Anti Zero Access Log

The log file documents the execution of a Webroot AntiZeroAccess program on an infected Windows XP system. The program repeatedly encountered errors when trying to access the system root volume and send IOCTL commands to check files, indicating the system disk class driver was infected with the ZeroAccess rootkit. Over 100 entries showed the same "Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL" error.

Uploaded by

Imran Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

111 views15 pages

Anti Zero Access Log

Uploaded by

Imran Khan

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 15

Webroot AntiZeroAccess 0.

8 Log File Execution time: 08/04/2012 - 12:42 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 12:42:31 - CheckSystem - Begin to check system... 12:42:31 - OpenRootDrive - Opening system root volume and physical drive.... 12:42:32 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 12:42:32 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 12:42:32 - InstallAndStartDriver - Main driver was installed and now is running. 12:42:32 - CheckSystem - Warning! Disk class driver is INFECTED. 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:32 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:33 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile root volume object. 12:42:33 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system

root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile file! 12:42:34 - CheckFile file! 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile 0000020. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile root volume object. 12:42:34 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to read "sptd.sys" file. CreateFile last to system to system to system to system to system to system to system to system to system eror: 0x0

root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:34 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 12:42:35 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 12:42:35 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 12:42:35 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 12:42:35 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 09/04/2012 - 14:10 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 14:11:05 - CheckSystem - Begin to check system... 14:11:05 - OpenRootDrive - Opening system root volume and physical drive.... 14:11:05 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 14:11:05 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 14:11:05 - InstallAndStartDriver - Main driver was installed and now is running. 14:11:05 - CheckSystem - Disk class driver state is OK. 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 14:11:05 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile file! 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile file! 14:11:05 - CheckFile root volume object. 14:11:05 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE

file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile

- Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system

root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile 0000020. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile root volume object. 14:11:06 - CheckFile file! 14:11:06 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile root volume object. 14:11:07 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to read "sptd.sys" file. CreateFile last to system to system to system to system to system to system to system to system to system eror: 0x0

- Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 14:11:07 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 14:11:07 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 14:11:07 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 14:11:07 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 01/05/2012 - 13:31 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 13:31:50 - CheckSystem - Begin to check system... 13:31:50 - OpenRootDrive - Opening system root volume and physical drive.... 13:31:50 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 13:31:50 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 13:31:50 - InstallAndStartDriver - Main driver was installed and now is running. 13:31:50 - CheckSystem - Disk class driver state is OK. 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:50 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:51 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile root volume object. 13:31:51 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile file! 13:31:52 - CheckFile file! 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile root volume object. 13:31:52 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to read "sptd.sys" file. CreateFile last eror: 0x0 0000020. 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:52 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:52 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 13:31:53 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 13:31:53 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 13:31:53 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 13:31:53 - Execution Ended! Webroot AntiZeroAccess 0.8 Log File Execution time: 26/05/2012 - 10:36 Host operation System: Windows Xp X86 version 5.1.2600 Service Pack 2 10:36:22 - CheckSystem - Begin to check system... 10:36:22 - OpenRootDrive - Opening system root volume and physical drive.... 10:36:23 - C Root Drive: Disk number: 1 Start sector: 0x0000003F Partition Si ze: 0x02711637 sectors. 10:36:23 - PrevX Main driver extracted in "C:\WINDOWS\system32\drivers\ZeroAcces s.sys". 10:36:23 - InstallAndStartDriver - Main driver was installed and now is running. 10:36:23 - CheckSystem - Disk class driver state is OK. 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:23 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:23 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:23 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile file! 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:24 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system

root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile file! 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:25 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile root volume object. 10:36:26 - CheckFile

DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system DeviceIoControl last error: 87 - Internal consistence error: Sector buffer is not of a PE - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL DeviceIoControl last error: 87 - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system to system to system to system to system to system to system to system to system to system

root volume object. DeviceIoControl last error: 87 10:36:26 - CheckFile - Unable to send IOCTL_VOLUME_LOGICAL_TO_PHYSICAL to system root volume object. DeviceIoControl last error: 87 10:36:26 - CheckFile - Internal consistence error: Sector buffer is not of a PE file! 10:36:26 - StopAndRemoveDriver - AntiZeroAccess Driver is stopped and removed. 10:36:26 - StopAndRemoveDriver - File "ZeroAccess.sys" was deleted! 10:36:26 - Execution Ended!

Juniper InterAS OptionB
No ratings yet
Juniper InterAS OptionB
10 pages
Sys Verilog PPT PDF
80% (5)
Sys Verilog PPT PDF
544 pages
Case Study On Firewall
No ratings yet
Case Study On Firewall
4 pages
Unit Iv Mapreduce Applications
No ratings yet
Unit Iv Mapreduce Applications
70 pages
Non Unicode To Unicode
0% (2)
Non Unicode To Unicode
364 pages
IGCSE O Level Computer P1 Revision Guide by Inqilab Patel PDF
No ratings yet
IGCSE O Level Computer P1 Revision Guide by Inqilab Patel PDF
137 pages
Database Systems An Application Oriented Approach (Selected Solutions)
100% (1)
Database Systems An Application Oriented Approach (Selected Solutions)
72 pages
5100 SERIES Quad-Ethernet Module: Installation & User's Manual
No ratings yet
5100 SERIES Quad-Ethernet Module: Installation & User's Manual
52 pages
Data Communication Basics Ch1
No ratings yet
Data Communication Basics Ch1
55 pages
LX51
No ratings yet
LX51
107 pages
Line Coding Techniques
No ratings yet
Line Coding Techniques
65 pages
Question Bank
No ratings yet
Question Bank
173 pages
Memory Test Updated V3 Reduced
No ratings yet
Memory Test Updated V3 Reduced
96 pages
Dumpstate Board
No ratings yet
Dumpstate Board
312 pages
X Tended
No ratings yet
X Tended
108 pages
Eunetworks, London: Ndcs - Euned Integration Eunetworks, London Marks & Spencer, United Kingdom Braintree.,Australia
No ratings yet
Eunetworks, London: Ndcs - Euned Integration Eunetworks, London Marks & Spencer, United Kingdom Braintree.,Australia
7 pages
Soulapi Dump
No ratings yet
Soulapi Dump
34 pages
Image Compression Using DWT
No ratings yet
Image Compression Using DWT
16 pages
Type of Operating System Services
No ratings yet
Type of Operating System Services
5 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
239 pages
Eventlog
No ratings yet
Eventlog
28 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
117 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
196 pages
Sinha
No ratings yet
Sinha
435 pages
Er To Schema
No ratings yet
Er To Schema
16 pages
Dmesg Logs
No ratings yet
Dmesg Logs
219 pages
Praktek-Cara Konfigurasi 3 Router Pada Packet Tracer
No ratings yet
Praktek-Cara Konfigurasi 3 Router Pada Packet Tracer
3 pages
Chapter 5 - Slides - Part - I
No ratings yet
Chapter 5 - Slides - Part - I
23 pages
Add SQL Server Always On Availability Groups To Failover Cluster
No ratings yet
Add SQL Server Always On Availability Groups To Failover Cluster
8 pages
Log
No ratings yet
Log
15 pages
Opencore 2022 05 29 030514
No ratings yet
Opencore 2022 05 29 030514
58 pages
Razer Cortex Diagnostics Report
No ratings yet
Razer Cortex Diagnostics Report
15 pages
Elementary IR: Scalable Boolean Text Search: (Compare With R & G 27.1-3)
No ratings yet
Elementary IR: Scalable Boolean Text Search: (Compare With R & G 27.1-3)
22 pages
1244153
No ratings yet
1244153
86 pages
Logfile
No ratings yet
Logfile
19 pages
Cryptolog 63
No ratings yet
Cryptolog 63
32 pages
DW Basics
No ratings yet
DW Basics
24 pages
Log 0
No ratings yet
Log 0
10 pages
Www-w3schools-Com SQL SQL Syntax-ASP Bccxi4fo
No ratings yet
Www-w3schools-Com SQL SQL Syntax-ASP Bccxi4fo
3 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
162 pages
Ghost Err
No ratings yet
Ghost Err
11 pages
Log
No ratings yet
Log
18 pages
GHOSTERR
No ratings yet
GHOSTERR
16 pages
Ghost Err
No ratings yet
Ghost Err
8 pages
Ghost Err
No ratings yet
Ghost Err
3 pages
How To Submit JCL From CICS Program
No ratings yet
How To Submit JCL From CICS Program
3 pages
00 01 02 03 04 05 06 07 08
No ratings yet
00 01 02 03 04 05 06 07 08
2 pages
Log
No ratings yet
Log
3 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
382 pages
Log
No ratings yet
Log
19 pages
Relational Database Management System (RDBMS) : Payroll
No ratings yet
Relational Database Management System (RDBMS) : Payroll
114 pages
Log
No ratings yet
Log
10 pages
Class 12 Computer Application em Full Study Materials by D.jenis
No ratings yet
Class 12 Computer Application em Full Study Materials by D.jenis
110 pages
How To Connect To MySQL Using PHP
No ratings yet
How To Connect To MySQL Using PHP
3 pages
Log 2023-04-26 01 - 29 - 28 - 791
No ratings yet
Log 2023-04-26 01 - 29 - 28 - 791
5 pages
Disk Part
No ratings yet
Disk Part
4 pages
Rufus
No ratings yet
Rufus
2 pages
Computer Technicians Quick Reference Guide
No ratings yet
Computer Technicians Quick Reference Guide
15 pages
Lagu
No ratings yet
Lagu
37 pages
The Following Table Provides A List of Win32 Error Codes
No ratings yet
The Following Table Provides A List of Win32 Error Codes
7 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
490 pages
Minicom Log
No ratings yet
Minicom Log
22 pages
Log 2023-04-26 19 - 27 - 48 - 526
No ratings yet
Log 2023-04-26 19 - 27 - 48 - 526
5 pages
Log
No ratings yet
Log
59 pages
Assrock Fatality DR Debug Troubleshoot Codes
No ratings yet
Assrock Fatality DR Debug Troubleshoot Codes
7 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
738 pages
Hard Drive Inspector: System Information
No ratings yet
Hard Drive Inspector: System Information
5 pages
Hard Drive Inspector: System Information
No ratings yet
Hard Drive Inspector: System Information
5 pages
Hardware
No ratings yet
Hardware
6 pages
Gajuldownload 5
No ratings yet
Gajuldownload 5
13 pages
The PCBA Without Any Signature
No ratings yet
The PCBA Without Any Signature
651 pages
Hitachierror Old
No ratings yet
Hitachierror Old
4 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
517 pages
Logcat Prev CSC Log
No ratings yet
Logcat Prev CSC Log
149 pages
Psa
No ratings yet
Psa
6 pages
Rescue Codes PDF Version
No ratings yet
Rescue Codes PDF Version
19 pages
Log
No ratings yet
Log
49 pages
Dumpstate Board
No ratings yet
Dumpstate Board
46 pages
Dumpstate Board
No ratings yet
Dumpstate Board
1,707 pages
Log
No ratings yet
Log
44 pages
Log
No ratings yet
Log
9 pages
Log
No ratings yet
Log
47 pages
Log
No ratings yet
Log
5 pages
Mobaxterm Com3usb-Serialch341acom3 20250220 111427
No ratings yet
Mobaxterm Com3usb-Serialch341acom3 20250220 111427
47 pages
Some Tutorials in Computer Networking Hacking
From Everand
Some Tutorials in Computer Networking Hacking
Dr. Hidaia Mahmood Alassouli
No ratings yet
Oracle Ultimate DBA Interview Questions
From Everand
Oracle Ultimate DBA Interview Questions
equitypress
4.5/5 (3)
Ansible For Security by Examples
From Everand
Ansible For Security by Examples
Berton
No ratings yet
Inspiring Powershell Articles
From Everand
Inspiring Powershell Articles
Murat Yildirimoglu
No ratings yet

Anti Zero Access Log

Uploaded by

Anti Zero Access Log

Uploaded by

Webroot AntiZeroAccess 0.

You might also like