Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need a fixlist for FRST


  • This topic is locked This topic is locked
8 replies to this topic

#1 Billytheboy

Billytheboy

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:59 AM

Posted 29 December 2012 - 09:14 PM

Hey, my computer's D:\Windows\system32\DRIVERS\avgmfx64.sys is corrupted. I ran a scan with Farbar Recovery Scan Tool and was hoping to maybe receive a fixlist. Here is the FRST.txt:


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-12-2012
Ran by SYSTEM at 30-12-2012 12:35:31
Running from G:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [11860072 2011-06-08] (Realtek Semiconductor)
HKLM\...\Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-07-03] (cFos Software GmbH)
HKLM\...\Run: [THXCfg64] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64 [26624 2011-05-12] (Creative Technology Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [500208 2010-03-05] (Adobe Systems Incorporated)
HKLM\...\Run: [IntelliType Pro] "c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe" [1464944 2012-11-01] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] "c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe" [2076272 2012-11-01] (Microsoft Corporation)
HKLM\...\Run: [Eraser] "C:\PROGRA~1\Eraser\Eraser.exe" --atRestart [980368 2011-11-04] (The Eraser Project)
HKLM-x32\...\Run: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe [4942336 2012-04-05] (FNet Co., Ltd.)
HKLM-x32\...\Run: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r [909824 2011-05-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] C:\Windows\UpdReg.EXE [90112 2000-05-10] (Creative Technology Ltd.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-11-27] (Apple Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [406992 2010-02-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices [91520 2010-01-20] (Microsoft Corporation)
HKLM-x32\...\Run: [IndexSearch] "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe" [46368 2010-03-08] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe" [29984 2010-03-08] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini" [376 2012-12-28] ()
HKLM-x32\...\Run: [PDFHook] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun [139264 2011-04-19] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN [2621440 2010-06-09] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VC10Player] C:\Program Files (x86)\Virtual CD v10\System\VC10Play.exe [411464 2010-09-16] (H+H Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-02] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [151952 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3143800 2012-11-06] (AVG Technologies CZ, s.r.o.)
HKU\Billy\...\Run: [ASRockXTU] [x]
HKU\Billy\...\Run: [zASRockInstantBoot] [x]
HKU\Billy\...\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent [1354736 2012-12-03] (Valve Corporation)
HKU\Billy\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-04] (Acresso Corporation)
HKU\Billy\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3671872 2012-04-17] (DT Soft Ltd)
HKU\Billy\...\Run: [Spotify Web Helper] "C:\Users\Billy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1199576 2012-10-31] (Spotify Ltd)
HKU\UpdatusUser\...\Run: [ASRockXTU] [x]
HKU\UpdatusUser\...\Run: [zASRockInstantBoot] [x]
HKU\UpdatusUser\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1354736 2012-12-03] (Valve Corporation)
HKU\UpdatusUser\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-04] (Acresso Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
AppInit_DLLs: C:\PROGRA~1\LUCIDL~1\VIRTU\APPINI~1.DLL,C:\Windows\system32\nvinitx.dll
Startup: C:\Users\All Users\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()

==================== Services (Whitelisted) ===================

2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" [5814392 2012-11-06] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" [196664 2012-10-21] (AVG Technologies CZ, s.r.o.)
2 cFosSpeedS; "C:\Program Files\ASRock\XFast LAN\spd.exe" -service [395136 2011-07-03] (cFos Software GmbH)
2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.)
2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-08-06] ()
2 VC10SecS; C:\Program Files (x86)\Virtual CD v10\System\VC10SecS.exe [144712 2010-09-16] (H+H Software GmbH)
2 WinVNC4; "C:\Program Files (x86)\RealVNC\VNC4\WinVNC4.exe" -service [439632 2008-10-14] (RealVNC Ltd.)
2 WSWNA3100; C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [285152 2010-08-25] ()

==================== Drivers (Whitelisted) =====================

2 atksgt; C:\Windows\System32\Drivers\atksgt.sys [88480 2012-11-27] ()
1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [154464 2012-10-21] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [63328 2012-10-14] (AVG Technologies CZ, s.r.o. )
1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [185696 2012-10-01] (AVG Technologies CZ, s.r.o.)
0 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [225120 2012-09-20] (AVG Technologies CZ, s.r.o.)
0 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [114688 2012-12-28] (AVG Technologies CZ, s.r.o.)
0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [40800 2012-09-13] (AVG Technologies CZ, s.r.o.)
1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [200032 2012-09-20] (AVG Technologies CZ, s.r.o.)
1 dtsoftbus01; C:\Windows\System32\Drivers\dtsoftbus01.sys [283200 2012-04-28] (DT Soft Ltd)
3 FNETTBOH_305; C:\Windows\System32\Drivers\FNETTBOH_305.sys [31808 2012-04-05] (FNet Co., Ltd.)
1 FNETURPX; C:\Windows\System32\Drivers\FNETURPX.sys [15936 2012-04-05] (FNet Co., Ltd.)
3 HH10Help.sys; \??\C:\Windows\system32\drivers\HH10Help.sys [24088 2009-07-08] (H+H Software GmbH)
3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-18] (Siliten)
2 lirsgt; C:\Windows\System32\Drivers\lirsgt.sys [46400 2012-11-27] ()
3 NPF; C:\Windows\System32\Drivers\NPF.sys [47632 2010-02-02] (CACE Technologies, Inc.)
1 vdrv1000; C:\Windows\System32\Drivers\vdrv1000.sys [223256 2010-05-20] (H+H Software GmbH)

==================== NetSvcs (Whitelisted) ====================


==================== One Month Created Files and Folders ========

2012-12-30 12:35 - 2012-12-30 12:35 - 00000000 ____D C:\FRST
2012-12-28 19:25 - 2012-12-29 05:14 - 00000000 ____D C:\fDz0gghFeakD2W]3[g
2012-12-28 00:00 - 2012-12-28 00:00 - 00000000 ____D C:\Program Files\CCleaner
2012-12-27 23:59 - 2012-12-27 23:59 - 04178040 ____A (Piriform Ltd) C:\Users\Billy\Downloads\ccsetup326.exe
2012-12-27 22:39 - 2012-12-27 22:39 - 00000000 ____D C:\Program Files\Kroll Ontrack
2012-12-27 21:25 - 2012-12-27 21:25 - 00000000 ____D C:\Users\Billy\ERPro
2012-12-27 21:25 - 2012-12-27 21:25 - 00000000 ____D C:\Program Files (x86)\Kroll Ontrack
2012-12-27 21:11 - 2012-12-27 21:14 - 00002014 ____A C:\Users\UpdatusUser\Desktop\Ontrack Crisis Center.lnk
2012-12-27 21:11 - 2012-12-27 21:14 - 00000000 ____D C:\Program Files (x86)\Ontrack
2012-12-27 21:11 - 2012-12-27 21:11 - 00002210 ____A C:\Users\UpdatusUser\Desktop\EasyRecovery Professional.lnk
2012-12-27 17:26 - 2012-12-27 21:25 - 00000000 ____D C:\Users\Billy\licman
2012-12-27 17:26 - 2012-12-27 17:26 - 00000000 ____D C:\Users\Billy\EREnt
2012-12-27 17:24 - 2012-12-27 17:25 - 10744128 ____A (Kroll Ontrack Inc. ) C:\Users\Billy\Downloads\ER_WIN_ENT.exe
2012-12-26 01:37 - 2012-12-26 01:37 - 00000220 ____A C:\Users\Billy\Desktop\Eve Online Inferno.url
2012-12-25 18:08 - 2012-12-25 18:20 - 00000000 ____D C:\Users\Billy\Junk
2012-12-25 17:53 - 2012-12-25 17:53 - 01217992 ____A (Glarysoft.com ) C:\Users\Billy\Downloads\gunsetup.exe
2012-12-24 17:25 - 2012-12-24 17:32 - 00000000 ____D C:\Users\Billy\AppData\Roaming\TrueCrypt
2012-12-24 16:46 - 2012-12-24 17:26 - 00231376 ____A (TrueCrypt Foundation) C:\Windows\System32\Drivers\truecrypt.sys
2012-12-24 16:46 - 2012-12-24 16:46 - 03466248 ____A (TrueCrypt Foundation) C:\Users\Billy\Downloads\TrueCrypt Setup 7.1a.exe
2012-12-24 16:46 - 2012-12-24 16:46 - 00000000 ____D C:\Program Files\TrueCrypt
2012-12-24 03:32 - 2012-12-24 03:32 - 00000000 ____D C:\Users\Billy\AppData\Local\Eraser 6
2012-12-23 22:42 - 2012-12-23 22:42 - 00000000 ____D C:\Program Files\Eraser
2012-12-23 22:40 - 2012-12-23 22:40 - 03427424 ____A (Piriform Ltd) C:\Users\Billy\Downloads\rcsetup144.exe
2012-12-23 22:39 - 2012-12-23 22:40 - 09097616 ____A (The Eraser Project) C:\Users\Billy\Downloads\Eraser 6.0.9.2343.exe
2012-12-23 01:04 - 2012-12-23 01:04 - 00000000 ____D C:\Users\Billy\Documents\EVE
2012-12-23 01:04 - 2012-12-23 01:04 - 00000000 ____D C:\Users\All Users\CCP
2012-12-23 00:56 - 2012-12-23 00:56 - 00000000 ____D C:\Users\Billy\AppData\Local\CCP
2012-12-20 18:18 - 2012-12-20 18:18 - 00001151 ____A C:\Users\Public\Desktop\Firefox.lnk
2012-12-20 18:18 - 2012-12-20 18:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-12-20 14:49 - 2012-12-20 14:49 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_point64_01011.Wdf
2012-12-20 14:48 - 2012-12-20 14:48 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2012-12-20 14:48 - 2012-08-23 06:13 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\rdpudd.dll
2012-12-20 14:48 - 2012-08-23 06:10 - 00019456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys
2012-12-20 14:48 - 2012-08-23 06:08 - 00030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys
2012-12-20 14:48 - 2012-08-23 06:07 - 00057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys
2012-12-20 14:48 - 2012-08-23 05:47 - 00046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2012-12-20 14:48 - 2012-08-23 05:46 - 00016896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2012-12-20 14:48 - 2012-08-23 05:41 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
2012-12-20 14:48 - 2012-08-23 05:40 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
2012-12-20 14:48 - 2012-08-23 05:24 - 00015360 ____A (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll
2012-12-20 14:48 - 2012-08-23 05:20 - 00054272 ____A (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll
2012-12-20 14:48 - 2012-08-23 05:18 - 00037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2012-12-20 14:48 - 2012-08-23 05:17 - 00018432 ____A (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll
2012-12-20 14:48 - 2012-08-23 05:06 - 00043520 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll
2012-12-20 14:48 - 2012-08-23 04:52 - 00044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2012-12-20 14:48 - 2012-08-23 03:20 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe
2012-12-20 14:48 - 2012-08-23 03:15 - 00269312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2012-12-20 14:48 - 2012-08-23 03:14 - 00384000 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe
2012-12-20 14:48 - 2012-08-23 03:12 - 00192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2012-12-20 14:48 - 2012-08-23 02:54 - 00322560 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2012-12-20 14:48 - 2012-08-23 02:51 - 00228864 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll
2012-12-20 14:48 - 2012-08-23 02:39 - 01048064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2012-12-20 14:48 - 2012-08-23 02:22 - 01123840 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe
2012-12-20 14:48 - 2012-08-23 01:51 - 03174912 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll
2012-12-20 14:48 - 2012-08-23 00:19 - 04916224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2012-12-20 14:48 - 2012-08-23 00:13 - 05773824 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2012-12-20 14:47 - 2012-12-16 09:11 - 00046080 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll
2012-12-20 14:47 - 2012-12-16 06:45 - 00367616 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2012-12-20 14:47 - 2012-12-16 06:13 - 00295424 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2012-12-20 14:47 - 2012-12-16 06:13 - 00034304 ____A (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2012-12-20 14:45 - 2012-12-20 14:45 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_dc3d_01011.Wdf
2012-12-20 14:42 - 2012-08-24 10:13 - 00154480 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-12-20 14:42 - 2012-08-24 10:09 - 00458712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-12-20 14:42 - 2012-08-24 10:05 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-12-20 14:42 - 2012-08-24 10:04 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2012-12-20 14:42 - 2012-08-24 10:03 - 01448448 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2012-12-20 14:42 - 2012-08-24 08:57 - 00247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-12-20 14:42 - 2012-08-24 08:57 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2012-12-20 14:42 - 2012-08-24 08:57 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-12-20 14:42 - 2012-08-24 08:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2012-12-20 14:42 - 2012-05-04 03:00 - 00366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll
2012-12-20 14:42 - 2012-05-04 01:59 - 00514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2012-12-20 14:36 - 2012-12-20 14:36 - 00295552 ____A C:\Windows\Minidump\122112-28953-02.dmp
2012-12-20 14:15 - 2012-12-20 18:10 - 00000000 ____D C:\Program Files (x86)\Nightly
2012-12-20 14:01 - 2012-12-20 14:01 - 00295560 ____A C:\Windows\Minidump\122112-28953-01.dmp
2012-12-20 13:48 - 2012-12-20 13:49 - 00295552 ____A C:\Windows\Minidump\122112-27643-01.dmp
2012-12-20 13:44 - 2012-12-20 13:44 - 00295560 ____A C:\Windows\Minidump\122112-24944-01.dmp
2012-12-20 04:19 - 2012-12-20 04:19 - 00295544 ____A C:\Windows\Minidump\122012-28704-01.dmp
2012-12-20 03:32 - 2012-12-20 03:32 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2012-12-20 03:31 - 2012-12-03 07:47 - 26811240 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 25256296 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 20335976 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 18045968 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 17559912 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 11532648 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2012-12-20 03:31 - 2012-12-03 07:47 - 09271352 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 07819016 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 07446192 ____A (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 06149904 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 02784104 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 02606440 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 02226024 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 01874280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2012-12-20 03:31 - 2012-12-03 07:47 - 00841272 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2012-12-20 03:31 - 2012-07-03 07:25 - 00189288 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2012-12-20 03:31 - 2012-07-03 07:25 - 00031080 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll
2012-12-20 03:26 - 2012-12-20 03:30 - 176739104 ____A (NVIDIA Corporation) C:\Users\Billy\Downloads\310.70-desktop-win8-win7-winvista-64bit-english-whql.exe
2012-12-20 03:09 - 2012-12-20 03:09 - 00439384 ____A C:\Windows\Minidump\122012-24538-01.dmp
2012-12-19 20:31 - 2012-12-20 14:36 - 717687335 ____A C:\Windows\MEMORY.DMP
2012-12-19 20:31 - 2012-12-20 14:36 - 00000000 ____D C:\Windows\Minidump
2012-12-19 20:31 - 2012-12-19 20:31 - 00350904 ____A C:\Windows\Minidump\122012-23493-01.dmp
2012-12-17 20:28 - 2012-12-17 22:45 - 00000000 ____D C:\Users\Billy\AppData\Local\Darksiders
2012-12-17 20:27 - 2012-12-17 20:27 - 00000000 ____D C:\Program Files (x86)\THQ
2012-12-17 16:23 - 2012-12-17 16:23 - 03818072 ____A C:\Users\Billy\Downloads\battlelog-web-plugins_2.1.2_106.exe
2012-12-15 15:59 - 2012-12-15 15:59 - 00000000 ____D C:\Users\Billy\AppData\Roaming\AVG2013
2012-12-15 15:45 - 2012-12-15 15:45 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2012-12-15 15:45 - 2012-12-15 15:45 - 00000000 ____D C:\Users\Billy\AppData\Roaming\TuneUp Software
2012-12-15 15:43 - 2012-12-15 15:45 - 00000000 ____D C:\Users\All Users\AVG2013
2012-12-15 15:39 - 2012-12-15 18:05 - 00000000 ____D C:\Users\Billy\AppData\Local\Avg2013
2012-12-15 15:39 - 2012-12-15 15:39 - 00000000 ____D C:\Users\Billy\AppData\Local\MFAData
2012-12-13 04:26 - 2012-11-13 23:06 - 17811968 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-12-13 04:26 - 2012-11-13 22:32 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-12-13 04:26 - 2012-11-13 22:11 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-12-13 04:26 - 2012-11-13 22:04 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-12-13 04:26 - 2012-11-13 22:04 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-12-13 04:26 - 2012-11-13 22:02 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-12-13 04:26 - 2012-11-13 22:02 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-12-13 04:26 - 2012-11-13 21:59 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-12-13 04:26 - 2012-11-13 21:58 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-12-13 04:26 - 2012-11-13 21:57 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-12-13 04:26 - 2012-11-13 21:57 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-12-13 04:26 - 2012-11-13 21:55 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-12-13 04:26 - 2012-11-13 21:55 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-12-13 04:26 - 2012-11-13 21:53 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-12-13 04:26 - 2012-11-13 21:52 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-12-13 04:26 - 2012-11-13 21:46 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-12-13 04:26 - 2012-11-13 18:48 - 12320256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-12-13 04:26 - 2012-11-13 18:14 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-12-13 04:26 - 2012-11-13 18:09 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-12-13 04:26 - 2012-11-13 17:58 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-12-13 04:26 - 2012-11-13 17:57 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-12-13 04:26 - 2012-11-13 17:57 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-12-13 04:26 - 2012-11-13 17:55 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-12-13 04:26 - 2012-11-13 17:51 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-12-13 04:26 - 2012-11-13 17:49 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-12-13 04:26 - 2012-11-13 17:49 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-12-13 04:26 - 2012-11-13 17:48 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-12-13 04:26 - 2012-11-13 17:47 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-12-13 04:26 - 2012-11-13 17:46 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-12-13 04:26 - 2012-11-13 17:45 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-12-13 04:26 - 2012-11-13 17:44 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-12-13 04:26 - 2012-11-13 17:41 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-12-12 19:57 - 2012-12-12 19:57 - 00002014 ____A C:\Users\Public\Desktop\Duke Nukem 3D.lnk
2012-12-12 19:57 - 2012-12-12 19:57 - 00000000 ____D C:\GOG Games
2012-12-12 19:33 - 2012-12-12 19:33 - 36550056 ____A (GOG.com ) C:\Users\Billy\Downloads\setup_duke3d_2.0.0.84.exe
2012-12-12 19:05 - 2012-11-21 19:26 - 03149824 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-12-12 19:05 - 2012-11-08 21:45 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2012-12-12 19:05 - 2012-11-08 20:42 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2012-12-12 19:05 - 2012-11-01 21:59 - 00478208 ____A (Microsoft Corporation) C:\Windows\System32\dpnet.dll
2012-12-12 19:05 - 2012-11-01 21:11 - 00376832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2012-12-12 19:05 - 2012-10-04 09:46 - 00362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2012-12-12 19:05 - 2012-10-04 09:46 - 00243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2012-12-12 19:05 - 2012-10-04 09:46 - 00013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2012-12-12 19:05 - 2012-10-04 09:45 - 00215040 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2012-12-12 19:05 - 2012-10-04 09:43 - 00016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2012-12-12 19:05 - 2012-10-04 09:41 - 01161216 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2012-12-12 19:05 - 2012-10-04 09:41 - 00424960 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 09:38 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:47 - 01114112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2012-12-12 19:05 - 2012-10-04 08:47 - 00274944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2012-12-12 19:05 - 2012-10-04 08:47 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 08:40 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 07:21 - 00338432 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe
2012-12-12 19:05 - 2012-10-04 06:46 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2012-12-12 19:05 - 2012-10-04 06:46 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2012-12-12 19:05 - 2012-10-04 06:46 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2012-12-12 19:05 - 2012-10-04 06:46 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2012-12-12 19:05 - 2012-10-04 06:41 - 00006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 06:41 - 00004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 06:41 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 19:05 - 2012-10-04 06:41 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-11 03:43 - 2012-12-11 04:08 - 495190814 ____A C:\Users\Billy\Downloads\brazen_prototype-1353466318.zip
2012-12-05 23:02 - 2012-12-05 23:02 - 02889146 ____A C:\Users\Billy\Downloads\cg_dlls_x64.zip
2012-12-05 23:00 - 2012-12-05 23:00 - 00000000 ____D C:\Program Files (x86)\Project64 1.6
2012-12-05 22:59 - 2012-12-05 22:59 - 02080797 ____A (Project64 ) C:\Users\Billy\Downloads\setup Project64 1.6.exe
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files\iTunes
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files\iPod
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files (x86)\iTunes
2012-12-02 20:01 - 2012-12-02 20:03 - 88840600 ____A (Apple Inc.) C:\Users\Billy\Downloads\iTunes64Setup.exe
2012-12-01 02:43 - 2012-12-01 02:46 - 69081976 ____A C:\Users\Billy\Downloads\The Quick Brown Fox - WANDERLUST.zip
2012-11-30 03:43 - 2012-11-30 03:43 - 00438632 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

==================== One Month Modified Files and Folders =======

2012-12-30 12:35 - 2012-12-30 12:35 - 00000000 ____D C:\FRST
2012-12-29 05:38 - 2012-04-05 00:59 - 01787129 ____A C:\Windows\WindowsUpdate.log
2012-12-29 05:16 - 2012-04-05 02:55 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-12-29 05:14 - 2012-12-28 19:25 - 00000000 ____D C:\fDz0gghFeakD2W]3[g
2012-12-29 04:31 - 2012-04-05 02:36 - 00000000 ____D C:\Program Files (x86)\Steam
2012-12-29 01:27 - 2012-04-17 20:52 - 00281520 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2012-12-29 01:27 - 2012-04-17 19:34 - 00281520 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2012-12-29 01:26 - 2012-04-17 19:34 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2012-12-28 22:37 - 2012-04-05 03:52 - 00000000 ____D C:\Users\All Users\MFAData
2012-12-28 22:11 - 2012-04-05 06:13 - 00000000 ____D C:\Users\Billy\AppData\Roaming\Media Player Classic
2012-12-28 16:19 - 2012-04-05 02:43 - 00000000 ____D C:\Users\Billy\AppData\Roaming\uTorrent
2012-12-28 06:04 - 2012-10-04 08:32 - 00114688 ____A (AVG Technologies CZ, s.r.o.) C:\Windows\System32\Drivers\avgmfx64.sys
2012-12-28 03:06 - 2009-07-13 20:45 - 00020688 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-12-28 03:06 - 2009-07-13 20:45 - 00020688 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-12-28 03:03 - 2009-07-13 21:13 - 00792220 ____A C:\Windows\System32\PerfStringBackup.INI
2012-12-28 02:59 - 2012-04-05 01:04 - 00000000 ____D C:\Users\All Users\NVIDIA
2012-12-28 02:59 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-12-28 02:59 - 2009-07-13 20:51 - 00059776 ____A C:\Windows\setupact.log
2012-12-28 02:01 - 2012-04-06 05:06 - 00000000 ____D C:\Users\Billy\AppData\Local\CrashDumps
2012-12-28 00:00 - 2012-12-28 00:00 - 00000000 ____D C:\Program Files\CCleaner
2012-12-27 23:59 - 2012-12-27 23:59 - 04178040 ____A (Piriform Ltd) C:\Users\Billy\Downloads\ccsetup326.exe
2012-12-27 22:39 - 2012-12-27 22:39 - 00000000 ____D C:\Program Files\Kroll Ontrack
2012-12-27 21:25 - 2012-12-27 21:25 - 00000000 ____D C:\Users\Billy\ERPro
2012-12-27 21:25 - 2012-12-27 21:25 - 00000000 ____D C:\Program Files (x86)\Kroll Ontrack
2012-12-27 21:25 - 2012-12-27 17:26 - 00000000 ____D C:\Users\Billy\licman
2012-12-27 21:25 - 2012-04-05 00:59 - 00000000 ____D C:\users\Billy
2012-12-27 21:14 - 2012-12-27 21:11 - 00002014 ____A C:\Users\UpdatusUser\Desktop\Ontrack Crisis Center.lnk
2012-12-27 21:14 - 2012-12-27 21:11 - 00000000 ____D C:\Program Files (x86)\Ontrack
2012-12-27 21:14 - 2012-04-05 02:00 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2012-12-27 21:11 - 2012-12-27 21:11 - 00002210 ____A C:\Users\UpdatusUser\Desktop\EasyRecovery Professional.lnk
2012-12-27 17:26 - 2012-12-27 17:26 - 00000000 ____D C:\Users\Billy\EREnt
2012-12-27 17:25 - 2012-12-27 17:24 - 10744128 ____A (Kroll Ontrack Inc. ) C:\Users\Billy\Downloads\ER_WIN_ENT.exe
2012-12-27 16:10 - 2012-08-05 22:40 - 00000000 ____D C:\Users\All Users\Skype
2012-12-26 01:37 - 2012-12-26 01:37 - 00000220 ____A C:\Users\Billy\Desktop\Eve Online Inferno.url
2012-12-25 18:20 - 2012-12-25 18:08 - 00000000 ____D C:\Users\Billy\Junk
2012-12-25 17:53 - 2012-12-25 17:53 - 01217992 ____A (Glarysoft.com ) C:\Users\Billy\Downloads\gunsetup.exe
2012-12-24 17:32 - 2012-12-24 17:25 - 00000000 ____D C:\Users\Billy\AppData\Roaming\TrueCrypt
2012-12-24 17:26 - 2012-12-24 16:46 - 00231376 ____A (TrueCrypt Foundation) C:\Windows\System32\Drivers\truecrypt.sys
2012-12-24 16:46 - 2012-12-24 16:46 - 03466248 ____A (TrueCrypt Foundation) C:\Users\Billy\Downloads\TrueCrypt Setup 7.1a.exe
2012-12-24 16:46 - 2012-12-24 16:46 - 00000000 ____D C:\Program Files\TrueCrypt
2012-12-24 03:32 - 2012-12-24 03:32 - 00000000 ____D C:\Users\Billy\AppData\Local\Eraser 6
2012-12-23 23:41 - 2012-04-17 19:34 - 00280904 ____A C:\Windows\SysWOW64\PnkBstrB.ex1
2012-12-23 22:56 - 2012-04-05 02:06 - 00000000 ____D C:\Users\All Users\Adobe
2012-12-23 22:42 - 2012-12-23 22:42 - 00000000 ____D C:\Program Files\Eraser
2012-12-23 22:40 - 2012-12-23 22:40 - 03427424 ____A (Piriform Ltd) C:\Users\Billy\Downloads\rcsetup144.exe
2012-12-23 22:40 - 2012-12-23 22:39 - 09097616 ____A (The Eraser Project) C:\Users\Billy\Downloads\Eraser 6.0.9.2343.exe
2012-12-23 01:04 - 2012-12-23 01:04 - 00000000 ____D C:\Users\Billy\Documents\EVE
2012-12-23 01:04 - 2012-12-23 01:04 - 00000000 ____D C:\Users\All Users\CCP
2012-12-23 00:56 - 2012-12-23 00:56 - 00000000 ____D C:\Users\Billy\AppData\Local\CCP
2012-12-22 20:17 - 2012-04-27 05:50 - 00000000 ___RD C:\Users\Billy\Desktop\GameHUB
2012-12-22 19:19 - 2012-07-14 03:47 - 00000000 ____D C:\Users\Billy\Documents\Art
2012-12-22 19:12 - 2012-04-05 23:25 - 00000000 ____D C:\Users\Billy\AppData\Roaming\vlc
2012-12-22 18:31 - 2012-04-05 02:07 - 00000000 ____D C:\Users\Billy\AppData\Roaming\Adobe
2012-12-21 14:42 - 2010-11-20 19:47 - 00102678 ____A C:\Windows\PFRO.log
2012-12-21 06:22 - 2012-10-19 23:17 - 00000000 ____D C:\Users\Billy\AppData\Local\Spotify
2012-12-21 06:22 - 2012-10-19 23:16 - 00000000 ____D C:\Users\Billy\AppData\Roaming\Spotify
2012-12-20 20:25 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2012-12-20 18:18 - 2012-12-20 18:18 - 00001151 ____A C:\Users\Public\Desktop\Firefox.lnk
2012-12-20 18:18 - 2012-12-20 18:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-12-20 18:18 - 2012-04-05 03:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-12-20 18:10 - 2012-12-20 14:15 - 00000000 ____D C:\Program Files (x86)\Nightly
2012-12-20 15:53 - 2012-04-21 18:20 - 00000000 ____D C:\Windows\SysWOW64\NV
2012-12-20 15:53 - 2012-04-21 18:20 - 00000000 ____D C:\Windows\System32\NV
2012-12-20 15:52 - 2009-07-13 20:45 - 04975480 ____A C:\Windows\System32\FNTCACHE.DAT
2012-12-20 15:51 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2012-12-20 14:50 - 2012-04-05 01:57 - 00000000 ____D C:\Program Files (x86)\Intel
2012-12-20 14:49 - 2012-12-20 14:49 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_point64_01011.Wdf
2012-12-20 14:48 - 2012-12-20 14:48 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2012-12-20 14:45 - 2012-12-20 14:45 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_dc3d_01011.Wdf
2012-12-20 14:36 - 2012-12-20 14:36 - 00295552 ____A C:\Windows\Minidump\122112-28953-02.dmp
2012-12-20 14:36 - 2012-12-19 20:31 - 717687335 ____A C:\Windows\MEMORY.DMP
2012-12-20 14:36 - 2012-12-19 20:31 - 00000000 ____D C:\Windows\Minidump
2012-12-20 14:01 - 2012-12-20 14:01 - 00295560 ____A C:\Windows\Minidump\122112-28953-01.dmp
2012-12-20 13:49 - 2012-12-20 13:48 - 00295552 ____A C:\Windows\Minidump\122112-27643-01.dmp
2012-12-20 13:44 - 2012-12-20 13:44 - 00295560 ____A C:\Windows\Minidump\122112-24944-01.dmp
2012-12-20 04:19 - 2012-12-20 04:19 - 00295544 ____A C:\Windows\Minidump\122012-28704-01.dmp
2012-12-20 03:32 - 2012-12-20 03:32 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2012-12-20 03:32 - 2012-04-05 01:04 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2012-12-20 03:30 - 2012-12-20 03:26 - 176739104 ____A (NVIDIA Corporation) C:\Users\Billy\Downloads\310.70-desktop-win8-win7-winvista-64bit-english-whql.exe
2012-12-20 03:09 - 2012-12-20 03:09 - 00439384 ____A C:\Windows\Minidump\122012-24538-01.dmp
2012-12-19 20:31 - 2012-12-19 20:31 - 00350904 ____A C:\Windows\Minidump\122012-23493-01.dmp
2012-12-17 22:45 - 2012-12-17 20:28 - 00000000 ____D C:\Users\Billy\AppData\Local\Darksiders
2012-12-17 20:28 - 2012-04-14 22:26 - 00000000 ____D C:\Users\Billy\Documents\My Games
2012-12-17 20:27 - 2012-12-17 20:27 - 00000000 ____D C:\Program Files (x86)\THQ
2012-12-17 20:27 - 2012-04-05 05:01 - 00448211 ____A C:\Windows\DirectX.log
2012-12-17 20:27 - 2012-04-05 04:51 - 00000000 ____D C:\Windows\SysWOW64\directx
2012-12-17 16:23 - 2012-12-17 16:23 - 03818072 ____A C:\Users\Billy\Downloads\battlelog-web-plugins_2.1.2_106.exe
2012-12-17 16:23 - 2012-04-17 20:51 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2012-12-16 09:11 - 2012-12-20 14:47 - 00046080 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll
2012-12-16 06:45 - 2012-12-20 14:47 - 00367616 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2012-12-16 06:13 - 2012-12-20 14:47 - 00295424 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2012-12-16 06:13 - 2012-12-20 14:47 - 00034304 ____A (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2012-12-15 18:05 - 2012-12-15 15:39 - 00000000 ____D C:\Users\Billy\AppData\Local\Avg2013
2012-12-15 15:59 - 2012-12-15 15:59 - 00000000 ____D C:\Users\Billy\AppData\Roaming\AVG2013
2012-12-15 15:59 - 2012-04-05 04:07 - 00000000 ____D C:\Program Files (x86)\AVG
2012-12-15 15:58 - 2012-04-05 04:08 - 00000000 ___HD C:\$AVG
2012-12-15 15:45 - 2012-12-15 15:45 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2012-12-15 15:45 - 2012-12-15 15:45 - 00000000 ____D C:\Users\Billy\AppData\Roaming\TuneUp Software
2012-12-15 15:45 - 2012-12-15 15:43 - 00000000 ____D C:\Users\All Users\AVG2013
2012-12-15 15:39 - 2012-12-15 15:39 - 00000000 ____D C:\Users\Billy\AppData\Local\MFAData
2012-12-15 15:22 - 2012-04-05 02:43 - 00000000 ____D C:\Program Files (x86)\uTorrent
2012-12-13 04:27 - 2012-04-21 17:43 - 67413224 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-12-13 04:26 - 2012-04-14 22:59 - 00000000 ____D C:\Users\All Users\Microsoft Help
2012-12-12 19:57 - 2012-12-12 19:57 - 00002014 ____A C:\Users\Public\Desktop\Duke Nukem 3D.lnk
2012-12-12 19:57 - 2012-12-12 19:57 - 00000000 ____D C:\GOG Games
2012-12-12 19:33 - 2012-12-12 19:33 - 36550056 ____A (GOG.com ) C:\Users\Billy\Downloads\setup_duke3d_2.0.0.84.exe
2012-12-12 04:17 - 2012-04-05 02:55 - 00697272 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-12-12 04:17 - 2012-04-05 02:55 - 00073656 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-12-11 04:08 - 2012-12-11 03:43 - 495190814 ____A C:\Users\Billy\Downloads\brazen_prototype-1353466318.zip
2012-12-08 21:10 - 2012-08-05 22:40 - 00000000 ____D C:\Users\Billy\AppData\Roaming\Skype
2012-12-06 21:53 - 2009-07-13 21:08 - 00032600 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-12-05 23:02 - 2012-12-05 23:02 - 02889146 ____A C:\Users\Billy\Downloads\cg_dlls_x64.zip
2012-12-05 23:00 - 2012-12-05 23:00 - 00000000 ____D C:\Program Files (x86)\Project64 1.6
2012-12-05 22:59 - 2012-12-05 22:59 - 02080797 ____A (Project64 ) C:\Users\Billy\Downloads\setup Project64 1.6.exe
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Users\All Users\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files\iTunes
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files\iPod
2012-12-03 21:58 - 2012-12-03 21:58 - 00000000 ____D C:\Program Files (x86)\iTunes
2012-12-03 21:58 - 2012-09-18 19:28 - 00001783 ____A C:\Users\Public\Desktop\iTunes.lnk
2012-12-03 07:47 - 2012-12-20 03:31 - 26811240 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 25256296 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 20335976 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 18045968 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 17559912 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 11532648 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2012-12-03 07:47 - 2012-12-20 03:31 - 09271352 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 07819016 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 07446192 ____A (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 06149904 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 02784104 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 02606440 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 02226024 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 01874280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2012-12-03 07:47 - 2012-12-20 03:31 - 00841272 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2012-12-03 07:47 - 2012-10-10 02:23 - 15016256 ____A (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll
2012-12-03 07:47 - 2012-10-10 02:23 - 12603960 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2012-12-03 07:47 - 2012-10-10 02:23 - 02816824 ____A (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2012-12-03 07:47 - 2012-10-10 02:23 - 01504104 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco64.dll
2012-12-03 07:47 - 2012-10-10 02:23 - 00983936 ____A (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll
2012-12-03 07:47 - 2012-10-10 02:22 - 15122280 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2012-12-03 07:47 - 2012-10-10 02:22 - 02496976 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2012-12-03 07:47 - 2012-04-05 01:04 - 01805672 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco64.dll
2012-12-03 07:47 - 2012-04-05 01:04 - 00014446 ____A C:\Windows\System32\nvinfo.pb
2012-12-03 07:47 - 2012-02-09 04:43 - 00245432 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll
2012-12-03 07:47 - 2012-02-09 04:43 - 00201136 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2012-12-02 20:03 - 2012-12-02 20:01 - 88840600 ____A (Apple Inc.) C:\Users\Billy\Downloads\iTunes64Setup.exe
2012-12-01 02:46 - 2012-12-01 02:43 - 69081976 ____A C:\Users\Billy\Downloads\The Quick Brown Fox - WANDERLUST.zip
2012-11-30 21:49 - 2012-05-22 21:22 - 03663213 ____A C:\Windows\System32\nvcoproc.bin
2012-11-30 21:49 - 2012-04-05 01:04 - 00890216 ____A (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
2012-11-30 21:49 - 2012-04-05 01:04 - 00118120 ____A (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll
2012-11-30 21:49 - 2012-04-05 01:04 - 00063336 ____A (NVIDIA Corporation) C:\Windows\System32\nvshext.dll
2012-11-30 21:48 - 2012-04-05 01:04 - 06223208 ____A (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll
2012-11-30 21:48 - 2012-04-05 01:04 - 03311464 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll
2012-11-30 03:43 - 2012-11-30 03:43 - 00438632 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-12-27 21:14:02

==================== Memory info ===========================

Percentage of memory in use: 10%
Total physical RAM: 8103.52 MB
Available physical RAM: 7255.82 MB
Total Pagefile: 8101.71 MB
Available Pagefile: 7245.1 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

==================== Partitions =============================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:0 GB) NTFS
4 Drive g: (BILLY STICK) (Removable) (Total:3.71 GB) (Free:3.7 GB) FAT32
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
6 Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 931 GB 0 B
Disk 1 Online 3808 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 931 GB 101 MB

==================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 Y System Rese NTFS Partition 100 MB Healthy

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C NTFS Partition 931 GB Healthy

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 3808 MB 16 KB

==================================================================================

Disk: 1
Partition 1
Type : 0B
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 G BILLY STICK FAT32 Removable 3808 MB Healthy

=========================================================

Last Boot: 2012-12-24 16:10

==================== End Of Log =============================

BC AdBot (Login to Remove)

 


#2 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 30 December 2012 - 10:14 AM

Hi,

The avgmfx64.sys is part of AVG system file. Have you tried reinstalling it yet?
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#3 Billytheboy

Billytheboy
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:59 AM

Posted 30 December 2012 - 08:32 PM

Thanks for the response. My computer won't actually boot (going to a system fix screen instead of booting normally). The system fix states it's unable to fix the error and system restore is saying there isn't enough space, so I haven't been able to get to a point where I could reinstall.

#4 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 30 December 2012 - 11:00 PM

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the flashdrive as fixlist.txt

HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3143800 2012-11-06] (AVG Technologies CZ, s.r.o.)
DisableService: AVGIDSAgent
DisableService: avgwd
DisableService: AVGIDSDriver
DisableService: AVGIDSHA
DisableService: Avgldx64
DisableService: Avgloga
DisableService: Avgmfx64
DisableService: Avgrkx64
DisableService: Avgtdia

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

On Vista or Windows 7: Now please enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#5 Billytheboy

Billytheboy
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:59 AM

Posted 30 December 2012 - 11:24 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-12-2012
Ran by SYSTEM at 2012-12-31 15:21:28 Run:1
Running from G:\

==============================================

HKEY_LOCAL_MACHINE\software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AVG_UI Value deleted successfully.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\AVGIDSAgent was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\avgwd was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\AVGIDSDriver was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\AVGIDSHA was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Avgldx64 was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Avgloga was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Avgmfx64 was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Avgrkx64 was disabled.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Avgtdia was disabled.

==== End of Fixlog ====


After restarting the computer has booted successfully

#6 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 31 December 2012 - 03:53 AM

Ok good. Try reinstalling AVG again.
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#7 Billytheboy

Billytheboy
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:59 AM

Posted 01 January 2013 - 09:43 PM

After reinstalling AVG everything is working, thanks so much for your help!

#8 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 01 January 2013 - 10:16 PM

Great! We will consider this as solved then?
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#9 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:59 PM

Posted 12 February 2013 - 09:23 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users