WiredWX Hobby Weather ToolsLog in

 


Critical error drive sector not found

2 posters

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
The Hitman Pro logs -
=======================

Code:


HitmanPro 3.6.2.171
www.hitmanpro.com

  Computer name . . . . : LALITMAMTA-PC
  Windows . . . . . . . : 6.0.1.6001.X86/2
  User name . . . . . . : LalitMamta-PC\lalit
  UAC . . . . . . . . . : Disabled
  License . . . . . . . : Trial (29 days left)

  Scan date . . . . . . : 2012-10-15 00:01:30
  Scan mode . . . . . . : Normal
  Scan duration . . . . : 13m 30s
  Disk access mode  . . : Direct disk access (SRB)
  Cloud . . . . . . . . : Internet
  Reboot  . . . . . . . : Yes

  Threats . . . . . . . : 1
  Traces  . . . . . . . : 86

  Objects scanned . . . : 2,419,233
  Files scanned . . . . : 53,291
  Remnants scanned  . . : 1,024,993 files / 1,340,949 keys

Miniport ____________________________________________________________________

  Primary
      DriverObject . . . : 8651BD18
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 86702178 +0
  Solution
      DriverObject . . . : 8651BD18
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 807AB9A8 \SystemRoot\system32\drivers\ataport.SYS+18856

Malware _____________________________________________________________________

  Master Boot Record (sector 0)

    > HitmanPro  . . . . : Win32/Bootkit

      Partition   Type   LBA   Number of sectors
      0    27   2048   3072000
      1    07   3074048   309506048
      2*   17   312581792   16
      3    00   0   0

      0000  33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00  3.....|......|..
      0010  06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00  .......Ph.......
      0020  BD BE 07 80 7E 00 00 7C 0B 0F 85 10 01 83 C5 10  ....~..|........
      0030  E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00  .....V.U.F...F..
      0040  B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09  .A..U..]r...U.u.
      0050  F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74  ....t..F.f`.~..t
      0060  26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00  &fh....f.v.h..h.
      0070  7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13  |h..h...B.V.....
      0080  9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00  ............|.V.
      0090  8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1E FE  .v..N..n...fas..
      00A0  4E 11 0F 85 0C 00 80 7E 00 80 0F 84 8A 00 B2 80  N......~........
      00B0  EB 82 55 32 E4 8A 56 00 CD 13 5D EB 9C 81 3E FE  ..U2..V...]...>.
      00C0  7D 55 AA 75 6E FF 76 00 E8 8A 00 0F 85 15 00 B0  }U.un.v.........
      00D0  D1 E6 64 E8 7F 00 B0 DF E6 60 E8 78 00 B0 FF E6  ..d......`.x....
      00E0  64 E8 71 00 B8 00 BB CD 1A 66 23 C0 75 3B 66 81  d.q......f#.u;f.
      00F0  FB 54 43 50 41 75 32 81 F9 02 01 72 2C 66 68 07  .TCPAu2....r,fh.
      0100  BB 00 00 66 68 00 02 00 00 66 68 08 00 00 00 66  ...fh....fh....f
      0110  53 66 53 66 55 66 68 00 00 00 00 66 68 00 7C 00  SfSfUfh....fh.|.
      0120  00 66 61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00  .fah.....Z2...|.
      0130  00 CD 18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07  ................
      0140  32 E4 05 00 07 8B F0 AC 3C 00 74 FC BB 07 00 B4  2.......<.t.....
      0150  0E CD 10 EB F2 2B C9 E4 64 EB 00 24 02 E0 F8 24  .....+..d..$...$
      0160  02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74  ..Invalid partit
      0170  69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 20  ion table.Error
      0180  6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E  loading operatin
      0190  67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E 67  g system.Missing
      01A0  20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65  operating syste
      01B0  6D 00 00 00 00 00 00 00 62 39 63 39 00 00 00 20  m.......b9c9...
      01C0  21 00 27 59 1A BF 00 08 00 00 00 E0 2E 00 00 59  !.'Y...........Y
      01D0  1B BF 07 FE FF FF 00 E8 2E 00 00 B0 72 12 80 FE  ............r...
      01E0  FF FF 17 FE FF FF A0 9E A1 12 10 00 00 00 00 00  ................
      01F0  00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA  ..............U.


  Volume Boot Record (Sector 312581792)
  C:$VBR_312581792

  C:\Windows\FeedingFrenzy.scr -> Quarantined
      Size . . . . . . . : 811,008 bytes
      Age  . . . . . . . : 2977.3 days (2004-08-20 18:00:00)
      Entropy  . . . . . : 6.5
      SHA-256  . . . . . : 6B66E7CA71FB76B04E9E3339E1C9D7A83BC6E3AB23678DA3931B2ED7FC10EA0E
      Product  . . . . . : Feeding Frenzy
      Publisher  . . . . : Sprout Games, LLC
      Description  . . . : Feeding Frenzy
      Version  . . . . . : 2.4.2.2
      Copyright  . . . . : Copyright © 2004 Sprout Games, LLC
    > Ikarus . . . . . . : Trojan-Downloader.SuspectCRC!IK
      Fuzzy  . . . . . . : 102.0


Cookies _____________________________________________________________________

  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yabuka.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:adinterax.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:premiumtv.122.2o7.net
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net
  C:\Users\lalit\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@ad.yieldmanager[6].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@adinterax[1].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@atdmt[2].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@c1.atdmt[1].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@in.getclicky[1].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@microsoftsto.112.2o7[2].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@overture[3].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@questionmarket[2].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@tradedoubler[2].txt
  C:\Users\lalit\AppData\Roaming\Microsoft\Windows\Cookies\lalit@tribalfusion[2].txt
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.adperium.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrite.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adinterax.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.allaboutvision.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.cpxcenter.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.iadserving.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ibibo.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.lzjl.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.ozonemedia.co.in
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.songspk.pk
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.sun.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adreactor.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.adtechus.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:adviva.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:gmap.112.2o7.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:mm.chitika.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:overture.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:questionmarket.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:rochediagnostics.solution.weborama.fr
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:server.cpmstar.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.in.omgpm.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldmanager.net
  C:\Users\LalitMamta\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:content.yieldmanager.com
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
  C:\Users\Vijay\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com



descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
I ran aswMBR.exe 2 times and both times my system crashed. Details for last crash -

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.0.6001.2.1.0.768.3
Locale ID: 16393

Additional information about the problem:
BCCode: 1000008e
BCP1: C0000005
BCP2: 82F3115E
BCP3: DA6A9874
BCP4: 00000000
OS Version: 6_0_6001
Service Pack: 1_0
Product: 768_1


Last edited by lalitgu on 15th October 2012, 5:02 am; edited 1 time in total (Reason for editing : adding more info)

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
We need to re-check the MBR, please do this:

Please download MBRCheck.exe by a_d_13 from one of the links provided below and save it to your desktop.
    Link 1
    Link 2
    Link 3

  • Double-click on MBRCheck.exe to run it.
  • It will open a black window...please do not fix anything (if it gives you an option).
  • When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.
  • A log named MBRCheck_date_time.txt (i.e. MBRCheck_07.21.10_10.22.51.txt) will appear on the desktop.
  • Please copy and paste the contents of that log in your next reply.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
MBRCheck logs -
=======================================
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: TOSHIBA
BIOS Manufacturer: TOSHIBA
System Manufacturer: TOSHIBA
System Product Name: Satellite A205
Logical Drives Mask: 0x0000000c

Kernel Drivers (total 160):
0x82E1B000 \SystemRoot\system32\ntkrnlpa.exe
0x831D4000 \SystemRoot\system32\hal.dll
0x80609000 \SystemRoot\system32\kdcom.dll
0x80611000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80671000 \SystemRoot\system32\PSHED.dll
0x80682000 \SystemRoot\system32\BOOTVID.dll
0x8068A000 \SystemRoot\system32\CLFS.SYS
0x806CB000 \SystemRoot\system32\CI.dll
0x83809000 \SystemRoot\system32\drivers\Wdf01000.sys
0x83885000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x83892000 \SystemRoot\system32\drivers\acpi.sys
0x838D8000 \SystemRoot\system32\drivers\WMILIB.SYS
0x838E1000 \SystemRoot\system32\drivers\msisadrv.sys
0x838E9000 \SystemRoot\system32\drivers\pci.sys
0x83910000 \SystemRoot\system32\DRIVERS\LPCFilter.sys
0x8391A000 \SystemRoot\System32\drivers\partmgr.sys
0x83929000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8392C000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x83936000 \SystemRoot\system32\drivers\volmgr.sys
0x83945000 \SystemRoot\System32\drivers\volmgrx.sys
0x8398F000 \SystemRoot\system32\drivers\intelide.sys
0x83996000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x839A4000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x839D1000 \SystemRoot\System32\drivers\mountmgr.sys
0x839E1000 \SystemRoot\system32\drivers\atapi.sys
0x807AB000 \SystemRoot\system32\drivers\ataport.SYS
0x839E9000 \SystemRoot\system32\drivers\msahci.sys
0x807C9000 \SystemRoot\system32\drivers\fltmgr.sys
0x83A03000 \SystemRoot\system32\drivers\fileinfo.sys
0x83A13000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83A1C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83A8D000 \SystemRoot\system32\drivers\ndis.sys
0x83B98000 \SystemRoot\system32\drivers\msrpc.sys
0x83BC3000 \SystemRoot\system32\drivers\NETIO.SYS
0x8B201000 \SystemRoot\System32\drivers\tcpip.sys
0x8B2EA000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8B403000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8B512000 \SystemRoot\system32\drivers\volsnap.sys
0x8B54B000 \SystemRoot\system32\DRIVERS\TVALZ_O.SYS
0x8B550000 \SystemRoot\system32\DRIVERS\tos_sps32.sys
0x8B59B000 \SystemRoot\System32\Drivers\spldr.sys
0x8B5A3000 \SystemRoot\System32\Drivers\mup.sys
0x8B5B2000 \SystemRoot\System32\drivers\ecache.sys
0x8B5D9000 \SystemRoot\system32\drivers\disk.sys
0x8B305000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8B5EA000 \SystemRoot\system32\drivers\crcdisk.sys
0x8B346000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8B34F000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x90405000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x90A3C000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x90ADB000 \SystemRoot\System32\drivers\watchdog.sys
0x90AE8000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x90AF3000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x90B31000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x90B40000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x90B52000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x90C03000 \SystemRoot\system32\DRIVERS\NETw4v32.sys
0x90E32000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x90E42000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x90E50000 \SystemRoot\system32\drivers\tifm21.sys
0x90E9C000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x90EB6000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x90EBA000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x90ECD000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x90ED8000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x90F0A000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x90F0C000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x90F17000 \SystemRoot\system32\DRIVERS\tdcmdpst.sys
0x90F1C000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x90F35000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x90F38000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x90F66000 \SystemRoot\system32\DRIVERS\storport.sys
0x90FA7000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x90FB2000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x90FC9000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x90FD4000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x90B76000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x90B85000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x90B99000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90BAE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x90FF7000 \SystemRoot\system32\DRIVERS\swenum.sys
0x90BBE000 \SystemRoot\system32\DRIVERS\ks.sys
0x90BE8000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x90BF2000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8B35E000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8B392000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x90200000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x8B3A3000 \SystemRoot\system32\drivers\portcls.sys
0x8B3D0000 \SystemRoot\system32\drivers\drmk.sys
0x91805000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0x91921000 \SystemRoot\system32\drivers\modem.sys
0x9192E000 \SystemRoot\System32\Drivers\SRTSP.SYS
0x91977000 \SystemRoot\System32\Drivers\SRTSPX.SYS
0x91988000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x9238A000 \SystemRoot\System32\Drivers\UVCFTR_S.SYS
0x92393000 \??\C:\Windows\system32\Drivers\SYMEVENT.SYS
0x923B5000 \SystemRoot\System32\Drivers\usbvideo.sys
0x923EB000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x9199F000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x923F4000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x919AF000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x923FB000 \SystemRoot\System32\Drivers\Cdr4_xp.SYS
0x923FC000 \SystemRoot\System32\Drivers\Cdralw2k.SYS
0x919B8000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x919C1000 \SystemRoot\System32\Drivers\Null.SYS
0x919C8000 \SystemRoot\System32\Drivers\Beep.SYS
0x919CF000 \SystemRoot\System32\drivers\vga.sys
0x919DB000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x903F5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8B3F5000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8B33B000 \SystemRoot\System32\Drivers\Msfs.SYS
0xA1A06000 \SystemRoot\System32\Drivers\Npfs.SYS
0xA1A14000 \SystemRoot\System32\DRIVERS\rasacd.sys
0xA1A1D000 \SystemRoot\system32\DRIVERS\tdx.sys
0xA1A33000 \SystemRoot\system32\DRIVERS\smb.sys
0xA1A47000 \SystemRoot\system32\drivers\afd.sys
0xA1A8F000 \SystemRoot\System32\DRIVERS\netbt.sys
0xA1AC1000 \SystemRoot\system32\drivers\ws2ifsl.sys
0xA1ACA000 \SystemRoot\system32\DRIVERS\pacer.sys
0xA1AE0000 \SystemRoot\system32\DRIVERS\netbios.sys
0xA1AEE000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xA1B01000 \SystemRoot\System32\Drivers\SYMTDI.SYS
0xA1B2D000 \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
0xA1B93000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xA1BCF000 \SystemRoot\system32\drivers\nsiproxy.sys
0xA240C000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
0xA246B000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
0xA2489000 \SystemRoot\System32\Drivers\dfsc.sys
0xA24A0000 \SystemRoot\System32\Drivers\crashdmp.sys
0xA24AD000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0xA24B8000 \SystemRoot\System32\Drivers\dump_msahci.sys
0xA9E70000 \SystemRoot\System32\win32k.sys
0xA24C2000 \SystemRoot\System32\drivers\Dxapi.sys
0xA24CC000 \SystemRoot\system32\DRIVERS\monitor.sys
0xAA090000 \SystemRoot\System32\TSDDD.dll
0xAA0B0000 \SystemRoot\System32\cdd.dll
0xA24DB000 \SystemRoot\system32\drivers\luafv.sys
0xA24F6000 \??\C:\Windows\system32\drivers\mbam.sys
0xA24FA000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA250A000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA2534000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA253E000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA2551000 \SystemRoot\system32\drivers\spsys.sys
0xBD400000 \SystemRoot\system32\drivers\HTTP.sys
0xBD46D000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xBD48A000 \SystemRoot\system32\DRIVERS\bowser.sys
0xBD4A3000 \SystemRoot\System32\drivers\mpsdrv.sys
0xBD4B8000 \SystemRoot\system32\drivers\mrxdav.sys
0xBD4D8000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xBD4F7000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xBD530000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xBD548000 \SystemRoot\System32\DRIVERS\srv2.sys
0xBD570000 \SystemRoot\System32\DRIVERS\srv.sys
0xBF405000 \SystemRoot\system32\drivers\peauth.sys
0xBF4E3000 \SystemRoot\System32\Drivers\secdrv.SYS
0xBF4ED000 \SystemRoot\System32\drivers\tcpipreg.sys
0x92200000 \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20121009.003\NAVEX15.SYS
0xBF523000 \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20121009.003\NAVENG.SYS
0xBF538000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x77850000 \Windows\System32\ntdll.dll

Processes (total 79):
0 System Idle Process
4 System
480 C:\Windows\System32\smss.exe
612 csrss.exe
656 csrss.exe
664 C:\Windows\System32\wininit.exe
704 C:\Windows\System32\winlogon.exe
740 C:\Windows\System32\services.exe
752 C:\Windows\System32\lsass.exe
772 C:\Windows\System32\lsm.exe
908 C:\Windows\System32\svchost.exe
952 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
996 C:\Windows\System32\svchost.exe
1052 C:\Windows\System32\svchost.exe
1116 C:\Windows\System32\svchost.exe
1140 C:\Windows\System32\svchost.exe
1228 C:\Windows\System32\audiodg.exe
1248 C:\Windows\System32\svchost.exe
1264 C:\Windows\System32\SLsvc.exe
1308 C:\Windows\System32\svchost.exe
1440 C:\Program Files\HitmanPro\hmpsched.exe
1452 C:\Windows\System32\svchost.exe
1584 C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
1760 C:\Windows\System32\wlanext.exe
1832 C:\Windows\System32\spoolsv.exe
1868 C:\Windows\System32\svchost.exe
268 C:\Windows\System32\agrsmsvc.exe
424 C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
488 C:\Program Files\Bonjour\mDNSResponder.exe
580 C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
600 C:\Program Files\Symantec AntiVirus\DefWatch.exe
844 C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
2020 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
2152 C:\Program Files\Common Files\microsoft shared\VS7Debug\MDM.EXE
2168 C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
2208 C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
2264 C:\Toshiba\IVP\ISM\pinger.exe
2276 C:\Windows\System32\IoctlSvc.exe
2288 C:\Windows\System32\svchost.exe
2300 C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
2320 C:\Windows\System32\rpcnet.exe
2380 C:\Toshiba\IVP\swupdate\swupdtmr.exe
2464 C:\Program Files\Symantec AntiVirus\Rtvscan.exe
2524 C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
2572 C:\Windows\System32\TODDSrv.exe
2612 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
2696 C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
2732 C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
2760 C:\Windows\System32\SearchIndexer.exe
3560 C:\Windows\System32\dwm.exe
3572 C:\Windows\explorer.exe
3616 C:\Program Files\HitmanPro\HitmanPro.exe
3636 C:\Windows\System32\taskeng.exe
3712 C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
3960 C:\Windows\System32\taskeng.exe
2448 C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
2440 C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
1556 C:\Program Files\Real\RealPlayer\Update\realsched.exe
1340 C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
3472 C:\Windows\System32\wbem\unsecapp.exe
1292 WmiPrvSE.exe
2992 C:\Program Files\Google\Chrome\Application\chrome.exe
4084 C:\Program Files\Google\Chrome\Application\chrome.exe
4056 C:\Program Files\Google\Chrome\Application\chrome.exe
3476 C:\Program Files\Google\Chrome\Application\chrome.exe
416 C:\Program Files\Google\Chrome\Application\chrome.exe
1288 C:\Program Files\Google\Chrome\Application\chrome.exe
4160 C:\Program Files\Google\Chrome\Application\chrome.exe
4340 C:\Program Files\Google\Chrome\Application\chrome.exe
4468 C:\Program Files\Google\Chrome\Application\chrome.exe
4532 C:\PROGRA~1\Webshots\webshots.scr
4944 C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
4976 C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
5012 WmiPrvSE.exe
5060 C:\Windows\servicing\TrustedInstaller.exe
5928 C:\Program Files\Google\Chrome\Application\chrome.exe
5992 C:\Windows\System32\wbem\WMIADAP.exe
4380 C:\Windows\System32\wuauclt.exe
4144 C:\Users\lalit\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1646GSX, Rev: LB113M

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: BBAD517F7EAC529451E4B9586C847AE190574F61


Done!

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Now, another run-through. Check computer for any more issues, and let me know what's up.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: TOSHIBA
BIOS Manufacturer: TOSHIBA
System Manufacturer: TOSHIBA
System Product Name: Satellite A205
Logical Drives Mask: 0x0000000c

Kernel Drivers (total 160):
0x82E1B000 \SystemRoot\system32\ntkrnlpa.exe
0x831D4000 \SystemRoot\system32\hal.dll
0x80609000 \SystemRoot\system32\kdcom.dll
0x80611000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80671000 \SystemRoot\system32\PSHED.dll
0x80682000 \SystemRoot\system32\BOOTVID.dll
0x8068A000 \SystemRoot\system32\CLFS.SYS
0x806CB000 \SystemRoot\system32\CI.dll
0x83809000 \SystemRoot\system32\drivers\Wdf01000.sys
0x83885000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x83892000 \SystemRoot\system32\drivers\acpi.sys
0x838D8000 \SystemRoot\system32\drivers\WMILIB.SYS
0x838E1000 \SystemRoot\system32\drivers\msisadrv.sys
0x838E9000 \SystemRoot\system32\drivers\pci.sys
0x83910000 \SystemRoot\system32\DRIVERS\LPCFilter.sys
0x8391A000 \SystemRoot\System32\drivers\partmgr.sys
0x83929000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8392C000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x83936000 \SystemRoot\system32\drivers\volmgr.sys
0x83945000 \SystemRoot\System32\drivers\volmgrx.sys
0x8398F000 \SystemRoot\system32\drivers\intelide.sys
0x83996000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x839A4000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x839D1000 \SystemRoot\System32\drivers\mountmgr.sys
0x839E1000 \SystemRoot\system32\drivers\atapi.sys
0x807AB000 \SystemRoot\system32\drivers\ataport.SYS
0x839E9000 \SystemRoot\system32\drivers\msahci.sys
0x807C9000 \SystemRoot\system32\drivers\fltmgr.sys
0x83A03000 \SystemRoot\system32\drivers\fileinfo.sys
0x83A13000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x83A1C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83A8D000 \SystemRoot\system32\drivers\ndis.sys
0x83B98000 \SystemRoot\system32\drivers\msrpc.sys
0x83BC3000 \SystemRoot\system32\drivers\NETIO.SYS
0x8B201000 \SystemRoot\System32\drivers\tcpip.sys
0x8B2EA000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8B403000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8B512000 \SystemRoot\system32\drivers\volsnap.sys
0x8B54B000 \SystemRoot\system32\DRIVERS\TVALZ_O.SYS
0x8B550000 \SystemRoot\system32\DRIVERS\tos_sps32.sys
0x8B59B000 \SystemRoot\System32\Drivers\spldr.sys
0x8B5A3000 \SystemRoot\System32\Drivers\mup.sys
0x8B5B2000 \SystemRoot\System32\drivers\ecache.sys
0x8B5D9000 \SystemRoot\system32\drivers\disk.sys
0x8B305000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8B5EA000 \SystemRoot\system32\drivers\crcdisk.sys
0x8B346000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8B34F000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x90405000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x90A3C000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x90ADB000 \SystemRoot\System32\drivers\watchdog.sys
0x90AE8000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x90AF3000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x90B31000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x90B40000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x90B52000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x90C03000 \SystemRoot\system32\DRIVERS\NETw4v32.sys
0x90E32000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x90E42000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x90E50000 \SystemRoot\system32\drivers\tifm21.sys
0x90E9C000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x90EB6000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x90EBA000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x90ECD000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x90ED8000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x90F0A000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x90F0C000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x90F17000 \SystemRoot\system32\DRIVERS\tdcmdpst.sys
0x90F1C000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x90F35000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x90F38000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x90F66000 \SystemRoot\system32\DRIVERS\storport.sys
0x90FA7000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x90FB2000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x90FC9000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x90FD4000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x90B76000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x90B85000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x90B99000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90BAE000 \SystemRoot\system32\DRIVERS\termdd.sys
0x90FF7000 \SystemRoot\system32\DRIVERS\swenum.sys
0x90BBE000 \SystemRoot\system32\DRIVERS\ks.sys
0x90BE8000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x90BF2000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8B35E000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8B392000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x90200000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x8B3A3000 \SystemRoot\system32\drivers\portcls.sys
0x8B3D0000 \SystemRoot\system32\drivers\drmk.sys
0x91805000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0x91921000 \SystemRoot\system32\drivers\modem.sys
0x9192E000 \SystemRoot\System32\Drivers\SRTSP.SYS
0x91977000 \SystemRoot\System32\Drivers\SRTSPX.SYS
0x91988000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x9238A000 \SystemRoot\System32\Drivers\UVCFTR_S.SYS
0x92393000 \??\C:\Windows\system32\Drivers\SYMEVENT.SYS
0x923B5000 \SystemRoot\System32\Drivers\usbvideo.sys
0x923EB000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x9199F000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x923F4000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x919AF000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x923FB000 \SystemRoot\System32\Drivers\Cdr4_xp.SYS
0x923FC000 \SystemRoot\System32\Drivers\Cdralw2k.SYS
0x919B8000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x919C1000 \SystemRoot\System32\Drivers\Null.SYS
0x919C8000 \SystemRoot\System32\Drivers\Beep.SYS
0x919CF000 \SystemRoot\System32\drivers\vga.sys
0x919DB000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x903F5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8B3F5000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8B33B000 \SystemRoot\System32\Drivers\Msfs.SYS
0xA1A06000 \SystemRoot\System32\Drivers\Npfs.SYS
0xA1A14000 \SystemRoot\System32\DRIVERS\rasacd.sys
0xA1A1D000 \SystemRoot\system32\DRIVERS\tdx.sys
0xA1A33000 \SystemRoot\system32\DRIVERS\smb.sys
0xA1A47000 \SystemRoot\system32\drivers\afd.sys
0xA1A8F000 \SystemRoot\System32\DRIVERS\netbt.sys
0xA1AC1000 \SystemRoot\system32\drivers\ws2ifsl.sys
0xA1ACA000 \SystemRoot\system32\DRIVERS\pacer.sys
0xA1AE0000 \SystemRoot\system32\DRIVERS\netbios.sys
0xA1AEE000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xA1B01000 \SystemRoot\System32\Drivers\SYMTDI.SYS
0xA1B2D000 \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
0xA1B93000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xA1BCF000 \SystemRoot\system32\drivers\nsiproxy.sys
0xA240C000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
0xA246B000 \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
0xA2489000 \SystemRoot\System32\Drivers\dfsc.sys
0xA24A0000 \SystemRoot\System32\Drivers\crashdmp.sys
0xA24AD000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0xA24B8000 \SystemRoot\System32\Drivers\dump_msahci.sys
0xA9E70000 \SystemRoot\System32\win32k.sys
0xA24C2000 \SystemRoot\System32\drivers\Dxapi.sys
0xA24CC000 \SystemRoot\system32\DRIVERS\monitor.sys
0xAA090000 \SystemRoot\System32\TSDDD.dll
0xAA0B0000 \SystemRoot\System32\cdd.dll
0xA24DB000 \SystemRoot\system32\drivers\luafv.sys
0xA24F6000 \??\C:\Windows\system32\drivers\mbam.sys
0xA24FA000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA250A000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA2534000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA253E000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA2551000 \SystemRoot\system32\drivers\spsys.sys
0xBD400000 \SystemRoot\system32\drivers\HTTP.sys
0xBD46D000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xBD48A000 \SystemRoot\system32\DRIVERS\bowser.sys
0xBD4A3000 \SystemRoot\System32\drivers\mpsdrv.sys
0xBD4B8000 \SystemRoot\system32\drivers\mrxdav.sys
0xBD4D8000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xBD4F7000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xBD530000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xBD548000 \SystemRoot\System32\DRIVERS\srv2.sys
0xBD570000 \SystemRoot\System32\DRIVERS\srv.sys
0xBF405000 \SystemRoot\system32\drivers\peauth.sys
0xBF4E3000 \SystemRoot\System32\Drivers\secdrv.SYS
0xBF4ED000 \SystemRoot\System32\drivers\tcpipreg.sys
0x92200000 \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20121009.003\NAVEX15.SYS
0xBF523000 \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20121009.003\NAVENG.SYS
0xBF538000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x77850000 \Windows\System32\ntdll.dll

Processes (total 82):
0 System Idle Process
4 System
480 C:\Windows\System32\smss.exe
612 csrss.exe
656 csrss.exe
664 C:\Windows\System32\wininit.exe
704 C:\Windows\System32\winlogon.exe
740 C:\Windows\System32\services.exe
752 C:\Windows\System32\lsass.exe
772 C:\Windows\System32\lsm.exe
908 C:\Windows\System32\svchost.exe
952 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
996 C:\Windows\System32\svchost.exe
1052 C:\Windows\System32\svchost.exe
1116 C:\Windows\System32\svchost.exe
1140 C:\Windows\System32\svchost.exe
1228 C:\Windows\System32\audiodg.exe
1248 C:\Windows\System32\svchost.exe
1264 C:\Windows\System32\SLsvc.exe
1308 C:\Windows\System32\svchost.exe
1440 C:\Program Files\HitmanPro\hmpsched.exe
1452 C:\Windows\System32\svchost.exe
1584 C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
1760 C:\Windows\System32\wlanext.exe
1832 C:\Windows\System32\spoolsv.exe
1868 C:\Windows\System32\svchost.exe
268 C:\Windows\System32\agrsmsvc.exe
424 C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
488 C:\Program Files\Bonjour\mDNSResponder.exe
580 C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
600 C:\Program Files\Symantec AntiVirus\DefWatch.exe
844 C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
2020 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
2152 C:\Program Files\Common Files\microsoft shared\VS7Debug\MDM.EXE
2168 C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
2208 C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
2264 C:\Toshiba\IVP\ISM\pinger.exe
2276 C:\Windows\System32\IoctlSvc.exe
2288 C:\Windows\System32\svchost.exe
2300 C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
2320 C:\Windows\System32\rpcnet.exe
2380 C:\Toshiba\IVP\swupdate\swupdtmr.exe
2464 C:\Program Files\Symantec AntiVirus\Rtvscan.exe
2524 C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
2572 C:\Windows\System32\TODDSrv.exe
2612 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
2696 C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
2732 C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
2760 C:\Windows\System32\SearchIndexer.exe
3560 C:\Windows\System32\dwm.exe
3572 C:\Windows\explorer.exe
3636 C:\Windows\System32\taskeng.exe
3712 C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
3960 C:\Windows\System32\taskeng.exe
2448 C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
2440 C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
1340 C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
3472 C:\Windows\System32\wbem\unsecapp.exe
1292 WmiPrvSE.exe
2992 C:\Program Files\Google\Chrome\Application\chrome.exe
4084 C:\Program Files\Google\Chrome\Application\chrome.exe
4056 C:\Program Files\Google\Chrome\Application\chrome.exe
3476 C:\Program Files\Google\Chrome\Application\chrome.exe
416 C:\Program Files\Google\Chrome\Application\chrome.exe
1288 C:\Program Files\Google\Chrome\Application\chrome.exe
4160 C:\Program Files\Google\Chrome\Application\chrome.exe
4340 C:\Program Files\Google\Chrome\Application\chrome.exe
4468 C:\Program Files\Google\Chrome\Application\chrome.exe
4532 C:\PROGRA~1\Webshots\webshots.scr
5928 C:\Program Files\Google\Chrome\Application\chrome.exe
4380 C:\Windows\System32\wuauclt.exe
4460 C:\Program Files\Google\Chrome\Application\chrome.exe
5720 C:\Program Files\Google\Chrome\Application\chrome.exe
5652 C:\Program Files\Internet Explorer\iexplore.exe
1988 C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
3528 C:\Program Files\Google\Chrome\Application\chrome.exe
3336 C:\Program Files\Google\Chrome\Application\chrome.exe
4960 C:\Program Files\Real\RealPlayer\Update\realsched.exe
4804 taskeng.exe
552 C:\Program Files\Google\Chrome\Application\chrome.exe
4624 C:\Program Files\Google\Chrome\Application\chrome.exe
1384 C:\Users\lalit\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1646GSX, Rev: LB113M

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: BBAD517F7EAC529451E4B9586C847AE190574F61


Done!

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
My apologies...I meant run-through of problems on the computer... check for other issues, please...

descriptionCritical error drive sector not found - Page 2 EmptyaswMBR logs

more_horiz
aswMBR logs
===============================
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-20 12:22:54
-----------------------------
12:22:54.998 OS Version: Windows 6.0.6001 Service Pack 1
12:22:54.999 Number of processors: 2 586 0xF0D
12:22:55.001 ComputerName: LALITMAMTA-PC UserName: lalit
12:23:01.293 Initialize success
12:23:34.818 AVAST engine defs: 12101400
12:23:43.202 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
12:23:43.205 Disk 0 Vendor: TOSHIBA_MK1646GSX LB113M Size: 152627MB BusType: 3
12:23:43.331 Disk 0 MBR read successfully
12:23:43.334 Disk 0 MBR scan
12:23:43.399 Disk 0 Windows VISTA default MBR code
12:23:43.429 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
12:23:43.451 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 151126 MB offset 3074048
12:23:43.621 Disk 0 scanning sectors +312580096
12:23:43.828 Disk 0 scanning C:\Windows\system32\drivers
12:24:27.265 Service scanning
12:25:24.969 Modules scanning
12:26:19.522 Module: C:\Windows\system32\drivers\RTKVHDA.sys **SUSPICIOUS**
12:27:15.401 AVAST engine scan C:\Windows
12:27:46.992 AVAST engine scan C:\Windows\system32
12:36:45.401 AVAST engine scan C:\Windows\system32\drivers
12:37:16.368 AVAST engine scan C:\Users\lalit
12:48:23.798 AVAST engine scan C:\ProgramData
12:51:22.746 Scan finished successfully
12:52:03.586 Disk 0 MBR has been saved successfully to "C:\Users\lalit\Desktop\MBR.dat"
12:52:03.602 The log file has been saved successfully to "C:\Users\lalit\Desktop\aswMBR.txt"
==========================================

Unable to upload the MBR.dat file even after changing the extension to .txt, error is 'Uploaded file is not valid.'

descriptionCritical error drive sector not found - Page 2 EmptyMBR.dat

more_horiz
I have zipped and uploaded MBR.dat file for your review.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Any more issues?

We need to know any other issues that are plaguing your computer. Kindly give a summary so we know how to continue from here.

Many of the things to note for us would be:

  • Slow computer
  • Error messages
  • Fake antivirus alerts or the icon in the system tray
  • svchost.exe running at 100%
  • System crashes or blue screen of death

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Computer speed is better now.
Avira antivirus is reporting TR/Offend.2.945 virus
No system crashes recently.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Odd. Thought the scans would have picked that up...

CapperKiller Scan

The CapperKiller utility is designed for treating the aftermaths of a Trojan-Banker.Win32.Capper infection.

How to use the utility:


A reboot may be required after the treatment.

The CapperKiller utility performs the following:

  • Detects and fixes proxy settings in all browsers.
  • Detects and deletes malicious exec files.
  • Once it is done running, it may ask you to reboot the machine. Please make sure it reboots, if it asks.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "CapperKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
    Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
This scan didn't find anything

22:45:58.0335 5120 Trojan-Banker.Win32.Capper removal tool 1.0.5.0 Oct 17 2012 09:06:44
22:45:59.0076 5120 ============================================================
22:45:59.0076 5120 Current date / time: 2012/10/24 22:45:59.0076
22:45:59.0076 5120 SystemInfo:
22:45:59.0077 5120
22:45:59.0077 5120 OS Version: 6.0.6001 ServicePack: 1.0
22:45:59.0077 5120 Product type: Workstation
22:45:59.0077 5120 ComputerName: LALITMAMTA-PC
22:45:59.0077 5120 UserName: lalit
22:45:59.0077 5120 Windows directory: C:\Windows
22:45:59.0077 5120 System windows directory: C:\Windows
22:45:59.0077 5120 Processor architecture: Intel x86
22:45:59.0077 5120 Number of processors: 2
22:45:59.0077 5120 Page size: 0x1000
22:45:59.0077 5120 Boot type: Normal boot
22:45:59.0077 5120 ============================================================
22:45:59.0078 5120 Initialize success
22:45:59.0078 5120 ============================================================
22:46:40.0323 4220 ================================================================================
22:46:40.0323 4220 Scan started
22:46:40.0323 4220 ================================================================================
22:46:40.0323 4220 ProcessDriveEnumEx: Drive C:\ type 3:0
22:57:35.0117 4220 ProcessDriveEnumEx: Drive D:\ type 5:0
22:57:35.0149 4220 ================================================================================
22:57:35.0149 4220 Scan finished
22:57:35.0149 4220 ================================================================================

Although Avira is indicating the following -

contained a virus or unwanted program 'TR/Crypt.ZPACK.Gen' [trojan]
contained a virus or unwanted program 'TR/Crypt.XPACK.Gen' [trojan]
contained a virus or unwanted program 'TR/Drop.Delf.fde' [trojan]
contained a virus or unwanted program 'TR/Offend.2.945' [trojan]
contained a virus or unwanted program 'TR/Agent.cada.23010' [trojan]
Virus or unwanted program 'TR/Crypt.XPACK.Gen [trojan]'
Virus or unwanted program 'TR/Drop.Delf.fde [trojan]'
Virus or unwanted program 'TR/Agent.cada.23010 [trojan]'
Virus or unwanted program 'TR/Offend.2.945 [trojan]'
Virus or unwanted program 'SPR/Tool.AE [riskware]'
Virus or unwanted program 'SPR/Tool.AF [riskware]'
Virus or unwanted program 'SPR/GooglePwdDecryptor.AA.4 [riskware]'
Virus or unwanted program 'SPR/Tool.AD [riskware]'
Virus or unwanted program 'SPR/FMTool.A [riskware]'
contained a virus or unwanted program 'TR/Offend.2.945' [trojan]
Virus or unwanted program 'TR/Offend.2.945 [trojan]'

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Kaspersky Virus Removal Tool

The Kaspersky Virus Removal Tool is a scan-and-remove solution from Kaspersky that searches out the most common malware and attempts to remove it from your computer.

Please download the Kaspersky Virus Removal Tool from Kaspersky's Official Link and save it to your Desktop.


  • Double-click the Setup file to install it on your computer.
  • Once it has installed, review and accept the agreement and press the Start button.
  • You will presented with the main interface, but don't scan yet, click the options tab (gear icon):
    Critical error drive sector not found - Page 2 Image1nz
  • On the Scan Scope tab, make sure to checkmark all the options, except for the CD/DVD drive:
    Critical error drive sector not found - Page 2 Image2pmb
  • On the Security Level tab, make sure to move the slider up denoting "Current Security Level: High":
    Critical error drive sector not found - Page 2 Image3vd
  • Now, go back to the Automatic Scan tab, and choose "Start Scanning". It may take several hours to complete. Please allow it to do so.
  • Once done scanning, choose the Report tab (page icon), select Detected Threats tab on left, and choose Disinfect All:
    Critical error drive sector not found - Page 2 Image5mf
  • Then, choose Save. Also, in the Automatic Report tab, select Save:
    Critical error drive sector not found - Page 2 Image4vy
  • Please post the reports in your next reply.
  • Once you exit, the tool should uninstall automatically.

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
Detected Threats Report -

Status: Absent (events: 5)
29-10-2012 00:37:02 Not found Trojan program Exploit.Java.CVE-2011-3544.jy C:\Documents and Settings\All Users\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\04380007.VBN//CryptZ/Effect.class High
29-10-2012 00:37:02 Not found Trojan program Trojan-Downloader.Win32.Agent.ufqr C:\Documents and Settings\All Users\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\17040000.VBN//CryptZ/BUBBLE97/Install.EXE/LOADER.EXE High
29-10-2012 00:37:02 Not found virus Worm.MSIL.Autorun.du C:\Documents and Settings\All Users\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0C080001\4D2954A4.VBN//CryptZ High
29-10-2012 00:37:02 Not found Trojan program Exploit.Java.CVE-2011-3544.jy C:\Users\LalitMamta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\3d7840f6-4478f694/Effect.class High
29-10-2012 00:37:02 Not found Trojan program Exploit.Java.CVE-2011-3544.jy C:\Users\LalitMamta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\3d7840f6-4478f694/Matrix.class High
Status: Vulnerability (events: 20)
28-10-2012 10:54:32 Vulnerability vulnerability http://www.securelist.com/en/advisories/33062 C:\Documents and Settings\lalit\AppData\Local\Google\Chrome\Application\Plugins\gears\gears.dll Low
28-10-2012 10:59:04 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 C:\Documents and Settings\lalit\AppData\Local\VirtualStore\Program Files\WinRAR\WinRAR.exe.bak Low
28-10-2012 11:12:57 Vulnerability vulnerability http://www.securelist.com/en/advisories/33062 C:\Documents and Settings\lalit\Local Settings\Google\Chrome\Application\Plugins\gears\gears.dll Low
28-10-2012 11:15:20 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 C:\Documents and Settings\lalit\Local Settings\VirtualStore\Program Files\WinRAR\WinRAR.exe.bak Low
28-10-2012 15:22:01 Vulnerability vulnerability http://www.securelist.com/en/advisories/33196 C:\Program Files\DivX\DivX Web Player\npdivx32.dll Low
28-10-2012 15:34:08 Vulnerability vulnerability http://www.securelist.com/en/advisories/43853 C:\Program Files\Google\Picasa3\plugins\expwebsites\expwebsites.yti Low
28-10-2012 15:36:16 Vulnerability vulnerability http://www.securelist.com/en/advisories/50949 C:\Program Files\Java\jdk1.6.0_14\bin\javac.exe Low
28-10-2012 15:37:21 Vulnerability vulnerability http://www.securelist.com/en/advisories/50949 C:\Program Files\Java\jre1.6.0_03\bin\java.exe Low
28-10-2012 15:37:34 Vulnerability vulnerability http://www.securelist.com/en/advisories/50949 C:\Program Files\Java\jre6\bin\java.exe Low
28-10-2012 16:08:31 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 C:\Program Files\WinRAR\WinRAR.exe Low
28-10-2012 16:19:04 Vulnerability vulnerability http://www.securelist.com/en/advisories/33062 C:\Users\lalit\AppData\Local\Google\Chrome\Application\Plugins\gears\gears.dll Low
28-10-2012 16:23:40 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 C:\Users\lalit\AppData\Local\VirtualStore\Program Files\WinRAR\WinRAR.exe.bak Low
28-10-2012 16:32:15 Vulnerability vulnerability http://www.securelist.com/en/advisories/33062 C:\Users\lalit\Local Settings\Google\Chrome\Application\Plugins\gears\gears.dll Low
28-10-2012 16:36:23 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 C:\Users\lalit\Local Settings\VirtualStore\Program Files\WinRAR\WinRAR.exe.bak Low
28-10-2012 17:04:30 Vulnerability vulnerability http://www.securelist.com/en/advisories/0 C:\Windows\System32\msxml4.dll Low
28-10-2012 17:12:03 Vulnerability vulnerability http://www.securelist.com/en/advisories/50876 C:\Windows\System32\Macromed\Flash\NPSWF32.dll Low
28-10-2012 17:41:16 Vulnerability vulnerability http://www.securelist.com/en/advisories/47447 c:\Program Files\QuickTime\QuickTimePlayer.exe Low
28-10-2012 17:41:29 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 c:\Program Files\WinRAR\WinRAR.exe Low
28-10-2012 17:51:09 Vulnerability vulnerability http://www.securelist.com/en/advisories/50876 c:\Windows\System32\Macromed\Flash\NPSWF32.dll Low
28-10-2012 18:00:39 Vulnerability vulnerability http://www.securelist.com/en/advisories/29407 c:\program files\WinRAR\WinRAR.exe Low
Status: Disinfected (events: 3)
29-10-2012 00:37:01 Disinfected Trojan program Exploit.Java.CVE-2011-3544.jy C:\Documents and Settings\LalitMamta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\3d7840f6-4478f694/Effect.class High
29-10-2012 00:37:01 Disinfected Trojan program Exploit.Java.CVE-2011-3544.jy C:\Documents and Settings\LalitMamta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\3d7840f6-4478f694/Matrix.class High
29-10-2012 00:37:01 Disinfected Trojan program Exploit.Java.CVE-2011-3544.jy C:\Documents and Settings\LalitMamta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\3d7840f6-4478f694 High
Status: Deleted (events: 5)
28-10-2012 16:00:44 Deleted Trojan program Trojan.Win32.Diple.yyp C:\Lalit\Lalit2\games\SWF\Flash Games.part2.rar//Flash Games/Pencak Silat.exe High
28-10-2012 16:00:48 Deleted Trojan program Trojan.Win32.Diple.yyp C:\Lalit\Lalit2\games\SWF\Flash Games\Pencak Silat.exe High
28-10-2012 16:00:46 Deleted Trojan program Trojan.Win32.Diple.yyp C:\Lalit\Lalit2\games\SWF\Flash Games\Pencak Silat (2).exe High
29-10-2012 00:36:39 Deleted Trojan program Trojan.Win32.Agent.spfu C:\Program Files\TikonaConnect\Uninstall.exe High
28-10-2012 16:00:44 Deleted Trojan program Trojan.Win32.Diple.yyp C:\Lalit\Lalit2\games\SWF\Flash Games.part2.rar High

descriptionCritical error drive sector not found - Page 2 EmptyRe: Critical error drive sector not found

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum