Avira Support Forum

Thank you Georgi

I downloaded the latest rescue CD yesterday and ran it last night on the original system
and it found and renamed 7 items. I then booted to Windows XP and I still can not enter task manager
but was able to get into regedit for a minute before I got locked out of it again.

I rebooted to safe mode and ran regedit and removed the disable task manager key and rebooted to
windows normal mode again.

I was not able to run malware or the combofix software and after a minute, I was not able to run regedit or task manager.

I rebooted the system to the avira rescue CD and set up the configuration as before and it only scanned one
folder (media\device\hd0 - I think)

Not sure what to do now...

Hello Japper,

STEP 1

Open NOTEPAD.exe and copy/paste the text in the codebox below:
(don't forget to copy and paste REGEDIT4)

Quoted

REGEDIT4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog]
"Start"=dword:00000004

Save this as fix.reg Choose to "Save type as - All Files"
It should look like this:
Double click on fix.reg & allow it to merge into the registry



STEP 2

Download Win32kDiag and save it to your Desktop.

Open NOTEPAD.exe and copy/paste the text in the quotebox below into it:

Quoted

@Win32kDiag -F -R
del %0

Save this as fix.bat Choose to "Save type as - All Files"
It should look like this
## IMPORTANT ## Place fix.bat next to Win32kDiag.exe

Double click on fix.bat & allow it to run

This should restore permissions on locked files and remove mountpoints.
Then post back the log.

(Split the log into parts in several posts).



STEP 3

Please download GMER and extract it to it's own folder. If needed, read here how to unzip/extract properly.

Next, run the Gmer.exe program and click the "Rootkit/Malware" tab.
Make sure all the boxes on the right of the screen are checked, EXCEPT for "Show All".

Next, select all the disk partitions (C:\, D:\ etc) from the list.
Finally, click "Scan" and allow the scan to complete.
DO NOTHING ELSE WITH THE COMPUTER WHILE THIS SCAN IS RUNNING.

When the scan is completed, click "Copy" to copy the log. Paste it into a blank notepad and save it to your desktop.
Post the log in your next reply.



STEP 4

Please download DDS by sUBs and save it to your desktop.

Disable any anti-malware program that will block scripts from running before running DDS.

* Double-Click on dds.scr and a command window will appear. This is normal.
* Shortly after two logs will appear: DDS.txt and Attach.txt
* A window will open instructing you save & post the logs
* Save the logs to a convenient place such as your desktop
* Copy the contents of both logs & post in your next reply.

thank you FFreestyleRR -

So far I have performed steps 1 & 2 and while running the Win32KDiag the execution of this utility got stopped before it was finished... Not sure if it ran its course but
I got a message stating that it was corrupt and that the execution was halted.

I will include to log below (and in additional posts) and will try steps 3 & 4.

thanks

Log (part 1):
Running from: Win32kDiag

Log file at : C:\Documents and Settings\Paul.PIPITONE-56XPAF\Desktop\Win32kDiag.txt

Removing all found mount points.

Attempting to reset file permissions.

WARNING: Could not get backup privileges!

Searching 'C:\WINDOWS'...



Found mount point : C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB834707\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB834707\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB840987\SP1QFE\SP1QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB840987\SP1QFE\SP1QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB840987\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB840987\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB867282\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB867282\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB873333\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB873333\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB873333\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB873333\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB873339\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB873339\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB873339\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB873339\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB883939\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB883939\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB885250\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885250\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB885250\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885250\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB885835\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885835\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB885836\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885836\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB885836\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB885836\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB886185\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB886185\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB886185\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB886185\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB887472\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB887472\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB887472\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB887472\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB887742\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB887742\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB887742\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB887742\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB887822\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB887822\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB888113\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB888113\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB888113\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB888113\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB888302\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB888302\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB888302\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB888302\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB890046\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890046\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB890046\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890046\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB890047\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890047\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB890047\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890047\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB890175\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890175\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB890175\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890175\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB890859\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890859\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB890923\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB890923\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB891781\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB891781\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB891781\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB891781\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB893066\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893066\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB893066\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893066\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB893086\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893086\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB893086\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893086\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB893756\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893756\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB893756\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB893756\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB894391\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB894391\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB894391\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB894391\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896358\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896358\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896358\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896358\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896422\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896422\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896422\update\update

Mount point destination : \Device\__max++>\^

Log (part 2):
Removing mount point : C:\WINDOWS\$hf_mig$\KB896422\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896423\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896423\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896424\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896424\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896424\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896424\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896428\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896428\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896428\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896428\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896688\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896688\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896688\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896688\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB896727\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB896727\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB899587\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899587\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB899587\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899587\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB899588\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899588\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB899588\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899588\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB899591\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899591\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB899591\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB899591\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB900485\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB900485\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB900485\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB900485\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB900725\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB900725\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB900725\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB900725\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB901017\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB901017\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB901017\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB901017\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB901214\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB901214\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB901214\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB901214\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB902400\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB902400\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB904706\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB904706\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB904706\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB904706\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB905414\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB905414\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB905414\update\update

Mount point destination : \Device\__max++>\^

Log (part3}:
Removing mount point : C:\WINDOWS\$hf_mig$\KB905414\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB905749\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB905749\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB905749\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB905749\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB905915\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB905915\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB905915\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB905915\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB908519\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB908519\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB908519\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB908519\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB908531\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB908531\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB908531\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB908531\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB910437\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB910437\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB910437\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB910437\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB911280\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911280\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB911280\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911280\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB911562\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911562\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB911562\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911562\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB911567\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911567\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB911567\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911567\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB911927\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911927\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB911927\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB911927\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB912812\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB912812\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB912812\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB912812\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB912919\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB912919\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB912919\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB912919\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB913446\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB913446\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Log (part4}:
Removing mount point : C:\WINDOWS\$hf_mig$\KB913580\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB913580\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB913580\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB914388\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB914388\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB914389\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB914389\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB914389\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB914389\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB916281\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB916281\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB916281\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB916281\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB916595\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB916595\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB916595\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB916595\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB917159\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917159\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB917159\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917159\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB917344\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917344\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB917422\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917422\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB917422\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917422\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB917953\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB917953\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB918118\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918118\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB918118\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918118\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB918439\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918439\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB918439\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918439\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB918899\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918899\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB918899\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB918899\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB919007\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB919007\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB919007\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB919007\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920213\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920213\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920213\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920213\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920214\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920214\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920214\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920214\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920670\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920670\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920670\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920670\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920683\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920683\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920683\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920683\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920685\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920685\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920685\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920685\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB920872\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920872\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB920872\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB920872\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB921398\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921398\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB921398\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921398\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB921503\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921503\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB921503\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921503\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB921883\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921883\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB921883\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB921883\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB922582\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922582\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB922582\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922582\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB922616\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922616\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB922616\update\update

Mount point destination : \Device\__max++>\^

Log (part5}:
Removing mount point : C:\WINDOWS\$hf_mig$\KB922616\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB922760\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922760\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB922760\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922760\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB922819\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922819\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB922819\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB922819\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB923414\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923414\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB923414\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923414\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB923694\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923694\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB923694\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923694\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB923980\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923980\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB923980\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB923980\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB924191\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924191\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB924191\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924191\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB924270\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924270\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB924270\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924270\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB924496\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924496\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB924496\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB924496\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB925454\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925454\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB925454\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925454\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB925486\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925486\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB925486\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925486\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB925902\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB925902\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB926255\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB926255\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB926255\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB926255\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB926436\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB926436\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB926436\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB926436\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB927779\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927779\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB927779\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927779\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB927802\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927802\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB927802\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927802\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB927891\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927891\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB927891\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB927891\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB928090\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928090\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB928090\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928090\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB928255\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928255\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB928255\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928255\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB928843\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928843\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB928843\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB928843\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB929123\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929123\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB929123\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929123\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB929338\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929338\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB929338\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929338\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB929969\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929969\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB929969\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB929969\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB930178\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB930178\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB930178\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB930178\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB930916\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB930916\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB930916\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB931261\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931261\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB931261\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931261\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB931768\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931768\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB931768\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931768\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB931784\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931784\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB931784\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931784\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB931836\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931836\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB931836\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB931836\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB932168\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB932168\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB932168\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB932168\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB932823-v3\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB932823-v3\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB933360\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933360\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB933360\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933360\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB933566\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933566\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB933566\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933566\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB933729\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933729\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB933729\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB933729\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB935839\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB935839\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB935839\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB935839\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB935840\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB935840\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB935840\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB935840\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB936021\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB936021\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB936021\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB936021\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB936357\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB936357\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB936357\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB936357\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB937143\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB937143\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB937143\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB937143\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB938127\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938127\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB938127\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938127\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB938127-IE7\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Log (part6}:
Removing mount point : C:\WINDOWS\$hf_mig$\KB938127-IE7\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB938828\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938828\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB938829\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938829\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB938829\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB938829\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB939653\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB939653\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB939653\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB939653\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB941202\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941202\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB941202\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941202\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB941568\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941568\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB941568\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941568\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB941644\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941644\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB941693\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941693\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB941693\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB941693\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB942615\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB942615\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB942615\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB942615\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB942615-IE7\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB942615-IE7\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB942615-IE7\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB942615-IE7\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB942840\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB942840\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB943055\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943055\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB943055\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943055\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB943460\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943460\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB943460\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943460\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB943485\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943485\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB943485\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB943485\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB944533-IE7\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB944533-IE7\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB944533-IE7\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB944533-IE7\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB944653\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB944653\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB944653\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB944653\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB945553\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB945553\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB945553\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB945553\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB946026\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB946026\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB946026\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB946026\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB947864-IE7\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB947864-IE7\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB947864-IE7\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB947864-IE7\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB948590\SP2QFE\SP2QFE

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB948590\SP2QFE\SP2QFE

Found mount point : C:\WINDOWS\$hf_mig$\KB948590\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB948590\update\update

Found mount point : C:\WINDOWS\$hf_mig$\KB948881\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$hf_mig$\KB948881\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\KB828741\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\KB828741\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\KB835732\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\KB835732\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329048\symbols\dll\dll

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329048\symbols\dll\dll

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329048\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329048\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329170\symbols\sys\sys

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329170\symbols\sys\sys

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329170\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329170\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329390\symbols\dll\dll

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329390\symbols\dll\dll

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329390\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329390\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329441\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329441\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329834\symbols\sys\sys

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329834\symbols\sys\sys

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q329834\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q329834\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q810577\symbols\sys\sys

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q810577\symbols\sys\sys

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q810577\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q810577\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\dll\dll

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\dll\dll

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\exe\exe

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\exe\exe

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\ocx\ocx

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\symbols\ocx\ocx

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q811630\update\update

Found mount point : C:\WINDOWS\$xpsp1hfm$\Q817606\update\update

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\$xpsp1hfm$\Q817606\update\update

Found mount point : C:\WINDOWS\addins\addins

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\addins\addins

Found mount point : C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Log (part7}:
Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\8.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\2.0.0.0__b03f5f7f11d50a3a

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Log (part8}:
Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\2.0.0.0__b77a5c561934e089

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\c6772fd12a581ad3be49e3f2a80b5622\c6772fd12a581ad3be49e3f2a80b5622

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\c6772fd12a581ad3be49e3f2a80b5622\c6772fd12a581ad3be49e3f2a80b5622

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\a1d353edc300e3aff0784202f68a657b\a1d353edc300e3aff0784202f68a657b

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\a1d353edc300e3aff0784202f68a657b\a1d353edc300e3aff0784202f68a657b

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\c10ec9b4de2b366236ec83237dc31281\c10ec9b4de2b366236ec83237dc31281

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\c10ec9b4de2b366236ec83237dc31281\c10ec9b4de2b366236ec83237dc31281

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\dfsvc\837fe02bdcf637d5bf1e5ffb935ebb80\837fe02bdcf637d5bf1e5ffb935ebb80

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\dfsvc\837fe02bdcf637d5bf1e5ffb935ebb80\837fe02bdcf637d5bf1e5ffb935ebb80

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\9710a3c0d11dd264c3a6b88977699e9b\9710a3c0d11dd264c3a6b88977699e9b

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\9710a3c0d11dd264c3a6b88977699e9b\9710a3c0d11dd264c3a6b88977699e9b

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e2858a45971fb30b0c0523dbb52c1d4e\e2858a45971fb30b0c0523dbb52c1d4e

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e2858a45971fb30b0c0523dbb52c1d4e\e2858a45971fb30b0c0523dbb52c1d4e

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\63d69ffdf3c640d2d104a4b74e8115f8\63d69ffdf3c640d2d104a4b74e8115f8

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\63d69ffdf3c640d2d104a4b74e8115f8\63d69ffdf3c640d2d104a4b74e8115f8

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\11cb5418c06e30100616fbf205588489\11cb5418c06e30100616fbf205588489

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\11cb5418c06e30100616fbf205588489\11cb5418c06e30100616fbf205588489

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\923bd55258380eae77353d36a5a1b08f\923bd55258380eae77353d36a5a1b08f

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\923bd55258380eae77353d36a5a1b08f\923bd55258380eae77353d36a5a1b08f

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\32e6f703c114f3a971cbe706586e3655\32e6f703c114f3a971cbe706586e3655

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\32e6f703c114f3a971cbe706586e3655\32e6f703c114f3a971cbe706586e3655

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\ba0e3a22211ba7343e0116b051f2965a\ba0e3a22211ba7343e0116b051f2965a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\ba0e3a22211ba7343e0116b051f2965a\ba0e3a22211ba7343e0116b051f2965a

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\eee9b48577689e92db5a7b5c5de98d9b\eee9b48577689e92db5a7b5c5de98d9b

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\eee9b48577689e92db5a7b5c5de98d9b\eee9b48577689e92db5a7b5c5de98d9b

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\5f669e819da7010c1dca347a25597c42\5f669e819da7010c1dca347a25597c42

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\5f669e819da7010c1dca347a25597c42\5f669e819da7010c1dca347a25597c42

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Deployment\c7dea4895e1fa33d65e448c03de48d26\c7dea4895e1fa33d65e448c03de48d26

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Deployment\c7dea4895e1fa33d65e448c03de48d26\c7dea4895e1fa33d65e448c03de48d26

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Design\c1e16b40e30a05c39be8aee46311841c\c1e16b40e30a05c39be8aee46311841c

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Design\c1e16b40e30a05c39be8aee46311841c\c1e16b40e30a05c39be8aee46311841c

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\914668b240550f529e54bb772c6fc881\914668b240550f529e54bb772c6fc881

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\914668b240550f529e54bb772c6fc881\914668b240550f529e54bb772c6fc881

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\f11bc82c09955cb8438d3885a99c297d\f11bc82c09955cb8438d3885a99c297d

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\f11bc82c09955cb8438d3885a99c297d\f11bc82c09955cb8438d3885a99c297d

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\0e83aac37b2623f1a24c70979f31dd56\0e83aac37b2623f1a24c70979f31dd56

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\0e83aac37b2623f1a24c70979f31dd56\0e83aac37b2623f1a24c70979f31dd56

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\b974f6c17d17a533adf6e7710c5a62fa\b974f6c17d17a533adf6e7710c5a62fa

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\b974f6c17d17a533adf6e7710c5a62fa\b974f6c17d17a533adf6e7710c5a62fa

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\646131eda5f21f4e6216733d49c22c56\646131eda5f21f4e6216733d49c22c56

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\646131eda5f21f4e6216733d49c22c56\646131eda5f21f4e6216733d49c22c56

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\2b5994269cc5b996231c9b21afea9a91\2b5994269cc5b996231c9b21afea9a91

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\2b5994269cc5b996231c9b21afea9a91\2b5994269cc5b996231c9b21afea9a91

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\193ac978af569ad9ee45110b359961b9\193ac978af569ad9ee45110b359961b9

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\193ac978af569ad9ee45110b359961b9\193ac978af569ad9ee45110b359961b9

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\12e0aa1030badf4524f897e3f57b037a\12e0aa1030badf4524f897e3f57b037a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\12e0aa1030badf4524f897e3f57b037a\12e0aa1030badf4524f897e3f57b037a

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\67cfb70213562afe2ca9b9066764af3a\67cfb70213562afe2ca9b9066764af3a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\67cfb70213562afe2ca9b9066764af3a\67cfb70213562afe2ca9b9066764af3a

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\37d87b3cab1c66ec4430ebb2abeaa570\37d87b3cab1c66ec4430ebb2abeaa570

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\37d87b3cab1c66ec4430ebb2abeaa570\37d87b3cab1c66ec4430ebb2abeaa570

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\b5b81faf46fc63c20d5339b36edd02fa\b5b81faf46fc63c20d5339b36edd02fa

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\b5b81faf46fc63c20d5339b36edd02fa\b5b81faf46fc63c20d5339b36edd02fa

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\38991368499e2109ea4099a0fe29c5a3\38991368499e2109ea4099a0fe29c5a3

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\38991368499e2109ea4099a0fe29c5a3\38991368499e2109ea4099a0fe29c5a3

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3d8c79c45aa674e43f075e2e66b8caf5\3d8c79c45aa674e43f075e2e66b8caf5

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3d8c79c45aa674e43f075e2e66b8caf5\3d8c79c45aa674e43f075e2e66b8caf5

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\c98cb65a79cfccb44ea727ebe4593ede\c98cb65a79cfccb44ea727ebe4593ede

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\c98cb65a79cfccb44ea727ebe4593ede\c98cb65a79cfccb44ea727ebe4593ede

Log (part9):
Removing mount point : C:\WINDOWS\system32\en-US\en-US

Cannot access: C:\WINDOWS\system32\eventlog.dll

Attempting to restore permissions of : C:\WINDOWS\system32\eventlog.dll

[1] 2004-08-03 23:56:44 55808 C:\WINDOWS\ServicePackFiles\i386\eventlog.dll (Microsoft Corporation)

[1] 2008-04-13 18:11:53 56320 C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\eventlog.dll (Microsoft Corporation)

[1] 2004-08-03 23:56:44 63488 C:\WINDOWS\system32\eventlog.dll ()

[2] 2004-08-03 23:56:44 55808 C:\WINDOWS\system32\logevent.dll (Microsoft Corporation)



Found mount point : C:\WINDOWS\system32\export\export

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\export\export

Found mount point : C:\WINDOWS\system32\GroupPolicy\Machine\Scripts\Shutdown\Shutdown

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\GroupPolicy\Machine\Scripts\Shutdown\Shutdown

Found mount point : C:\WINDOWS\system32\GroupPolicy\Machine\Scripts\Startup\Startup

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\GroupPolicy\Machine\Scripts\Startup\Startup

Found mount point : C:\WINDOWS\system32\GroupPolicy\User\MICROSOFT\IEAK\IEAK

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\GroupPolicy\User\MICROSOFT\IEAK\IEAK

Found mount point : C:\WINDOWS\system32\GroupPolicy\User\Scripts\Logoff\Logoff

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\GroupPolicy\User\Scripts\Logoff\Logoff

Found mount point : C:\WINDOWS\system32\GroupPolicy\User\Scripts\Logon\Logon

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\GroupPolicy\User\Scripts\Logon\Logon

Found mount point : C:\WINDOWS\system32\inetsrv\Data\Data

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\inetsrv\Data\Data

Found mount point : C:\WINDOWS\system32\LogFiles\WUDF\WUDF

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\LogFiles\WUDF\WUDF

Found mount point : C:\WINDOWS\system32\mui\0409\0409

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\mui\0409\0409

Found mount point : C:\WINDOWS\system32\mui\dispspec\dispspec

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\mui\dispspec\dispspec

Found mount point : C:\WINDOWS\system32\NtmsData\NtmsData

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\NtmsData\NtmsData

Found mount point : C:\WINDOWS\system32\oobe\html\ispsgnup\ispsgnup

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\html\ispsgnup\ispsgnup

Found mount point : C:\WINDOWS\system32\oobe\html\oemcust\oemcust

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\html\oemcust\oemcust

Found mount point : C:\WINDOWS\system32\oobe\html\oemhw\oemhw

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\html\oemhw\oemhw

Found mount point : C:\WINDOWS\system32\oobe\html\oemreg\oemreg

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\html\oemreg\oemreg

Found mount point : C:\WINDOWS\system32\oobe\mui\041e\actsetup\actsetup

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\mui\041e\actsetup\actsetup

Found mount point : C:\WINDOWS\system32\oobe\sample\sample

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\oobe\sample\sample

Found mount point : C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\i386

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\i386

Found mount point : C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\i386

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\i386

Found mount point : C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\i386

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\i386

Found mount point : C:\WINDOWS\system32\ShellExt\ShellExt

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\ShellExt\ShellExt

Found mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\5.8.0.2469\5.8.0.2469

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\5.8.0.2469\5.8.0.2469

Found mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.374\7.0.6000.374

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.374\7.0.6000.374

Found mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.374\7.0.6000.374

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.374\7.0.6000.374

Found mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.381\7.0.6000.381

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.381\7.0.6000.381

Found mount point : C:\WINDOWS\system32\spool\drivers\IA64\IA64

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\drivers\IA64\IA64

Found mount point : C:\WINDOWS\system32\spool\drivers\W32ALPHA\W32ALPHA

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\drivers\W32ALPHA\W32ALPHA

Found mount point : C:\WINDOWS\system32\spool\drivers\w32x86\epsonstylus_photo_rx9dc8\epsonstylus_photo_rx9dc8

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\drivers\w32x86\epsonstylus_photo_rx9dc8\epsonstylus_photo_rx9dc8

Found mount point : C:\WINDOWS\system32\spool\drivers\w32x86\__SKIP_03DA\__SKIP_03DA

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\drivers\w32x86\__SKIP_03DA\__SKIP_03DA

Found mount point : C:\WINDOWS\system32\spool\drivers\WIN40\WIN40

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\drivers\WIN40\WIN40

Found mount point : C:\WINDOWS\system32\spool\PRINTERS\PRINTERS

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\spool\PRINTERS\PRINTERS

Found mount point : C:\WINDOWS\system32\wbem\mof\bad\bad

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\wbem\mof\bad\bad

Found mount point : C:\WINDOWS\system32\wbem\mof\good\good

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\wbem\mof\good\good

Found mount point : C:\WINDOWS\system32\wins\wins

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\wins\wins

Found mount point : C:\WINDOWS\system32\xircom\xircom

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\xircom\xircom

Found mount point : C:\WINDOWS\system32\ZoneLabs\ZoneLabs

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\system32\ZoneLabs\ZoneLabs

Found mount point : C:\WINDOWS\Temp\Temporary Internet Files\Temporary Internet Files

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\Temp\Temporary Internet Files\Temporary Internet Files

Found mount point : C:\WINDOWS\twain_32\ESCNDV\ES0038\ffmt\ffmt

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\twain_32\ESCNDV\ES0038\ffmt\ffmt

Found mount point : C:\WINDOWS\twain_32\ESCNDV\essys\essys

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\twain_32\ESCNDV\essys\essys

Found mount point : C:\WINDOWS\WBEM\WBEM

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WBEM\WBEM

Found mount point : C:\WINDOWS\WinSxS\InstallTemp\46481\46481

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\InstallTemp\46481\46481

Found mount point : C:\WINDOWS\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e

Found mount point : C:\WINDOWS\WinSxS\Policies\x86_policy.6.0.Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_x-ww_527a1c68\x86_policy.6.0.Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_x-ww_527a1c68

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\Policies\x86_policy.6.0.Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_x-ww_527a1c68\x86_policy.6.0.Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_x-ww_527a1c68

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9841.0_x-ww_18171213\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9841.0_x-ww_18171213

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9841.0_x-ww_18171213\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9841.0_x-ww_18171213

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a\x86_Microsoft.Tools.VisualCPlusPlus.Runtime-Libraries_6595b64144ccf1df_6.0.9792.0_x-ww_08a6620a

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2

Found mount point : C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03

Found mount point : C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790

Mount point destination : \Device\__max++>\^

Removing mount point : C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790



Finished!

FFreestyleRR-

The Gmer utility would not run. I extracted it to its own folder and it would not even launch.

Please advise

thank you

Please tell us what viruses Avira Rescue CD was found and renamed.
I hope it's not Virut.Gen.
Win32kdiag was finished great job - rootkit max++ should be gone now.

STEP 1

1. Please download The Avenger by Swandog46to your Desktop.

* Right click on the Avenger.zip folder and select "Extract All..."
* Follow the prompts and extract the avenger folder to your desktop

2. Copy all the text contained in the code box below to your Clipboard by highlighting it and pressing (Ctrl+C):

Quoted

Begin copying here:
Files to move:
C:\WINDOWS\system32\logevent.dll | C:\WINDOWS\system32\eventlog.dll

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Now, open the avenger folder and start The Avenger program by clicking on its icon.

* Right click on the window under Input script here:, and select Paste.
* You can also click on this window and press (Ctrl+V) to paste the contents of the clipboard.
* Click on Execute
* Answer "Yes" twice when prompted.

4. The Avenger will automatically do the following:

* It will Restart your computer.
* On reboot, it will briefly open a black command window on your desktop, this is normal.
* After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
* Please copy/paste the content of c:\avenger.txt in your reply.

STEP 2

Please delete any Combofix versions you may have.
Please download a new one and follow the instructions below:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Post its log.

Regards,
Georgi

I could not run combofix as it would not launch
but here is the avenger log:

Quoted

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File move operation "C:\WINDOWS\system32\logevent.dll|C:\WINDOWS\system32\eventlog.dll" completed successfully.

Completed script processing.

*******************

Finished! Terminate.

In an earlier message you asked for me to post the Avira rescue CD log file but I am not sure where this is stored...

I am travelling this next week and will not be able to attend to this PC until the following week so if I don't respond. it is
due to travel. I will pick this back up when I return.

thank you

Quoted from "Japper"

I could not run combofix as it would not launch

What is the message from Combofix ?

Please try to run DDS:

Please download DDS by sUBs and save it to your desktop.

Disable any anti-malware program that will block scripts from running before running DDS.

* Double-Click on dds.scr and a command window will appear. This is normal.
* Shortly after two logs will appear: DDS.txt and Attach.txt
* A window will open instructing you save & post the logs
* Save the logs to a convenient place such as your desktop
* Copy the contents of both logs & post in your next reply.

If no joy let's try with OTListIt:

Download OTL by Old Timer to your desktop.
Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
When the window appears, underneath Output at the top change it to Minimal Output.
Check the boxes beside LOP Check and Purity Check.
Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTListIt.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.

Regards,
Georgi

Hi Japper,


Georgi hope you do not mind me jumping in as well, in my experience this problem is most commonly caused by the virus called “Brontok“. The Brontok virus will make lots of changes to the system restrictions in order to hide itself from easy detection and also from easy cleaning.

Here’s a free tool called Remove Restrictions Tool (RRT) which is able to re-enables all that the virus had previously disabled, and gives you back control over your computer. Download link.

The Remove Restrictions Tool is able to re-enable the following:
- Registry Tools (regedit)
- Ctrl+Alt+Del
- Folder Options
- Show Hidden Files
It is small and easy to use. But make sure you boot in to Safe Mode to use Remove Restrictions Tool (RRT). Just click on the buttons and it’ll do it’s job.

Regards
Barrie

Hello Barie,

Quoted

Georgi hope you do not mind me jumping in as well, in my experience this problem is most commonly caused by the virus called “Brontok“.

or file infector like "Sality, Virut, Parite"

All the best,
Georgi