Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BSOD *** STOP: 0X0000007B ,new topic


  • This topic is locked This topic is locked
2 replies to this topic

#1 woolybully

woolybully

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:05:40 AM

Posted 09 January 2011 - 08:30 AM

Hello to all fellows here,
I´m Ron from Germany and I studied a former case regarding this BSOD in this forum (raised by robert, closed by elise025)

It would be highly appreciated if I get some help because this BSOD really sucks.. spending a couple of days to find a solution, without success.

A problem has been detected and windows has been shut down to prevent damage to your computer.

If this is the first time you've seen this stop error screen, restart your computer. If this screen appears again, follow these steps:

Check for viruses on your computer. Remove any newly installed hard drives or hard drive controllers. Check your hard drive to make sure it is properly configured and terminated. Run CHKDSK /F to check for hard drive corruption, and then restart your computer.

Technical Information:

*** STOP: 0x0000007B (0xB84C7524,0xC0000034,0x00000000,0x00000000)

The PC was a customized system running since 2 years nearly error-free with win xp SP3 (Dell Version)
Quad Core Intel with 2 x 1 TB HD, LG DVD MultiDrive and LG BluRay Burner

Now, whats happened since today:

After this *** STOP: 0X0000007B I fulfilled some tasks as described in another topic here from Oct, 2010: http://www.bleepingcomputer.com/forums/topic350364.html

1) Ran Recovery from Windows Setup CD with no success

2) Ran recovery console and performed CHKDSK /P and CHKDSK /R. The drive checked out fine. No success on reboot.

3) Downloaded Avira Rescue CD, no viruses found , just warnings

4) Create a bootable Win CD using PEBuilder and a Dell Win XP CD (but I was succesfull.. :-) thanks elise for this very detailed description)

5) Running chkdsk /f and chkdsk /f /r nothing strange, no success on restart

6) Running OTL

here´s what OTL.txt says:

OTL logfile created on: 8.1.2011 17:48:36 - Run
OTLPE by OldTimer - Version 3.1.43.0 Folder = L:\OTLPE\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 92,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 98,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 931,51 Gb Total Space | 750,29 Gb Free Space | 80,55% Space Free | Partition Type: NTFS
Drive D: | 931,28 Gb Total Space | 494,49 Gb Free Space | 53,10% Space Free | Partition Type: FAT32
Drive I: | 3,76 Gb Total Space | 1,17 Gb Free Space | 31,18% Space Free | Partition Type: FAT32
Drive K: | 157,83 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive L: | 1,89 Gb Total Space | 0,07 Gb Free Space | 3,58% Space Free | Partition Type: FAT32

Computer Name: BARTPE-14424 | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet002

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto] -- C:\Programme\M-Audio\M-Audio Series II MIDI\MA_CMIDI_Inst.exe -- (MA_CMIDI_InstallerService)
SRV - [2010.11.20 16:47:00 | 000,079,360 | ---- | M] (Creative Labs) [Disabled] -- C:\Programme\Gemeinsame Dateien\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2010.02.19 17:43:34 | 000,380,928 | ---- | M] (Spigot, Inc.) [Disabled] -- C:\Programme\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2010.02.12 09:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) [Auto] -- C:\Programme\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2010.01.09 20:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010.01.09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2009.07.21 12:34:28 | 000,185,089 | ---- | M] (Avira GmbH) [Auto] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009.07.09 10:22:18 | 000,144,712 | ---- | M] (Apple Inc.) [Auto] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009.05.13 14:48:18 | 000,108,289 | ---- | M] (Avira GmbH) [Disabled] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009.05.04 14:11:24 | 000,263,824 | ---- | M] (PacketVideo) [Auto] -- C:\Programme\TwonkyMedia\twonkymediaserverwatchdog.exe -- (TwonkyMedia)
SRV - [2008.11.16 17:29:53 | 000,072,704 | ---- | M] (Adobe Systems) [Disabled] -- C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service)
SRV - [2008.10.13 11:16:44 | 000,554,264 | ---- | M] (Acronis) [Disabled] -- C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008.07.09 08:05:18 | 000,075,304 | ---- | M] (Zone Labs, LLC) [Auto] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2008.01.16 15:36:44 | 000,037,552 | ---- | M] (Laplink Software, Inc.) [Auto] -- C:\WINDOWS\System32\drivers\tsiser.sys -- (TSISER)
SRV - [2008.01.16 15:36:42 | 000,181,552 | ---- | M] (Laplink Software, Inc.) [Disabled] -- C:\WINDOWS\system32\TSIRCSRV.exe -- (TSIRCSRV)
SRV - [2007.06.27 16:04:00 | 000,279,848 | ---- | M] (Nero AG) [Disabled] -- C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007.06.15 10:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Disabled] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen)
SRV - [2007.01.31 12:55:42 | 000,096,370 | ---- | M] (Canon Inc.) [Auto] -- C:\Programme\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2005.11.17 13:18:52 | 001,527,900 | ---- | M] (MAGIX®) [Disabled] -- C:\Programme\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2003.06.19 22:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | Boot] -- C:\WINDOWS\System32\Drivers\uGuru.sys -- (uGuru)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\tscusb2a.sys -- (TASCAM_US144_MK2_WDM)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\CTSBLFX.DLL -- (CTSBLFX.DLL)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\CTERFXFX.DLL -- (CTERFXFX.DLL)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\CTAUDFX.DLL -- (CTAUDFX.DLL)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\COMMONFX.DLL -- (COMMONFX.DLL)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- C:\WINDOWS\System32\Drivers\asapiW2k.sys -- (ASAPIW2K)
DRV - File not found [Kernel | On_Demand] -- I:\ALLOW-IO.sys -- (ALLOW-IO)
DRV - [2010.10.22 06:23:22 | 009,623,680 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010.09.29 10:34:50 | 000,335,064 | ---- | M] (Logitech) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ladfSBVMi386.sys -- (LADF_SBVM)
DRV - [2010.09.29 10:34:48 | 000,053,976 | ---- | M] (Logitech) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ladfDHP2i386.sys -- (LADF_DHP2)
DRV - [2010.09.14 16:06:44 | 000,051,072 | ---- | M] (Fengtao Software Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\dvdfab.sys -- (dvdfab)
DRV - [2010.06.09 20:41:03 | 000,106,432 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2010.03.18 19:50:12 | 000,189,528 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\haP17v2k.sys -- (hap17v2k)
DRV - [2010.03.18 19:50:04 | 000,162,904 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\haP16v2k.sys -- (hap16v2k)
DRV - [2010.03.18 19:49:56 | 000,798,808 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2010.03.18 19:45:42 | 000,092,760 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2010.03.18 19:45:28 | 000,157,272 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2010.03.18 19:45:20 | 000,014,424 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2010.03.18 19:45:12 | 000,127,576 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2010.03.18 19:40:48 | 000,347,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctdvda2k.sys -- (ctdvda2k)
DRV - [2010.03.18 19:40:40 | 000,528,472 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2010.03.18 19:40:32 | 000,511,064 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2010.03.18 19:39:36 | 000,100,952 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\CTERFXFX.SYS -- (CTERFXFX.SYS)
DRV - [2010.03.18 19:39:36 | 000,100,952 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTERFXFX.sys -- (CTERFXFX)
DRV - [2010.03.18 19:39:28 | 000,566,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\CTSBLFX.SYS -- (CTSBLFX.SYS)
DRV - [2010.03.18 19:39:28 | 000,566,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTSBLFX.sys -- (CTSBLFX)
DRV - [2010.03.18 19:39:18 | 000,555,096 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\CTAUDFX.SYS -- (CTAUDFX.SYS)
DRV - [2010.03.18 19:39:18 | 000,555,096 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\CTAUDFX.sys -- (CTAUDFX)
DRV - [2010.03.18 19:39:10 | 000,099,416 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\COMMONFX.SYS -- (COMMONFX.SYS)
DRV - [2010.03.18 19:39:10 | 000,099,416 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\COMMONFX.sys -- (COMMONFX)
DRV - [2010.01.01 17:20:34 | 000,026,024 | ---- | M] (Elaborate Bytes AG) [Kernel | System] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2009.12.07 19:06:22 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009.09.01 15:59:44 | 000,087,536 | ---- | M] (CyberLink Corp.) [2010/01/03 17:20:06] [Kernel | Auto] -- C:\Programme\CyberLink\PowerDVD9\000.fcl -- ({B154377D-700F-42cc-9474-23858FBDF4BD})
DRV - [2009.07.30 10:01:09 | 000,386,560 | R--- | M] (TASCAM) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tascusb2.sys -- (TASCAM_US122144)
DRV - [2009.07.30 10:01:09 | 000,020,992 | R--- | M] (TASCAM) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tscusb2m.sys -- (TASCAM_US144_MK2_MIDI)
DRV - [2009.06.26 13:36:26 | 000,023,696 | ---- | M] (Steinberg Media Technologies GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\synasusb.sys -- (SynasUSB)
DRV - [2009.05.11 08:12:20 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.03.30 08:33:03 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2009.02.26 22:28:04 | 000,005,632 | ---- | M] () [File_System | System] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009.02.13 10:35:01 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008.11.21 17:45:47 | 000,971,232 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\tdrpm147.sys -- (tdrpman147) Acronis Try&Decide and Restore Points filter (build 147)
DRV - [2008.11.21 17:45:43 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\timntr.sys -- (timounter)
DRV - [2008.11.21 17:45:43 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)
DRV - [2008.11.21 17:45:22 | 000,134,272 | ---- | M] (Acronis) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\snman380.sys -- (snapman380) Acronis Snapshots Manager (Build 380)
DRV - [2008.07.09 08:05:22 | 000,394,952 | ---- | M] (Zone Labs, LLC) [Kernel | System] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2008.04.13 18:46:20 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\61883.sys -- (61883)
DRV - [2008.04.13 18:46:20 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc)
DRV - [2008.04.13 18:46:09 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\msdv.sys -- (MSDV)
DRV - [2008.04.13 18:45:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.04.13 17:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB-Audiotreiber (WDM)
DRV - [2008.04.13 16:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.02.27 02:10:44 | 000,051,176 | ---- | M] (Zone Labs, LLC) [Kernel | Boot] -- C:\WINDOWS\system32\ZoneLabs\srescan.sys -- (srescan)
DRV - [2008.01.16 15:36:44 | 000,037,552 | ---- | M] (Laplink Software, Inc.) [Unknown (-1) | Auto] -- C:\WINDOWS\System32\drivers\tsiser.sys -- (TSISER)
DRV - [2008.01.16 15:36:44 | 000,013,488 | ---- | M] (Laplink Software, Inc.) [Kernel | Auto] -- C:\WINDOWS\System32\drivers\tsistrmx.sys -- (TSISTRMX)
DRV - [2008.01.16 15:36:42 | 000,008,880 | ---- | M] (Laplink Software, Inc.) [Kernel | System] -- C:\WINDOWS\system32\drivers\tsircmir.sys -- (tsircmir)
DRV - [2008.01.16 15:36:38 | 000,018,992 | ---- | M] (Laplink Software, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\tsimsf5.sys -- (TSIMSF5)
DRV - [2008.01.16 15:36:36 | 000,023,216 | ---- | M] (Laplink Software, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\System32\drivers\tsikbf5.sys -- (TSIKBF5)
DRV - [2007.11.21 09:27:00 | 000,269,312 | ---- | M] (Marvell) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2007.10.03 00:32:14 | 004,613,120 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.07.19 14:10:28 | 000,127,768 | ---- | M] (Kaspersky Lab) [File_System | System] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2007.04.12 07:10:26 | 000,164,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\CT20XUT.DLL -- (CT20XUT.DLL)
DRV - [2007.04.12 07:10:26 | 000,066,816 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTHWIUT.DLL -- (CTHWIUT.DLL)
DRV - [2007.04.12 07:10:24 | 001,317,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTEXFIFX.DLL -- (CTEXFIFX.DLL)
DRV - [2007.04.12 07:10:22 | 000,323,328 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTEDSPSY.DLL -- (CTEDSPSY.DLL)
DRV - [2007.04.12 07:10:22 | 000,128,768 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTEDSPIO.DLL -- (CTEDSPIO.DLL)
DRV - [2007.04.12 07:10:20 | 000,280,320 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTEDSPFX.DLL -- (CTEDSPFX.DLL)
DRV - [2007.04.12 07:10:18 | 000,168,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand] -- C:\WINDOWS\system32\CTEAPSFX.DLL -- (CTEAPSFX.DLL)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2007.03.16 09:11:38 | 000,012,256 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
DRV - [2007.01.04 08:07:00 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2006.09.24 13:28:46 | 000,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2006.08.16 08:23:46 | 000,021,888 | ---- | M] (M-Audio) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ma_cmidi.sys -- (MA_CMIDI)
DRV - [2006.02.20 17:17:40 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System] -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2005.12.22 11:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005.12.22 11:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005.12.22 11:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2005.12.08 13:53:06 | 000,004,608 | ---- | M] () [Kernel | On_Demand] -- C:\Programme\U-ABIT\abitEQ\ABIT-IO.sys -- (ABIT-IO)
DRV - [2005.02.09 11:59:00 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\Pclepci.sys -- (PCLEPCI)
DRV - [2004.10.25 11:40:58 | 000,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ZDPSp50.sys -- (ZDPSp50)
DRV - [2002.09.17 11:55:06 | 000,003,548 | ---- | M] () [Kernel | On_Demand] -- C:\Programme\U-ABIT\BlackBox\WinFlash.sys -- (Winflash)
DRV - [2001.11.29 03:49:56 | 000,004,047 | ---- | M] () [Kernel | On_Demand] -- C:\Programme\U-ABIT\BlackBox\MEMCTL.SYS -- (Memctl)
DRV - [1996.04.03 19:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\Admin_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\Administrator_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\roland_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\roland_ON_C\..\URLSearchHook: {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Programme\YouTube Downloader Toolbar\SearchSettings.dll (Spigot, Inc.)
IE - HKU\roland_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\roland_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\systemprofile_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\systemprofile_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Programme\Mozilla Firefox\components [2010.12.26 16:36:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2010.12.11 13:15:31 | 000,000,000 | ---D | M]

[2009.07.05 11:18:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Extensions
[2009.11.22 10:57:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\agcab56s.default\extensions
[2009.11.22 10:57:05 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\agcab56s.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.11.22 10:57:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\agcab56s.default\extensions\staged-xpis
[2009.07.05 11:18:33 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Admin\Anwendungsdaten\Mozilla\Firefox\Profiles\agcab56s.default\extensions\toolbar_extras@de.yahoo.com
[2010.12.26 12:47:20 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.07.12 16:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.11.08 21:02:37 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.11.08 21:02:37 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.11.08 21:02:37 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.11.08 21:02:37 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.11.08 21:02:37 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2002.09.11 15:02:09 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\GoogleToolbar1.dll (Google Inc.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Programme\YouTube Downloader Toolbar\SearchSettings.dll (Spigot, Inc.)
O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programme\YouTube Downloader Toolbar\IE\1.0\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programme\YouTube Downloader Toolbar\IE\1.0\youtubedownloaderToolbarIE.dll (Spigot, Inc.)
O3 - HKU\Admin_ON_C\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKU\roland_ON_C\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\GoogleToolbar1.dll (Google Inc.)
O4 - HKLM..\Run: [AcronisTimounterMonitor] C:\Programme\Acronis\TrueImageHome\TimounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CTHelper] C:\WINDOWS\System32\CtHelper.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTSysVol] C:\Programme\Creative\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [EPSON Stylus Photo R200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [Logitech G35] C:\Programme\Logitech\G35\G35.exe (Logitech©)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Programme\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [SBDrvDet] C:\Programme\Creative\SB Drive Det\SBDrvDet.exe File not found
O4 - HKLM..\Run: [SearchSettings] C:\Programme\YouTube Downloader Toolbar\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Programme\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [USBToolTip] C:\Programme\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKLM..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe (Zone Labs, LLC)
O4 - HKU\roland_ON_C..\Run: [ABIT uGuruIII] C:\Programme\U-ABIT\abitEQ\abiteq.exe (Universal ABIT Corporation)
O4 - HKU\roland_ON_C..\Run: [AnyDVD] C:\Programme\SlySoft\AnyDVD\AnyDVDtray.exe (SlySoft, Inc.)
O4 - HKU\roland_ON_C..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\roland_ON_C..\Run: [Creative Detector] C:\Programme\Creative\MediaSource\Detector\CTDetect.exe (Creative Technology Ltd)
O4 - HKU\roland_ON_C..\Run: [DVDFab Passkey] C:\Programme\DVDFab Passkey 7\DVDFabPasskey.exe (Fengtao Software Inc.)
O4 - HKU\roland_ON_C..\Run: [LaunchList] C:\Programme\Pinnacle\Studio 11\LaunchList2.exe (Pinnacle Systems)
O4 - HKU\roland_ON_C..\Run: [Libreal] C:\Dokumente und Einstellungen\roland\Anwendungsdaten\Visfree\userlink.exe ()
O4 - HKU\roland_ON_C..\Run: [RestorPoint.exe] C:\RestorPoint\RestorPoint.exe ()
O4 - HKU\roland_ON_C..\Run: [Steam] C:\Programme\Steam\Steam.exe (Valve Corporation)
O4 - HKU\roland_ON_C..\Run: [TBPanel] C:\Programme\Vtune\TBPanel.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\MSI US54SE 802.11b+g USB Stick Utility.lnk = C:\Programme\MSI\US54SE_Utility\ZDWlan.exe ()
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\NkvMon.exe.lnk = C:\Programme\Nikon\NkView6\NkvMon.exe (Nikon Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Admin_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Administrator_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\roland_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///C:/Dokumente%20und%20Einstellungen/roland/Eigene%20Dateien/Eigene%20Videos/Disc_2008-12-19/components/hidinputmonitorx.ocx (HidInputMonitorX Control)
O16 - DPF: {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///C:/Dokumente%20und%20Einstellungen/roland/Eigene%20Dateien/Eigene%20Videos/Disc_2008-12-19/components/A9.ocx (A9Helper.A9)
O16 - DPF: {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///C:/Dokumente%20und%20Einstellungen/roland/Eigene%20Dateien/Eigene%20Videos/Disc_2008-12-19/components/wmvhdrating.ocx (WMVHDRatingCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPID.cab (Creative Software AutoUpdate Support Package)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (aayhiq.dll) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Laplink\Laplink Gold\tsircusr.exe) - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Laplink\Laplink Gold\TSIRCUSR.exe (Laplink Software, Inc.)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Grüne Idylle.bmp
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\byXqpopQ) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.26 19:43:44 | 000,000,087 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008.11.17 20:18:18 | 000,000,100 | ---- | M] () - I:\AUTORUN.INF -- [ FAT32 ]
O32 - AutoRun File - [2004.11.02 14:04:58 | 000,000,046 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2009.12.30 01:09:30 | 000,000,100 | ---- | M] () - L:\AUTORUN.INF -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: bgsvst32 - (C:\WINDOWS\system32\dpnsress.dll) - C:\WINDOWS\system32\dpnsress.dll ()
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.12.26 16:36:03 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\Visfree
[2010.12.26 11:52:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Macromedia
[2010.12.26 11:52:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\NetworkService\Anwendungsdaten\Adobe
[2010.12.26 11:46:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\WALDA
[2010.12.23 20:11:21 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\twonkymedia-server-uploaded-data
[2010.12.23 20:11:20 | 000,000,000 | ---D | C] -- C:\Programme\TwonkyMedia
[2010.12.19 17:15:33 | 000,000,000 | ---D | C] -- C:\Programme\PS3 Media Server
[2010.12.19 15:31:47 | 000,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010.12.19 15:31:24 | 000,000,000 | ---D | C] -- C:\Programme\Windows Media Connect 2
[2010.12.19 11:48:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\DVDFab
[2010.12.18 23:08:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\konvertiert zu mp3
[2010.12.18 22:53:54 | 000,000,000 | ---D | C] -- C:\Programme\Music Duplicate Remover
[2010.12.17 18:38:41 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2010.12.17 18:33:23 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2010.08.30 20:31:11 | 000,047,360 | ---- | C] (VSO Software) -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\pcouffin.sys
[2010.03.18 18:18:32 | 000,010,752 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2008.09.25 07:08:26 | 001,941,504 | ---- | C] (Jeffrey Harris) -- C:\Programme\SharePod.exe
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.12.26 21:04:13 | 021,082,144 | ---- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2010.12.26 21:04:13 | 000,250,520 | ---- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2010.12.26 21:04:13 | 000,031,056 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000005-00000000-00000005-00001102-00000004-20021102}.rfx
[2010.12.26 21:04:13 | 000,031,056 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000005-00000000-00000005-00001102-00000004-20021102}.rfx
[2010.12.26 21:04:13 | 000,030,528 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000005-00001102-00000004-20021102}.rfx
[2010.12.26 21:04:13 | 000,030,528 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000005-00001102-00000004-20021102}.rfx
[2010.12.26 21:04:13 | 000,011,564 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000005-00000000-00000005-00001102-00000004-20021102}.rfx
[2010.12.26 21:04:13 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2010.12.26 21:04:13 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2010.12.26 21:04:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.12.26 21:03:36 | 004,931,715 | ---- | M] () -- C:\WINDOWS\{00000005-00000000-00000005-00001102-00000004-20021102}.CDF
[2010.12.26 21:03:36 | 004,931,715 | ---- | M] () -- C:\WINDOWS\{00000005-00000000-00000005-00001102-00000004-20021102}.BAK
[2010.12.26 20:43:40 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.12.26 13:24:16 | 000,048,128 | -H-- | M] () -- C:\WINDOWS\System32\dpnsress.dll
[2010.12.26 12:56:00 | 000,000,860 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010.12.26 11:46:02 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.12.26 10:33:29 | 000,000,874 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.12.26 10:33:10 | 000,358,382 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2010.12.25 20:05:00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.12.23 20:48:56 | 002,324,932 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\philips np2500.pdf
[2010.12.23 20:04:31 | 000,000,833 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2010.12.22 20:44:03 | 000,138,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.12.22 20:43:46 | 000,268,720 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010.12.22 20:35:50 | 000,268,720 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2010.12.21 14:18:57 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.12.19 21:39:21 | 000,453,122 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2010.12.19 21:39:21 | 000,436,178 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.12.19 21:39:21 | 000,068,882 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.12.19 21:39:20 | 000,081,720 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2010.12.19 16:08:56 | 000,007,968 | ---- | M] () -- C:\tzuke.jpg
[2010.12.19 16:04:55 | 000,002,454 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\mediaplayer ps3.rtf
[2010.12.19 15:50:33 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.12.19 15:50:33 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.12.19 15:29:40 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2010.12.19 00:57:40 | 000,067,072 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.18 22:53:55 | 000,000,791 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Music Duplicate Remover.lnk
[2010.12.18 22:53:55 | 000,000,773 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Desktop\Music Duplicate Remover.lnk
[2010.12.18 22:27:24 | 000,000,404 | ---- | M] () -- C:\Dokumente und Einstellungen\roland\Desktop\Eigene Dateien.lnk
[2010.12.18 12:33:57 | 000,539,240 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.12.26 13:24:16 | 000,048,128 | -H-- | C] () -- C:\WINDOWS\System32\dpnsress.dll
[2010.12.23 20:48:56 | 002,324,932 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\philips np2500.pdf
[2010.12.19 16:09:12 | 000,007,968 | ---- | C] () -- C:\tzuke.jpg
[2010.12.19 16:04:55 | 000,002,454 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Eigene Dateien\mediaplayer ps3.rtf
[2010.12.18 22:53:55 | 000,000,791 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Music Duplicate Remover.lnk
[2010.12.18 22:53:55 | 000,000,773 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Desktop\Music Duplicate Remover.lnk
[2010.12.18 22:27:24 | 000,000,404 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Desktop\Eigene Dateien.lnk
[2010.12.11 19:49:34 | 000,001,080 | ---- | C] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2010.12.11 19:49:34 | 000,001,080 | ---- | C] () -- C:\WINDOWS\System32\settings.sfm
[2010.11.03 21:14:54 | 000,075,096 | ---- | C] () -- C:\WINDOWS\System32\LADFCoinst_i386.dll
[2010.09.30 12:11:11 | 000,087,608 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\inst.exe
[2010.08.30 20:31:38 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\systeminfo3.dll
[2010.08.30 20:31:31 | 000,000,034 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\pcouffin.log
[2010.08.30 20:31:11 | 000,081,920 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\ezpinst.exe
[2010.08.30 20:31:11 | 000,007,887 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\pcouffin.cat
[2010.08.30 20:31:11 | 000,001,144 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\pcouffin.inf
[2010.08.29 20:25:19 | 000,499,246 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2010.08.15 11:54:17 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD.dll
[2010.08.15 11:54:17 | 000,015,872 | ---- | C] () -- C:\WINDOWS\System32\InsDrvZD64.DLL
[2010.03.18 18:59:54 | 000,050,439 | ---- | C] () -- C:\WINDOWS\System32\instwdm.ini
[2010.03.18 18:59:50 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2010.03.18 18:19:58 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CTBurst.dll
[2010.02.27 20:56:01 | 000,138,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.02.16 22:33:15 | 000,227,720 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\mdbu.bin
[2010.01.19 20:56:51 | 000,000,367 | ---- | C] () -- C:\WINDOWS\wiso.ini
[2010.01.16 15:44:42 | 000,002,892 | ---- | C] () -- C:\WINDOWS\System32\audcon.sys
[2010.01.03 15:45:11 | 000,015,873 | ---- | C] () -- C:\WINDOWS\System32\Inetde.dll
[2009.11.26 22:40:32 | 000,000,071 | ---- | C] () -- C:\WINDOWS\PrintCD.INI
[2009.11.26 22:37:25 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDER200Euro.ini
[2009.11.10 16:20:32 | 000,000,061 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2009.09.10 18:57:23 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2009.08.26 20:08:39 | 000,000,092 | ---- | C] () -- C:\WINDOWS\TraceSrv.ini
[2009.08.26 20:08:01 | 000,835,584 | ---- | C] () -- C:\WINDOWS\tls7912d.dll
[2009.07.08 14:10:56 | 000,000,307 | ---- | C] () -- C:\WINDOWS\System32\kill.ini
[2009.04.27 19:46:43 | 000,000,043 | ---- | C] () -- C:\WINDOWS\gswin32.ini
[2009.04.23 20:21:06 | 000,000,160 | ---- | C] () -- C:\WINDOWS\Keypad.ini
[2009.02.26 22:19:31 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009.01.31 17:38:09 | 000,000,827 | ---- | C] () -- C:\Programme\SharePod.log
[2009.01.29 19:00:17 | 000,000,139 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2009.01.28 19:48:16 | 000,138,056 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\PnkBstrK.sys
[2008.12.22 18:04:16 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.12.09 20:00:12 | 000,000,311 | ---- | C] () -- C:\WINDOWS\game.ini
[2008.12.06 23:39:23 | 000,000,067 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\farcry.bat
[2008.12.06 22:43:14 | 000,194,248 | ---- | C] () -- C:\WINDOWS\System32\LTRFD13n.DLL
[2008.12.06 22:34:13 | 000,001,182 | ---- | C] () -- C:\WINDOWS\VFO.INI
[2008.12.06 22:34:09 | 000,196,096 | ---- | C] () -- C:\WINDOWS\System32\macd32.dll
[2008.12.06 22:34:09 | 000,138,752 | ---- | C] () -- C:\WINDOWS\System32\mase32.dll
[2008.12.06 22:34:09 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\mamc32.dll
[2008.12.06 22:34:09 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\masd32.dll
[2008.12.06 22:34:08 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\ma32.dll
[2008.12.06 18:15:30 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2008.12.06 18:15:04 | 000,007,119 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2008.12.02 21:01:46 | 000,514,440 | ---- | C] () -- C:\WINDOWS\System32\QpopqXyb.ini2
[2008.12.02 21:01:46 | 000,514,440 | ---- | C] () -- C:\WINDOWS\System32\QpopqXyb.ini
[2008.11.27 15:33:15 | 000,000,085 | -HS- | C] () -- C:\Dokumente und Einstellungen\roland\Anwendungsdaten\.zreglib
[2008.11.20 21:53:06 | 000,021,904 | ---- | C] () -- C:\WINDOWS\System32\imsinstall_loc0407.dll
[2008.11.20 21:53:06 | 000,017,808 | ---- | C] () -- C:\WINDOWS\System32\imslsp_install_loc0407.dll
[2008.11.20 21:52:55 | 000,796,048 | ---- | C] () -- C:\WINDOWS\System32\libeay32_0.9.6l.dll
[2008.11.18 16:44:56 | 000,067,072 | ---- | C] () -- C:\Dokumente und Einstellungen\roland\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.11.16 10:39:47 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.11.15 19:07:42 | 000,003,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\WinFlash.sys
[2008.11.15 16:34:24 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.11.15 16:00:47 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.09.25 07:25:02 | 000,009,728 | ---- | C] () -- C:\Programme\Readme.txt
[2008.09.19 21:57:34 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.09.19 21:54:18 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008.08.20 08:24:05 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.07.04 07:25:46 | 000,495,616 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007.11.26 19:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007.08.13 19:45:02 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\ctmmactl.dll
[2007.04.12 07:10:28 | 000,105,728 | ---- | C] () -- C:\WINDOWS\System32\APOMgrH.dll
[2007.03.16 15:00:00 | 000,003,403 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2005.07.29 18:38:24 | 003,375,104 | ---- | C] () -- C:\WINDOWS\System32\qt-mt331.dll
[1996.04.03 19:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\WINDOWS:E9722591E34BCCB3
< End of report >

Maybe some strange things installed by my son, but it´s always working well
Thanks for help

Ron

BC AdBot (Login to Remove)

 


#2 woolybully

woolybully
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:05:40 AM

Posted 12 January 2011 - 04:37 PM

Me again,

poor that there were no answers, but I solved it anyway.

After a couple of retries with chckmbr.exe which says : no valid mbr record found
I tried to create one with it but it failed.

Then I reboot with my Dell Win Xp CD, go to R for repair and enterd
fixmbr at the windows command prompt.
A new mbr was created successfully, it says..
won´´t believe that..
so I run fixboot..

and

REBOOT WAS SUCCESSFUL

Hoorahh!!

Happy now..

#3 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:40 PM

Posted 13 January 2011 - 07:11 PM

As this issue appears to be resolved I am closing the topic. Please send me (or any other Moderator) a Personal Message (PM) if you would like the topic re-opened.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users