Anti Zero Access Log

The log file documents the execution of a Webroot AntiZeroAccess program on an infected Windows XP system. The program repeatedly encountered errors when trying to access the system root volume and send IOCTL commands to check files, indicating the system disk class driver was infected with the ZeroAccess rootkit. Over 100 entries showed the same "Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL" error.

Uploaded by

Imran Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

111 views15 pages

Anti Zero Access Log

Uploaded by

Imran Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 15

Webroot AntiZeroAccess 0.

8 Log File Execution time: 08/04/2012 - 12:42 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 12:42:31 - CheckSystem - Begin to check system... 12:42:31 - OpenRootDrive - Opening system root volume and physical drive.... 12:42:32 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 12:42:32 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 12:42:32 - InstallAndStartDriver - Main driver was installed and now is running. 12:42:32 - CheckSystem - Warning! Disk class driver is INFECTED. 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system

root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile 0000020. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to read "sptd.sys" file. CreateFile last to system to system to system to system to system to system to system to system to system eror: 0x0

root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:35 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 12:42:35 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 12:42:35 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 09/04/2012 - 14:10 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 14:11:05 - CheckSystem - Begin to check system... 14:11:05 - OpenRootDrive - Opening system root volume and physical drive.... 14:11:05 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 14:11:05 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 14:11:05 - InstallAndStartDriver - Main driver was installed and now is running. 14:11:05 - CheckSystem - Disk class driver state is OK. 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile file! 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile file! 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE

file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile

- Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system

root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile 0000020. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to read "sptd.sys" file. CreateFile last to system to system to system to system to system to system to system to system to system eror: 0x0

- Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 14:11:07 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 14:11:07 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 14:11:07 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 14:11:07 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 01/05/2012 - 13:31 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 13:31:50 - CheckSystem - Begin to check system... 13:31:50 - OpenRootDrive - Opening system root volume and physical drive.... 13:31:50 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 13:31:50 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 13:31:50 - InstallAndStartDriver - Main driver was installed and now is running. 13:31:50 - CheckSystem - Disk class driver state is OK. 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to read "sptd.sys" file. CreateFile last eror: 0x0 0000020. 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:53 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 13:31:53 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 13:31:53 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 26/05/2012 - 10:36 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 10:36:22 - CheckSystem - Begin to check system... 10:36:22 - OpenRootDrive - Opening system root volume and physical drive.... 10:36:23 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 10:36:23 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 10:36:23 - InstallAndStartDriver - Main driver was installed and now is running. 10:36:23 - CheckSystem - Disk class driver state is OK. 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:23 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 10:36:26 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:26 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 10:36:26 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 10:36:26 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 10:36:26 - Execution Ended!

Command Guide
No ratings yet
Command Guide
39 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
196 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
149 pages
Rescue Codes PDF Version
No ratings yet
Rescue Codes PDF Version
19 pages
In Basket Exercise CBHRM PDF
No ratings yet
In Basket Exercise CBHRM PDF
26 pages
MySQL Basic SELECT Statement - Exercises, Practice, Solution
No ratings yet
MySQL Basic SELECT Statement - Exercises, Practice, Solution
45 pages
Comp Fundamentals and Programming - Syllabus
No ratings yet
Comp Fundamentals and Programming - Syllabus
4 pages
Mastering Core Data With Swift
100% (2)
Mastering Core Data With Swift
276 pages
OOPS in C++ PDF
No ratings yet
OOPS in C++ PDF
7 pages
VMware Scenario Based
100% (1)
VMware Scenario Based
18 pages
Logfile
No ratings yet
Logfile
19 pages
Data Science S (2 Files Merged)
No ratings yet
Data Science S (2 Files Merged)
30 pages
Oracle Ultimate DBA Interview Questions
From Everand
Oracle Ultimate DBA Interview Questions
equitypress
4.5/5 (3)
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
738 pages
The PCBA Without Any Signature
No ratings yet
The PCBA Without Any Signature
651 pages
Dumpstate Board
No ratings yet
Dumpstate Board
1,707 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
517 pages
Sinha
No ratings yet
Sinha
435 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
490 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
382 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
239 pages
Dmesg Logs
No ratings yet
Dmesg Logs
219 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
117 pages
Etap 16 Demo Install Guide en
No ratings yet
Etap 16 Demo Install Guide en
4 pages
Log
No ratings yet
Log
59 pages
GHOSTERR
No ratings yet
GHOSTERR
16 pages
Lagu
No ratings yet
Lagu
37 pages
Log
No ratings yet
Log
18 pages
Log
No ratings yet
Log
49 pages
Terraform Certified
100% (3)
Terraform Certified
121 pages
Log
No ratings yet
Log
19 pages
Gajuldownload 5
No ratings yet
Gajuldownload 5
13 pages
X Tended
No ratings yet
X Tended
108 pages
Examples Of: Pages Awesome "About Us"
No ratings yet
Examples Of: Pages Awesome "About Us"
12 pages
Minicom Log
No ratings yet
Minicom Log
22 pages
Soulapi Dump
No ratings yet
Soulapi Dump
34 pages
Opencore 2022 05 29 030514
No ratings yet
Opencore 2022 05 29 030514
58 pages
Dumpstate Board
No ratings yet
Dumpstate Board
46 pages
Log
No ratings yet
Log
15 pages
Eventlog
No ratings yet
Eventlog
28 pages
Log
No ratings yet
Log
47 pages
Log
No ratings yet
Log
10 pages
Dumpstate Board
No ratings yet
Dumpstate Board
312 pages
Mobaxterm Com3usb-Serialch341acom3 20250220 111427
No ratings yet
Mobaxterm Com3usb-Serialch341acom3 20250220 111427
47 pages
Log
No ratings yet
Log
44 pages
Razer Cortex Diagnostics Report
No ratings yet
Razer Cortex Diagnostics Report
15 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
162 pages
Log 0
No ratings yet
Log 0
10 pages
Ghost Err
No ratings yet
Ghost Err
8 pages
Log 2023-04-26 19 - 27 - 48 - 526
No ratings yet
Log 2023-04-26 19 - 27 - 48 - 526
5 pages
Psa
No ratings yet
Psa
6 pages
Distributed Network Protocol & IEC 61850 - COPA DATA
No ratings yet
Distributed Network Protocol & IEC 61850 - COPA DATA
8 pages
Rufus
No ratings yet
Rufus
2 pages
Ansible For Security by Examples
From Everand
Ansible For Security by Examples
Berton
No ratings yet
Log
No ratings yet
Log
9 pages
Computer Technicians Quick Reference Guide
No ratings yet
Computer Technicians Quick Reference Guide
15 pages
Starplat 1 41 Datasheet v5-1 Eng
No ratings yet
Starplat 1 41 Datasheet v5-1 Eng
9 pages
Intro To Ethical Hacking Week 1
No ratings yet
Intro To Ethical Hacking Week 1
42 pages
00 01 02 03 04 05 06 07 08
No ratings yet
00 01 02 03 04 05 06 07 08
2 pages
Log 2023-04-26 01 - 29 - 28 - 791
No ratings yet
Log 2023-04-26 01 - 29 - 28 - 791
5 pages
1244153
No ratings yet
1244153
86 pages
Y9 - Webauthoring Worksheet - 2
No ratings yet
Y9 - Webauthoring Worksheet - 2
4 pages
Log
No ratings yet
Log
5 pages
Disk Part
No ratings yet
Disk Part
4 pages
Hitachierror Old
No ratings yet
Hitachierror Old
4 pages
Kish Grid Info
No ratings yet
Kish Grid Info
14 pages
Ghost Err
No ratings yet
Ghost Err
11 pages
The Following Table Provides A List of Win32 Error Codes
No ratings yet
The Following Table Provides A List of Win32 Error Codes
7 pages
Assrock Fatality DR Debug Troubleshoot Codes
No ratings yet
Assrock Fatality DR Debug Troubleshoot Codes
7 pages
Log
No ratings yet
Log
3 pages
Voltlogic230 Manual en
No ratings yet
Voltlogic230 Manual en
51 pages
Ghost Err
No ratings yet
Ghost Err
3 pages
Installing The Cisco CSR 1000V in Vmware Esxi Environments
No ratings yet
Installing The Cisco CSR 1000V in Vmware Esxi Environments
38 pages
Inspiring Powershell Articles
From Everand
Inspiring Powershell Articles
Murat Yildirimoglu
No ratings yet
How To Root A Nook Color To Transform It Into An Android Tablet
No ratings yet
How To Root A Nook Color To Transform It Into An Android Tablet
3 pages
M580-2CH User Manual 20230620
No ratings yet
M580-2CH User Manual 20230620
40 pages
Hardware
No ratings yet
Hardware
6 pages
TVersity Media Server - Quick Start Guide
No ratings yet
TVersity Media Server - Quick Start Guide
10 pages
Hard Drive Inspector: System Information
No ratings yet
Hard Drive Inspector: System Information
5 pages
TB3209 Getting Started With ADC 90003209A
No ratings yet
TB3209 Getting Started With ADC 90003209A
27 pages
Hard Drive Inspector: System Information
No ratings yet
Hard Drive Inspector: System Information
5 pages
3 - Automated Classification of Neonatal Amplitude-Integrated EEG Based On Gradient Boosting Method
No ratings yet
3 - Automated Classification of Neonatal Amplitude-Integrated EEG Based On Gradient Boosting Method
8 pages
Encoding Video at The Edge With Intel® Xeon® Processors: Solution Brief
No ratings yet
Encoding Video at The Edge With Intel® Xeon® Processors: Solution Brief
4 pages
Tentang Sistem
No ratings yet
Tentang Sistem
10 pages
Sseeeeeeee
No ratings yet
Sseeeeeeee
29 pages
Some Tutorials in Computer Networking Hacking
From Everand
Some Tutorials in Computer Networking Hacking
Dr. Hidaia Mahmood Alassouli
No ratings yet
The Complete Guide To Event-Driven Architecture - by Seetharamugn - Medium
No ratings yet
The Complete Guide To Event-Driven Architecture - by Seetharamugn - Medium
11 pages
Attachment - Galaxy Pricing Changes Feb FY26
No ratings yet
Attachment - Galaxy Pricing Changes Feb FY26
3 pages
CEN Workshop Agreement CWA 16374-34
No ratings yet
CEN Workshop Agreement CWA 16374-34
38 pages
Introduction To Structured Query Language (SQL) : Ms. Kielly Chrizza Mae T. Lara
No ratings yet
Introduction To Structured Query Language (SQL) : Ms. Kielly Chrizza Mae T. Lara
22 pages

Anti Zero Access Log

Uploaded by

Anti Zero Access Log

Uploaded by

Webroot AntiZeroAccess 0.

You might also like