Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   BlueScreen Fehler (https://www.trojaner-board.de/154917-bluescreen-fehler.html)

vertualx 07.06.2014 17:04
BlueScreen Fehler
 
Hallo erstmal :)

lch habe vor 8 monaten einen PC zusammengebaut hat bis heute ohne probleme funktioniert aber seit 3 tagen bekomme ich bluescreen fehler , ich weiss einfach nicht woran das liegt...beim zocken habe ich garkein problem aber solange ich videos anschaue kriege ich aller 3min bluescreen fehler *-* Kann mir jemand helfen? :/

Screenshot : http://i.hizliresim.com/DX18Zl.jpg

MFG Vertualx , danke im voraus!

schrauber 07.06.2014 17:06
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


vertualx 07.06.2014 17:10
FRST :
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by user (administrator) on USER-BILGISAYAR on 07-06-2014 19:08:25
Running from C:\Users\user\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: 041F
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 5\CyberGhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510232 2014-03-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-22] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-26] (Google Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [404080 2014-04-29] (CyberGhost S.R.L.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yandex
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Türkiye: Outlook, Skype, Son Haberler, Spor, Oyun ve Video
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB7420F4248ECCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = tr
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Fixhomepage
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe 22Find
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKCU - DefaultScope {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKCU - {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft hesabı Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com.tr
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.0.0.72_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
CHR Plugin: (        "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (        "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-12-13]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Cüzdan) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-26]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx [2013-11-06]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\user\AppData\Local\Slick Savings\coupons.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-04-29] (CyberGhost S.R.L)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-03-31] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-30] ()

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-21] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-26] ()
S3 atillk64; C:\Program Files (x86)\ASUS\GPU Tweak\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99800 2014-03-11] (Intel Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\user\AppData\Local\Temp\ESEADriver2.sys [X]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:49 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:43 - 2013-01-25 12:51 - 00023680 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:24 - 2014-06-06 23:29 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-29 21:07 - 2014-05-29 21:08 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 21:49 - 2014-05-28 22:06 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-26 17:33 - 2014-05-26 17:34 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:49 - 2014-05-25 18:50 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-14 18:28 - 2014-05-06 07:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 18:28 - 2014-05-06 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 18:28 - 2014-05-06 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 18:28 - 2014-05-06 05:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 14:40 - 2014-05-09 09:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 14:40 - 2014-05-09 09:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 14:40 - 2014-03-25 05:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 14:40 - 2014-03-25 05:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 14:39 - 2014-04-12 05:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 14:39 - 2014-04-12 05:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 14:39 - 2014-04-12 05:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 14:39 - 2014-04-12 05:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 14:39 - 2014-03-04 12:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 14:39 - 2014-03-04 12:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 14:39 - 2014-03-04 12:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat

==================== One Month Modified Files and Folders =======

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:08 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\Temp
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:50 - 2014-06-07 18:49 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:50 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\VirtualStore
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:46 - 2011-04-12 17:56 - 00657404 _____ () C:\Windows\system32\perfh01F.dat
2014-06-07 18:46 - 2011-04-12 17:56 - 00140330 _____ () C:\Windows\system32\perfc01F.dat
2014-06-07 18:46 - 2009-07-14 08:13 - 01573064 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-07 18:44 - 2014-02-26 21:55 - 02094326 _____ () C:\Windows\WindowsUpdate.log
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-07 18:41 - 2014-04-15 19:55 - 00017127 _____ () C:\Windows\setupact.log
2014-06-07 18:41 - 2014-01-04 12:43 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 18:41 - 2013-11-26 23:19 - 00001012 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 18:41 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 18:13 - 2013-11-26 23:19 - 00001016 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-07 16:39 - 2013-12-07 00:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:29 - 2014-06-06 23:24 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-06-06 14:42 - 2014-01-27 16:44 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-05 21:22 - 2014-03-14 20:24 - 00000000 ____D () C:\Users\user\Documents\Rockstar Games
2014-06-01 19:36 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-01 19:17 - 2013-12-14 21:24 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 12:41 - 2013-12-28 01:03 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-31 21:36 - 2013-11-28 18:23 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-30 15:32 - 2013-11-28 18:22 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-30 13:30 - 2013-11-28 18:23 - 00000000 ____D () C:\Users\user\AppData\Local\PunkBuster
2014-05-30 13:27 - 2009-07-14 08:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 13:26 - 2014-04-15 20:30 - 00073740 _____ () C:\Windows\DirectX.log
2014-05-30 12:53 - 2014-04-27 10:31 - 00004898 _____ () C:\Windows\PFRO.log
2014-05-30 12:53 - 2013-12-14 22:07 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 23:53 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-05-29 21:08 - 2014-05-29 21:07 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-29 20:42 - 2013-12-14 21:30 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:09 - 2013-12-15 20:23 - 00000000 ____D () C:\ProgramData\AMD
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 22:08 - 2014-02-03 20:34 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-28 22:06 - 2014-05-28 21:49 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-28 22:06 - 2013-12-15 20:20 - 00000000 ____D () C:\AMD
2014-05-26 17:34 - 2014-05-26 17:33 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:50 - 2014-05-25 18:49 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-25 18:50 - 2014-01-03 18:55 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:28 - 2013-11-29 20:53 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-05-23 05:28 - 2013-11-29 20:51 - 01108432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:27 - 2013-11-29 20:49 - 07102496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-05-23 05:27 - 2013-11-29 20:48 - 06879016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-19 16:14 - 2014-03-27 20:32 - 00001772 _____ () C:\Users\user\Desktop\CyberGhost 5.lnk
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-15 14:33 - 2014-01-27 16:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 18:45 - 2014-05-01 22:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-14 18:28 - 2013-11-29 21:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 18:27 - 2013-11-29 21:07 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-05-09 09:14 - 2014-05-14 14:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:11 - 2014-05-14 14:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:08 - 2013-11-26 23:19 - 00004012 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 15:08 - 2013-11-26 23:19 - 00003760 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\drm_dyndata_7410004.dll
C:\Users\user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdlanur.dll
C:\Users\user\AppData\Local\Temp\EBUA342.exe
C:\Users\user\AppData\Local\Temp\EBUA786.DLL
C:\Users\user\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\user\AppData\Local\Temp\war3_Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-24 18:15

==================== End Of Log ============================
--- --- ---
Addition :FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by user at 2014-06-07 19:08:38
Running from C:\Users\user\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Accelerated Video Transcoding (Version: 13.30.100.40522 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0522.2157.37579 - Şirketinizin Adı) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.5.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.5.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Fotoğraf Galerisi (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free to Play (HKLM-x32\...\Steam App 245550) (Version:  - Valve)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.3 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.3 - ASUS) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27339 - TeamViewer)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version:  - )
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Temel Parçalar (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

29-05-2014 17:53:25 Installed DirectX
30-05-2014 09:59:37 Windows Update
30-05-2014 10:26:22 Installed DirectX
06-06-2014 16:44:28 Windows Update
06-06-2014 20:46:52 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {090D5B70-C1B6-46C9-B8CF-35E06C9C18BE} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {4961B7E1-6A17-4BB6-8AC8-28C994140297} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {55F9E202-C2AA-4E43-AC12-E53A19357D20} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {5D052DBF-777C-4567-9A32-94CC1EB9F85E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AE72C0CE-B90F-4008-94FE-10F0CA6AAE3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {B7434107-F09C-47AC-9840-90468214B178} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-26] (AVAST Software)
Task: {D2A37A41-2441-4076-8E48-90B36C0FAD07} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {DD5D9D77-D42D-4DE6-A2E2-8DAD50252EF3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {EBE2BC66-0EDE-4754-AE6C-F7C0ED457B63} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-10] (IObit)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-26 23:19 - 2012-10-29 10:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2013-11-28 18:22 - 2014-05-30 15:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-27 20:32 - 2014-04-17 16:04 - 00032768 _____ () C:\Program Files\CyberGhost 5\de\CyberGhost.resources.dll
2014-06-07 14:04 - 2014-06-07 14:04 - 02775040 _____ () C:\Program Files\AVAST Software\Avast\defs\14060701\algo.dll
2013-11-26 23:19 - 2014-06-07 18:41 - 00027648 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2013-11-26 23:19 - 2012-05-07 19:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2014-01-31 16:24 - 2014-01-31 16:24 - 00090112 _____ () C:\Program Files (x86)\ATI Technologies\HydraVision\HydraTrk.dll
2014-01-27 16:44 - 2014-01-27 16:44 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2013-11-26 23:23 - 2013-03-12 08:20 - 01199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 13695816 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x012f4c0d
Hatalı işlem kimliği: 0x3f8
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x00f94c0d
Hatalı işlem kimliği: 0xd1c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x03684c0d
Hatalı işlem kimliği: 0xa5c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x036a4c0d
Hatalı işlem kimliği: 0x958
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3


System errors:
=============
Error: (06/07/2014 06:44:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:42:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:41:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff8800f2e52ac, 0xfffff88009402950, 0x0000000000000000)C:\Windows\MEMORY.DMP060714-4976-01

Error: (06/07/2014 06:41:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 18:40:12, ‎07.‎06.‎2014 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (06/07/2014 10:04:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 10:03:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:50:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:49:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:47:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.


Microsoft Office Sessions:
=========================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005012f4c0d3f801cf8267341a94b6C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown8cd4a127-ee5a-11e3-b69d-ac220b835a42

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000500f94c0dd1c01cf821eab3aa8d9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown03d015c0-ee12-11e3-ab23-ac220b835a42

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000503684c0da5c01cf81c8e6ededb9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown3fa56210-edbc-11e3-b999-ac220b835a42

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005036a4c0d95801cf81c85e963e74C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknownb75b207d-edbb-11e3-a573-ac220b835a42


==================== Memory info ===========================

Percentage of memory in use: 32%
Total physical RAM: 8097.91 MB
Available physical RAM: 5498.25 MB
Total Pagefile: 16193.99 MB
Available Pagefile: 13301.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:7.82 GB) NTFS
Drive d: (Yeni Birim) (Fixed) (Total:931.41 GB) (Free:826.63 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0F93EAA4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 0F93EADC)
Partition 1: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

vertualx 07.06.2014 17:11
FRST :
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by user (administrator) on USER-BILGISAYAR on 07-06-2014 19:08:25
Running from C:\Users\user\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: 041F
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 5\CyberGhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510232 2014-03-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-22] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-26] (Google Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [404080 2014-04-29] (CyberGhost S.R.L.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yandex
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Türkiye: Outlook, Skype, Son Haberler, Spor, Oyun ve Video
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB7420F4248ECCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = tr
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Fixhomepage
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe 22Find
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?type=ds&ts=1385926660&from=smt&uid=WDCXWD10EZEX-60ZF5A0_WD-WCC1S686009260092&q={searchTerms}
SearchScopes: HKCU - DefaultScope {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKCU - {E372FFD3-30F3-42DA-9BEE-914F0C65D660} URL = hxxp://uk.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&fl=1&vl=lang_tr&ilc=12&type=198484&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft hesabı Oturum Açma Yardım Aracı - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: google.com.tr
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.0.0.72_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll No File
CHR Plugin: (        "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (        "name": "",) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-12-13]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Google Cüzdan) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-26]
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx [2013-10-14]
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx [2013-11-06]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\user\AppData\Local\Slick Savings\coupons.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2013-12-28]
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx [2012-11-22]

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-04-29] (CyberGhost S.R.L)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-03-31] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-30] ()

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-21] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-26] ()
S3 atillk64; C:\Program Files (x86)\ASUS\GPU Tweak\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99800 2014-03-11] (Intel Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ESEADriver2; \??\C:\Users\user\AppData\Local\Temp\ESEADriver2.sys [X]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:49 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:43 - 2013-01-25 12:51 - 00023680 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:24 - 2014-06-06 23:29 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-29 21:07 - 2014-05-29 21:08 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 21:49 - 2014-05-28 22:06 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-26 17:33 - 2014-05-26 17:34 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:49 - 2014-05-25 18:50 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-14 18:28 - 2014-05-06 07:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 18:28 - 2014-05-06 07:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 18:28 - 2014-05-06 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 18:28 - 2014-05-06 06:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 18:28 - 2014-05-06 05:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 14:40 - 2014-05-09 09:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 14:40 - 2014-05-09 09:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 14:40 - 2014-03-25 05:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 14:40 - 2014-03-25 05:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 14:39 - 2014-04-12 05:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 14:39 - 2014-04-12 05:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 14:39 - 2014-04-12 05:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 14:39 - 2014-04-12 05:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 14:39 - 2014-04-12 05:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 14:39 - 2014-04-12 05:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 14:39 - 2014-03-04 12:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 14:39 - 2014-03-04 12:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 14:39 - 2014-03-04 12:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 14:39 - 2014-03-04 12:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 14:39 - 2014-03-04 12:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 14:39 - 2014-03-04 12:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat

==================== One Month Modified Files and Folders =======

2014-06-07 19:08 - 2014-06-07 19:08 - 00018107 _____ () C:\Users\user\Downloads\FRST.txt
2014-06-07 19:08 - 2014-06-07 19:08 - 00000000 ____D () C:\FRST
2014-06-07 19:08 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\Temp
2014-06-07 19:07 - 2014-06-07 19:07 - 02072576 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2014-06-07 18:50 - 2014-06-07 18:50 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip (1).exe
2014-06-07 18:50 - 2014-06-07 18:49 - 00546240 _____ () C:\Users\user\Downloads\430396_intl_x64_zip.exe
2014-06-07 18:50 - 2013-11-26 23:17 - 00000000 ____D () C:\Users\user\AppData\Local\VirtualStore
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:48 - 2009-07-14 07:45 - 00022096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 18:46 - 2011-04-12 17:56 - 00657404 _____ () C:\Windows\system32\perfh01F.dat
2014-06-07 18:46 - 2011-04-12 17:56 - 00140330 _____ () C:\Windows\system32\perfc01F.dat
2014-06-07 18:46 - 2009-07-14 08:13 - 01573064 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-07 18:44 - 2014-02-26 21:55 - 02094326 _____ () C:\Windows\WindowsUpdate.log
2014-06-07 18:43 - 2014-06-07 18:43 - 05791960 _____ (ParetoLogic Inc.) C:\Users\user\Downloads\ParetoLogic PC Health Advisor.exe
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\ParetoLogic
2014-06-07 18:43 - 2014-06-07 18:43 - 00000000 ____D () C:\Users\user\AppData\Roaming\DriverCure
2014-06-07 18:41 - 2014-06-07 18:41 - 00276776 _____ () C:\Windows\Minidump\060714-4976-01.dmp
2014-06-07 18:41 - 2014-04-15 19:55 - 00017127 _____ () C:\Windows\setupact.log
2014-06-07 18:41 - 2014-01-04 12:43 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 18:41 - 2013-11-26 23:19 - 00001012 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 18:41 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 18:13 - 2013-11-26 23:19 - 00001016 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-07 16:39 - 2013-12-07 00:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-06 23:44 - 2014-06-06 23:44 - 00276776 _____ () C:\Windows\Minidump\060614-5335-01.dmp
2014-06-06 23:29 - 2014-06-06 23:24 - 269338400 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql (1).exe
2014-06-06 23:23 - 2014-06-06 23:23 - 00276776 _____ () C:\Windows\Minidump\060614-2480-01.dmp
2014-06-06 23:16 - 2014-06-06 23:16 - 00276776 _____ () C:\Windows\Minidump\060614-5366-01.dmp
2014-06-06 14:42 - 2014-01-27 16:44 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-05 21:22 - 2014-03-14 20:24 - 00000000 ____D () C:\Users\user\Documents\Rockstar Games
2014-06-01 19:36 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-01 19:34 - 2013-11-28 18:22 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-01 19:17 - 2013-12-14 21:24 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 12:41 - 2013-12-28 01:03 - 00000000 ____D () C:\ProgramData\ProductData
2014-05-31 21:36 - 2013-11-28 18:23 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-05-30 15:32 - 2013-11-28 18:22 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-30 13:30 - 2014-05-30 13:30 - 00000000 ____D () C:\Users\user\Documents\Battlefield 3
2014-05-30 13:30 - 2013-11-28 18:23 - 00000000 ____D () C:\Users\user\AppData\Local\PunkBuster
2014-05-30 13:27 - 2009-07-14 08:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 13:26 - 2014-04-15 20:30 - 00073740 _____ () C:\Windows\DirectX.log
2014-05-30 12:53 - 2014-04-27 10:31 - 00004898 _____ () C:\Windows\PFRO.log
2014-05-30 12:53 - 2013-12-14 22:07 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-29 23:53 - 2013-12-14 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-05-29 21:08 - 2014-05-29 21:07 - 02247960 _____ () C:\Users\user\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-05-29 20:55 - 2014-05-29 20:55 - 00000000 ____D () C:\ProgramData\EA Core
2014-05-29 20:54 - 2014-05-29 20:54 - 00001279 _____ () C:\Users\Public\Desktop\Pflanzen gegen Zombies.lnk
2014-05-29 20:42 - 2013-12-14 21:30 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-28 22:09 - 2014-05-28 22:09 - 00057236 _____ () C:\Windows\SysWOW64\CCCInstall_201405282209000135.log
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\ProgramData\ATI
2014-05-28 22:09 - 2014-05-28 22:09 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-28 22:09 - 2013-12-15 20:23 - 00000000 ____D () C:\ProgramData\AMD
2014-05-28 22:08 - 2014-05-28 22:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-28 22:08 - 2014-02-03 20:34 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-28 22:06 - 2014-05-28 21:49 - 318105192 _____ (AMD Inc.) C:\Users\user\Downloads\amd-catalyst-14.6-beta-v1.0-windows-may23.exe
2014-05-28 22:06 - 2013-12-15 20:20 - 00000000 ____D () C:\AMD
2014-05-26 17:34 - 2014-05-26 17:33 - 00339001 _____ (AMD Inc.) C:\Users\user\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-05-25 18:50 - 2014-05-25 18:49 - 04748896 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup414.exe
2014-05-25 18:50 - 2014-01-03 18:55 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-23 05:28 - 2014-05-23 05:28 - 01328352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-23 05:28 - 2014-05-23 05:28 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-23 05:28 - 2013-11-29 20:53 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-05-23 05:28 - 2013-11-29 20:51 - 01108432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 10516488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 09015224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 08108312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-23 05:27 - 2014-05-23 05:27 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-23 05:27 - 2013-11-29 20:49 - 07102496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-05-23 05:27 - 2013-11-29 20:48 - 06879016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-05-23 05:24 - 2014-05-23 05:24 - 00276192 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-05-23 05:22 - 2014-05-23 05:22 - 15950336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-23 04:55 - 2014-05-23 04:55 - 27529216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 32874496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-23 04:47 - 2014-05-23 04:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-23 04:47 - 2014-05-23 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-23 04:46 - 2014-05-23 04:46 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 27841024 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 05224960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-23 04:45 - 2014-05-23 04:45 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-23 04:43 - 2014-05-23 04:43 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-23 04:40 - 2014-05-23 04:40 - 23028224 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00595896 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-23 04:38 - 2014-05-23 04:38 - 00366592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-23 04:38 - 2014-05-23 04:38 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-23 04:38 - 2014-05-23 04:38 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 04180992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-23 04:37 - 2014-05-23 04:37 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-23 04:35 - 2014-05-23 04:35 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-23 04:31 - 2014-05-23 04:31 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-23 04:30 - 2014-05-23 04:30 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-23 04:27 - 2014-05-23 04:27 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-23 04:25 - 2014-05-23 04:25 - 00588800 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-23 04:25 - 2014-05-23 04:25 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-23 04:25 - 2014-05-23 04:25 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-23 04:24 - 2014-05-23 04:24 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-23 04:18 - 2014-05-23 04:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_14.200.dll
2014-05-23 04:17 - 2014-05-23 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-23 04:12 - 2014-05-23 04:12 - 01207296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00898560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-23 04:12 - 2014-05-23 04:12 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00557056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-23 04:11 - 2014-05-23 04:11 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-05-23 04:11 - 2014-05-23 04:11 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-05-23 04:05 - 2014-05-23 04:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-22 21:56 - 2014-05-22 21:56 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-05-22 21:52 - 2014-05-22 21:52 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-05-19 16:14 - 2014-03-27 20:32 - 00001772 _____ () C:\Users\user\Desktop\CyberGhost 5.lnk
2014-05-15 20:17 - 2014-05-15 20:17 - 00129024 _____ () C:\Users\user\Downloads\nasb_edatlari.ppt
2014-05-15 14:33 - 2014-01-27 16:44 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-15 14:33 - 2014-01-27 16:44 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 18:46 - 2013-11-26 23:18 - 00000000 ___RD () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 18:45 - 2014-05-01 22:24 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-14 18:45 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-14 18:28 - 2013-11-29 21:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 18:27 - 2013-11-29 21:07 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-09 22:02 - 2014-05-09 22:02 - 00234164 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-09 22:00 - 2014-05-09 22:00 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-05-09 09:14 - 2014-05-14 14:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:11 - 2014-05-14 14:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 15:08 - 2013-11-26 23:19 - 00004012 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 15:08 - 2013-11-26 23:19 - 00003760 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\drm_dyndata_7410004.dll
C:\Users\user\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdlanur.dll
C:\Users\user\AppData\Local\Temp\EBUA342.exe
C:\Users\user\AppData\Local\Temp\EBUA786.DLL
C:\Users\user\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\user\AppData\Local\Temp\war3_Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-24 18:15

==================== End Of Log ============================
--- --- ---

Addition :FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by user at 2014-06-07 19:08:38
Running from C:\Users\user\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD Accelerated Video Transcoding (Version: 13.30.100.40522 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0522.2157.37579 - Şirketinizin Adı) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.5.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.5.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0522.2156.37579 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0522.2157.37579 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Fotoğraf Galerisi (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free to Play (HKLM-x32\...\Steam App 245550) (Version:  - Valve)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.3 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.3 - ASUS) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (TRK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27339 - TeamViewer)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version:  - )
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Temel Parçalar (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

29-05-2014 17:53:25 Installed DirectX
30-05-2014 09:59:37 Windows Update
30-05-2014 10:26:22 Installed DirectX
06-06-2014 16:44:28 Windows Update
06-06-2014 20:46:52 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {090D5B70-C1B6-46C9-B8CF-35E06C9C18BE} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {4961B7E1-6A17-4BB6-8AC8-28C994140297} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {55F9E202-C2AA-4E43-AC12-E53A19357D20} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {5D052DBF-777C-4567-9A32-94CC1EB9F85E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AE72C0CE-B90F-4008-94FE-10F0CA6AAE3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {B7434107-F09C-47AC-9840-90468214B178} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-26] (AVAST Software)
Task: {D2A37A41-2441-4076-8E48-90B36C0FAD07} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {DD5D9D77-D42D-4DE6-A2E2-8DAD50252EF3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {EBE2BC66-0EDE-4754-AE6C-F7C0ED457B63} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-10] (IObit)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-26 23:19 - 2012-10-29 10:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2013-11-28 18:22 - 2014-05-30 15:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-27 20:32 - 2014-04-17 16:04 - 00032768 _____ () C:\Program Files\CyberGhost 5\de\CyberGhost.resources.dll
2014-06-07 14:04 - 2014-06-07 14:04 - 02775040 _____ () C:\Program Files\AVAST Software\Avast\defs\14060701\algo.dll
2013-11-26 23:19 - 2014-06-07 18:41 - 00027648 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2013-11-26 23:19 - 2012-05-07 19:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2014-01-31 16:24 - 2014-01-31 16:24 - 00090112 _____ () C:\Program Files (x86)\ATI Technologies\HydraVision\HydraTrk.dll
2014-01-27 16:44 - 2014-01-27 16:44 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libglesv2.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\libegl.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
2013-11-26 23:23 - 2013-03-12 08:20 - 01199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-05-22 20:20 - 2014-05-14 02:40 - 13695816 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x012f4c0d
Hatalı işlem kimliği: 0x3f8
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x00f94c0d
Hatalı işlem kimliği: 0xd1c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x03684c0d
Hatalı işlem kimliği: 0xa5c
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x036a4c0d
Hatalı işlem kimliği: 0x958
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3


System errors:
=============
Error: (06/07/2014 06:44:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:42:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 06:41:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000003b (0x00000000c0000005, 0xfffff8800f2e52ac, 0xfffff88009402950, 0x0000000000000000)C:\Windows\MEMORY.DMP060714-4976-01

Error: (06/07/2014 06:41:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 18:40:12, ‎07.‎06.‎2014 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (06/07/2014 10:04:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/07/2014 10:03:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:50:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:49:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:47:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (06/06/2014 11:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.


Microsoft Office Sessions:
=========================
Error: (06/07/2014 06:44:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005012f4c0d3f801cf8267341a94b6C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown8cd4a127-ee5a-11e3-b69d-ac220b835a42

Error: (06/07/2014 06:44:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 06:41:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2014 10:04:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000500f94c0dd1c01cf821eab3aa8d9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown03d015c0-ee12-11e3-ab23-ac220b835a42

Error: (06/07/2014 10:04:48 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/07/2014 10:02:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c000000503684c0da5c01cf81c8e6ededb9C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown3fa56210-edbc-11e3-b999-ac220b835a42

Error: (06/06/2014 11:50:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
  konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
  konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
  konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
  konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
  konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
  konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
  konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
  konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/06/2014 11:48:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2014 11:47:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005036a4c0d95801cf81c85e963e74C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknownb75b207d-edbb-11e3-a573-ac220b835a42


==================== Memory info ===========================

Percentage of memory in use: 32%
Total physical RAM: 8097.91 MB
Available physical RAM: 5498.25 MB
Total Pagefile: 16193.99 MB
Available Pagefile: 13301.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:7.82 GB) NTFS
Drive d: (Yeni Birim) (Fixed) (Total:931.41 GB) (Free:826.63 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0F93EAA4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 0F93EADC)
Partition 1: (Not Active) - (Size=112 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

schrauber 08.06.2014 09:48
Kein Malwareproblem. Deinstalliere alles an SOftware und Treibern was mit Grafik zu tun hat und installiere das neu.

vertualx 08.06.2014 11:52
ok danke aber kannste mir auch sagen wie ich alles deinstallieren soll?

schrauber 09.06.2014 06:21
Über die Systemsteuerung / Software, und Treiber über den Gerätemanager :)

Bzw. mal nen aktuellen Grafiktreiber bem Hersteller laden und drüber installieren.


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:08 Uhr.

Copyright ©2000-2024, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129