SYS
0x094D7000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x09504000 \SystemRoot\System32\drivers\tcpipreg.sys
0x09516000 \SystemRoot\system32\DRIVERS\XAudio64.sys
0x0951E000 \SystemRoot\System32\DRIVERS\srv2.sys
0x09A18000 \SystemRoot\System32\DRIVERS\srv.sys
0x09AAD000 \??\C:\Windows\system32\drivers\mbam.sys
0x778B0000 \Windows\System32\ntdll.dll
0x47BE0000 \Windows\System32\smss.exe
0xFFBD0000 \Windows\System32\apisetschema.dll
0xFF850000 \Windows\System32\autochk.exe
0xFFAE0000 \Windows\System32\advapi32.dll
0xFFA70000 \Windows\System32\gdi32.dll
0xFFA40000 \Windows\System32\imm32.dll
0xFFA30000 \Windows\System32\lpk.dll
0xFF990000 \Windows\System32\clbcatq.dll
0x77750000 \Windows\System32\wininet.dll
0xFF8B0000 \Windows\System32\oleaut32.dll
0xFEB20000 \Windows\System32\shell32.dll
0xFEA10000 \Windows\System32\msctf.dll
0xFE9F0000 \Windows\System32\sechost.dll
0x77600000 \Windows\System32\urlmon.dll
0x77A80000 \Windows\System32\normaliz.dll
0xFE9D0000 \Windows\System32\imagehlp.dll
0xFE7C0000 \Windows\System32\ole32.dll
0xFE6F0000 \Windows\System32\usp10.dll
0xFE6A0000 \Windows\System32\ws2_32.dll
0x77500000 \Windows\System32\user32.dll
0xFE4C0000 \Windows\System32\setupapi.dll
0x773E0000 \Windows\System32\kernel32.dll
0x771D0000 \Windows\System32\iertutil.dll
0xFE420000 \Windows\System32\msvcrt.dll
0xFE380000 \Windows\System32\comdlg32.dll
0xFE330000 \Windows\System32\Wldap32.dll
0xFE2B0000 \Windows\System32\difxapi.dll
0xFE230000 \Windows\System32\shlwapi.dll
0xFE220000 \Windows\System32\nsi.dll
0x77A70000 \Windows\System32\psapi.dll
0xFE0F0000 \Windows\System32\rpcrt4.dll
0xFDF80000 \Windows\System32\crypt32.dll
0xFDF10000 \Windows\System32\KernelBase.dll
0xFDED0000 \Windows\System32\wintrust.dll
0xFDE90000 \Windows\System32\cfgmgr32.dll
0xFDE70000 \Windows\System32\devobj.dll
0xFDDD0000 \Windows\System32\comctl32.dll
0xFDDC0000 \Windows\System32\msasn1.dll

Processes (total 84):
0 System Idle Process
4 System
280 C:\Windows\System32\smss.exe
388 csrss.exe
448 csrss.exe
456 C:\Windows\System32\wininit.exe
504 C:\Windows\System32\winlogon.exe
552 C:\Windows\System32\services.exe
560 C:\Windows\System32\lsass.exe
572 C:\Windows\System32\lsm.exe
660 C:\Windows\System32\svchost.exe
740 C:\Windows\System32\svchost.exe
840 C:\Windows\System32\svchost.exe
876 C:\Windows\System32\svchost.exe
900 C:\Windows\System32\svchost.exe
248 C:\Windows\System32\svchost.exe
452 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe
336 C:\Windows\System32\svchost.exe
1144 C:\Windows\explorer.exe
1180 C:\Windows\System32\dwm.exe
1196 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
1572 C:\Windows\System32\taskhost.exe
1620 C:\Windows\System32\spoolsv.exe
1704 C:\Windows\System32\svchost.exe
1744 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1896 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SmcGui.exe
1904 C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
1980 C:\Program Files\Java\jre6\bin\jusched.exe
1296 C:\Windows\System32\igfxtray.exe
1152 C:\Program Files\SUPERAntiSpyware\SASCore64.exe
1380 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1736 C:\Windows\System32\hkcmd.exe
948 C:\Windows\System32\igfxpers.exe
2060 C:\Windows\WindowsMobile\wmdc.exe
2100 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
2120 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
2312 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
2320 C:\Program Files (x86)\HP\QuickPlay\QPService.exe
2424 C:\Users\Invisigoth\AppData\Local\Autobahn\mlb-nexdef-autobahn.exe
2436 C:\Program Files (x86)\Bonjour\mDNSResponder.exe
2444 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
2496 C:\Windows\System32\svchost.exe
2632 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
2648 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
2692 C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe
2764 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2772 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
2860 C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
2872 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2952 C:\Program Files (x86)\iTunes\iTunesHelper.exe
2988 C:\Program Files (x86)\Motorola\Moto Helper Service\MotoHelper.exe
3004 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
1336 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
2276 C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe
2216 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
1244 C:\Windows\System32\svchost.exe
2540 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe
1524 C:\Windows\SysWOW64\schtasks.exe
2520 C:\Windows\System32\conhost.exe
1684 C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
3100 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\ProtectionUtilSurrogate.exe
3732 C:\Program Files\iPod\bin\iPodService.exe
3928 C:\Windows\System32\SearchIndexer.exe
4008 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
3332 C:\Windows\System32\svchost.exe
2240 C:\Windows\System32\svchost.exe
3764 WmiPrvSE.exe
4108 C:\Windows\System32\svchost.exe
4336 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4564 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
4944 C:\Program Files\Windows Media Player\wmpnetwk.exe
4200 C:\Windows\System32\svchost.exe
4772 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
4840 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
3296 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
4224 C:\Windows\System32\svchost.exe
4384 C:\Windows\System32\taskhost.exe
3532 C:\Program Files (x86)\Internet Explorer\iexplore.exe
3228 C:\Program Files (x86)\Internet Explorer\iexplore.exe
3640 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
6040 C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
2972 C:\Users\Invisigoth\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AZ0AHTSU\MBRCheck.exe
5512 C:\Windows\System32\conhost.exe
5008 C:\Windows\System32\dllhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`0c800000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000047`8e200000 (NTFS)

PhysicalDrive0 Model Number: HitachiHTS545032B9A300, Rev: PB3OCA0G

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: A2373E353ECEDDBAE737B434911DAC16176437C B

Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:

SuperDave · « **Reply #24 on:** March 15, 2012, 12:42:14 PM »

Please Boot to the System Recovery Options
If you have Windows 7 installation disc, just insert a DVD to the drive, restart computer and it should load automatically (option two presented in the article).
It's possible also that your computer has a pre-installed recovery partition instead - in such a case use a method one (by pressing F8 before Windows starts loading)...
NOTE. If none of the above apply you can create System Repair Disc (link in "Option two") and boot from it.

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

Choose Command Prompt
You should see X:\SOURCES>...

Execute the following commands in bold.
Press Enter after every one of them.

bootrec /fixmbr (<--- there is a "space" after "bootrec")

bootrec /fixboot (<--- there is a "space" after "bootrec")

exit

Restart computer.

washingmachine · « **Reply #25 on:** March 21, 2012, 07:32:23 PM »

Thanks again SuperDave and sorry about the delay in response. Followed the steps you suggested but under command prompt no X:\SOURCES>... popped up and when I typed it in it said "access denied". I ran both bootrec /fixmbr and bootrec /fixboot anyways then restrated cpu. I hope that was the right thing to do?

SuperDave · « **Reply #26 on:** March 22, 2012, 11:52:16 AM »

Please run MBRCheck.exe as outlined in Reply # 22 and post the log.

washingmachine · « **Reply #27 on:** March 22, 2012, 08:50:41 PM »

Here is MBRcheck.exe
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version:      Windows 7 Home Premium Edition
Windows Information:       (build 7600), 64-bit
Base Board Manufacturer:   Wistron
BIOS Manufacturer:      Hewlett-Packard
System Manufacturer:      Hewlett-Packard
System Product Name:      HP G60 Notebook PC
Logical Drives Mask:      0x0000001c

Kernel Drivers (total 241):
0x02C67000 \SystemRoot\system32\ntoskrnl.exe
0x02C1E000 \SystemRoot\system32\hal.dll
0x00B9B000 \SystemRoot\system32\kdcom.dll
0x00C7F000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00CC3000 \SystemRoot\system32\PSHED.dll
0x00CD7000 \SystemRoot\system32\CLFS.SYS
0x00D35000 \SystemRoot\system32\CI.dll
0x00EAD000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F51000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00F60000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00FB7000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00FC0000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00FCA000 \SystemRoot\system32\DRIVERS\pci.sys
0x00E00000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00E0D000 \SystemRoot\system32\DRIVERS\isapnp.sys
0x00E16000 \SystemRoot\system32\DRIVERS\mpio.sys
0x00E40000 \SystemRoot\System32\drivers\partmgr.sys
0x00E55000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00E5E000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00E6A000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00C00000 \SystemRoot\System32\drivers\volmgrx.sys
0x00E7F000 \SystemRoot\system32\DRIVERS\intelide.sys
0x00E87000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x00E97000 \SystemRoot\system32\DRIVERS\aliide.sys
0x00E9E000 \SystemRoot\system32\DRIVERS\amdide.sys
0x00EA5000 \SystemRoot\system32\DRIVERS\cmdide.sys
0x00C5C000 \SystemRoot\System32\drivers\mountmgr.sys
0x01030000 \SystemRoot\system32\DRIVERS\msdsm.sys
0x01056000 \SystemRoot\system32\drivers\nvraid.sys
0x0107E000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x010AE000 \SystemRoot\system32\DRIVERS\pciide.sys
0x010B5000 \SystemRoot\system32\DRIVERS\viaide.sys
0x010BD000 \SystemRoot\system32\drivers\iaStorV.sys
0x011DB000 \SystemRoot\system32\DRIVERS\atapi.sys
0x01000000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x0127A000 \SystemRoot\system32\DRIVERS\lsi_sas.sys
0x01297000 \SystemRoot\system32\DRIVERS\storport.sys
0x012F9000 \SystemRoot\system32\DRIVERS\msahci.sys
0x01304000 \SystemRoot\system32\DRIVERS\HpSAMD.sys
0x0131B000 \SystemRoot\system32\DRIVERS\adp94xx.sys
0x01396000 \SystemRoot\system32\DRIVERS\adpahci.sys
0x01200000 \SystemRoot\system32\DRIVERS\adpu320.sys
0x0122F000 \SystemRoot\system32\drivers\amdsata.sys
0x01466000 \SystemRoot\system32\DRIVERS\amdsbs.sys
0x014AD000 \SystemRoot\system32\drivers\amdxata.sys
0x014B8000 \SystemRoot\system32\DRIVERS\arc.sys
0x014D1000 \SystemRoot\system32\DRIVERS\arcsas.sys
0x014EC000 \SystemRoot\system32\DRIVERS\elxstor.sys
0x01573000 \SystemRoot\system32\DRIVERS\iirsp.sys
0x01584000 \SystemRoot\system32\DRIVERS\lsi_fc.sys
0x015A3000 \SystemRoot\system32\DRIVERS\lsi_sas2.sys
0x015B6000 \SystemRoot\system32\DRIVERS\lsi_scsi.sys
0x015D5000 \SystemRoot\system32\DRIVERS\megasas.sys
0x0161A000 \SystemRoot\system32\DRIVERS\MegaSR.sys
0x016BE000 \SystemRoot\system32\DRIVERS\nfrd960.sys
0x016CE000 \SystemRoot\system32\drivers\nvstor.sys
0x0181B000 \SystemRoot\system32\DRIVERS\ql2300.sys
0x016F9000 \SystemRoot\system32\DRIVERS\ql40xx.sys
0x019BF000 \SystemRoot\system32\DRIVERS\SiSRaid2.sys
0x019CD000 \SystemRoot\system32\DRIVERS\sisraid4.sys
0x019E5000 \SystemRoot\system32\DRIVERS\stexstor.sys
0x01758000 \SystemRoot\system32\DRIVERS\vsmraid.sys
0x01782000 \SystemRoot\system32\drivers\fltmgr.sys
0x01800000 \SystemRoot\system32\drivers\fileinfo.sys
0x01A47000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01400000 \SystemRoot\System32\Drivers\msrpc.sys
0x01A00000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01CDE000 \SystemRoot\System32\Drivers\cng.sys
0x01D51000 \SystemRoot\System32\drivers\pcw.sys
0x01D62000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01E11000 \SystemRoot\system32\drivers\ndis.sys
0x01F03000 \SystemRoot\system32\drivers\NETIO.SYS
0x01F63000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x02002000 \SystemRoot\System32\drivers\tcpip.sys
0x01F8E000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01FD8000 \SystemRoot\system32\DRIVERS\wd.sys
0x01D6C000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x01FE0000 \SystemRoot\System32\Drivers\spldr.sys
0x01DB8000 \SystemRoot\system32\DRIVERS\sbp2port.sys
0x01C00000 \SystemRoot\System32\drivers\rdyboost.sys
0x01FE8000 \SystemRoot\System32\Drivers\mup.sys
0x01E00000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01C3A000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01C74000 \SystemRoot\system32\DRIVERS\disk.sys
0x01DD5000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x0343E000 \SystemRoot\System32\Drivers\SRTSP64.SYS
0x034B2000 \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
0x03508000 \SystemRoot\System32\Drivers\SRTSPX64.SYS
0x0351C000 \SystemRoot\System32\Drivers\Null.SYS
0x03525000 \SystemRoot\System32\Drivers\Beep.SYS
0x0352C000 \SystemRoot\System32\drivers\vga.sys
0x0353A000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x0355F000 \SystemRoot\System32\drivers\watchdog.sys
0x0356F000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x03578000 \SystemRoot\system32\drivers\rdpencdd.sys
0x03581000 \SystemRoot\system32\drivers\rdprefmp.sys
0x0358A000 \SystemRoot\System32\Drivers\Msfs.SYS
0x03595000 \SystemRoot\System32\Drivers\Npfs.SYS
0x035A6000 \SystemRoot\system32\DRIVERS\tdx.sys
0x035C4000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x035D1000 \??\C:\Windows\system32\drivers\wpsdrvnt.sys
0x044E9000 \SystemRoot\system32\drivers\afd.sys
0x04572000 \SystemRoot\System32\DRIVERS\netbt.sys
0x045B7000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x045C2000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x045CB000 \SystemRoot\system32\DRIVERS\pacer.sys
0x04400000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x04416000 \SystemRoot\system32\DRIVERS\netbios.sys
0x04442000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x0445D000 \SystemRoot\system32\DRIVERS\termdd.sys
0x04471000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
0x0447B000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
0x04485000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x044D6000 \SystemRoot\system32\drivers\nsiproxy.sys
0x045F1000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x046A4000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
0x0471D000 \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
0x04743000 \SystemRoot\System32\drivers\discache.sys
0x04752000 \SystemRoot\System32\Drivers\dfsc.sys
0x04770000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x04781000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x047A7000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x047BD000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x050F6000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
0x05000000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x05B15000 \SystemRoot\System32\drivers\dxgmms1.sys
0x05B5B000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x05B68000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x05BBE000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x05BCF000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x047C6000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x05E14000 \SystemRoot\system32\DRIVERS\NETw5s64.sys
0x06573000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x06580000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x0659E000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x065AA000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x04600000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x065B9000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x065BB000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x065CA000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x065CF000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x065DC000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x04649000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x0465F000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x065EC000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x03400000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x04683000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x01A1A000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x04425000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x017CE000 \SystemRoot\system32\DRIVERS\teefer2.sys
0x065F8000 \SystemRoot\system32\DRIVERS\swenum.sys
0x048C9000 \SystemRoot\system32\DRIVERS\ks.sys
0x0490C000 \SystemRoot\system32\DRIVERS\umbus.sys
0x0491E000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x04978000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x04800000 \SystemRoot\system32\drivers\CHDRT64.sys
0x0498D000 \SystemRoot\system32\drivers\portcls.sys
0x049CA000 \SystemRoot\system32\drivers\drmk.sys
0x049EC000 \SystemRoot\system32\drivers\ksthunk.sys
0x08260000 \SystemRoot\system32\DRIVERS\CAXHWAZL.sys
0x0843E000 \SystemRoot\system32\DRIVERS\CAX_DPV.sys
0x082B2000 \SystemRoot\system32\DRIVERS\CAX_CNXT.sys
0x085B2000 \SystemRoot\system32\drivers\modem.sys
0x085C1000 \SystemRoot\system32\drivers\IntcHdmi.sys
0x085E8000 \SystemRoot\System32\Drivers\crashdmp.sys
0x08400000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x0840C000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x08417000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x0837D000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x0839A000 \SystemRoot\System32\Drivers\usbvideo.sys
0x00000000 \SystemRoot\System32\win32k.sys
0x0842A000 \SystemRoot\System32\drivers\Dxapi.sys
0x083C8000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00560000 \SystemRoot\System32\TSDDD.dll
0x00650000 \SystemRoot\System32\cdd.dll
0x008E0000 \SystemRoot\System32\ATMFD.DLL
0x083D6000 \SystemRoot\system32\drivers\luafv.sys
0x08200000 \SystemRoot\system32\drivers\WudfPf.sys
0x08221000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x01C8A000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x08236000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x048AC000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x030DD000 \SystemRoot\system32\drivers\HTTP.sys
0x031A5000 \SystemRoot\system32\DRIVERS\bowser.sys
0x031C3000 \??\C:\Windows\system32\drivers\WpsHelper.sys
0x03000000 \SystemRoot\System32\drivers\mpsdrv.sys
0x03018000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x03045000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x03093000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x030B6000 \??\C:\Windows\system32\drivers\cpuz134_x64.sys
0x030BF000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0x096E7000 \SystemRoot\system32\drivers\peauth.sys
0x0978D000 \SystemRoot\System32\Drivers\secdrv.SYS
0x09798000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x097C5000 \SystemRoot\System32\drivers\tcpipreg.sys
0x097D7000 \SystemRoot\system32\DRIVERS\XAudio64.sys
0x09600000 \SystemRoot\System32\DRIVERS\srv2.sys
0x09EC3000 \SystemRoot\System32\DRIVERS\srv.sys
0x09F58000 \??\C:\Windows\system32\drivers\mbam.sys
0x04206000 \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120322.003\EX64.SYS
0x09FD3000 \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120322.003\ENG64.SYS
0x77410000 \Windows\System32\ntdll.dll
0x47ED0000 \Windows\System32\smss.exe
0xFF730000 \Windows\System32\apisetschema.dll
0xFF0D0000 \Windows\System32\autochk.exe
0xFF6A0000 \Windows\System32\shlwapi.dll
0xFF690000 \Windows\System32\nsi.dll
0x772F0000 \Windows\System32\kernel32.dll
0xFF5B0000 \Windows\System32\oleaut32.dll
0x775E0000 \Windows\System32\normaliz.dll
0xFF5A0000 \Windows\System32\lpk.dll
0x77190000 \Windows\System32\wininet.dll
0xFF500000 \Windows\System32\msvcrt.dll
0xFF4B0000 \Windows\System32\Wldap32.dll
0x775D0000 \Windows\System32\psapi.dll
0xFF380000 \Windows\System32\rpcrt4.dll
0x77040000 \Windows\System32\urlmon.dll
0xFF2E0000 \Windows\System32\clbcatq.dll
0xFF260000 \Windows\System32\difxapi.dll
0xFF230000 \Windows\System32\imm32.dll
0xFF150000 \Windows\System32\advapi32.dll
0x76F40000 \Windows\System32\user32.dll
0xFE3C0000 \Windows\System32\shell32.dll
0xFE3A0000 \Windows\System32\sechost.dll
0xFE1C0000 \Windows\System32\setupapi.dll
0x76D30000 \Windows\System32\iertutil.dll
0xFDFB0000 \Windows\System32\ole32.dll
0xFDF90000 \Windows\System32\imagehlp.dll
0xFDF40000 \Windows\System32\ws2_32.dll
0xFDE30000 \Windows\System32\msctf.dll
0xFDDC0000 \Windows\System32\gdi32.dll
0xFDD20000 \Windows\System32\comdlg32.dll
0xFDC50000 \Windows\System32\usp10.dll
0xFDC10000 \Windows\System32\wintrust.dll
0xFDB70000 \Windows\System32\comctl32.dll
0xFDB50000 \Windows\System32\devobj.dll
0xFDAE0000 \Windows\System32\KernelBase.dll
0xFD970000 \Windows\System32\crypt32.dll
0xFD930000 \Windows\System32\cfgmgr32.dll
0xFD920000 \Windows\System32\msasn1.dll
0x775C0000 \Windows\SysWOW64\normaliz.dll

Processes (total 84):
0 System Idle Process
4 System
272 C:\Windows\System32\smss.exe
380 csrss.exe
444 csrss.exe
452 C:\Windows\System32\wininit.exe
500 C:\Windows\System32\winlogon.exe
548 C:\Windows\System32\services.exe
556 C:\Windows\System32\lsass.exe
568 C:\Windows\System32\lsm.exe
660 C:\Windows\System32\svchost.exe
736 C:\Windows\System32\svchost.exe
832 C:\Windows\System32\svchost.exe
872 C:\Windows\System32\svchost.exe
896 C:\Windows\System32\svchost.exe
112 C:\Windows\System32\svchost.exe
376 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Smc.exe
332 C:\Windows\System32\svchost.exe
1104 C:\Windows\System32\dwm.exe
1132 C:\Windows\explorer.exe
1240 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
1516 C:\Windows\System32\spoolsv.exe
1556 C:\Windows\System32\svchost.exe
1660 C:\Windows\System32\taskhost.exe
1676 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1844 C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
1920 C:\Program Files\Java\jre6\bin\jusched.exe
1976 C:\Program Files\SUPERAntiSpyware\SASCore64.exe
2016 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SmcGui.exe
992 C:\Windows\System32\igfxtray.exe
968 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1264 C:\Windows\System32\hkcmd.exe
932 C:\Windows\System32\igfxpers.exe
436 C:\Windows\WindowsMobile\wmdc.exe
2060 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
2088 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
2200 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
2296 C:\Program Files (x86)\HP\QuickPlay\QPService.exe
2408 C:\Program Files (x86)\Bonjour\mDNSResponder.exe
2420 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
2444 C:\Users\Invisigoth\AppData\Local\Autobahn\mlb-nexdef-autobahn.exe
2496 C:\Windows\System32\svchost.exe
2592 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
2600 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
2676 C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe
2760 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2824 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
2880 C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
2892 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
2960 C:\Program Files (x86)\iTunes\iTunesHelper.exe
3028 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
3036 C:\Program Files (x86)\Motorola\Moto Helper Service\MotoHelper.exe
1460 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
728 C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe
828 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2432 C:\Windows\System32\svchost.exe
2480 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan.exe
1296 C:\Windows\SysWOW64\schtasks.exe
2612 C:\Windows\System32\conhost.exe
592 C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
3104 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\ProtectionUtilSurrogate.exe
3784 C:\Program Files\iPod\bin\iPodService.exe
3812 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
3920 C:\Windows\System32\SearchIndexer.exe
4044 C:\Windows\System32\svchost.exe
2340 C:\Windows\System32\svchost.exe
3572 WmiPrvSE.exe
3316 C:\Windows\System32\svchost.exe
4212 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
4412 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4540 C:\Program Files\Windows Media Player\wmpnetwk.exe
4144 C:\Windows\System32\svchost.exe
5068 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
4520 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
1096 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
3768 C:\Program Files (x86)\Internet Explorer\iexplore.exe
3616 C:\Program Files (x86)\Internet Explorer\iexplore.exe
3792 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
4432 C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
2440 C:\Windows\System32\SearchProtocolHost.exe
4308 C:\Windows\System32\SearchFilterHost.exe
3444 C:\Windows\System32\dllhost.exe
3008 C:\Users\Invisigoth\Downloads\MBRCheck.exe
2068 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`0c800000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000047`8e200000 (NTFS)

PhysicalDrive0 Model Number: HitachiHTS545032B9A300, Rev: PB3OCA0G

Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB7 9

Done!

SuperDave · « **Reply #28 on:** March 23, 2012, 12:51:42 PM »

Please give me an update on how your computer is working now?

Computer Hope Forum

News:

Author Topic: cycbot removal = internet loss (Read 18413 times)

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss

washingmachine

Re: cycbot removal = internet loss

SuperDave

Re: cycbot removal = internet loss