Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problem 07 Bad Driver posted with FRST64 .txt file included


  • This topic is locked This topic is locked
2 replies to this topic

#1 cigs77

cigs77

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 07 March 2013 - 04:46 PM

http://www.bleepingcomputer.com/forums/t/448339/windows-failed-to-start-system-repair-cant-discover-problem/

 

I have the same problem as the thread listed above. I have gone ahead and done the initial things suggested in the thread up to and including gathering the .txt file from the frst64 program I will paste it below. I am on my laptop as my windows absolutely freezes and restarts the second the windows logo attempts to appear. I can run the repair and get to command prompt. I do not have a windows 7 repair disk and making the usb and reinstalling seems to be a pain. The gentlemen that helped the guy before me seemed to be on point so I have began his previous road and stopped where I feel is best. I would greatly appreciate any help with this problem, I just bought a new motherboard thinking it would fix the crashes but I guess I have a bad windows driver all along :(

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-03-2013 01
Ran by SYSTEM at 08-03-2013 05:30:58
Running from G:\
Windows 7 Ultimate   (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [11855976 2012-12-19] (Realtek Semiconductor)
HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3147384 2012-12-11] (AVG Technologies CZ, s.r.o.)
HKU\CommandCenter\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18705664 2013-01-08] (Skype Technologies S.A.)
HKLM\...\RunOnce: [*Restore] C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-20] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

==================== Services (Whitelisted) ===================

2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" [5814904 2012-11-15] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" [196664 2012-10-22] (AVG Technologies CZ, s.r.o.)
4 cFosSpeedS; "C:\Program Files\ASRock\XFast LAN\spd.exe" -service [395136 2011-10-19] (cFos Software GmbH)
2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-02-20] ()

==================== Drivers (Whitelisted) =====================

1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [154464 2012-10-22] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [63328 2012-10-15] (AVG Technologies CZ, s.r.o. )
1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [185696 2012-10-02] (AVG Technologies CZ, s.r.o.)
0 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [225120 2012-09-21] (AVG Technologies CZ, s.r.o.)
0 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [111968 2012-11-15] (AVG Technologies CZ, s.r.o.)
0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [40800 2012-09-14] (AVG Technologies CZ, s.r.o.)
1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [200032 2012-09-21] (AVG Technologies CZ, s.r.o.)
3 Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [x]
3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [x]
3 VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ====================


==================== One Month Created Files and Folders ========

2013-03-08 05:30 - 2013-03-08 05:30 - 00000000 ____D C:\FRST
2013-03-08 00:21 - 2013-03-08 00:21 - 00000000 ____D C:\Windows\LastGood.Tmp
2013-03-08 00:17 - 2013-03-08 00:17 - 00000000 ____D C:\ProgramData\Intel
2013-03-07 09:40 - 2013-03-07 09:40 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-03-07 09:40 - 2013-03-07 09:40 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-03-06 00:52 - 2013-03-06 00:56 - 923795456 ____A C:\Users\CommandCenter\Downloads\linuxmint-14.1-cinnamon-dvd-64bit.iso
2013-03-04 18:35 - 2013-03-04 18:35 - 00000000 ____D C:\Program Files (x86)\ASRock Utility
2013-03-04 18:34 - 2013-03-04 18:34 - 00000000 ____D C:\Users\CommandCenter\Downloads\ME_Win7-64_Win7_Vista64_Vista_XP64_XP(v8.0.2.1410_1.5M)
2013-03-04 18:34 - 2013-03-04 18:34 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\InstallShield
2013-03-04 17:42 - 2013-03-04 17:51 - 47336607 ____A C:\Users\CommandCenter\Downloads\ME_Win7-64_Win7_Vista64_Vista_XP64_XP(v8.0.2.1410_1.5M).zip
2013-03-04 17:42 - 2013-03-04 17:44 - 05189889 ____A C:\Users\CommandCenter\Downloads\AXTU(v0.1.210).zip
2013-03-04 17:42 - 2013-03-04 17:42 - 04716234 ____A C:\Users\CommandCenter\Downloads\P67 Extreme4 Gen3(2.10)WIN.zip
2013-03-03 13:25 - 2013-03-03 13:25 - 04852121 ____A C:\Users\CommandCenter\Downloads\P67 Extreme4 UEFI 3.1.7z
2013-03-03 13:19 - 2013-03-03 13:20 - 04227265 ____A C:\Users\CommandCenter\Downloads\P67 Extreme6(L2.02)ROM.zip
2013-03-02 09:36 - 2013-03-02 09:36 - 440990870 ____A C:\Windows\MEMORY.DMP
2013-03-02 09:36 - 2013-03-02 09:36 - 00274904 ____A C:\Windows\Minidump\030213-10342-01.dmp
2013-03-02 09:36 - 2013-03-02 09:36 - 00000000 ____D C:\Windows\Minidump
2013-02-25 21:48 - 2013-03-02 11:15 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-02-25 21:48 - 2013-02-25 21:48 - 00691568 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-02-25 21:48 - 2013-02-25 21:48 - 00071024 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-02-25 21:48 - 2013-02-25 21:48 - 00000000 ____D C:\Windows\System32\Macromed
2013-02-21 16:48 - 2013-02-21 16:48 - 58674136 ____A (AVG) C:\Users\CommandCenter\Downloads\avg_tuh_stf_all_2013_2_24c34.exe
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 __SHD C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\AVG
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 ____D C:\ProgramData\AVG
2013-02-21 16:45 - 2013-02-21 16:45 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\AVG2013
2013-02-21 16:44 - 2013-03-02 14:43 - 00000000 ____D C:\Program Files (x86)\AVG
2013-02-21 16:44 - 2013-02-21 16:44 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ___HD C:\$AVG
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\TuneUp Software
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ____D C:\ProgramData\AVG2013
2013-02-21 16:41 - 2013-03-08 04:40 - 00000000 ____D C:\ProgramData\MFAData
2013-02-21 16:41 - 2013-02-22 00:14 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\Avg2013
2013-02-21 16:41 - 2013-02-21 16:41 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\MFAData
2013-02-21 16:40 - 2013-02-21 16:40 - 04444768 ____A (AVG Technologies) C:\Users\CommandCenter\Downloads\avg_avc_stb_all_2013_2899.exe
2013-02-21 06:04 - 2013-02-21 06:04 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-02-21 00:00 - 2013-01-08 17:48 - 17812992 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-02-21 00:00 - 2013-01-08 17:22 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-02-21 00:00 - 2013-01-08 17:19 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-02-21 00:00 - 2013-01-08 17:12 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-02-21 00:00 - 2013-01-08 17:12 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-02-21 00:00 - 2013-01-08 17:11 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-02-21 00:00 - 2013-01-08 17:10 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-02-21 00:00 - 2013-01-08 17:09 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-02-21 00:00 - 2013-01-08 17:07 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-02-21 00:00 - 2013-01-08 17:07 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-02-21 00:00 - 2013-01-08 17:07 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-02-21 00:00 - 2013-01-08 17:06 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-02-21 00:00 - 2013-01-08 17:05 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-02-21 00:00 - 2013-01-08 17:04 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-02-21 00:00 - 2013-01-08 17:04 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-02-21 00:00 - 2013-01-08 17:00 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-02-21 00:00 - 2013-01-08 14:23 - 12321280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-02-21 00:00 - 2013-01-08 14:11 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-02-21 00:00 - 2013-01-08 14:09 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-02-21 00:00 - 2013-01-08 14:03 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-02-21 00:00 - 2013-01-08 14:03 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-02-21 00:00 - 2013-01-08 14:03 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-02-21 00:00 - 2013-01-08 14:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-02-21 00:00 - 2013-01-08 14:00 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-02-21 00:00 - 2013-01-08 13:59 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-02-21 00:00 - 2013-01-08 13:58 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-02-21 00:00 - 2013-01-08 13:58 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-02-21 00:00 - 2013-01-08 13:57 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-02-21 00:00 - 2013-01-08 13:56 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-02-21 00:00 - 2013-01-08 13:56 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-02-21 00:00 - 2013-01-08 13:56 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-02-21 00:00 - 2013-01-08 13:53 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-02-20 14:54 - 2013-02-20 14:54 - 00000334 ____A C:\Users\CommandCenter\Desktop\Ghost Recon Online (NCSA-Live).appref-ms
2013-02-20 14:53 - 2013-02-20 14:53 - 03585152 ____A (DevAge, Vestris Inc. & Contributors) C:\Users\CommandCenter\Downloads\GROLauncherNCSA.exe
2013-02-20 12:42 - 2013-01-04 21:53 - 05553512 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-02-20 12:42 - 2013-01-04 21:00 - 03967848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-02-20 12:42 - 2013-01-04 21:00 - 03913064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-02-20 12:42 - 2013-01-03 21:46 - 00215040 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2013-02-20 12:42 - 2013-01-03 20:51 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-02-20 12:42 - 2013-01-03 19:26 - 03153408 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-02-20 12:42 - 2013-01-03 18:47 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-02-20 12:42 - 2013-01-03 18:47 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-02-20 12:42 - 2013-01-03 18:47 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-02-20 12:42 - 2013-01-03 18:47 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-02-20 12:42 - 2013-01-02 22:00 - 01913192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-02-20 12:42 - 2013-01-02 22:00 - 00288088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2013-02-16 16:35 - 2013-02-16 16:35 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\Microsoft Games

==================== One Month Modified Files and Folders =======

2013-03-08 04:40 - 2013-02-21 16:41 - 00000000 ____D C:\ProgramData\MFAData
2013-03-08 04:40 - 2012-12-19 18:02 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-03-08 04:40 - 2012-12-17 02:36 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\vlc
2013-03-08 04:40 - 2012-12-04 02:19 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\Skype
2013-03-08 04:40 - 2012-12-02 23:22 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-03-08 04:40 - 2012-12-02 23:11 - 00000000 ____D C:\users\CommandCenter
2013-03-08 04:40 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\NDF
2013-03-08 04:40 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\security
2013-03-08 04:40 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration
2013-03-08 04:40 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\AppCompat
2013-03-08 00:21 - 2013-03-08 00:21 - 00000000 ____D C:\Windows\LastGood.Tmp
2013-03-08 00:21 - 2012-12-02 23:18 - 00000000 ____D C:\Program Files (x86)\Intel
2013-03-08 00:17 - 2013-03-08 00:17 - 00000000 ____D C:\ProgramData\Intel
2013-03-08 00:14 - 2012-12-02 23:17 - 00000000 ____D C:\Intel
2013-03-07 09:40 - 2013-03-07 09:40 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2013-03-07 09:40 - 2013-03-07 09:40 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2013-03-06 00:56 - 2013-03-06 00:52 - 923795456 ____A C:\Users\CommandCenter\Downloads\linuxmint-14.1-cinnamon-dvd-64bit.iso
2013-03-04 18:36 - 2012-12-02 23:23 - 00058400 ____A C:\Users\CommandCenter\AppData\Local\GDIPFONTCACHEV1.DAT
2013-03-04 18:35 - 2013-03-04 18:35 - 00000000 ____D C:\Program Files (x86)\ASRock Utility
2013-03-04 18:34 - 2013-03-04 18:34 - 00000000 ____D C:\Users\CommandCenter\Downloads\ME_Win7-64_Win7_Vista64_Vista_XP64_XP(v8.0.2.1410_1.5M)
2013-03-04 18:34 - 2013-03-04 18:34 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\InstallShield
2013-03-04 17:51 - 2013-03-04 17:42 - 47336607 ____A C:\Users\CommandCenter\Downloads\ME_Win7-64_Win7_Vista64_Vista_XP64_XP(v8.0.2.1410_1.5M).zip
2013-03-04 17:44 - 2013-03-04 17:42 - 05189889 ____A C:\Users\CommandCenter\Downloads\AXTU(v0.1.210).zip
2013-03-04 17:42 - 2013-03-04 17:42 - 04716234 ____A C:\Users\CommandCenter\Downloads\P67 Extreme4 Gen3(2.10)WIN.zip
2013-03-03 13:25 - 2013-03-03 13:25 - 04852121 ____A C:\Users\CommandCenter\Downloads\P67 Extreme4 UEFI 3.1.7z
2013-03-03 13:20 - 2013-03-03 13:19 - 04227265 ____A C:\Users\CommandCenter\Downloads\P67 Extreme6(L2.02)ROM.zip
2013-03-02 14:43 - 2013-02-21 16:44 - 00000000 ____D C:\Program Files (x86)\AVG
2013-03-02 14:41 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-03-02 14:41 - 2009-07-13 20:51 - 00031468 ____A C:\Windows\setupact.log
2013-03-02 14:28 - 2012-12-03 05:55 - 00007992 ____A C:\Windows\PFRO.log
2013-03-02 14:15 - 2009-07-13 21:13 - 00726316 ____A C:\Windows\System32\PerfStringBackup.INI
2013-03-02 13:42 - 2009-07-13 20:45 - 00014224 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-03-02 13:42 - 2009-07-13 20:45 - 00014224 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-03-02 13:38 - 2012-12-02 23:11 - 01082022 ____A C:\Windows\WindowsUpdate.log
2013-03-02 11:15 - 2013-02-25 21:48 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-03-02 10:50 - 2012-12-03 11:43 - 00000940 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2701338236-3320368851-3855981241-1000UA.job
2013-03-02 09:36 - 2013-03-02 09:36 - 440990870 ____A C:\Windows\MEMORY.DMP
2013-03-02 09:36 - 2013-03-02 09:36 - 00274904 ____A C:\Windows\Minidump\030213-10342-01.dmp
2013-03-02 09:36 - 2013-03-02 09:36 - 00000000 ____D C:\Windows\Minidump
2013-02-28 12:11 - 2012-12-08 13:21 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\TS3Client
2013-02-28 08:50 - 2012-12-03 11:43 - 00000888 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2701338236-3320368851-3855981241-1000Core.job
2013-02-25 21:48 - 2013-02-25 21:48 - 00691568 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-02-25 21:48 - 2013-02-25 21:48 - 00071024 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-02-25 21:48 - 2013-02-25 21:48 - 00000000 ____D C:\Windows\System32\Macromed
2013-02-25 21:48 - 2012-12-17 23:02 - 00000000 ____D C:\ProgramData\Adobe
2013-02-24 08:54 - 2012-12-03 11:44 - 00002415 ____A C:\Users\CommandCenter\Desktop\Google Chrome.lnk
2013-02-24 07:58 - 2012-12-03 12:05 - 00000000 ____D C:\Users\CommandCenter\Desktop\League of Legends
2013-02-24 07:13 - 2012-12-06 22:19 - 00281120 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-02-24 07:13 - 2012-12-06 20:04 - 00281120 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-02-24 07:13 - 2012-12-03 11:43 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\Deployment
2013-02-23 08:38 - 2012-12-06 20:04 - 00281120 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-02-23 02:23 - 2012-12-02 23:11 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\VirtualStore
2013-02-22 00:14 - 2013-02-21 16:41 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\Avg2013
2013-02-21 16:49 - 2013-01-11 10:55 - 00000766 ____A C:\Users\Public\Desktop\LOL Recorder.lnk
2013-02-21 16:48 - 2013-02-21 16:48 - 58674136 ____A (AVG) C:\Users\CommandCenter\Downloads\avg_tuh_stf_all_2013_2_24c34.exe
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 __SHD C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\AVG
2013-02-21 16:48 - 2013-02-21 16:48 - 00000000 ____D C:\ProgramData\AVG
2013-02-21 16:45 - 2013-02-21 16:45 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\AVG2013
2013-02-21 16:44 - 2013-02-21 16:44 - 00000965 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ___HD C:\$AVG
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ____D C:\Users\CommandCenter\AppData\Roaming\TuneUp Software
2013-02-21 16:44 - 2013-02-21 16:44 - 00000000 ____D C:\ProgramData\AVG2013
2013-02-21 16:41 - 2013-02-21 16:41 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\MFAData
2013-02-21 16:40 - 2013-02-21 16:40 - 04444768 ____A (AVG Technologies) C:\Users\CommandCenter\Downloads\avg_avc_stb_all_2013_2899.exe
2013-02-21 06:05 - 2012-12-09 00:41 - 00000000 ____D C:\Program Files (x86)\DivX
2013-02-21 06:05 - 2012-12-09 00:40 - 00000000 ____D C:\ProgramData\DivX
2013-02-21 06:04 - 2013-02-21 06:04 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-02-21 06:04 - 2012-12-09 00:41 - 00000000 ____D C:\Program Files\DivX
2013-02-21 06:04 - 2012-12-04 02:19 - 00002515 ____A C:\Users\Public\Desktop\Skype.lnk
2013-02-21 06:04 - 2012-12-04 02:19 - 00000000 ____D C:\ProgramData\Skype
2013-02-21 06:03 - 2009-07-13 20:45 - 00275712 ____A C:\Windows\System32\FNTCACHE.DAT
2013-02-21 00:01 - 2012-12-02 23:43 - 70004024 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-02-20 15:25 - 2012-12-06 22:19 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\PunkBuster
2013-02-20 15:24 - 2012-12-06 20:04 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe
2013-02-20 14:54 - 2013-02-20 14:54 - 00000334 ____A C:\Users\CommandCenter\Desktop\Ghost Recon Online (NCSA-Live).appref-ms
2013-02-20 14:53 - 2013-02-20 14:53 - 03585152 ____A (DevAge, Vestris Inc. & Contributors) C:\Users\CommandCenter\Downloads\GROLauncherNCSA.exe
2013-02-16 16:35 - 2013-02-16 16:35 - 00000000 ____D C:\Users\CommandCenter\AppData\Local\Microsoft Games
2013-02-08 19:41 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\LiveKernelReports


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-03-02 14:43:37
Restore point made on: 2013-03-02 14:43:44

==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 8071.61 MB
Available physical RAM: 7299.05 MB
Total Pagefile: 8069.76 MB
Available Pagefile: 7297.69 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

==================== Partitions =============================

1 Drive c: () (Fixed) (Total:111.69 GB) (Free:34.71 GB) NTFS
2 Drive d: (DumpDrive) (Fixed) (Total:931.51 GB) (Free:874.55 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive g: () (Removable) (Total:0.49 GB) (Free:0.49 GB) FAT
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
6 Drive y: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

  Disk ###  Status         Size     Free     Dyn  Gpt
  --------  -------------  -------  -------  ---  ---
  Disk 0    Online          111 GB      0 B         
  Disk 1    Online          931 GB      0 B         
  Disk 2    Online          504 MB      0 B         

Partitions of Disk 0:
===============

Disk ID: 6D012D78

  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    Primary            100 MB  1024 KB
  Partition 2    Primary            111 GB   101 MB

==================================================================================

Disk: 0
Partition 1
Type  : 07
Hidden: No
Active: Yes

  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 1     Y                NTFS   Partition    100 MB  Healthy            

=========================================================

Disk: 0
Partition 2
Type  : 07
Hidden: No
Active: No

  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 2     C                NTFS   Partition    111 GB  Healthy            

=========================================================
 

 



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,704 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:38 PM

Posted 12 March 2013 - 04:50 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

=http://www.bleepstatic.com/images/site/icons/steps/step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/487815 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gif If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,704 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:38 PM

Posted 17 March 2013 - 04:55 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users