trojan horse cryptic ctc

May 2, 2011 at 20:54:08
Specs: Windows XP
I can not get rid of this on my computer with AVG or any other virus programs

See More: trojan horse cryptic ctc

Report •

#1
May 2, 2011 at 21:47:24
seanmcd,

Let's see what the following shows, and we will take it from there...

Please download MBRCheck.exe from one of these links:
http://download.bleepingcomputer.co...
http://ad13.geekstogo.com/MBRCheck.exe
http://www.kernelmode.info/MBRCheck...

Save it to the Desktop.

Double-click on MBRCheck.exe to run it.
(Vista/Windows 7 users right-click and select Run As Administrator.)

It will open a black screen with some data on it. Please do not fix anything (if it gives you an option).

When complete, you should see: Done! Press ENTER to exit....
Press Enter on the keyboard.

A log named MBRCheck_date_time.txt (i.e. MBRCheck_05.02.11_10.22.51.txt) is created on the Desktop.

Please provide the MBRCheck log in your reply.


Report •

#2
May 2, 2011 at 22:20:28
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 129):
0x804D7000 \WINDOWS\system32\ntoskrnl.exe
0x806FF000 \WINDOWS\system32\hal.dll
0x89AD2000 \WINDOWS\system32\KDCOM.DLL
0xF789B000 \WINDOWS\system32\BOOTVID.dll
0xF75A8000 ACPI.sys
0xF7987000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF7597000 pci.sys
0xF75F7000 isapnp.sys
0xF789F000 compbatt.sys
0xF78A3000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF7A4F000 pciide.sys
0xF7707000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF7607000 MountMgr.sys
0xF74D8000 ftdisk.sys
0xF7989000 dmload.sys
0xF74B2000 dmio.sys
0xF78A7000 ACPIEC.sys
0xF7A50000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
0xF770F000 PartMgr.sys
0xF7617000 VolSnap.sys
0xF749A000 atapi.sys
0xF7627000 disk.sys
0xF7637000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF747A000 fltMgr.sys
0xF7468000 sr.sys
0xF7647000 PxHelp20.sys
0xF7451000 KSecDD.sys
0xF7B52000 Ntfs.sys
0xF7424000 NDIS.sys
0xF740A000 Mup.sys
0xF7717000 avgrkx86.sys
0xF78AB000 AVGIDSEH.Sys
0xB62D9000 \SystemRoot\system32\DRIVERS\nv4_mini.sys
0xB62C5000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xB629D000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xF7777000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0xB6279000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF777F000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xB60F0000 \SystemRoot\system32\DRIVERS\athw.sys
0xB60A7000 \SystemRoot\system32\DRIVERS\yk51x86.sys
0xB87D0000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xB874D000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF7787000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xB6070000 \SystemRoot\system32\DRIVERS\SynTP.sys
0xF79B9000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xB873D000 \SystemRoot\system32\DRIVERS\WDFLDR.SYS
0xB5FFF000 \SystemRoot\System32\Drivers\wdf01000.sys
0xB7485000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xB872D000 \SystemRoot\system32\DRIVERS\imapi.sys
0xB871D000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xB870D000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB5FDC000 \SystemRoot\system32\DRIVERS\ks.sys
0xB73FD000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xB7475000 \SystemRoot\system32\DRIVERS\avgfwdx.sys
0xB8171000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF79BD000 \SystemRoot\System32\Drivers\RootMdm.sys
0xB7465000 \SystemRoot\System32\Drivers\Modem.SYS
0xB73ED000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB87C0000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB5FC5000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xB73DD000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xB73CD000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xB745D000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB5FB4000 \SystemRoot\system32\DRIVERS\psched.sys
0xB73BD000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xB6D2B000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xB6D0B000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB6D03000 \SystemRoot\system32\DRIVERS\tap0901.sys
0xB6CFB000 \SystemRoot\system32\DRIVERS\RimSerial.sys
0xB5804000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xB6A9A000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF79CB000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB57A6000 \SystemRoot\system32\DRIVERS\update.sys
0xB8781000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xB6A8A000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB6A7A000 \SystemRoot\system32\drivers\nvhda32.sys
0xB475A000 \SystemRoot\system32\drivers\portcls.sys
0xB86FD000 \SystemRoot\system32\drivers\drmk.sys
0xB86ED000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xB18EC000 \SystemRoot\system32\drivers\RtkHDAud.sys
0xB3E23000 \SystemRoot\system32\drivers\wowfilter.sys
0xB3D3C000 \SystemRoot\system32\drivers\wowxt_kern_i386.sys
0xB3E1B000 \SystemRoot\system32\drivers\tsxt_kern_i386.sys
0xB3D1C000 \SystemRoot\system32\DRIVERS\avgmfx86.sys
0xF799B000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xB23F1000 \SystemRoot\System32\Drivers\Null.SYS
0xF799D000 \SystemRoot\System32\Drivers\Beep.SYS
0xB3DFB000 \SystemRoot\System32\drivers\vga.sys
0xF799F000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xF79A1000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xB3DF3000 \SystemRoot\System32\Drivers\Msfs.SYS
0xB2B9B000 \SystemRoot\System32\Drivers\Npfs.SYS
0xB3485000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB1869000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB1810000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB17C9000 \SystemRoot\system32\DRIVERS\avgtdix.sys
0xB17A3000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB3D0C000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB2B93000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0xB1785000 \SystemRoot\System32\Drivers\usbvideo.sys
0xB175D000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB173B000 \SystemRoot\System32\drivers\afd.sys
0xB3CFC000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB1719000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
0xB2B8B000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
0xB16EE000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB167E000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB2C33000 \SystemRoot\System32\Drivers\Fips.SYS
0xB1610000 \SystemRoot\system32\DRIVERS\avgldx86.sys
0xB6AEA000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xACA79000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xACBBF000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB87FC000 \SystemRoot\System32\drivers\Dxapi.sys
0xF77EF000 \SystemRoot\System32\watchdog.sys
0xBD000000 \SystemRoot\System32\drivers\dxg.sys
0xF7A62000 \SystemRoot\System32\drivers\dxgthk.sys
0xBD012000 \SystemRoot\System32\nv4_disp.dll
0xACED4000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xAB634000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xAB5F7000 \SystemRoot\system32\drivers\wdmaud.sys
0xB875D000 \SystemRoot\system32\drivers\sysaudio.sys
0xB3E03000 \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys
0xAB3ED000 \SystemRoot\system32\DRIVERS\srv.sys
0xF7767000 \SystemRoot\system32\DRIVERS\AVGIDSFilter.Sys
0xAAFBD000 \SystemRoot\system32\DRIVERS\AVGIDSDriver.Sys
0xAACD4000 \SystemRoot\System32\Drivers\HTTP.sys
0x9C2A8000 \SystemRoot\System32\Drivers\Fastfat.SYS
0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 63):
0 System Idle Process
4 System
1440 C:\WINDOWS\system32\smss.exe
1592 csrss.exe
1636 C:\WINDOWS\system32\winlogon.exe
1680 C:\WINDOWS\system32\services.exe
1692 C:\WINDOWS\system32\lsass.exe
1856 C:\WINDOWS\system32\nvsvc32.exe
1880 C:\WINDOWS\system32\svchost.exe
1992 svchost.exe
2032 C:\WINDOWS\system32\svchost.exe
196 svchost.exe
420 svchost.exe
860 C:\WINDOWS\system32\WLTRYSVC.EXE
936 C:\WINDOWS\system32\BCMWLTRY.EXE
988 C:\WINDOWS\system32\spoolsv.exe
1200 C:\WINDOWS\explorer.exe
1432 C:\Program Files\AVG\AVG10\avgfws.exe
1604 C:\Program Files\AVG\AVG10\avgwdsvc.exe
172 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
228 C:\WINDOWS\RTHDCPL.EXE
332 C:\WINDOWS\system32\WLTRAY.EXE
792 C:\Program Files\AVG\AVG10\avgtray.exe
680 C:\WINDOWS\system32\ctfmon.exe
784 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
3720 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
3744 C:\Program Files\AVG\AVG10\avgam.exe
3960 C:\Program Files\AVG\AVG10\avgnsx.exe
1344 C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
1988 C:\Program Files\SRS Labs\WOWXT and TSXT Driver\SRS_PostInstaller2.exe
1144 C:\WINDOWS\system32\svchost.exe
948 wdfmgr.exe
1464 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
3272 C:\Program Files\AVG\AVG10\avgcsrvx.exe
3784 alg.exe
3876 C:\PROGRA~1\AVG\AVG10\avgrsx.exe
2616 C:\Program Files\AVG\AVG10\avgcsrvx.exe
1032 C:\Program Files\Internet Explorer\IEXPLORE.EXE
3028 C:\Program Files\ExpressVPN\bin\expressvpn.exe
2820 C:\Program Files\ExpressVPN\bin\openvpn.exe
3892 C:\Program Files\Mozilla Firefox\firefox.exe
956 C:\Program Files\Outlook Express\wab.exe
2856 C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
2444 C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
1520 C:\Program Files\Outlook Express\wab.exe
2028 C:\Program Files\Outlook Express\wab.exe
3056 C:\Program Files\Outlook Express\wab.exe
3140 C:\Program Files\Outlook Express\wab.exe
2740 C:\Program Files\Outlook Express\wab.exe
116 C:\Program Files\Outlook Express\wab.exe
3204 C:\Program Files\Outlook Express\wab.exe
2576 C:\Program Files\Outlook Express\wab.exe
4496 C:\Program Files\AVG\AVG10\avgcsrvx.exe
4560 C:\Program Files\Mozilla Firefox\firefox.exe
4828 C:\Program Files\Mozilla Firefox\firefox.exe
1496 C:\Program Files\Mozilla Firefox\plugin-container.exe
2560 C:\Program Files\AVG\AVG10\avgui.exe
2696 C:\Program Files\Outlook Express\wab.exe
2800 C:\Program Files\Outlook Express\wab.exe
2440 C:\Program Files\Outlook Express\wab.exe
3468 C:\Program Files\Outlook Express\wab.exe
6024 C:\Program Files\Outlook Express\wab.exe
5080 C:\Documents and Settings\pc\My Documents\Downloads\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000030`d3cbae00 (NTFS)

PhysicalDrive0 Model Number: WDCWD5000BEVT-35A0RT0, Rev: 01.01A01

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A


Done!


Report •

#3
July 24, 2011 at 19:45:34
(c) 2010, AD

Command-line:
Windows Version: Windows XP Home Edition
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000001d

Kernel Drivers (total 136):
0x804D7000 \WINDOWS\system32\ntoskrnl.exe
0x80700000 \WINDOWS\system32\hal.dll
0x8AB01000 \WINDOWS\system32\KDCOM.DLL
0xF789B000 \WINDOWS\system32\BOOTVID.dll
0xF75A8000 ACPI.sys
0xF7987000 \WINDOWS\System32\DRIVERS\WMILIB.SYS
0xF7597000 pci.sys
0xF75F7000 isapnp.sys
0xF7A4F000 pciide.sys
0xF7707000 \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
0xF7607000 MountMgr.sys
0xF74D8000 ftdisk.sys
0xF770F000 PartMgr.sys
0xF7617000 VolSnap.sys
0xF74C0000 atapi.sys
0xF7627000 disk.sys
0xF7637000 \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
0xF74A0000 fltmgr.sys
0xF748E000 sr.sys
0xF7647000 Lbd.sys
0xF7717000 PxHelp20.sys
0xF7477000 KSecDD.sys
0xF7B52000 Ntfs.sys
0xF744A000 NDIS.sys
0xF7430000 Mup.sys
0xF771F000 avgrkx86.sys
0xF789F000 AVGIDSEH.Sys
0xF7657000 agp440.sys
0xBA1B9000 \SystemRoot\System32\DRIVERS\intelppm.sys
0xB8E4B000 \SystemRoot\System32\DRIVERS\nv4_mini.sys
0xB8E37000 \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS
0xF77DF000 \SystemRoot\System32\DRIVERS\usbuhci.sys
0xB8E13000 \SystemRoot\System32\DRIVERS\USBPORT.SYS
0xF77E7000 \SystemRoot\System32\DRIVERS\usbehci.sys
0xB8DDF000 \SystemRoot\System32\DRIVERS\HSFHWBS2.sys
0xB8DBC000 \SystemRoot\System32\DRIVERS\ks.sys
0xB8CBD000 \SystemRoot\System32\DRIVERS\HSF_DP.sys
0xB8C16000 \SystemRoot\System32\DRIVERS\HSF_CNXT.sys
0xF77EF000 \SystemRoot\System32\Drivers\Modem.SYS
0xB8AD9000 \SystemRoot\system32\drivers\P16X.sys
0xB8AB5000 \SystemRoot\system32\drivers\portcls.sys
0xBA1A9000 \SystemRoot\system32\drivers\drmk.sys
0xB99DE000 \SystemRoot\System32\DRIVERS\gameenum.sys
0xB8A91000 \SystemRoot\System32\DRIVERS\e100b325.sys
0xF77F7000 \SystemRoot\System32\DRIVERS\fdc.sys
0xF7507000 \SystemRoot\System32\DRIVERS\serial.sys
0xB99DA000 \SystemRoot\System32\DRIVERS\serenum.sys
0xB8A7D000 \SystemRoot\System32\DRIVERS\parport.sys
0xF74F7000 \SystemRoot\System32\DRIVERS\cdrom.sys
0xBA750000 \SystemRoot\System32\DRIVERS\redbook.sys
0xF77FF000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0xBA740000 \SystemRoot\System32\DRIVERS\imapi.sys
0xB89EF000 \SystemRoot\system32\drivers\smwdm.sys
0xF79F3000 \SystemRoot\system32\drivers\aeaudio.sys
0xBA5EF000 \SystemRoot\System32\DRIVERS\audstub.sys
0xBA730000 \SystemRoot\System32\DRIVERS\rasl2tp.sys
0xB99CE000 \SystemRoot\System32\DRIVERS\ndistapi.sys
0xB89D8000 \SystemRoot\System32\DRIVERS\ndiswan.sys
0xBA720000 \SystemRoot\System32\DRIVERS\raspppoe.sys
0xBA710000 \SystemRoot\System32\DRIVERS\raspptp.sys
0xF7807000 \SystemRoot\System32\DRIVERS\TDI.SYS
0xB89C7000 \SystemRoot\System32\DRIVERS\psched.sys
0xBA700000 \SystemRoot\System32\DRIVERS\msgpc.sys
0xF780F000 \SystemRoot\System32\DRIVERS\ptilink.sys
0xF7817000 \SystemRoot\System32\DRIVERS\raspti.sys
0xB938F000 \SystemRoot\System32\DRIVERS\wanatw4.sys
0xBA6F0000 \SystemRoot\System32\DRIVERS\termdd.sys
0xB9387000 \SystemRoot\System32\DRIVERS\kbdclass.sys
0xB937F000 \SystemRoot\System32\DRIVERS\mouclass.sys
0xF79F5000 \SystemRoot\System32\DRIVERS\swenum.sys
0xB8969000 \SystemRoot\System32\DRIVERS\update.sys
0xB9377000 \SystemRoot\System32\DRIVERS\omci.sys
0xB99BE000 \SystemRoot\system32\drivers\WmBEnum.sys
0xBA6E0000 \SystemRoot\system32\drivers\WmXlCore.sys
0xBA7D4000 \SystemRoot\System32\DRIVERS\mssmbios.sys
0xBA229000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xBA219000 \SystemRoot\System32\DRIVERS\usbhub.sys
0xF79D7000 \SystemRoot\System32\DRIVERS\USBD.SYS
0xB87C6000 \SystemRoot\system32\drivers\MODEMCSA.sys
0xB77C4000 \SystemRoot\System32\DRIVERS\flpydisk.sys
0xB7935000 \SystemRoot\System32\Drivers\i2omgmt.SYS
0xAC830000 \SystemRoot\system32\DRIVERS\avgmfx86.sys
0xB729A000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xA988E000 \SystemRoot\System32\Drivers\Null.SYS
0xB7298000 \SystemRoot\System32\Drivers\Beep.SYS
0xB77AC000 \SystemRoot\System32\DRIVERS\HIDPARSE.SYS
0xAC5B5000 \SystemRoot\System32\drivers\vga.sys
0xB7296000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xB7294000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xAC5AD000 \SystemRoot\System32\Drivers\Msfs.SYS
0xAC5A5000 \SystemRoot\System32\Drivers\Npfs.SYS
0xB792D000 \SystemRoot\System32\DRIVERS\rasacd.sys
0xA97FD000 \SystemRoot\System32\DRIVERS\ipsec.sys
0xA97A4000 \SystemRoot\System32\DRIVERS\tcpip.sys
0xA975D000 \SystemRoot\system32\DRIVERS\avgtdix.sys
0xA3C10000 \SystemRoot\System32\DRIVERS\netbt.sys
0xA52AA000 \SystemRoot\System32\drivers\ws2ifsl.sys
0xA3BC6000 \SystemRoot\System32\drivers\afd.sys
0xA4BDA000 \SystemRoot\System32\DRIVERS\netbios.sys
0xA3B9B000 \SystemRoot\System32\DRIVERS\rdbss.sys
0xA3B2B000 \SystemRoot\System32\DRIVERS\mrxsmb.sys
0xA4BAA000 \SystemRoot\System32\Drivers\Fips.SYS
0xA3B05000 \SystemRoot\System32\DRIVERS\ipnat.sys
0xA4B9A000 \SystemRoot\System32\DRIVERS\wanarp.sys
0xA5553000 \SystemRoot\System32\DRIVERS\usbccgp.sys
0xA528E000 \SystemRoot\System32\DRIVERS\hidusb.sys
0xA4B8A000 \SystemRoot\System32\DRIVERS\HIDCLASS.SYS
0xA554B000 \SystemRoot\system32\drivers\WmFilter.sys
0xA528A000 \SystemRoot\System32\DRIVERS\mouhid.sys
0xA46C4000 \SystemRoot\System32\DRIVERS\kbdhid.sys
0xA3AC9000 \SystemRoot\system32\DRIVERS\avgldx86.sys
0xA4348000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xABEC2000 \SystemRoot\System32\drivers\Dxapi.sys
0xA3F1A000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xBA17E000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF012000 \SystemRoot\System32\nv4_disp.dll
0xBF341000 \SystemRoot\System32\ATMFD.DLL
0xA36C6000 \SystemRoot\System32\DRIVERS\ndisuio.sys
0xF79EF000 \SystemRoot\System32\Drivers\ParVdm.SYS
0xB81A5000 \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys
0xF79D3000 \SystemRoot\system32\DRIVERS\dsunidrv.sys
0xA34CE000 \SystemRoot\System32\Drivers\Fastfat.SYS
0xA3426000 \SystemRoot\System32\DRIVERS\srv.sys
0xABEEA000 \SystemRoot\System32\Drivers\MCSTRM.SYS
0xA34AA000 \SystemRoot\System32\DRIVERS\mdmxsdk.sys
0xA348E000 \??\C:\WINDOWS\system32\drivers\PfModNT.sys
0xA348A000 \SystemRoot\System32\DRIVERS\secdrv.sys
0xF77D7000 \SystemRoot\system32\DRIVERS\AVGIDSFilter.Sys
0xA3186000 \SystemRoot\system32\DRIVERS\AVGIDSDriver.Sys
0xA2F19000 \SystemRoot\system32\drivers\wdmaud.sys
0xA30D6000 \SystemRoot\system32\drivers\sysaudio.sys
0xA28C2000 \SystemRoot\System32\Drivers\HTTP.sys
0xA2562000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\SYSTEM32\ntdll.dll

Processes (total 54):
0 System Idle Process
4 System
644 C:\WINDOWS\SYSTEM32\smss.exe
700 C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
876 csrss.exe
904 C:\WINDOWS\SYSTEM32\winlogon.exe
952 C:\WINDOWS\SYSTEM32\services.exe
964 C:\WINDOWS\SYSTEM32\lsass.exe
1128 C:\WINDOWS\SYSTEM32\svchost.exe
1200 svchost.exe
1300 C:\WINDOWS\SYSTEM32\svchost.exe
1396 svchost.exe
1660 C:\WINDOWS\SYSTEM32\spoolsv.exe
1676 C:\WINDOWS\SYSTEM32\rundll32.exe
1788 C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
1804 C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
1836 C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
1852 C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
1876 C:\Program Files\AVG\AVG10\avgwdsvc.exe
1888 aoltpspd.exe
1920 C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe
2008 C:\WINDOWS\SYSTEM32\CTsvcCDA.EXE
372 C:\WINDOWS\SYSTEM32\svchost.exe
416 C:\Program Files\IDrive\IDriveE Service.exe
584 C:\Program Files\Java\jre6\bin\jqs.exe
740 C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
1388 C:\Program Files\AVG\AVG10\avgnsx.exe
1412 C:\Program Files\AVG\AVG10\avgemcx.exe
1520 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
1772 C:\WINDOWS\SYSTEM32\MsPMSPSv.exe
2044 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2324 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
2736 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
2920 C:\Program Files\IDrive\IDrivePlugin.exe
3532 C:\WINDOWS\explorer.exe
1456 alg.exe
2636 C:\Program Files\AVG\AVG10\avgtray.exe
2652 C:\Program Files\Freecorder\FLVSrvc.exe
2664 C:\WINDOWS\SYSTEM32\ctfmon.exe
2676 C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
2784 svchost.exe
2772 C:\Program Files\America Online 9.0\waol.exe
3220 C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
2392 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
3636 C:\Program Files\IDrive\IDriveETray.exe
3584 C:\Program Files\IDrive\IDriveEBackground.exe
3424 C:\PROGRA~1\AVG\AVG10\avgrsx.exe
1452 C:\Program Files\AVG\AVG10\avgcsrvx.exe
388 C:\Program Files\America Online 9.0\shellmon.exe
2156 C:\Program Files\AVG\AVG10\avgscanx.exe
2272 C:\Program Files\AVG\AVG10\avgcsrvx.exe
2732 C:\WINDOWS\SYSTEM32\svchost.exe
3984 C:\WINDOWS\SYSTEM32\notepad.exe
860 C:\My Downloads\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`02f10c00 (NTFS)

PhysicalDrive0 Model Number: ST3160023AS, Rev: 8.05

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Dell MBR code detected
SHA1: 84B95CE8A54B7C5C3AAF149934FC46FB70FF8365


Done!


Report •
Related Solutions


Ask Question