Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Log-Analyse und Auswertung: Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 31.08.2014, 07:29   #1
Jinro
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Als ich gestern Abend nach Hause kam und den PC angemacht habe wollte er plötzlich nicht mehr hochfahren. Es erscheint nur beim Laden von Windows ein kurzer Bluescreen und der PC startet neu und empfiehlt mir eine Reperatur. Eine solche habe ich bereits mehrmals durchgeführt und auch versucht ein Systemabbild herzustellen bzw. eine Systemwiederherstellung. Der letzte Speicherpunkt war allerdings im Oktober 2013 und das könnte vielleicht die Ursache sein, weshalb das auch erfolglos blieb. Nachdem ich dort also alle Optionen durch hatte, der PC selbst im abgesicherten Modus dasselbe Problem hat und ich auch sonst einiges versucht habe (beispielsweise habe ich einen RAM-Riegel entnommen um zu schauen ob das Problem da liegt), bin ich auf dieses Programm gestoßen, was ich hier in einem Thread gefunden habe (Farbar's Recovery Scan Tool). Habe die Anleitung befolgt und hatte auch damit Erfolg. In den Logfiles sind ja einige Informationen gegeben, aber ich bin echt ein absoluter Laie und weiß nicht ob noch andere Informationen von Nöten sind, aber hier erstmal meine Logfiles:

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-08-2014
Ran by SYSTEM on MININT-7T2E0NG on 31-08-2014 10:08:06
Running from F:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345312 2013-03-28] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SearchProtectAll] => C:\Program Files (x86)\SearchProtect\bin\cltmng.exe [2674464 2013-02-20] (Conduit)
HKLM\...\RunOnce: [*Restore] => C:\Windows\system32\rstrui.exe [296960 2010-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Boss\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)
HKU\Überboss\...\Run: [Spotify Web Helper] => C:\Users\Überboss\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104280 2013-04-05] (Spotify Ltd)
HKU\Überboss\...\Run: [SearchProtect] => C:\Users\Überboss\AppData\Roaming\SearchProtect\bin\cltmng.exe [2730784 2013-04-11] (Conduit)
Startup: C:\Users\Überboss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-03-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-03-28] (Avira Operations GmbH & Co. KG)
S2 CltMngSvc; C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe [93984 2013-02-20] (Conduit)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [745368 2012-11-26] (Tunngle.net GmbH)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-28] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-28] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-28] (Avira Operations GmbH & Co. KG)
S2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)
S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 GGSAFERDriver; \??\D:\Programme\Garena Plus\Room\safedrv.sys [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 10:07 - 2014-08-31 10:08 - 00000000 ____D () C:\FRST

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 10:08 - 2014-08-31 10:07 - 00000000 ____D () C:\FRST
2014-08-31 08:12 - 2013-08-27 16:17 - 00000000 ____D () C:\Users\Überboss\Desktop\Ultra Shit
2014-08-31 08:12 - 2013-04-11 19:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-31 08:12 - 2013-03-05 15:58 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-31 08:12 - 2013-03-05 15:37 - 00000000 ____D () C:\Stormblade
2014-08-31 08:12 - 2013-02-27 23:11 - 00000000 ____D () C:\Program Files (x86)\Tunngle
2014-08-31 08:12 - 2013-02-19 21:43 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\GarenaPlus
2014-08-31 08:12 - 2013-02-19 21:42 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2014-08-31 08:12 - 2013-01-31 02:49 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\raidcall
2014-08-31 08:12 - 2013-01-23 16:30 - 00000000 ____D () C:\Users\Überboss\Downloads\Gameforge Live
2014-08-31 08:12 - 2013-01-18 20:25 - 00000000 __RHD () C:\Users\Überboss\yüar
2014-08-31 08:12 - 2013-01-12 16:30 - 00000000 ____D () C:\Users\Überboss\Desktop\Fangame
2014-08-31 08:12 - 2012-12-25 08:17 - 00000000 ____D () C:\Users\Überboss\Desktop\Project64k
2014-08-31 08:12 - 2012-12-21 18:02 - 00000000 ____D () C:\users\DefaultAppPool
2014-08-31 08:12 - 2012-12-13 22:27 - 00000000 ____D () C:\ProgramData\PMB Files
2014-08-31 08:12 - 2012-12-04 17:20 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\Spotify
2014-08-31 08:12 - 2012-12-02 01:12 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-31 08:12 - 2012-12-02 01:11 - 00000000 ____D () C:\Users\Überboss\SystemRequirementsLab
2014-08-31 08:12 - 2012-12-02 00:31 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2014-08-31 08:12 - 2012-12-01 23:15 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-31 08:12 - 2012-12-01 23:15 - 00000000 ____D () C:\ProgramData\Skype
2014-08-31 08:12 - 2012-12-01 22:22 - 00000000 ____D () C:\Windows\System32\Macromed
2014-08-31 08:12 - 2012-12-01 21:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-31 08:12 - 2012-12-01 21:46 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-31 08:12 - 2012-12-01 21:35 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-08-31 08:12 - 2012-12-01 21:30 - 00000000 ____D () C:\users\Überboss
2014-08-31 08:12 - 2011-04-12 08:55 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-31 08:12 - 2011-04-12 08:54 - 00000000 ____D () C:\Windows\ShellNew
2014-08-31 08:12 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-31 08:12 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\System32\Msdtc
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-31 08:11 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-08-31 08:10 - 2012-12-01 22:22 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-31 08:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-31 08:01 - 2012-12-01 23:15 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\Skype
2014-08-31 07:59 - 2012-12-01 21:59 - 00000000 ____D () C:\Users\Überboss\AppData\Local\Mozilla
2014-08-31 07:58 - 2012-12-18 22:48 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-31 07:58 - 2012-12-01 23:01 - 00000000 ____D () C:\ProgramData\Avira
2014-08-31 07:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-31 07:57 - 2012-12-13 22:27 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-08-31 07:57 - 2012-12-02 01:08 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-31 07:56 - 2012-12-13 22:20 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-31 07:56 - 2012-12-01 23:01 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-31 07:56 - 2012-12-01 21:46 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-31 07:56 - 2012-12-01 21:45 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-30 22:59 - 2012-12-01 21:30 - 00000000 __SHD () C:\Recovery

Some content of TEMP:
====================
C:\Users\Boss\AppData\Local\Temp\avgnt.exe
C:\Users\Überboss\AppData\Local\Temp\AskSLib.dll
C:\Users\Überboss\AppData\Local\Temp\avgnt.exe
C:\Users\Überboss\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Überboss\AppData\Local\Temp\Gw2.exe
C:\Users\Überboss\AppData\Local\Temp\nsiC86F.exe
C:\Users\Überboss\AppData\Local\Temp\nsn72EA.exe
C:\Users\Überboss\AppData\Local\Temp\nssF0DF.exe
C:\Users\Überboss\AppData\Local\Temp\nsxF6CE.exe
C:\Users\Überboss\AppData\Local\Temp\SIntf16.dll
C:\Users\Überboss\AppData\Local\Temp\SIntf32.dll
C:\Users\Überboss\AppData\Local\Temp\SIntfNT.dll
C:\Users\Überboss\AppData\Local\Temp\SPStub.exe
C:\Users\Überboss\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Überboss\AppData\Local\Temp\swt-win32-3740.dll
C:\Users\Überboss\AppData\Local\Temp\tbentr.dll
C:\Users\Überboss\AppData\Local\Temp\war3_Install.exe


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Restore Points  =========================


==================== Memory info =========================== 

Percentage of memory in use: 9%
Total physical RAM: 8104.67 MB
Available physical RAM: 7364.16 MB
Total Pagefile: 8102.87 MB
Available Pagefile: 7351.62 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: (System-reserviert) (Fixed) (Total:60 GB) (Free:26.17 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:1803.01 GB) (Free:1010.77 GB) NTFS
Drive f: () (Removable) (Total:1.84 GB) (Free:1.21 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 47D8A006)
Partition 1: (Active) - (Size=60 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1803 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.


LastRegBack: 2013-10-21 12:02

==================== End Of Log ============================
Was ich fast vergessen hätte zu erwähnen: Meine Windows 7 CD ist wie von Geisterhand verschwunden. Ich habe alles auf den Kopf gestellt um sie zu finden, aber die Suche blieb erfolglos. Auf der Hülle steht ja auch mein Key drauf, den ich jetzt auch nicht mehr hab. Ich werde derweil noch weitersuchen und rumtelefonieren, ob ich sie vielleicht irgendwo anders vor langer Zeit verlegt hatte (konnte das bisher nicht machen so früh am Morgen), aber hoffe mal das sich das Problem auch so lösen lässt. Bin nämlich ziemlich von meinem PC abhängig.

Alt 31.08.2014, 08:32   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Hi,

FRST bitte nochmal, nimm aber alle Haken raus unter Whitelist. Bild vom Bluescreen brauch ich auch bitte
__________________

__________________
Alt 31.08.2014, 08:53   #3
Jinro
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Erst einmal vielen Dank für die rasche Antwort, ich kann echt jede schnelle Hilfe gebrauchen.

Leider habe ich keine Möglichkeit ein Bild vom Bluescreen zu machen, aber das ist echt nicht viel Text, also tippe ich das einfach mal ab:

A problem has been detected and Windows has been shut down to prevent damage to your computer.

If this is the first time you've seen this Stop error screen, restart your computer. If this screen appears again, follow these steps:

Check for viruses on your computer. Remove any newly installed hard drives or hard drive controllers. Check your hard drive to make sure it is properly configured and terminated. Run CHKDSK /F to check for hard drive corruption, and then restart your computer.

Technical information:

*** STOP: 0x0000007B (0xFFFFF880009A97E8, 0xFFFFFFFFC0000034, 0x0000000000000000, 0x0000000000000000)


und dann hier noch die neuen Logfiles:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-08-2014
Ran by SYSTEM on MININT-D30M1TC on 31-08-2014 11:43:31
Running from F:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.



==================== Registry (All) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11660904 2010-11-30] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [171040 2012-10-10] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe [399392 2012-10-10] (Intel Corporation)
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe [441888 2012-10-10] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345312 2013-03-28] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SearchProtectAll] => C:\Program Files (x86)\SearchProtect\bin\cltmng.exe [2674464 2013-02-20] (Conduit)
HKLM\...\RunOnce: [*Restore] => C:\Windows\system32\rstrui.exe [296960 2010-11-21] (Microsoft Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [30720 2010-11-21] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-21] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [2871808 2011-02-25] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] explorer.exe [2616320 2011-02-25] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKU\Boss\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)
HKU\Default\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\Default\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\Default User\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\DefaultAppPool\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\DefaultAppPool\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\Überboss\...\Run: [Spotify Web Helper] => C:\Users\Überboss\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104280 2013-04-05] (Spotify Ltd)
HKU\Überboss\...\Run: [SearchProtect] => C:\Users\Überboss\AppData\Roaming\SearchProtect\bin\cltmng.exe [2730784 2013-04-11] (Conduit)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
Startup: C:\Users\Überboss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -  No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -  No File
BootExecute: autocheck autochk * 
AlternateShell: cmd.exe

==================== Services (All) ========================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [253656 2013-03-12] (Adobe Systems Incorporated)
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [72192 2009-07-14] (Microsoft Corporation)
S3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-14] (Microsoft Corporation)
S2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [239616 2012-09-28] (AMD)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-03-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-03-28] (Avira Operations GmbH & Co. KG)
S2 AppHostSvc; C:\Windows\system32\inetsrv\apphostsvc.dll [65536 2010-11-21] (Microsoft Corporation)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [32256 2009-07-14] (Microsoft Corporation)
S3 Appinfo; C:\Windows\System32\appinfo.dll [70656 2010-11-21] (Microsoft Corporation)
S2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [679424 2010-11-21] (Microsoft Corporation)
S2 AudioSrv; C:\Windows\System32\Audiosrv.dll [679424 2010-11-21] (Microsoft Corporation)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2010-11-21] (Microsoft Corporation)
S3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2009-07-14] (Microsoft Corporation)
S2 BFE; C:\Windows\System32\bfe.dll [705024 2010-11-21] (Microsoft Corporation)
S2 BITS; C:\Windows\System32\qmgr.dll [849920 2010-11-21] (Microsoft Corporation)
S3 Browser; C:\Windows\System32\browser.dll [136704 2012-07-04] (Microsoft Corporation)
S3 bthserv; C:\Windows\system32\bthserv.dll [83968 2009-07-14] (Microsoft Corporation)
S3 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2010-11-21] (Microsoft Corporation)
S4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [66384 2009-06-10] (Microsoft Corporation)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [89920 2009-06-10] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384 2010-03-18] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [138576 2010-03-18] (Microsoft Corporation)
S2 CltMngSvc; C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe [93984 2013-02-20] (Conduit)
S3 COMSysApp; C:\Windows\system32\dllhost.exe [9728 2009-07-14] (Microsoft Corporation)
S3 COMSysApp; C:\Windows\SysWOW64\dllhost.exe [7168 2009-07-14] (Microsoft Corporation)
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [277024 2012-10-10] (Intel Corporation)
S2 CryptSvc; C:\Windows\system32\cryptsvc.dll [184320 2012-06-02] (Microsoft Corporation)
S2 DcomLaunch; C:\Windows\system32\rpcss.dll [512000 2010-11-21] (Microsoft Corporation)
S3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-14] (Microsoft Corporation)
S2 Dhcp; C:\Windows\system32\dhcpcore.dll [317952 2010-11-21] (Microsoft Corporation)
S2 Dnscache; C:\Windows\System32\dnsrslvr.dll [183296 2011-03-03] (Microsoft Corporation)
S3 dot3svc; C:\Windows\System32\dot3svc.dll [252416 2010-11-21] (Microsoft Corporation)
S2 DPS; C:\Windows\system32\dps.dll [162816 2010-11-21] (Microsoft Corporation)
S3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-14] (Microsoft Corporation)
S3 EFS; C:\Windows\System32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2010-11-21] (Microsoft Corporation)
S3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-14] (Microsoft Corporation)
S2 eventlog; C:\Windows\System32\wevtsvc.dll [1646080 2010-11-21] (Microsoft Corporation)
S2 EventSystem; C:\Windows\system32\es.dll [402944 2009-07-14] (Microsoft Corporation)
S3 Fax; C:\Windows\system32\fxssvc.exe [689152 2010-11-21] (Microsoft Corporation)
S3 fdPHost; C:\Windows\system32\fdPHost.dll [16384 2009-07-14] (Microsoft Corporation)
S3 FDResPub; C:\Windows\system32\fdrespub.dll [34816 2009-07-14] (Microsoft Corporation)
S2 FontCache; C:\Windows\system32\FntCache.dll [1175552 2013-01-13] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-21] (Microsoft Corporation)
S2 gpsvc; C:\Windows\System32\gpsvc.dll [777728 2010-11-21] (Microsoft Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2013-04-06] (Google Inc.)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2013-04-06] (Google Inc.)
S3 hidserv; C:\Windows\system32\hidserv.dll [38912 2009-07-14] (Microsoft Corporation)
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [90624 2010-11-21] (Microsoft Corporation)
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [232448 2010-11-21] (Microsoft Corporation)
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [187904 2010-11-21] (Microsoft Corporation)
S3 idsvc; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [856400 2010-11-21] (Microsoft Corporation)
S3 IKEEXT; C:\Windows\System32\ikeext.dll [853504 2010-11-21] (Microsoft Corporation)
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [101888 2009-07-14] (Microsoft Corporation)
S2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [569344 2012-10-03] (Microsoft Corporation)
S3 KeyIso; C:\Windows\system32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [368640 2009-07-14] (Microsoft Corporation)
S2 LanmanServer; C:\Windows\system32\srvsvc.dll [236032 2010-11-21] (Microsoft Corporation)
S2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2010-11-21] (Microsoft Corporation)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-14] (Microsoft Corporation)
S2 lmhosts; C:\Windows\System32\lmhsvc.dll [23552 2009-07-14] (Microsoft Corporation)
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [84992 2010-11-21] (Microsoft Corporation)
S2 MMCSS; C:\Windows\system32\mmcss.dll [67584 2009-07-14] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [115608 2013-04-11] (Mozilla Foundation)
S2 MpsSvc; C:\Windows\system32\mpssvc.dll [828416 2010-11-21] (Microsoft Corporation)
S3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-14] (Microsoft Corporation)
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [156672 2009-07-14] (Microsoft Corporation)
S3 msiserver; C:\Windows\System32\msiexec.exe [128000 2010-11-21] (Microsoft Corporation)
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
S3 napagent; C:\Windows\system32\qagentRT.dll [476160 2010-11-21] (Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-14] (Microsoft Corporation)
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [116560 2009-06-10] (Microsoft Corporation)
S2 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [116560 2009-06-10] (Microsoft Corporation)
S3 netprofm; C:\Windows\System32\netprofm.dll [459776 2009-07-14] (Microsoft Corporation)
S2 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [116560 2009-06-10] (Microsoft Corporation)
S3 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [116560 2009-06-10] (Microsoft Corporation)
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [303104 2012-10-03] (Microsoft Corporation)
S2 nsi; C:\Windows\system32\nsisvc.dll [25600 2009-07-14] (Microsoft Corporation)
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-14] (Microsoft Corporation)
S3 p2psvc; C:\Windows\system32\p2psvc.dll [438784 2009-07-14] (Microsoft Corporation)
S2 PcaSvc; C:\Windows\System32\pcasvc.dll [186368 2009-07-14] (Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 pla; C:\Windows\system32\pla.dll [1389056 2010-11-21] (Microsoft Corporation)
S2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [404480 2011-05-24] (Microsoft Corporation)
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25088 2009-07-14] (Microsoft Corporation)
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-14] (Microsoft Corporation)
S3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [501248 2010-11-21] (Microsoft Corporation)
S2 Power; C:\Windows\system32\umpo.dll [163840 2009-07-14] (Microsoft Corporation)
S2 ProfSvc; C:\Windows\system32\profsvc.dll [209920 2012-05-01] (Microsoft Corporation)
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-14] (Microsoft Corporation)
S3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-14] (Microsoft Corporation)
S3 RasMan; C:\Windows\System32\rasmans.dll [344064 2010-11-21] (Microsoft Corporation)
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2009-07-14] (Microsoft Corporation)
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [75264 2009-07-14] (Microsoft Corporation)
S3 RemoteRegistry; C:\Windows\system32\regsvc.dll [159232 2009-07-14] (Microsoft Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
S2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-14] (Microsoft Corporation)
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2009-07-14] (Microsoft Corporation)
S2 RpcSs; C:\Windows\system32\rpcss.dll [512000 2010-11-21] (Microsoft Corporation)
S2 SamSs; C:\Windows\system32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [190976 2009-07-14] (Microsoft Corporation)
S2 Schedule; C:\Windows\system32\schedsvc.dll [1110016 2010-11-21] (Microsoft Corporation)
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2010-11-21] (Microsoft Corporation)
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-21] (Microsoft Corporation)
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2010-11-21] (Microsoft Corporation)
S2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-14] (Microsoft Corporation)
S2 SENS; C:\Windows\SysWOW64\sens.dll [49664 2009-07-14] (Microsoft Corporation)
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [29184 2009-07-14] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\system32\sessenv.dll [121856 2010-11-21] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [113664 2010-11-21] (Microsoft Corporation)
S4 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-14] (Microsoft Corporation)
S2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [370688 2010-11-21] (Microsoft Corporation)
S2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [328192 2010-11-21] (Microsoft Corporation)
S2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [161536 2013-01-08] (Skype Technologies)
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-14] (Microsoft Corporation)
S2 Spooler; C:\Windows\System32\spoolsv.exe [559104 2012-02-11] (Microsoft Corporation)
S2 sppsvc; C:\Windows\system32\sppsvc.exe [3524608 2010-11-21] (Microsoft Corporation)
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [65536 2009-07-14] (Microsoft Corporation)
S3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-14] (Microsoft Corporation)
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [75264 2009-07-14] (Microsoft Corporation)
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [543656 2013-03-29] (Valve Corporation)
S3 stisvc; C:\Windows\System32\wiaservc.dll [580096 2010-11-21] (Microsoft Corporation)
S3 swprv; C:\Windows\System32\swprv.dll [524288 2009-07-14] (Microsoft Corporation)
S2 SysMain; C:\Windows\system32\sysmain.dll [1743360 2010-11-21] (Microsoft Corporation)
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [92672 2010-11-21] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2010-11-21] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [242176 2010-11-21] (Microsoft Corporation)
S3 TBS; C:\Windows\System32\tbssvc.dll [65536 2009-07-14] (Microsoft Corporation)
S3 TermService; C:\Windows\System32\termsrv.dll [680960 2010-11-21] (Microsoft Corporation)
S2 Themes; C:\Windows\system32\themeservice.dll [44544 2009-07-14] (Microsoft Corporation)
S3 THREADORDER; C:\Windows\system32\mmcss.dll [67584 2009-07-14] (Microsoft Corporation)
S2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-14] (Microsoft Corporation)
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-21] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [745368 2012-11-26] (Tunngle.net GmbH)
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2009-07-14] (Microsoft Corporation)
S3 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-14] (Microsoft Corporation)
S2 UxSms; C:\Windows\System32\uxsms.dll [38912 2009-07-14] (Microsoft Corporation)
S3 VaultSvc; C:\Windows\system32\lsass.exe [31232 2011-11-17] (Microsoft Corporation)
S3 vds; C:\Windows\System32\vds.exe [533504 2010-11-21] (Microsoft Corporation)
S3 VSS; C:\Windows\system32\vssvc.exe [1600512 2010-11-21] (Microsoft Corporation)
S3 W32Time; C:\Windows\system32\w32time.dll [381952 2009-07-14] (Microsoft Corporation)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)
S3 WAS; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)
S3 wbengine; C:\Windows\system32\wbengine.exe [1504256 2010-11-21] (Microsoft Corporation)
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [202240 2009-07-14] (Microsoft Corporation)
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-21] (Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2009-07-14] (Microsoft Corporation)
S3 WdiServiceHost; C:\Windows\system32\wdi.dll [90624 2009-07-14] (Microsoft Corporation)
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [90624 2009-07-14] (Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [258560 2010-11-21] (Microsoft Corporation)
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [237568 2009-07-14] (Microsoft Corporation)
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-14] (Microsoft Corporation)
S3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-14] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [444416 2010-11-21] (Microsoft Corporation)
S2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [242688 2009-07-14] (Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2018304 2010-11-21] (Microsoft Corporation)
S3 Wlansvc; C:\Windows\System32\wlansvc.dll [886784 2009-07-14] (Microsoft Corporation)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [203264 2009-07-14] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1525248 2010-11-21] (Microsoft Corporation)
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-14] (Microsoft Corporation)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [117248 2010-11-21] (Microsoft Corporation)
S2 wscsvc; C:\Windows\System32\wscsvc.dll [97280 2009-07-14] (Microsoft Corporation)
S2 WSearch; C:\Windows\system32\SearchIndexer.exe [591872 2011-05-04] (Microsoft Corporation)
S2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)
S2 wuauserv; C:\Windows\system32\wuaueng.dll [2428952 2012-06-02] (Microsoft Corporation)
S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [84992 2012-07-26] (Microsoft Corporation)
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [229888 2009-07-14] (Microsoft Corporation)

==================== Drivers (All) ==========================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [229888 2010-11-21] (Microsoft Corporation)
S0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334208 2010-11-21] (Microsoft Corporation)
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [12800 2010-11-21] (Microsoft Corporation)
S3 adp94xx; C:\Windows\system32\drivers\adp94xx.sys [491088 2009-07-14] (Adaptec, Inc.)
S3 adpahci; C:\Windows\system32\drivers\adpahci.sys [339536 2009-07-14] (Adaptec, Inc.)
S3 adpu320; C:\Windows\system32\drivers\adpu320.sys [182864 2009-07-14] (Adaptec, Inc.)
S1 AFD; C:\Windows\system32\drivers\afd.sys [498688 2011-12-28] (Microsoft Corporation)
S3 agp440; C:\Windows\system32\drivers\agp440.sys [61008 2009-07-14] (Microsoft Corporation)
S3 aliide; C:\Windows\system32\drivers\aliide.sys [15440 2009-07-14] (Acer Laboratories Inc.)
S3 amdide; C:\Windows\system32\drivers\amdide.sys [15440 2009-07-14] (Microsoft Corporation)
S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [64512 2009-07-14] (Microsoft Corporation)
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [10697216 2012-09-28] (Advanced Micro Devices, Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [460288 2012-09-28] (Advanced Micro Devices, Inc.)
S3 AmdPPM; C:\Windows\system32\drivers\amdppm.sys [60928 2009-07-14] (Microsoft Corporation)
S3 amdsata; C:\Windows\system32\drivers\amdsata.sys [107904 2011-03-11] (Advanced Micro Devices)
S3 amdsbs; C:\Windows\system32\drivers\amdsbs.sys [194128 2009-07-14] (AMD Technologies Inc.)
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [27008 2011-03-11] (Advanced Micro Devices)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
S3 AppID; C:\Windows\system32\drivers\appid.sys [61440 2010-11-21] (Microsoft Corporation)
S3 arc; C:\Windows\system32\drivers\arc.sys [87632 2009-07-14] (Adaptec, Inc.)
S3 arcsas; C:\Windows\system32\drivers\arcsas.sys [97856 2009-07-14] (Adaptec, Inc.)
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-14] (Microsoft Corporation)
S0 atapi; C:\Windows\System32\drivers\atapi.sys [24128 2009-07-14] (Microsoft Corporation)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96896 2012-05-14] (Advanced Micro Devices)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-28] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-28] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-28] (Avira Operations GmbH & Co. KG)
S3 b06bdrv; C:\Windows\system32\drivers\bxvbda.sys [468480 2009-06-10] (Broadcom Corporation)
S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Broadcom Corporation)
S5 BattC; C:\Windows\System32\Drivers\BattC.sys [28240 2009-07-14] (Microsoft Corporation)
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-14] (Microsoft Corporation)
S1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [45056 2009-07-14] (Microsoft Corporation)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2011-02-23] (Microsoft Corporation)
S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [18432 2009-06-10] (Brother Industries, Ltd.)
S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [8704 2009-06-10] (Brother Industries, Ltd.)
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-14] (Brother Industries Ltd.)
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Brother Industries Ltd.)
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Brother Industries Ltd.)
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Brother Industries Ltd.)
S3 BTHMODEM; C:\Windows\system32\drivers\bthmodem.sys [72192 2009-07-14] (Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-14] (Microsoft Corporation)
S1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [147456 2010-11-21] (Microsoft Corporation)
S3 circlass; C:\Windows\system32\drivers\circlass.sys [45568 2009-07-14] (Microsoft Corporation)
S0 CLFS; C:\Windows\System32\CLFS.sys [367696 2009-07-14] (Microsoft Corporation)
S3 CmBatt; C:\Windows\system32\drivers\CmBatt.sys [17664 2009-07-14] (Microsoft Corporation)
S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [17488 2009-07-14] (CMD Technology, Inc.)
S0 CNG; C:\Windows\System32\Drivers\cng.sys [458704 2012-06-02] (Microsoft Corporation)
S3 Compbatt; C:\Windows\system32\drivers\compbatt.sys [21584 2009-07-14] (Microsoft Corporation)
S3 CompositeBus; C:\Windows\System32\DRIVERS\CompositeBus.sys [38912 2010-11-21] (Microsoft Corporation)
S4 crcdisk; C:\Windows\system32\drivers\crcdisk.sys [24144 2009-07-14] (Microsoft Corporation)
S1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [102400 2010-11-21] (Microsoft Corporation)
S1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-14] (Microsoft Corporation)
S0 Disk; C:\Windows\System32\drivers\disk.sys [73280 2009-07-14] (Microsoft Corporation)
S3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [5632 2009-07-14] (Microsoft Corporation)
S3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [982912 2010-11-21] (Microsoft Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 elxstor; C:\Windows\system32\drivers\elxstor.sys [530496 2009-07-14] (Emulex)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2009-07-14] (Microsoft Corporation)
S3 EtronHub3; C:\Windows\System32\Drivers\EtronHub3.sys [39936 2011-02-08] (Etron Technology Inc)
S3 EtronXHCI; C:\Windows\System32\Drivers\EtronXHCI.sys [64512 2011-02-08] (Etron Technology Inc)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [195072 2009-07-14] (Microsoft Corporation)
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [204800 2009-07-14] (Microsoft Corporation)
S3 fdc; C:\Windows\system32\drivers\fdc.sys [29696 2009-07-14] (Microsoft Corporation)
S0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-14] (Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-14] (Microsoft Corporation)
S3 flpydisk; C:\Windows\system32\drivers\flpydisk.sys [24576 2009-07-14] (Microsoft Corporation)
S0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [289664 2010-11-21] (Microsoft Corporation)
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-14] (Microsoft Corporation)
S0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23408 2012-03-01] (Microsoft Corporation)
S0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [223752 2013-01-24] (Microsoft Corporation)
S3 gagp30kx; C:\Windows\system32\drivers\gagp30kx.sys [65088 2009-07-14] (Microsoft Corporation)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] (Hauppauge Computer Works, Inc.)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [350208 2010-11-21] (Microsoft Corporation)
S3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [122368 2010-11-21] (Microsoft Corporation)
S3 HidBatt; C:\Windows\system32\drivers\HidBatt.sys [26624 2009-07-14] (Microsoft Corporation)
S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [100864 2009-07-14] (Microsoft Corporation)
S3 HidIr; C:\Windows\system32\drivers\hidir.sys [46592 2009-07-14] (Microsoft Corporation)
S3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2010-11-21] (Microsoft Corporation)
S3 HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [78720 2010-11-21] (Hewlett-Packard Company)
S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [753664 2010-11-21] (Microsoft Corporation)
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-21] (Microsoft Corporation)
S3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [105472 2009-07-14] (Microsoft Corporation)
S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [410496 2011-03-11] (Intel Corporation)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [5343584 2012-10-10] (Intel Corporation)
S3 iirsp; C:\Windows\system32\drivers\iirsp.sys [44112 2009-07-14] (Intel Corp./ICP vortex GmbH)
S3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHD64.sys [2647528 2010-11-30] (Realtek Semiconductor Corp.)
S3 intelide; C:\Windows\system32\drivers\intelide.sys [16960 2009-07-14] (Microsoft Corporation)
S3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [62464 2009-07-14] (Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-21] (Microsoft Corporation)
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [78848 2010-11-21] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-14] (Microsoft Corporation)
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-14] (Microsoft Corporation)
S3 isapnp; C:\Windows\system32\drivers\isapnp.sys [20544 2009-07-14] (Microsoft Corporation)
S3 iScsiPrt; C:\Windows\system32\drivers\msiscsi.sys [273792 2010-11-21] (Microsoft Corporation)
S3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [50768 2009-07-14] (Microsoft Corporation)
S3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [33280 2010-11-21] (Microsoft Corporation)
S0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95600 2012-06-02] (Microsoft Corporation)
S0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [151920 2012-06-02] (Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [20992 2009-07-14] (Microsoft Corporation)
S2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-14] (Microsoft Corporation)
S3 LSI_FC; C:\Windows\system32\drivers\lsi_fc.sys [114752 2009-07-14] (LSI Corporation)
S3 LSI_SAS; C:\Windows\system32\drivers\lsi_sas.sys [106560 2009-07-14] (LSI Corporation)
S3 LSI_SAS2; C:\Windows\system32\drivers\lsi_sas2.sys [65600 2009-07-14] (LSI Corporation)
S3 LSI_SCSI; C:\Windows\system32\drivers\lsi_scsi.sys [115776 2009-07-14] (LSI Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [113152 2009-07-14] (Microsoft Corporation)
S3 megasas; C:\Windows\system32\drivers\megasas.sys [35392 2009-07-14] (LSI Corporation)
S3 MegaSR; C:\Windows\system32\drivers\MegaSR.sys [284736 2009-07-14] (LSI Corporation, Inc.)
S3 MEIx64; C:\Windows\System32\DRIVERS\HECIx64.sys [56344 2010-10-19] (Intel Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-14] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-14] (Microsoft Corporation)
S3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-14] (Microsoft Corporation)
S3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-14] (Microsoft Corporation)
S0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94592 2010-11-21] (Microsoft Corporation)
S3 mpio; C:\Windows\system32\drivers\mpio.sys [155008 2010-11-21] (Microsoft Corporation)
S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2009-07-14] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140800 2010-11-21] (Microsoft Corporation)
S3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [158208 2011-04-27] (Microsoft Corporation)
S3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [288768 2011-07-09] (Microsoft Corporation)
S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [128000 2011-04-27] (Microsoft Corporation)
S0 msahci; C:\Windows\System32\drivers\msahci.sys [31104 2010-11-21] (Microsoft Corporation)
S3 msdsm; C:\Windows\system32\drivers\msdsm.sys [140672 2010-11-21] (Microsoft Corporation)
S1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-14] (Microsoft Corporation)
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-14] (Microsoft Corporation)
S0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15424 2009-07-14] (Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-14] (Microsoft Corporation)
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-14] (Microsoft Corporation)
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-14] (Microsoft Corporation)
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-21] (Microsoft Corporation)
S1 mssmbios; C:\Windows\System32\DRIVERS\mssmbios.sys [32320 2009-07-14] (Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-14] (Microsoft Corporation)
S3 MTConfig; C:\Windows\system32\drivers\MTConfig.sys [15360 2009-07-14] (Microsoft Corporation)
S0 Mup; C:\Windows\System32\Drivers\mup.sys [60496 2009-07-14] (Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [318976 2009-07-14] (Microsoft Corporation)
S0 NDIS; C:\Windows\System32\drivers\ndis.sys [950128 2012-08-22] (Microsoft Corporation)
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-14] (Microsoft Corporation)
S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2009-07-14] (Microsoft Corporation)
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-21] (Microsoft Corporation)
S3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-21] (Microsoft Corporation)
S3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [57856 2010-11-21] (Microsoft Corporation)
S1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2009-07-14] (Microsoft Corporation)
S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2010-11-21] (Microsoft Corporation)
S3 nfrd960; C:\Windows\system32\drivers\nfrd960.sys [51264 2009-07-14] (IBM Corporation)
S2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)
S1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-14] (Microsoft Corporation)
S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2009-07-14] (Microsoft Corporation)
S3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1655656 2013-03-02] (Microsoft Corporation)
S1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-14] (Microsoft Corporation)
S3 nvraid; C:\Windows\system32\drivers\nvraid.sys [148352 2011-03-11] (NVIDIA Corporation)
S3 nvstor; C:\Windows\system32\drivers\nvstor.sys [166272 2011-03-11] (NVIDIA Corporation)
S3 nv_agp; C:\Windows\system32\drivers\nv_agp.sys [122960 2009-07-14] (Microsoft Corporation)
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [72832 2009-07-14] (Microsoft Corporation)
S3 Parport; C:\Windows\system32\drivers\parport.sys [97280 2009-07-14] (Microsoft Corporation)
S0 partmgr; C:\Windows\System32\drivers\partmgr.sys [75120 2012-03-17] (Microsoft Corporation)
S0 pci; C:\Windows\System32\drivers\pci.sys [184704 2010-11-21] (Microsoft Corporation)
S3 pciide; C:\Windows\system32\drivers\pciide.sys [12352 2009-07-14] (Microsoft Corporation)
S3 pcmcia; C:\Windows\system32\drivers\pcmcia.sys [220752 2009-07-14] (Microsoft Corporation)
S0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-14] (Microsoft Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [651264 2009-07-14] (Microsoft Corporation)
S3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2010-11-21] (Microsoft Corporation)
S3 Processor; C:\Windows\system32\drivers\processr.sys [60416 2009-07-14] (Microsoft Corporation)
S1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-21] (Microsoft Corporation)
S3 ql2300; C:\Windows\system32\drivers\ql2300.sys [1524816 2009-07-14] (QLogic Corporation)
S3 ql40xx; C:\Windows\system32\drivers\ql40xx.sys [128592 2009-07-14] (QLogic Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [46592 2009-07-14] (Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-14] (Microsoft Corporation)
S3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2009-07-14] (Microsoft Corporation)
S3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-21] (Microsoft Corporation)
S3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2009-07-14] (Microsoft Corporation)
S3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-14] (Microsoft Corporation)
S1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [309248 2010-11-21] (Microsoft Corporation)
S3 rdpbus; C:\Windows\system32\drivers\rdpbus.sys [24064 2009-07-14] (Microsoft Corporation)
S1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-14] (Microsoft Corporation)
S1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-14] (Microsoft Corporation)
S1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-14] (Microsoft Corporation)
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [210944 2012-04-28] (Microsoft Corporation)
S0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213888 2010-11-21] (Microsoft Corporation)
S2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-14] (Microsoft Corporation)
S3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [565352 2011-08-23] (Realtek                                            )
S3 sbp2port; C:\Windows\system32\drivers\sbp2port.sys [103808 2010-11-21] (Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-21] (Microsoft Corporation)
S2 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 Serenum; C:\Windows\system32\drivers\serenum.sys [23552 2009-07-14] (Microsoft Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Microsoft Corporation)
S3 sermouse; C:\Windows\system32\drivers\sermouse.sys [26624 2009-07-14] (Microsoft Corporation)
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14336 2009-07-14] (Microsoft Corporation)
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2009-07-14] (Microsoft Corporation)
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2010-11-21] (Microsoft Corporation)
S3 sfloppy; C:\Windows\system32\drivers\sfloppy.sys [16896 2009-07-14] (Microsoft Corporation)
S3 SiSRaid2; C:\Windows\system32\drivers\SiSRaid2.sys [43584 2009-07-14] (Silicon Integrated Systems Corp.)
S3 SiSRaid4; C:\Windows\system32\drivers\sisraid4.sys [80464 2009-07-14] (Silicon Integrated Systems)
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-14] (Microsoft Corporation)
S0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-14] (Microsoft Corporation)
S3 srv; C:\Windows\System32\DRIVERS\srv.sys [467456 2011-04-29] (Microsoft Corporation)
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [410112 2011-04-29] (Microsoft Corporation)
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [168448 2011-04-29] (Microsoft Corporation)
S3 stexstor; C:\Windows\system32\drivers\stexstor.sys [24656 2009-07-14] (Promise Technology)
S3 swenum; C:\Windows\System32\DRIVERS\swenum.sys [12496 2009-07-14] (Microsoft Corporation)
S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1913192 2013-01-03] (Microsoft Corporation)
S3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1913192 2013-01-03] (Microsoft Corporation)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45568 2012-10-03] (Microsoft Corporation)
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-14] (Microsoft Corporation)
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2012-02-17] (Microsoft Corporation)
S1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [119296 2010-11-21] (Microsoft Corporation)
S1 TermDD; C:\Windows\System32\DRIVERS\termdd.sys [63360 2010-11-21] (Microsoft Corporation)
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39424 2010-11-21] (Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-21] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\system32\drivers\TsUsbGD.sys [31232 2010-11-21] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-21] (Microsoft Corporation)
S3 uagp35; C:\Windows\system32\drivers\uagp35.sys [64080 2009-07-14] (Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2010-11-21] (Microsoft Corporation)
S3 uliagpkx; C:\Windows\system32\drivers\uliagpkx.sys [64592 2009-07-14] (Microsoft Corporation)
S3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [48640 2010-11-21] (Microsoft Corporation)
S3 UmPass; C:\Windows\system32\drivers\umpass.sys [9728 2009-07-14] (Microsoft Corporation)
S3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [98816 2011-03-25] (Microsoft Corporation)
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100352 2009-07-14] (Microsoft Corporation)
S3 usbehci; C:\Windows\system32\drivers\usbehci.sys [52736 2011-03-25] (Microsoft Corporation)
S3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [343040 2011-03-25] (Microsoft Corporation)
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2011-03-25] (Microsoft Corporation)
S3 usbprint; C:\Windows\system32\drivers\usbprint.sys [25088 2009-07-14] (Microsoft Corporation)
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2011-03-11] (Microsoft Corporation)
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2011-03-25] (Microsoft Corporation)
S0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36432 2009-07-14] (Microsoft Corporation)
S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-14] (Microsoft Corporation)
S1 VgaSave; C:\Windows\System32\drivers\vga.sys [29184 2009-07-14] (Microsoft Corporation)
S3 vhdmp; C:\Windows\system32\drivers\vhdmp.sys [215936 2010-11-21] (Microsoft Corporation)
S3 viaide; C:\Windows\system32\drivers\viaide.sys [17488 2009-07-14] (VIA Technologies, Inc.)
S0 volmgr; C:\Windows\System32\drivers\volmgr.sys [71552 2010-11-21] (Microsoft Corporation)
S0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363392 2010-11-21] (Microsoft Corporation)
S0 volsnap; C:\Windows\System32\drivers\volsnap.sys [295808 2010-11-21] (Microsoft Corporation)
S3 vsmraid; C:\Windows\system32\drivers\vsmraid.sys [161872 2009-07-14] (VIA Technologies Inc.,Ltd)
S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2009-07-14] (Microsoft Corporation)
S3 WacomPen; C:\Windows\system32\drivers\wacompen.sys [27776 2009-07-14] (Microsoft Corporation)
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-21] (Microsoft Corporation)
S1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-21] (Microsoft Corporation)
S3 Wd; C:\Windows\system32\drivers\wd.sys [21056 2009-07-14] (Microsoft Corporation)
S0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [785512 2012-07-26] (Microsoft Corporation)
S1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-14] (Microsoft Corporation)
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-14] (Microsoft Corporation)
S3 WIMMount; C:\Windows\SysWOW64\drivers\wimmount.sys [19008 2009-07-14] (Microsoft Corporation)
S3 Winsock; No ImagePath
S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2009-07-14] (Microsoft Corporation)
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2009-07-14] (Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2012-07-26] (Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
S3 xusb21; C:\Windows\System32\DRIVERS\xusb21.sys [73984 2009-08-13] (Microsoft Corporation)
S3 GGSAFERDriver; \??\D:\Programme\Garena Plus\Room\safedrv.sys [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 10:07 - 2014-08-31 11:43 - 00000000 ____D () C:\FRST

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 11:43 - 2014-08-31 10:07 - 00000000 ____D () C:\FRST
2014-08-31 08:12 - 2013-08-27 16:17 - 00000000 ____D () C:\Users\Überboss\Desktop\Ultra Shit
2014-08-31 08:12 - 2013-04-11 19:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-31 08:12 - 2013-03-05 15:58 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-08-31 08:12 - 2013-03-05 15:37 - 00000000 ____D () C:\Stormblade
2014-08-31 08:12 - 2013-02-27 23:11 - 00000000 ____D () C:\Program Files (x86)\Tunngle
2014-08-31 08:12 - 2013-02-19 21:43 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\GarenaPlus
2014-08-31 08:12 - 2013-02-19 21:42 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2014-08-31 08:12 - 2013-01-31 02:49 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\raidcall
2014-08-31 08:12 - 2013-01-23 16:30 - 00000000 ____D () C:\Users\Überboss\Downloads\Gameforge Live
2014-08-31 08:12 - 2013-01-18 20:25 - 00000000 __RHD () C:\Users\Überboss\yüar
2014-08-31 08:12 - 2013-01-12 16:30 - 00000000 ____D () C:\Users\Überboss\Desktop\Fangame
2014-08-31 08:12 - 2012-12-25 08:17 - 00000000 ____D () C:\Users\Überboss\Desktop\Project64k
2014-08-31 08:12 - 2012-12-21 18:02 - 00000000 ____D () C:\users\DefaultAppPool
2014-08-31 08:12 - 2012-12-13 22:27 - 00000000 ____D () C:\ProgramData\PMB Files
2014-08-31 08:12 - 2012-12-04 17:20 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\Spotify
2014-08-31 08:12 - 2012-12-02 01:12 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-31 08:12 - 2012-12-02 01:11 - 00000000 ____D () C:\Users\Überboss\SystemRequirementsLab
2014-08-31 08:12 - 2012-12-02 00:31 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2014-08-31 08:12 - 2012-12-01 23:15 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-31 08:12 - 2012-12-01 23:15 - 00000000 ____D () C:\ProgramData\Skype
2014-08-31 08:12 - 2012-12-01 22:22 - 00000000 ____D () C:\Windows\System32\Macromed
2014-08-31 08:12 - 2012-12-01 21:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-31 08:12 - 2012-12-01 21:46 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-31 08:12 - 2012-12-01 21:35 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-08-31 08:12 - 2012-12-01 21:30 - 00000000 ____D () C:\users\Überboss
2014-08-31 08:12 - 2011-04-12 08:55 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-31 08:12 - 2011-04-12 08:54 - 00000000 ____D () C:\Windows\ShellNew
2014-08-31 08:12 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-31 08:12 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\System32\Msdtc
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-08-31 08:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-31 08:11 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-08-31 08:10 - 2012-12-01 22:22 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-31 08:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-31 08:01 - 2012-12-01 23:15 - 00000000 ____D () C:\Users\Überboss\AppData\Roaming\Skype
2014-08-31 07:59 - 2012-12-01 21:59 - 00000000 ____D () C:\Users\Überboss\AppData\Local\Mozilla
2014-08-31 07:58 - 2012-12-18 22:48 - 00000000 ____D () C:\ProgramData\Battle.net
2014-08-31 07:58 - 2012-12-01 23:01 - 00000000 ____D () C:\ProgramData\Avira
2014-08-31 07:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-31 07:57 - 2012-12-13 22:27 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-08-31 07:57 - 2012-12-02 01:08 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-31 07:56 - 2012-12-13 22:20 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-31 07:56 - 2012-12-01 23:01 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-31 07:56 - 2012-12-01 21:46 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-31 07:56 - 2012-12-01 21:45 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-30 22:59 - 2012-12-01 21:30 - 00000000 __SHD () C:\Recovery

Some content of TEMP:
====================
C:\Users\Boss\AppData\Local\Temp\avgnt.exe
C:\Users\Überboss\AppData\Local\Temp\AskSLib.dll
C:\Users\Überboss\AppData\Local\Temp\avgnt.exe
C:\Users\Überboss\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Überboss\AppData\Local\Temp\Gw2.exe
C:\Users\Überboss\AppData\Local\Temp\nsiC86F.exe
C:\Users\Überboss\AppData\Local\Temp\nsn72EA.exe
C:\Users\Überboss\AppData\Local\Temp\nssF0DF.exe
C:\Users\Überboss\AppData\Local\Temp\nsxF6CE.exe
C:\Users\Überboss\AppData\Local\Temp\SIntf16.dll
C:\Users\Überboss\AppData\Local\Temp\SIntf32.dll
C:\Users\Überboss\AppData\Local\Temp\SIntfNT.dll
C:\Users\Überboss\AppData\Local\Temp\SPStub.exe
C:\Users\Überboss\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Überboss\AppData\Local\Temp\swt-win32-3740.dll
C:\Users\Überboss\AppData\Local\Temp\tbentr.dll
C:\Users\Überboss\AppData\Local\Temp\war3_Install.exe


==================== Known DLLs (All) =========================

[2009-07-14 01:00] - [2009-07-14 02:40] - 0607744 ____A (Microsoft Corporation) C:\Windows\System32\clbcatq.dll
[2009-07-14 00:44] - [2009-07-14 02:15] - 0522240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
[2010-11-21 04:23] - [2010-11-21 04:23] - 2086912 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 1414144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
[2009-07-14 01:41] - [2009-07-14 02:40] - 0877056 ____A (Microsoft Corporation) C:\Windows\System32\advapi32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0640512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0594432 ____A (Microsoft Corporation) C:\Windows\System32\COMDLG32.dll
[2010-11-21 04:23] - [2010-11-21 04:23] - 0485888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0403968 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0311296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
[2013-04-11 07:21] - [2013-02-21 11:14] - 2647040 ____A (Microsoft Corporation) C:\Windows\System32\IERTUTIL.dll
[2013-04-11 07:21] - [2013-02-21 11:29] - 2046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IERTUTIL.dll
[2012-12-01 22:52] - [2012-03-01 07:33] - 0081408 ____A (Microsoft Corporation) C:\Windows\System32\IMAGEHLP.dll
[2012-12-01 22:52] - [2012-03-01 06:33] - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMAGEHLP.dll
[2009-07-14 00:38] - [2009-07-14 02:41] - 0167424 ____A (Microsoft Corporation) C:\Windows\System32\IMM32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0119808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMM32.dll
[2013-01-09 01:45] - [2012-11-30 06:41] - 1161216 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
[2013-01-09 01:45] - [2012-11-30 05:53] - 1114112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
[2009-07-14 00:38] - [2009-07-14 02:41] - 0041984 ____A (Microsoft Corporation) C:\Windows\System32\LPK.dll
[2009-07-14 00:25] - [2009-07-14 02:11] - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\LPK.dll
[2009-07-14 00:40] - [2009-07-14 02:41] - 1067008 ____A (Microsoft Corporation) C:\Windows\System32\MSCTF.dll
[2009-07-14 00:28] - [2009-07-14 02:15] - 0828928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCTF.dll
[2012-12-01 23:31] - [2011-12-16 09:46] - 0634880 ____A (Microsoft Corporation) C:\Windows\System32\MSVCRT.dll
[2012-12-01 23:31] - [2011-12-16 08:52] - 0690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSVCRT.dll
[2009-07-14 00:26] - [2009-07-14 02:31] - 0002560 ____A (Microsoft Corporation) C:\Windows\System32\NORMALIZ.dll
[2009-07-14 00:15] - [2009-07-14 02:09] - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NORMALIZ.dll
[2009-07-14 00:21] - [2009-07-14 02:41] - 0013824 ____A (Microsoft Corporation) C:\Windows\System32\NSI.dll
[2009-07-14 00:12] - [2009-07-14 02:16] - 0008704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NSI.dll
[2012-12-01 22:44] - [2011-08-27 06:37] - 0861696 ____A (Microsoft Corporation) C:\Windows\System32\OLEAUT32.dll
[2012-12-01 22:44] - [2011-08-27 05:26] - 0571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\OLEAUT32.dll
[2009-07-14 00:26] - [2009-07-14 02:41] - 0009216 ____A (Microsoft Corporation) C:\Windows\System32\PSAPI.dll
[2009-07-14 00:15] - [2009-07-14 02:16] - 0006144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PSAPI.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 1219584 ____A (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0663040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
[2009-07-14 00:20] - [2009-07-14 02:41] - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
[2009-07-14 00:11] - [2009-07-14 02:16] - 0092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 1900544 ____A (Microsoft Corporation) C:\Windows\System32\Setupapi.dll
[2010-11-21 04:23] - [2010-11-21 04:23] - 1667584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Setupapi.dll
[2012-12-01 22:45] - [2012-06-09 06:43] - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\SHELL32.dll
[2012-12-01 22:45] - [2012-06-09 05:41] - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHELL32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\SHLWAPI.dll
[2010-11-21 04:23] - [2010-11-21 04:23] - 0350208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHLWAPI.dll
[2013-04-11 07:21] - [2013-02-21 11:14] - 1365504 ____A (Microsoft Corporation) C:\Windows\System32\URLMON.dll
[2013-04-11 07:21] - [2013-02-21 11:30] - 1129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\URLMON.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 1008128 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0833024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
[2013-01-09 01:46] - [2012-11-22 06:44] - 0800768 ____A (Microsoft Corporation) C:\Windows\System32\USP10.dll
[2013-01-09 01:46] - [2012-11-22 05:45] - 0626688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\USP10.dll
[2013-04-11 07:21] - [2013-02-21 11:15] - 2240512 ____A (Microsoft Corporation) C:\Windows\System32\WININET.dll
[2013-04-11 07:21] - [2013-02-21 11:30] - 1766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WININET.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0312832 ____A (Microsoft Corporation) C:\Windows\System32\WLDAP32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0269824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WLDAP32.dll
[2010-11-21 04:24] - [2010-11-21 04:24] - 0297984 ____A (Microsoft Corporation) C:\Windows\System32\WS2_32.dll
[2010-11-21 04:23] - [2010-11-21 04:23] - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WS2_32.dll
[2009-07-14 00:27] - [2009-07-14 02:40] - 0504320 ____A (Microsoft Corporation) C:\Windows\System32\DifxApi.dll
[2009-07-14 00:16] - [2009-07-14 02:15] - 0315904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DifxApi.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Restore Points  =========================


==================== Memory info =========================== 

Percentage of memory in use: 9%
Total physical RAM: 8104.67 MB
Available physical RAM: 7362.02 MB
Total Pagefile: 8102.87 MB
Available Pagefile: 7351.95 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

==================== Drives ================================

Drive c: (System-reserviert) (Fixed) (Total:60 GB) (Free:26.17 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:1803.01 GB) (Free:1010.77 GB) NTFS
Drive f: () (Removable) (Total:1.84 GB) (Free:1.21 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 47D8A006)
Partition 1: (Active) - (Size=60 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1803 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.


LastRegBack: 2013-10-21 12:02

==================== End Of Log ============================
--- --- ---



Mir ist auch eben noch eingefallen, dass ich gestern erst ein Windows Update hatte und das Problem eingetreten ist als ich nach Hause kam und der Rechner aus war. Eventuell könnte das ja auch die Ursache sein.
__________________
Alt 31.08.2014, 16:59   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
LastRegBack: 2013-10-21 12:02
Speichere diese bitte als Fixlist.txt auf deinem USB Stick.
  • Starte deinen Rechner erneut in die Reparaturoptionen
  • Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 31.08.2014, 18:02   #5
Jinro
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-08-2014
Ran by SYSTEM at 2014-08-31 21:00:35 Run:1
Running from F:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
LastRegBack: 2013-10-21 12:02
*****************

DEFAULT hive was successfully copied to System32\config\HiveBackup
DEFAULT hive was successfully restored from registry back up.
SAM hive was successfully copied to System32\config\HiveBackup
SAM hive was successfully restored from registry back up.
SECURITY hive was successfully copied to System32\config\HiveBackup
SECURITY hive was successfully restored from registry back up.
SOFTWARE hive was successfully copied to System32\config\HiveBackup
SOFTWARE hive was successfully restored from registry back up.
SYSTEM hive was successfully copied to System32\config\HiveBackup
SYSTEM hive was successfully restored from registry back up.

==== End of Fixlog ====


Alt 01.09.2014, 11:03   #6
schrauber
/// the machine
/// TB-Ausbilder
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


besser?
__________________
--> Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)

Alt 01.09.2014, 16:27   #7
Jinro
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Es hat sich leider nichts geändert. :/

Leider finde ich hier keine Editier-Möglichkeit, daher der Doppeltpost.

Ich habe im Internet diesen Thread gefunden: Blue Screen 0x0000007B

Der Thread-Ersteller schildert genau mein Problem und kommt zum Schluss:
"Motherboard-Batterie war fast leer und der Strommangel hat den SATA-Modus des Motherboards auf die Defaulteinstellung IDE zurückgesetzt. Neue Batterie hat Abhilfe gebracht."

Möchte nun nichts auf eigene Faust klären und hier nachfragen ob das auch die Lösung zu meinem Problem sein könnte.

Edit: Oh, bei einem Doppelpost wird automatisch editiert. Das ist praktisch.

Edit 2: Eben festgestellt, dass der Link nicht funktioniert, aber den Lösungsweg habe ich ja ohnehin zitiert.

Edit 3: Habe mal meinen Rechner geöffnet und festgestellt, dass ich da überhaupt keine Batterie finden kann. Ist das normal, dass nicht jeder so eine Batterie besitzt? Mein Mainboard ist das "asrock z68 pro3 (b3) sockel 1155, atx"

Edit 4: OK das werden echt zu viele Nachträge, aber ich habe meine Windows 7 CD wieder gefunden. Mit Key und alles drum und dran. Eventuell ist das ja hilfreich.

Alt 02.09.2014, 11:47   #8
schrauber
/// the machine
/// TB-Ausbilder
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Wenn ich dein Board google und Bildersuche mache sehe ich aber die Batterie
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 02.09.2014, 14:44   #9
Jinro
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Jau tatsächlich, habe nun auch ein Bild gesehen und sie ist bei mir von einer anderen Platine verdeckt. Ich habe leider keine Ahnung davon und vermute einfach mal das ist die CPU? Wie dem auch sei, da du ja nichts daran auszusetzen hattest vermute ich einfach mal, dass es ein möglicher Lösungsweg ist. Werde mir eine solche Batterie besorgen und mich dann noch mal hier melden.

Edit: Habe die Batterie ausgetauscht und die BIOS-Einstellungen wieder normalisiert. Jetzt bekomme ich keinen Bluescreen mehr beim Windows-Logo, weil die Animation nun komplett gezeigt wird, aber wenn man dann beim Anmeldebildschirm landen sollte zeigt sich bei mir nur die Maus (die ich bewegen kann) und das Bild bleibt schwarz. Im abgesicherten Modus tritt dasselbe Symptom auf.

Irgendwelche Lösungsansätze?

Alt 03.09.2014, 09:58   #10
schrauber
/// the machine
/// TB-Ausbilder
 
Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Standard

Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


Hast Du mehrere Benutzer angelegt? Kannst Du in einen anderen booten?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)
antivir, avg, avira, bluescreen, booten, desktop, download, explorer, helper, home, mozilla, opera, problem, programm, programme, realtek, registry, scan, services.exe, spotify web helper, suche, svchost.exe, teamspeak, temp, windows, winlogon.exe


« Mehrere Trojaner entdeckt (Dpx.js.i.simpli.fi) | Firefox Add-on Download Protect 2.2.4 entfernen »


Ähnliche Themen: Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)


  1. Windows Vista: GVU Trojaner, Computer lässt sich nicht im abgesicherten Modus booten.
    Log-Analyse und Auswertung - 18.04.2014 (7)
  2. Bluescreen und grüne Streifen im abgesicherten Modus. Trojaner oder Hardwaredefekt?
    Netzwerk und Hardware - 15.03.2014 (11)
  3. Win 7 beim Booten BlueScreen
    Alles rund um Windows - 25.01.2014 (3)
  4. Windows 7 64Bit Version, GVU Trojahner und weißer Bildschirm, booten im abgesicherten Modus schlägt fehl
    Plagegeister aller Art und deren Bekämpfung - 24.09.2013 (15)
  5. GVU Trojaner auf Windows XP SP3 auch im abgesicherten Modus
    Log-Analyse und Auswertung - 30.05.2013 (15)
  6. GVU Trojaner sperrt auch im abgesicherten Modus
    Log-Analyse und Auswertung - 28.04.2013 (2)
  7. GVU Bundespolizei auch im abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 08.04.2013 (13)
  8. GVU Trojaner, kurzer bluescreen im abgesicherten Modus, reeboot
    Plagegeister aller Art und deren Bekämpfung - 04.03.2013 (8)
  9. GVU-Trojaner auch im abgesicherten Modus
    Log-Analyse und Auswertung - 31.01.2013 (34)
  10. GVU Trojaner in Windows 7 - auch im abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 23.01.2013 (18)
  11. GVU Virus auch im abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 18.01.2013 (5)
  12. Bluescreen beim Starten in abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 08.12.2012 (5)
  13. Bundestrojaner Auch im Abgesicherten modus
    Plagegeister aller Art und deren Bekämpfung - 10.11.2012 (16)
  14. (2x) Verschlüsselungstrojaner auch im abgesicherten modus
    Mülltonne - 14.08.2012 (1)
  15. nvlddmkm.sys Bluescreen + Probleme beim booten
    Netzwerk und Hardware - 29.10.2010 (0)
  16. WinXP Trojaner befall, Bluescreen beim Booten im Normalen, sowie abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 04.11.2009 (7)
  17. bluescreen und royal.sys fehlermeldung (komme nicht mehr in den abgesicherten Modus)
    Netzwerk und Hardware - 09.09.2008 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) - Als ich gestern Abend nach Hause kam und den PC angemacht habe wollte er plötzlich nicht mehr hochfahren. Es erscheint nur beim Laden von Windows ein kurzer Bluescreen und der - Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus)...
Archiv
Du betrachtest: Meine Logfiles (Bluescreen beim Booten, auch im abgesicherten Modus) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129