Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: BlueScreen Fehler

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 07.06.2014, 18:04   #1
vertualx
 
BlueScreen Fehler - Standard

BlueScreen Fehler



Hallo erstmal

lch habe vor 8 monaten einen PC zusammengebaut hat bis heute ohne probleme funktioniert aber seit 3 tagen bekomme ich bluescreen fehler , ich weiss einfach nicht woran das liegt...beim zocken habe ich garkein problem aber solange ich videos anschaue kriege ich aller 3min bluescreen fehler *-* Kann mir jemand helfen? :/

Screenshot :

MFG Vertualx , danke im voraus!

Alt 07.06.2014, 18:06   #2
schrauber
/// the machine
/// TB-Ausbilder
 

BlueScreen Fehler - Standard

BlueScreen Fehler



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 07.06.2014, 18:10   #3
vertualx
 
BlueScreen Fehler - Standard

BlueScreen Fehler



FRST :
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by user (administrator) on USER-BILGISAYAR on 07-06-2014 19:08:25
Running from C:\Users\user\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: 041F
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool 
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 5\CyberGhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510232 2014-03-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-22] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-26] (Google Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [404080 2014-04-29] (CyberGhost S.R.L.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yandex
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Türkiye: Outlook, Skype, Son Haberler, Spor, Oyun ve Video
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB7420F4248ECCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = tr
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Fixhomepage
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe 22Find
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKCU - DefaultScope {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKCU - {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft hesabı Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com.tr
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.0.0.72_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
CHR Plugin: (         "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (         "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-12-13]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Cüzdan) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-26]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx [2013-11-06]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\user\AppData\Local\Slick Savings\coupons.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-04-29] (CyberGhost S.R.L)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-03-31] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-30] ()

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-21] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-26] ()
S3 atillk64; C:\Program Files (x86)\ASUS\GPU Tweak\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99800 2014-03-11] (Intel Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\user\AppData\Local\Temp\ESEADriver2.sys [X]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:49 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:43 - 2013-01-25 12:51 - 00023680 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:24 - 2014-06-06 23:29 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-29 21:07 - 2014-05-29 21:08 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 21:49 - 2014-05-28 22:06 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-26 17:33 - 2014-05-26 17:34 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:49 - 2014-05-25 18:50 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-14 18:28 - 2014-05-06 07:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 18:28 - 2014-05-06 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 18:28 - 2014-05-06 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 18:28 - 2014-05-06 05:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 14:40 - 2014-05-09 09:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 14:40 - 2014-05-09 09:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 14:40 - 2014-03-25 05:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 14:40 - 2014-03-25 05:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 14:39 - 2014-04-12 05:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 14:39 - 2014-04-12 05:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 14:39 - 2014-04-12 05:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 14:39 - 2014-04-12 05:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 14:39 - 2014-03-04 12:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 14:39 - 2014-03-04 12:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 14:39 - 2014-03-04 12:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat

==================== One Month Modified Files and Folders =======

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:08 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\Temp
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:50 - 2014-06-07 18:49 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:50 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\VirtualStore
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:46 - 2011-04-12 17:56 - 00657404 _____ () C:\Windows\system32\perfh01F.dat
2014-06-07 18:46 - 2011-04-12 17:56 - 00140330 _____ () C:\Windows\system32\perfc01F.dat
2014-06-07 18:46 - 2009-07-14 08:13 - 01573064 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-07 18:44 - 2014-02-26 21:55 - 02094326 _____ () C:\Windows\WindowsUpdate.log
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-07 18:41 - 2014-04-15 19:55 - 00017127 _____ () C:\Windows\setupact.log
2014-06-07 18:41 - 2014-01-04 12:43 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 18:41 - 2013-11-26 23:19 - 00001012 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 18:41 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 18:13 - 2013-11-26 23:19 - 00001016 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-07 16:39 - 2013-12-07 00:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:29 - 2014-06-06 23:24 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-06-06 14:42 - 2014-01-27 16:44 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-05 21:22 - 2014-03-14 20:24 - 00000000 ____D () C:\Users\user\Documents\Rockstar Games
2014-06-01 19:36 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-01 19:17 - 2013-12-14 21:24 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 12:41 - 2013-12-28 01:03 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-31 21:36 - 2013-11-28 18:23 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-30 15:32 - 2013-11-28 18:22 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-30 13:30 - 2013-11-28 18:23 - 00000000 ____D () C:\Users\user\AppData\Local\PunkBuster
2014-05-30 13:27 - 2009-07-14 08:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 13:26 - 2014-04-15 20:30 - 00073740 _____ () C:\Windows\DirectX.log
2014-05-30 12:53 - 2014-04-27 10:31 - 00004898 _____ () C:\Windows\PFRO.log
2014-05-30 12:53 - 2013-12-14 22:07 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 23:53 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-05-29 21:08 - 2014-05-29 21:07 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-29 20:42 - 2013-12-14 21:30 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:09 - 2013-12-15 20:23 - 00000000 ____D () C:\ProgramData\AMD
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 22:08 - 2014-02-03 20:34 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-28 22:06 - 2014-05-28 21:49 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-28 22:06 - 2013-12-15 20:20 - 00000000 ____D () C:\AMD
2014-05-26 17:34 - 2014-05-26 17:33 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:50 - 2014-05-25 18:49 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-25 18:50 - 2014-01-03 18:55 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:28 - 2013-11-29 20:53 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-05-23 05:28 - 2013-11-29 20:51 - 01108432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:27 - 2013-11-29 20:49 - 07102496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-05-23 05:27 - 2013-11-29 20:48 - 06879016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-19 16:14 - 2014-03-27 20:32 - 00001772 _____ () C:\Users\user\Desktop\CyberGhost 5.lnk
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-15 14:33 - 2014-01-27 16:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 18:45 - 2014-05-01 22:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-14 18:28 - 2013-11-29 21:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 18:27 - 2013-11-29 21:07 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-05-09 09:14 - 2014-05-14 14:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:11 - 2014-05-14 14:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:08 - 2013-11-26 23:19 - 00004012 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 15:08 - 2013-11-26 23:19 - 00003760 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\drm_dyndata_7410004.dll
C:\Users\user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdlanur.dll
C:\Users\user\AppData\Local\Temp\EBUA342.exe
C:\Users\user\AppData\Local\Temp\EBUA786.DLL
C:\Users\user\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\user\AppData\Local\Temp\war3_Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-24 18:15

==================== End Of Log ============================
         
--- --- ---
Addition :FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by user at 2014-06-07 19:08:38
Running from C:\Users\user\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Accelerated Video Transcoding (Version: 13.30.100.40522 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0522.2157.37579 - Şirketinizin Adı) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.5.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.5.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Fotoğraf Galerisi (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free to Play (HKLM-x32\...\Steam App 245550) (Version:  - Valve)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.3 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.3 - ASUS) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27339 - TeamViewer)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version:  - )
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Temel Parçalar (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

29-05-2014 17:53:25 Installed DirectX
30-05-2014 09:59:37 Windows Update
30-05-2014 10:26:22 Installed DirectX
06-06-2014 16:44:28 Windows Update
06-06-2014 20:46:52 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {090D5B70-C1B6-46C9-B8CF-35E06C9C18BE} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {4961B7E1-6A17-4BB6-8AC8-28C994140297} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {55F9E202-C2AA-4E43-AC12-E53A19357D20} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {5D052DBF-777C-4567-9A32-94CC1EB9F85E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AE72C0CE-B90F-4008-94FE-10F0CA6AAE3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {B7434107-F09C-47AC-9840-90468214B178} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-26] (AVAST Software)
Task: {D2A37A41-2441-4076-8E48-90B36C0FAD07} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {DD5D9D77-D42D-4DE6-A2E2-8DAD50252EF3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {EBE2BC66-0EDE-4754-AE6C-F7C0ED457B63} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-10] (IObit)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-26 23:19 - 2012-10-29 10:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2013-11-28 18:22 - 2014-05-30 15:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-27 20:32 - 2014-04-17 16:04 - 00032768 _____ () C:\Program Files\CyberGhost 5\de\CyberGhost.resources.dll
2014-06-07 14:04 - 2014-06-07 14:04 - 02775040 _____ () C:\Program Files\AVAST Software\Avast\defs\14060701\algo.dll
2013-11-26 23:19 - 2014-06-07 18:41 - 00027648 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2013-11-26 23:19 - 2012-05-07 19:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2014-01-31 16:24 - 2014-01-31 16:24 - 00090112 _____ () C:\Program Files (x86)\ATI Technologies\HydraVision\HydraTrk.dll
2014-01-27 16:44 - 2014-01-27 16:44 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2013-11-26 23:23 - 2013-03-12 08:20 - 01199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 13695816 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x012f4c0d
Hatalı işlem kimliği: 0x3f8
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x00f94c0d
Hatalı işlem kimliği: 0xd1c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x03684c0d
Hatalı işlem kimliği: 0xa5c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x036a4c0d
Hatalı işlem kimliği: 0x958
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3


System errors:
=============
Error: (06/07/2014 06:44:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:42:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:41:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff8800f2e52ac, 0xfffff88009402950, 0x0000000000000000)C:\Windows\MEMORY.DMP060714-4976-01

Error: (06/07/2014 06:41:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 18:40:12, ‎07.‎06.‎2014 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (06/07/2014 10:04:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 10:03:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:50:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:49:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:47:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.


Microsoft Office Sessions:
=========================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005012f4c0d3f801cf8267341a94b6C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown8cd4a127-ee5a-11e3-b69d-ac220b835a42

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000500f94c0dd1c01cf821eab3aa8d9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown03d015c0-ee12-11e3-ab23-ac220b835a42

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000503684c0da5c01cf81c8e6ededb9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown3fa56210-edbc-11e3-b999-ac220b835a42

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005036a4c0d95801cf81c85e963e74C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknownb75b207d-edbb-11e3-a573-ac220b835a42


==================== Memory info =========================== 

Percentage of memory in use: 32%
Total physical RAM: 8097.91 MB
Available physical RAM: 5498.25 MB
Total Pagefile: 16193.99 MB
Available Pagefile: 13301.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:7.82 GB) NTFS
Drive d: (Yeni Birim) (Fixed) (Total:931.41 GB) (Free:826.63 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0F93EAA4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 0F93EADC)
Partition 1: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
--- --- ---
__________________

Alt 07.06.2014, 18:11   #4
vertualx
 
BlueScreen Fehler - Standard

BlueScreen Fehler



FRST :
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by user (administrator) on USER-BILGISAYAR on 07-06-2014 19:08:25
Running from C:\Users\user\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: 041F
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool 
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 5\CyberGhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510232 2014-03-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-22] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-26] (Google Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [404080 2014-04-29] (CyberGhost S.R.L.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yandex
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Türkiye: Outlook, Skype, Son Haberler, Spor, Oyun ve Video
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB7420F4248ECCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = tr
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Fixhomepage
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe 22Find
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKCU - DefaultScope {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKCU - {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft hesabı Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com.tr
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.0.0.72_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
CHR Plugin: (         "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (         "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-12-13]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Cüzdan) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-26]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx [2013-11-06]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\user\AppData\Local\Slick Savings\coupons.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-04-29] (CyberGhost S.R.L)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-03-31] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-30] ()

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-21] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-26] ()
S3 atillk64; C:\Program Files (x86)\ASUS\GPU Tweak\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99800 2014-03-11] (Intel Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\user\AppData\Local\Temp\ESEADriver2.sys [X]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:49 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:43 - 2013-01-25 12:51 - 00023680 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:24 - 2014-06-06 23:29 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-29 21:07 - 2014-05-29 21:08 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 21:49 - 2014-05-28 22:06 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-26 17:33 - 2014-05-26 17:34 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:49 - 2014-05-25 18:50 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-14 18:28 - 2014-05-06 07:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 18:28 - 2014-05-06 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 18:28 - 2014-05-06 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 18:28 - 2014-05-06 05:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 14:40 - 2014-05-09 09:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 14:40 - 2014-05-09 09:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 14:40 - 2014-03-25 05:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 14:40 - 2014-03-25 05:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 14:39 - 2014-04-12 05:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 14:39 - 2014-04-12 05:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 14:39 - 2014-04-12 05:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 14:39 - 2014-04-12 05:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 14:39 - 2014-03-04 12:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 14:39 - 2014-03-04 12:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 14:39 - 2014-03-04 12:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat

==================== One Month Modified Files and Folders =======

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:08 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\Temp
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:50 - 2014-06-07 18:49 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:50 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\VirtualStore
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:46 - 2011-04-12 17:56 - 00657404 _____ () C:\Windows\system32\perfh01F.dat
2014-06-07 18:46 - 2011-04-12 17:56 - 00140330 _____ () C:\Windows\system32\perfc01F.dat
2014-06-07 18:46 - 2009-07-14 08:13 - 01573064 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-07 18:44 - 2014-02-26 21:55 - 02094326 _____ () C:\Windows\WindowsUpdate.log
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-07 18:41 - 2014-04-15 19:55 - 00017127 _____ () C:\Windows\setupact.log
2014-06-07 18:41 - 2014-01-04 12:43 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 18:41 - 2013-11-26 23:19 - 00001012 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 18:41 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 18:13 - 2013-11-26 23:19 - 00001016 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-07 16:39 - 2013-12-07 00:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:29 - 2014-06-06 23:24 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-06-06 14:42 - 2014-01-27 16:44 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-05 21:22 - 2014-03-14 20:24 - 00000000 ____D () C:\Users\user\Documents\Rockstar Games
2014-06-01 19:36 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-01 19:17 - 2013-12-14 21:24 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 12:41 - 2013-12-28 01:03 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-31 21:36 - 2013-11-28 18:23 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-30 15:32 - 2013-11-28 18:22 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-30 13:30 - 2013-11-28 18:23 - 00000000 ____D () C:\Users\user\AppData\Local\PunkBuster
2014-05-30 13:27 - 2009-07-14 08:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 13:26 - 2014-04-15 20:30 - 00073740 _____ () C:\Windows\DirectX.log
2014-05-30 12:53 - 2014-04-27 10:31 - 00004898 _____ () C:\Windows\PFRO.log
2014-05-30 12:53 - 2013-12-14 22:07 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 23:53 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-05-29 21:08 - 2014-05-29 21:07 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-29 20:42 - 2013-12-14 21:30 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:09 - 2013-12-15 20:23 - 00000000 ____D () C:\ProgramData\AMD
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 22:08 - 2014-02-03 20:34 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-28 22:06 - 2014-05-28 21:49 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-28 22:06 - 2013-12-15 20:20 - 00000000 ____D () C:\AMD
2014-05-26 17:34 - 2014-05-26 17:33 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:50 - 2014-05-25 18:49 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-25 18:50 - 2014-01-03 18:55 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:28 - 2013-11-29 20:53 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-05-23 05:28 - 2013-11-29 20:51 - 01108432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:27 - 2013-11-29 20:49 - 07102496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-05-23 05:27 - 2013-11-29 20:48 - 06879016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-19 16:14 - 2014-03-27 20:32 - 00001772 _____ () C:\Users\user\Desktop\CyberGhost 5.lnk
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-15 14:33 - 2014-01-27 16:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 18:45 - 2014-05-01 22:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-14 18:28 - 2013-11-29 21:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 18:27 - 2013-11-29 21:07 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-05-09 09:14 - 2014-05-14 14:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:11 - 2014-05-14 14:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:08 - 2013-11-26 23:19 - 00004012 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 15:08 - 2013-11-26 23:19 - 00003760 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\drm_dyndata_7410004.dll
C:\Users\user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdlanur.dll
C:\Users\user\AppData\Local\Temp\EBUA342.exe
C:\Users\user\AppData\Local\Temp\EBUA786.DLL
C:\Users\user\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\user\AppData\Local\Temp\war3_Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-24 18:15

==================== End Of Log ============================
         
--- --- ---

Addition :FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by user at 2014-06-07 19:08:38
Running from C:\Users\user\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Accelerated Video Transcoding (Version: 13.30.100.40522 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0522.2157.37579 - Şirketinizin Adı) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.5.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.5.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Fotoğraf Galerisi (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free to Play (HKLM-x32\...\Steam App 245550) (Version:  - Valve)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.3 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.3 - ASUS) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27339 - TeamViewer)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version:  - )
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Temel Parçalar (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

29-05-2014 17:53:25 Installed DirectX
30-05-2014 09:59:37 Windows Update
30-05-2014 10:26:22 Installed DirectX
06-06-2014 16:44:28 Windows Update
06-06-2014 20:46:52 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {090D5B70-C1B6-46C9-B8CF-35E06C9C18BE} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {4961B7E1-6A17-4BB6-8AC8-28C994140297} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {55F9E202-C2AA-4E43-AC12-E53A19357D20} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {5D052DBF-777C-4567-9A32-94CC1EB9F85E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AE72C0CE-B90F-4008-94FE-10F0CA6AAE3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {B7434107-F09C-47AC-9840-90468214B178} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-26] (AVAST Software)
Task: {D2A37A41-2441-4076-8E48-90B36C0FAD07} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {DD5D9D77-D42D-4DE6-A2E2-8DAD50252EF3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {EBE2BC66-0EDE-4754-AE6C-F7C0ED457B63} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-10] (IObit)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-26 23:19 - 2012-10-29 10:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2013-11-28 18:22 - 2014-05-30 15:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-27 20:32 - 2014-04-17 16:04 - 00032768 _____ () C:\Program Files\CyberGhost 5\de\CyberGhost.resources.dll
2014-06-07 14:04 - 2014-06-07 14:04 - 02775040 _____ () C:\Program Files\AVAST Software\Avast\defs\14060701\algo.dll
2013-11-26 23:19 - 2014-06-07 18:41 - 00027648 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2013-11-26 23:19 - 2012-05-07 19:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2014-01-31 16:24 - 2014-01-31 16:24 - 00090112 _____ () C:\Program Files (x86)\ATI Technologies\HydraVision\HydraTrk.dll
2014-01-27 16:44 - 2014-01-27 16:44 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2013-11-26 23:23 - 2013-03-12 08:20 - 01199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 13695816 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x012f4c0d
Hatalı işlem kimliği: 0x3f8
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x00f94c0d
Hatalı işlem kimliği: 0xd1c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x03684c0d
Hatalı işlem kimliği: 0xa5c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x036a4c0d
Hatalı işlem kimliği: 0x958
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3


System errors:
=============
Error: (06/07/2014 06:44:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:42:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:41:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff8800f2e52ac, 0xfffff88009402950, 0x0000000000000000)C:\Windows\MEMORY.DMP060714-4976-01

Error: (06/07/2014 06:41:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 18:40:12, ‎07.‎06.‎2014 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (06/07/2014 10:04:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 10:03:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:50:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:49:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:47:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.


Microsoft Office Sessions:
=========================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005012f4c0d3f801cf8267341a94b6C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown8cd4a127-ee5a-11e3-b69d-ac220b835a42

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000500f94c0dd1c01cf821eab3aa8d9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown03d015c0-ee12-11e3-ab23-ac220b835a42

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000503684c0da5c01cf81c8e6ededb9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown3fa56210-edbc-11e3-b999-ac220b835a42

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
   konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
   konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005036a4c0d95801cf81c85e963e74C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknownb75b207d-edbb-11e3-a573-ac220b835a42


==================== Memory info =========================== 

Percentage of memory in use: 32%
Total physical RAM: 8097.91 MB
Available physical RAM: 5498.25 MB
Total Pagefile: 16193.99 MB
Available Pagefile: 13301.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:7.82 GB) NTFS
Drive d: (Yeni Birim) (Fixed) (Total:931.41 GB) (Free:826.63 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0F93EAA4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 0F93EADC)
Partition 1: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
--- --- ---

Alt 08.06.2014, 10:48   #5
schrauber
/// the machine
/// TB-Ausbilder
 

BlueScreen Fehler - Standard

BlueScreen Fehler



Kein Malwareproblem. Deinstalliere alles an SOftware und Treibern was mit Grafik zu tun hat und installiere das neu.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 08.06.2014, 12:52   #6
vertualx
 
BlueScreen Fehler - Standard

BlueScreen Fehler



ok danke aber kannste mir auch sagen wie ich alles deinstallieren soll?

Alt 09.06.2014, 07:21   #7
schrauber
/// the machine
/// TB-Ausbilder
 

BlueScreen Fehler - Standard

BlueScreen Fehler



Über die Systemsteuerung / Software, und Treiber über den Gerätemanager

Bzw. mal nen aktuellen Grafiktreiber bem Hersteller laden und drüber installieren.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu BlueScreen Fehler
bluescree, bluescreen, einfach, fehler, funktionier, funktioniert, heute, kriege, min, monate, probleme, tagen, videos, woran, zocken



Ähnliche Themen: BlueScreen Fehler


  1. Windows 7: Häufiger Bluescreen sowie unbekannter Fehler in Antivirenprogramm
    Log-Analyse und Auswertung - 05.09.2015 (22)
  2. Bluescreen jagt Bluescreen beim Hochfahren
    Alles rund um Windows - 25.08.2015 (1)
  3. Bluescreen Fehler code : 0x000000f4 Problem besteht weiterhin
    Alles rund um Windows - 11.04.2015 (10)
  4. Bluescreen Problem-Anleitung für Bluescreen nicht anwenbar bei Bildschirm Freeze
    Alles rund um Windows - 04.04.2015 (18)
  5. Fehler bei Start von Programmen, später Absturz mit Bluescreen
    Log-Analyse und Auswertung - 28.11.2013 (7)
  6. Windows 7 HP: Firewall Fehler Code : 0x6D9 und Rundll Fehler beim Start
    Log-Analyse und Auswertung - 23.09.2013 (22)
  7. Ständiger PC Absturz mit BlueScreen und Fehler bei Spielen.
    Alles rund um Windows - 19.05.2013 (1)
  8. PC friert ein, Musik läuft weiter, manchmal Bluescreen, diverse andere Fehler
    Plagegeister aller Art und deren Bekämpfung - 05.02.2013 (12)
  9. NetLoc.wlt fehler nach FEHLER Win XP Anmeldung direkt danach Abmeldung
    Plagegeister aller Art und deren Bekämpfung - 23.01.2013 (1)
  10. Fehler beim Neustart: Bluescreen c0000135
    Alles rund um Windows - 01.07.2012 (3)
  11. Bluescreen nach Bootvorgang, abgesicherter Modus --> Bluescreen
    Alles rund um Windows - 02.09.2010 (7)
  12. Minidump/ sysdata.xml - Bluescreen und Schwerwiegender Fehler
    Alles rund um Windows - 17.04.2010 (24)
  13. Bluescreen beim Öffnen von Dateien durch Fehler 0x0000008E
    Log-Analyse und Auswertung - 05.02.2010 (8)
  14. Bluescreen und Schwerwiegender Fehler: Minidump/ sysdata.xml
    Alles rund um Windows - 22.06.2009 (3)
  15. Bluescreen durch smit fraud, einen tag später wieder bluescreen
    Log-Analyse und Auswertung - 05.02.2008 (3)
  16. Bluescreen, Fehler in services.exe und Runterfahren in 1 Minute
    Alles rund um Windows - 25.05.2007 (6)
  17. BlueScreen und andere Fehler
    Log-Analyse und Auswertung - 13.02.2006 (3)

Zum Thema BlueScreen Fehler - Hallo erstmal lch habe vor 8 monaten einen PC zusammengebaut hat bis heute ohne probleme funktioniert aber seit 3 tagen bekomme ich bluescreen fehler , ich weiss einfach nicht woran - BlueScreen Fehler...
Archiv
Du betrachtest: BlueScreen Fehler auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.