vertualx | 10.06.2015 18:20 | Skidrow spiele habe ich vor monaten gelöscht. lch hatte nur 1 spiel den habe ich jetzt auch entfernt...UTorrent & Daemon Tools habe ich gestern deinstalliert. Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-06-2015
Ran by user (administrator) on USER-BILGISAYAR on 10-06-2015 19:37:03
Running from C:\Users\user\Downloads
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Türkçe (Türkiye)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe
(Flux Software LLC) C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Glarysoft Ltd) D:\Glary Utilities 5\Integrator.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Rockstar Games) D:\Program Files (x86)\Rockstar Games\GTAVLauncher.exe
(Take-Two Interactive Software, Inc.) C:\Program Files\Rockstar Games\Social Club\subprocess.exe
(Take-Two Interactive Software, Inc.) C:\Program Files\Rockstar Games\Social Club\subprocess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7541976 2014-06-12] (Realtek Semiconductor)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-05-26] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-26] (Google Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-30] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [GUDelayStartup] => D:\Glary Utilities 5\StartupManager.exe [37152 2015-06-08] (Glarysoft Ltd)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Run: [f.lux] => C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\MountPoints2: {1ca9d593-060a-11e5-b9c1-ac220b835a42} - F:\setup.exe
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\MountPoints2: {1ca9d597-060a-11e5-b9c1-ac220b835a42} - G:\setup\rsrc\Autorun.exe
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-04-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-26] (Avast Software s.r.o.)
BootExecute: autocheck autochk * BootDefrag.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=tr&pid=NIS&pvid=20.4.0.40
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=tr&pid=NIS&pvid=20.4.0.40
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=tr&pid=NIS&pvid=20.4.0.40
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://tr.msn.com/?ocid=iehp
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.live.com/1rewlive4startup/home
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-26] (Avast Software s.r.o.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-04] (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-30] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-26] (Avast Software s.r.o.)
BHO-x32: Microsoft hesabı Oturum Açma Yardım Aracı -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-04] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-30] (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-04] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-04] (Google Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-30] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [2015-04-23] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-30] ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [2015-04-23] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npnxgameEU.dll [2014-12-10] (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-3174542653-2470958163-2242170335-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3174542653-2470958163-2242170335-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-27]
Chrome:
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2014-11-15]
CHR Extension: (Bookmark Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-27]
CHR Extension: (Doctor Who) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hekfocifckjgoamjjdkmnkalhjppibdf [2014-12-20]
CHR Extension: (Adblock Super) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2014-11-15]
CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-15]
Opera:
=======
OPR Extension: (HDQ-1.2cV20.12) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\afpabppcibfahafilhkbbgfnlncppdnc [2014-12-20]
OPR Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2014-08-04]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe [927232 2012-10-29] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-26] (Avast Software s.r.o.)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64616 2014-11-03] (CyberGhost S.R.L)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-06] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-12-21] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-01-22] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-13] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-21] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-04-26] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-26] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-26] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-04-26] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-04-26] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-04-26] ()
S3 atillk64; C:\Program Files (x86)\ASUS\GPU Tweak\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-16] (Glarysoft Ltd)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-05-29] (Disc Soft Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-05-10] (Glarysoft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99800 2014-03-11] (Intel Corporation)
R2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12528 2015-05-29] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-10 19:37 - 2015-06-10 19:37 - 00021054 _____ C:\Users\user\Downloads\FRST.txt
2015-06-10 19:36 - 2015-06-10 19:36 - 02108928 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2015-06-10 13:12 - 2015-05-09 06:27 - 03147776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 02589184 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-10 13:12 - 2015-05-09 06:27 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-10 13:12 - 2015-05-09 06:26 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-10 13:12 - 2015-05-09 06:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-10 13:12 - 2015-05-09 06:26 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-10 13:12 - 2015-05-09 06:26 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-10 13:12 - 2015-05-09 06:14 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-10 13:12 - 2015-05-09 06:14 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-10 13:12 - 2015-05-09 06:14 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-10 13:12 - 2015-05-09 06:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-10 13:12 - 2015-05-09 06:13 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-10 12:32 - 2015-05-22 21:18 - 01021440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-10 12:32 - 2015-05-22 21:18 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-10 12:32 - 2015-05-22 21:18 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-10 12:32 - 2015-05-22 21:18 - 00423424 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-10 12:32 - 2015-05-22 21:18 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-10 12:32 - 2015-05-22 21:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-10 12:32 - 2015-05-22 21:13 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-10 12:32 - 2015-05-21 16:19 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-10 12:32 - 2015-04-29 21:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-10 12:32 - 2015-04-29 21:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-10 12:32 - 2015-04-29 21:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-10 12:32 - 2015-04-29 21:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-10 12:32 - 2015-04-29 21:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-10 12:32 - 2015-04-29 21:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-06-10 12:32 - 2015-04-29 21:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-06-10 12:32 - 2015-04-29 21:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-06-10 12:32 - 2015-04-29 21:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-06-10 12:32 - 2015-04-29 21:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-06-10 12:31 - 2015-05-25 21:24 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-10 12:31 - 2015-05-25 21:23 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-10 12:31 - 2015-05-25 21:23 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-10 12:31 - 2015-05-25 21:21 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 01255424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-06-10 12:31 - 2015-05-25 21:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-06-10 12:31 - 2015-05-25 21:18 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-10 12:31 - 2015-05-25 21:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-10 12:31 - 2015-05-25 21:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-10 12:31 - 2015-05-25 21:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-10 12:31 - 2015-05-25 21:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-10 12:31 - 2015-05-25 21:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-10 12:31 - 2015-05-25 21:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 21:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-10 12:31 - 2015-05-25 21:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-10 12:31 - 2015-05-25 21:04 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-06-10 12:31 - 2015-05-25 21:01 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-06-10 12:31 - 2015-05-25 21:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-06-10 12:31 - 2015-05-25 21:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-06-10 12:31 - 2015-05-25 20:59 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-06-10 12:31 - 2015-05-25 20:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-06-10 12:31 - 2015-05-25 20:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-06-10 12:31 - 2015-05-25 20:59 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-06-10 12:31 - 2015-05-25 20:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-06-10 12:31 - 2015-05-25 20:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 20:08 - 03206144 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-10 12:31 - 2015-05-25 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-10 12:31 - 2015-05-25 19:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-06-10 12:31 - 2015-05-25 19:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-06-10 12:31 - 2015-05-25 19:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 19:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 19:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 12:31 - 2015-05-25 19:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-06-10 12:31 - 2015-05-23 06:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-10 12:31 - 2015-05-23 06:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-10 12:31 - 2015-05-23 06:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-06-10 12:31 - 2015-05-23 05:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 12:31 - 2015-05-22 22:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-10 12:31 - 2015-05-22 21:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-10 12:31 - 2015-04-24 21:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 12:31 - 2015-04-24 20:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 12:30 - 2015-06-01 22:16 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 12:30 - 2015-06-01 21:07 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 12:30 - 2015-05-27 17:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 12:30 - 2015-05-27 17:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 12:30 - 2015-05-23 06:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-06-10 12:30 - 2015-05-23 06:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 12:30 - 2015-05-23 06:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-06-10 12:30 - 2015-05-23 06:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 12:30 - 2015-05-23 06:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 12:30 - 2015-05-23 06:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-06-10 12:30 - 2015-05-23 06:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-06-10 12:30 - 2015-05-23 06:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 12:30 - 2015-05-23 06:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-06-10 12:30 - 2015-05-23 06:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 12:30 - 2015-05-23 05:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-06-10 12:30 - 2015-05-23 05:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-10 12:30 - 2015-05-23 05:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-06-10 12:30 - 2015-05-23 05:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 12:30 - 2015-05-23 05:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 12:30 - 2015-05-23 05:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 12:30 - 2015-05-23 05:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 12:30 - 2015-05-23 05:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-10 12:30 - 2015-05-23 05:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 12:30 - 2015-05-23 05:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 12:30 - 2015-05-23 05:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 12:30 - 2015-05-23 05:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 12:30 - 2015-05-22 22:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-10 12:30 - 2015-05-22 22:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-10 12:30 - 2015-05-22 22:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-10 12:30 - 2015-05-22 22:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 12:30 - 2015-05-22 22:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 12:30 - 2015-05-22 22:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 12:30 - 2015-05-22 21:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-10 12:30 - 2015-05-22 21:53 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-10 12:30 - 2015-05-22 21:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 12:30 - 2015-05-22 21:52 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-10 12:30 - 2015-05-22 21:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 12:30 - 2015-05-22 21:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 12:30 - 2015-05-22 21:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 12:30 - 2015-05-22 21:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-10 12:30 - 2015-05-22 21:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-10 12:30 - 2015-05-22 21:36 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-10 12:30 - 2015-05-22 21:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-10 12:30 - 2015-05-22 21:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-10 12:30 - 2015-05-22 21:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 12:30 - 2015-05-22 21:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 12:30 - 2015-05-22 21:07 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-10 12:30 - 2015-05-22 21:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 12:30 - 2015-05-22 21:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 12:30 - 2015-05-22 21:05 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-10 12:30 - 2015-05-22 20:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 12:30 - 2015-05-22 20:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 12:30 - 2015-05-22 20:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 12:30 - 2015-05-22 20:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-09 23:37 - 2015-06-10 18:44 - 00000280 _____ C:\Windows\setupact.log
2015-06-09 23:37 - 2015-06-09 23:37 - 00001302 _____ C:\Windows\PFRO.log
2015-06-09 23:37 - 2015-06-09 23:37 - 00000000 _____ C:\Windows\setuperr.log
2015-06-01 11:43 - 2015-06-01 11:43 - 00000000 ____D C:\Users\user\AppData\Local\GWX
2015-05-31 14:54 - 2015-05-31 14:54 - 00054252 _____ C:\Windows\SysWOW64\CCCInstall_201505311454038235.log
2015-05-31 14:53 - 2015-05-31 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-05-31 14:53 - 2015-05-31 14:53 - 00000000 ____D C:\ProgramData\ATI
2015-05-31 11:46 - 2015-05-31 11:46 - 00000000 ____D C:\ProgramData\Rockstar Games
2015-05-30 15:23 - 2015-05-30 15:23 - 00000000 ____D C:\Users\user\AppData\Local\Activision
2015-05-29 18:33 - 2015-05-29 18:33 - 00003070 _____ C:\Windows\System32\Tasks\{44B9CADA-8367-45B8-8642-358E7DF4E1AA}
2015-05-29 18:33 - 2015-05-29 18:33 - 00003046 _____ C:\Windows\System32\Tasks\{88FEB3D1-C5BF-4EFD-9E40-27725EE66510}
2015-05-29 18:32 - 2015-05-29 18:32 - 00003070 _____ C:\Windows\System32\Tasks\{C8B08B83-2E1D-4C2A-A409-C9F56B9900F7}
2015-05-29 18:29 - 2015-05-29 19:00 - 00000766 _____ C:\Windows\CoD.INI
2015-05-29 18:29 - 2015-05-29 18:29 - 00000000 ____D C:\Users\user\AppData\Local\Disc_Soft_Ltd
2015-05-29 18:28 - 2015-05-29 18:28 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2015-05-27 01:41 - 2015-05-27 01:41 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00102128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00096448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2015-05-27 01:41 - 2015-05-27 01:41 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2015-05-27 01:40 - 2015-05-27 01:40 - 11089120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2015-05-27 01:38 - 2015-05-27 01:38 - 00294600 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2015-05-27 01:35 - 2015-05-27 01:35 - 19339264 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2015-05-27 01:28 - 2015-05-27 01:28 - 47902208 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2015-05-27 01:28 - 2015-05-27 01:28 - 00235008 _____ C:\Windows\system32\clinfo.exe
2015-05-27 01:28 - 2015-05-27 01:28 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2015-05-27 01:28 - 2015-05-27 01:28 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2015-05-27 01:28 - 2015-05-27 01:28 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2015-05-27 01:28 - 2015-05-27 01:28 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2015-05-27 01:27 - 2015-05-27 01:27 - 40989696 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2015-05-27 01:26 - 2015-05-27 01:26 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-05-27 01:26 - 2015-05-27 01:26 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-05-27 01:20 - 2015-05-27 01:20 - 28354560 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2015-05-27 01:15 - 2015-05-27 01:15 - 23626752 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2015-05-27 01:14 - 2015-05-27 01:14 - 05837824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2015-05-27 01:14 - 2015-05-27 01:14 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2015-05-27 01:14 - 2015-05-27 01:14 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2015-05-27 01:14 - 2015-05-27 01:14 - 00049664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2015-05-27 01:14 - 2015-05-27 01:14 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2015-05-27 01:12 - 2015-05-27 01:12 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2015-05-27 01:12 - 2015-05-27 01:12 - 00641088 _____ C:\Windows\SysWOW64\atiapfxx.blb
2015-05-27 01:12 - 2015-05-27 01:12 - 00641088 _____ C:\Windows\system32\atiapfxx.blb
2015-05-27 01:12 - 2015-05-27 01:12 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2015-05-27 01:12 - 2015-05-27 01:12 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2015-05-27 01:12 - 2015-05-27 01:12 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2015-05-27 01:12 - 2015-05-27 01:12 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2015-05-27 01:12 - 2015-05-27 01:12 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2015-05-27 01:11 - 2015-05-27 01:11 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2015-05-27 01:11 - 2015-05-27 01:11 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2015-05-27 01:11 - 2015-05-27 01:11 - 04590592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2015-05-27 01:09 - 2015-05-27 01:09 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2015-05-27 01:09 - 2015-05-27 01:09 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2015-05-27 01:08 - 2015-05-27 01:08 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2015-05-27 01:07 - 2015-05-27 01:07 - 00776192 _____ (AMD) C:\Windows\system32\atieclxx.exe
2015-05-27 01:07 - 2015-05-27 01:07 - 00246272 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2015-05-27 01:07 - 2015-05-27 01:07 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2015-05-27 01:07 - 2015-05-27 01:07 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00905728 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2015-05-27 01:04 - 2015-05-27 01:04 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2015-05-27 01:03 - 2015-05-27 01:03 - 00591872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2015-05-27 01:03 - 2015-05-27 01:03 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2015-05-27 01:03 - 2015-05-27 01:03 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2015-05-26 18:32 - 2015-05-26 18:32 - 00051200 _____ C:\Windows\system32\kdbsdk64.dll
2015-05-26 18:30 - 2015-05-26 18:30 - 00038912 _____ C:\Windows\SysWOW64\kdbsdk32.dll
2015-05-20 20:01 - 2015-04-11 06:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-05-19 13:11 - 2015-05-19 13:11 - 00001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-05-19 13:11 - 2015-05-19 13:11 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-05-18 14:17 - 2015-06-10 18:48 - 00952593 _____ C:\Windows\WindowsUpdate.log
2015-05-18 14:14 - 2015-05-18 14:14 - 00000000 ___HD C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2015-05-18 13:46 - 2015-05-18 13:46 - 00003128 _____ C:\Windows\System32\Tasks\{7AD9AF81-ED6D-479C-8309-4016C0AC5D88}
2015-05-13 20:38 - 2015-05-20 20:02 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2015-05-13 20:38 - 2015-05-20 20:02 - 00000000 ____D C:\ProgramData\Skype
2015-05-13 20:38 - 2015-05-13 20:38 - 00000000 ____D C:\Users\user\AppData\Local\Skype
2015-05-13 20:33 - 2015-05-01 16:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 20:33 - 2015-05-01 16:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 20:27 - 2015-03-14 06:21 - 01632768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 20:27 - 2015-03-14 06:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-05-13 20:27 - 2015-03-14 06:04 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 20:27 - 2015-03-14 06:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-05-13 17:44 - 2015-04-18 06:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 17:44 - 2015-04-18 05:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 17:39 - 2015-04-13 06:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 17:38 - 2015-04-20 06:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 17:38 - 2015-04-20 06:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 17:38 - 2015-04-20 05:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 17:38 - 2015-04-08 06:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-13 17:38 - 2015-04-08 06:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-13 17:38 - 2015-04-08 06:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-13 17:38 - 2015-03-04 07:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-13 17:38 - 2015-03-04 07:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-13 17:38 - 2015-03-04 07:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 17:38 - 2015-03-04 07:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-13 17:38 - 2015-03-04 07:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-13 17:38 - 2015-03-04 07:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-13 17:38 - 2015-03-04 07:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 17:38 - 2015-02-18 10:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-13 17:38 - 2015-02-18 10:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-13 17:38 - 2015-01-29 06:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 17:38 - 2015-01-29 06:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-10 19:37 - 2014-06-07 19:08 - 00000000 ____D C:\FRST
2015-06-10 19:16 - 2015-04-16 17:32 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-06-10 19:15 - 2015-04-11 09:14 - 00000000 ____D C:\Program Files\Rockstar Games
2015-06-10 19:15 - 2014-03-14 15:26 - 00000000 ____D C:\Users\user\Documents\My Games
2015-06-10 19:14 - 2015-04-14 05:43 - 00000080 _____ C:\Users\user\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-06-10 19:04 - 2013-11-28 17:33 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2015-06-10 19:00 - 2014-06-13 15:47 - 00000814 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-10 18:57 - 2009-07-14 07:45 - 00032096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-10 18:57 - 2009-07-14 07:45 - 00032096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-10 18:52 - 2013-11-26 23:19 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-10 18:50 - 2014-06-13 15:44 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1402663452
2015-06-10 18:50 - 2014-06-13 15:44 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-10 18:49 - 2011-04-12 17:56 - 00657404 _____ C:\Windows\system32\perfh01F.dat
2015-06-10 18:49 - 2011-04-12 17:56 - 00140330 _____ C:\Windows\system32\perfc01F.dat
2015-06-10 18:49 - 2009-07-14 08:13 - 01573064 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-10 18:44 - 2009-07-14 08:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-10 18:03 - 2013-12-07 00:03 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-10 17:44 - 2013-11-26 23:19 - 00001020 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-10 15:28 - 2014-06-13 15:47 - 00003752 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-10 15:28 - 2014-06-10 14:18 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-10 15:28 - 2014-06-10 14:18 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-10 15:19 - 2009-07-14 08:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-10 15:19 - 2009-07-14 07:45 - 00287112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-10 13:31 - 2014-12-11 13:38 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-10 13:31 - 2014-05-01 22:24 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-10 13:31 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-06-10 13:31 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-06-10 13:31 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-10 13:20 - 2013-11-29 21:07 - 00000000 ____D C:\Windows\system32\MRT
2015-06-10 13:13 - 2013-11-29 21:07 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-09 23:48 - 2014-12-20 14:27 - 00000000 ____D C:\Users\user\Documents\Euro Truck Simulator 2
2015-06-09 23:34 - 2014-08-12 19:18 - 00000000 ____D C:\Users\user\AppData\Roaming\uTorrent
2015-06-09 19:10 - 2014-06-12 11:33 - 00000000 ____D C:\Users\user\AppData\Roaming\DiskDefrag
2015-06-09 17:57 - 2014-06-12 11:34 - 00003268 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2015-06-09 17:57 - 2014-06-12 11:34 - 00002944 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2015-06-09 17:57 - 2014-06-12 11:34 - 00000605 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-06-09 13:21 - 2014-01-27 16:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-06-08 20:47 - 2014-08-12 19:51 - 00000000 ____D C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2015-06-08 17:59 - 2014-09-27 17:46 - 00000000 ____D C:\Users\user\Desktop\@_@
2015-06-08 13:28 - 2013-12-14 21:24 - 00000000 ____D C:\ProgramData\Origin
2015-06-08 13:24 - 2014-09-28 22:09 - 00226680 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-06-08 12:54 - 2013-11-28 18:22 - 00226680 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-06-05 18:54 - 2015-04-16 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-05-31 15:25 - 2014-08-20 00:50 - 00000000 ____D C:\Program Files (x86)\Java
2015-05-31 14:54 - 2014-12-10 17:20 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-05-31 14:54 - 2013-12-15 20:23 - 00000000 ____D C:\ProgramData\AMD
2015-05-31 14:52 - 2015-04-14 18:10 - 00000000 ____D C:\Program Files\AMD
2015-05-31 14:50 - 2013-12-15 20:20 - 00000000 ____D C:\AMD
2015-05-31 13:06 - 2015-03-15 17:35 - 73826304 _____ C:\Windows\system32\config\software.gu
2015-05-31 13:06 - 2015-03-15 17:35 - 00352256 _____ C:\Windows\system32\config\default.gu
2015-05-31 13:06 - 2015-03-15 17:35 - 00065536 _____ C:\Windows\system32\config\sam.gu
2015-05-31 13:06 - 2015-03-15 17:35 - 00024576 _____ C:\Windows\system32\config\security.gu
2015-05-31 13:05 - 2015-03-15 17:35 - 17711104 _____ C:\Windows\system32\config\system.gu
2015-05-31 12:15 - 2015-04-11 09:15 - 00000000 ____D C:\Users\user\Documents\Rockstar Games
2015-05-31 12:15 - 2014-03-18 16:34 - 00000000 ____D C:\Users\user\AppData\Local\SKIDROW
2015-05-31 11:46 - 2013-11-26 23:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-05-30 23:17 - 2015-03-03 20:25 - 00000000 ____D C:\Users\user\Documents\Wallpapers
2015-05-30 22:41 - 2014-08-15 13:36 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-30 22:35 - 2014-05-02 14:19 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-05-30 22:27 - 2014-01-03 18:55 - 00000000 ____D C:\Program Files\CCleaner
2015-05-30 22:18 - 2014-10-15 20:23 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-30 22:11 - 2009-07-14 06:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-05-30 14:57 - 2015-03-01 14:06 - 00000000 ____D C:\Windows\rescache
2015-05-30 09:30 - 2014-10-24 20:35 - 00000000 ____D C:\Users\user\Desktop\Okul
2015-05-29 18:43 - 2001-08-25 17:44 - 00012528 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2015-05-27 01:41 - 2015-03-31 23:46 - 01359752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2015-05-27 01:41 - 2015-03-31 23:46 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2015-05-27 01:41 - 2015-03-31 23:46 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2015-05-27 01:41 - 2015-03-31 23:46 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 09411256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 08381280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 08368872 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 07559840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 07077264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2015-05-27 01:40 - 2015-03-31 23:46 - 01136736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2015-05-27 01:07 - 2015-03-31 23:13 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2015-05-27 01:05 - 2014-11-21 05:10 - 00846848 _____ (AMD) C:\Windows\system32\coinst_14.50.dll
2015-05-27 01:04 - 2015-03-31 23:09 - 01218560 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2015-05-25 09:23 - 2015-03-15 17:34 - 00028960 _____ (Glarysoft Ltd) C:\Windows\system32\RegBootDefrag.exe
2015-05-20 20:01 - 2015-04-04 12:47 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-20 20:01 - 2015-04-04 12:47 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-19 16:08 - 2013-12-14 21:29 - 00000000 ____D C:\Users\user\AppData\Roaming\Origin
2015-05-19 13:25 - 2013-11-26 23:24 - 00062680 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-19 13:22 - 2014-04-01 15:43 - 00000000 ____D C:\Users\user\AppData\Roaming\TeamViewer
2015-05-19 12:39 - 2015-04-12 20:04 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2015-05-19 12:30 - 2014-02-02 23:08 - 00000000 ____D C:\Users\user\AppData\Local\Warframe
2015-05-18 23:39 - 2013-11-26 23:19 - 00004016 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-18 23:39 - 2013-11-26 23:19 - 00003764 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-18 13:23 - 2015-04-26 09:44 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-18 13:19 - 2015-04-26 09:38 - 00000000 ____D C:\Users\user\AppData\Roaming\Dropbox
2015-05-13 20:50 - 2014-03-14 19:04 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-05-13 20:50 - 2014-03-14 19:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 20:49 - 2011-04-12 18:08 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-13 20:49 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-13 20:33 - 2014-03-14 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2014-09-01 11:18 - 2015-03-01 17:00 - 0000365 _____ () C:\Users\user\AppData\Roaming\NUDWYBW
2014-09-27 17:37 - 2014-09-27 17:44 - 0007607 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
2013-12-28 01:14 - 2013-12-28 01:14 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-05 17:19
==================== End of log ============================ [CODE]Additional
FRST Logfile: Code:
scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by user at 2015-06-10 19:37:50
Running from C:\Users\user\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3174542653-2470958163-2242170335-500 - Administrator - Disabled)
Guest (S-1-5-21-3174542653-2470958163-2242170335-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3174542653-2470958163-2242170335-1002 - Limited - Enabled)
user (S-1-5-21-3174542653-2470958163-2242170335-1000 - Administrator - Enabled) => C:\Users\user
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{637D7E6D-2798-E0D0-D257-1796F13B951F}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.5.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.5.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
f.lux (HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\Flux) (Version: - )
Fotoğraf Galerisi (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Glary Utilities 5.27 (HKLM-x32\...\Glary Utilities 5) (Version: 5.27.0.47 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.3 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.3 - ASUS) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware 2.1.6.1022 sürümü (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Türkçe) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1055) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.7 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
Opera Stable 30.0.1835.59 (HKLM-x32\...\Opera 30.0.1835.59) (Version: 30.0.1835.59 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A6FAFB55-AD24-43F4-A9A5-8CB790F8976A}) (Version: 6.1.4.0 - Husdawg, LLC)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42650 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version: - )
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3174542653-2470958163-2242170335-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
09-06-2015 13:25:25 Windows Update
10-06-2015 13:12:19 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 05:34 - 2009-06-11 00:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0BAF1CE4-A51C-43FE-8FD1-D208AD7CA281} - System32\Tasks\{88FEB3D1-C5BF-4EFD-9E40-27725EE66510} => pcalua.exe -a G:\Launch.exe -d G:\
Task: {143E46BB-4A38-41EB-92A0-A9E868C4ED7E} - System32\Tasks\Driver Booster SkipUAC (user) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {17AAD459-F884-4106-970D-58D5ABB482F6} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {1A82EF4D-20F2-4388-BDBC-C0DBA84EC5D9} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-28] (Microsoft Corporation)
Task: {1E5835A8-4945-4F78-B72E-BBF6EB526630} - System32\Tasks\{7AD9AF81-ED6D-479C-8309-4016C0AC5D88} => pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
Task: {33838D1B-1F88-4B8E-A1CB-EF2F1CF52837} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-08] (Microsoft Corporation)
Task: {3399ADD4-BAC3-481C-9A97-0710D7033BEF} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-08] (Microsoft Corporation)
Task: {35FD9236-3C69-439E-A5F3-ECE578E71084} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {3D26808A-3F93-4805-9CC2-2B00078841E9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-04-26] (Avast Software s.r.o.)
Task: {3FDFD5BB-03E7-4EE2-9A9D-488B73961FC3} - System32\Tasks\Opera scheduled Autoupdate 1402663452 => C:\Program Files (x86)\Opera\launcher.exe [2015-06-10] (Opera Software)
Task: {42099780-F933-4285-9C5F-4DFE64B21A68} - System32\Tasks\{57A10B65-0DD0-419D-B0A7-99129D68469A} => pcalua.exe -a "D:\Sid Meiers Civilization Beyond Earth\DirectX\D3D11Install.exe" -d "D:\Sid Meiers Civilization Beyond Earth\DirectX"
Task: {4961B7E1-6A17-4BB6-8AC8-28C994140297} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2013-01-25] (ASUSTek Computer Inc.)
Task: {54663587-B240-478E-87ED-5F17208F7187} - System32\Tasks\GU5SkipUAC => D:\Glary Utilities 5\Integrator.exe [2015-06-08] (Glarysoft Ltd)
Task: {55F9E202-C2AA-4E43-AC12-E53A19357D20} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {6FA92546-52D6-45A1-8654-FA2CC834C9A6} - System32\Tasks\{44B9CADA-8367-45B8-8642-358E7DF4E1AA} => pcalua.exe -a F:\setup\rsrc\Autorun.exe -d F:\
Task: {8C1607E9-7712-4C74-B4D7-CF83BB37AA79} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {9329C071-8D60-4338-95D6-A404E334A4D7} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {94033926-FB95-4775-8802-E3F6DA4AF88B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-10] (Adobe Systems Incorporated)
Task: {9ACB0999-8B1E-42AC-AA74-EABB117F2F22} - System32\Tasks\{C8B08B83-2E1D-4C2A-A409-C9F56B9900F7} => pcalua.exe -a G:\setup\rsrc\Autorun.exe -d G:\
Task: {9EF8BDA2-2D78-4305-8058-D547FA129274} - System32\Tasks\{3BF20705-2AAE-4314-AA85-652B705F8CB8} => pcalua.exe -a C:\Users\user\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=amt
Task: {AB40F21A-53AC-4B10-A0FF-1CCD33861898} - System32\Tasks\GlaryInitialize 5 => D:\Glary Utilities 5\Initialize.exe [2015-06-08] (Glarysoft Ltd)
Task: {AE72C0CE-B90F-4008-94FE-10F0CA6AAE3E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {CBA5991B-CE5B-4FF5-A624-B1475CE29529} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {D16F4138-FDE6-49FC-AD40-2C5CC6624245} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-08] (Microsoft Corporation)
Task: {D6931163-CE84-45AF-9C00-E237CAE16E8D} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {DD5D9D77-D42D-4DE6-A2E2-8DAD50252EF3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {ED9701BE-A315-494B-B8AD-110B16AAD682} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {F04D8A6F-9C7C-4222-ADC9-F28114B77BF6} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-08] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2013-11-26 23:19 - 2012-10-29 10:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2014-09-28 22:09 - 2015-01-22 23:05 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-05-07 02:07 - 2015-05-07 02:07 - 54800856 _____ () C:\Program Files\Rockstar Games\Social Club\libcef.dll
2015-04-26 09:37 - 2015-04-26 09:37 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-04-26 09:37 - 2015-04-26 09:37 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-10 15:30 - 2015-06-10 15:30 - 02953216 _____ () C:\Program Files\AVAST Software\Avast\defs\15061000\algo.dll
2013-11-26 23:19 - 2015-06-10 18:44 - 00027648 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2013-11-26 23:19 - 2012-05-07 19:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2015-03-15 17:47 - 2015-03-15 17:47 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-08 10:18 - 2015-06-08 10:18 - 00080160 _____ () D:\Glary Utilities 5\zlib1.dll
2015-06-09 19:13 - 2015-06-05 21:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libglesv2.dll
2015-06-09 19:13 - 2015-06-05 21:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3174542653-2470958163-2242170335-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: GUDelayStartup => "D:\Glary Utilities 5\StartupManager.exe" -delayrun
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{568419A3-E11F-485B-AE11-A9B0F3A04D6E}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{9E38031F-0A2C-48E5-B2A5-A7CA96662C44}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [TCP Query User{B0AF1330-5D94-4587-A2BB-76A1CB70AE9F}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{CF81F85D-43D9-4383-BDCB-0290BD762F30}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [{C633BCD5-5BDC-4FE4-BBD3-3FFB9475C751}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8D3734C7-E6B9-4919-8F3A-3FBCC2034205}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CB254D9E-7F4B-4743-B56B-C49A5117AA52}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{6C9ED2F4-1A46-4D6C-8B00-ECD9A07F8301}] => (Allow) LPort=2869
FirewallRules: [{C3C62C3F-0A55-4C77-B561-B72BFDB75BA4}] => (Allow) LPort=1900
FirewallRules: [{4B23F72C-3029-459B-918F-9AB2B4CF11FA}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{579B2DA0-A462-4A64-A024-4DA6F568D85B}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{2C353324-C689-4AC2-A441-D3F52E54AFB1}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{5512B930-134F-46B1-B770-0FAD393DBF13}C:\users\user\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\user\appdata\local\akamai\netsession_win.exe
FirewallRules: [{E2F3B774-E202-497D-87BC-9BD8CEC1AA6D}] => (Allow) C:\Program Files\CyberGhost 5\CyberGhost.exe
FirewallRules: [{7E3ED3D7-E619-4020-8CEE-7F4591C739F6}] => (Allow) C:\Program Files\CyberGhost 5\CyberGhost.exe
FirewallRules: [{25C81D96-7FB5-4F26-9AF5-3B6412B75640}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DA46083E-3BC0-4796-AAC3-0E605D5A1145}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{9C3473D5-A9C6-49D8-8BF7-F638132F4163}D:\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{1866B7DB-5B1C-4BB3-B454-790F8D4DAB32}D:\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{F24DB653-3667-4572-BEA0-D2CF38C23C68}] => (Allow) D:\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{B63C5260-9DBF-4EC8-AFFF-712851790C71}] => (Allow) D:\Vindictus EU\en-EU\NMService.exe
FirewallRules: [TCP Query User{0C72003E-D39C-4C09-A164-FBD7F6C8448E}D:\vindictus eu\en-eu\vindictus.exe] => (Allow) D:\vindictus eu\en-eu\vindictus.exe
FirewallRules: [UDP Query User{41E97712-21E8-442E-B9B9-1026972F6BDE}D:\vindictus eu\en-eu\vindictus.exe] => (Allow) D:\vindictus eu\en-eu\vindictus.exe
FirewallRules: [{32B85DCF-6E2D-4C0A-B2D7-9133D9EF4108}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{81D0356F-B0F1-489F-BC13-32F5D73B2770}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{236242AD-C515-4285-9BC0-1E1077DAE933}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0A90EC5A-CB5E-4150-B269-1106B4A8D398}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0C0A139D-2E06-4E04-90A7-45F29BC466A2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{24980BFE-96DE-407C-A936-B84DF8B786F4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AD126C90-95DC-4F2A-9EC9-8A40B13C44A4}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8BF2B279-878B-40C0-92FB-7E28503D3088}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{30441F7C-34D3-454D-A3DD-04E3477378CF}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{00DF54C3-11E3-43DE-9298-79D8A4AE2900}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{162A5540-61EA-4385-881F-C719F041EB6C}] => (Allow) D:\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{1084E094-3BA2-4C74-813C-41E79CC05CCF}] => (Allow) D:\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{7AF723FF-C03D-4940-820B-16EA4771B11F}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D2A23787-4FA3-4BBE-9661-66E6CC2E1E56}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{2D3A97D3-B835-4A78-8538-06D1DDD854D5}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{76AC90A2-FEA1-479E-9B49-40BB24B99B36}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{D4ADB46B-14E1-4BD3-AAB1-82CB03828C87}D:\program files (x86)\rockstar games\gta5.exe] => (Allow) D:\program files (x86)\rockstar games\gta5.exe
FirewallRules: [UDP Query User{083DC80F-9B4D-4001-A530-05EDB1DC000B}D:\program files (x86)\rockstar games\gta5.exe] => (Allow) D:\program files (x86)\rockstar games\gta5.exe
FirewallRules: [{82790415-389A-4DCC-BBD1-7BBA8ED657C7}] => (Block) D:\program files (x86)\rockstar games\gta5.exe
FirewallRules: [{227C6706-8E91-4CE6-A26D-F100A8E69E1A}] => (Block) D:\program files (x86)\rockstar games\gta5.exe
FirewallRules: [{1FC5BD66-25C0-4B9D-8593-F7C638102F3C}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{9ADE7397-2DA4-4415-9C2F-171BBEFE7E8F}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1C9394F5-94E6-474E-BB9B-52C17C3A9B25}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{058269A7-EA3C-4DF4-A2D4-95B92562245A}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{DB5C5F07-7DD6-4E10-8AEF-314D32400911}] => (Allow) D:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{DB698F64-DFF7-479C-B5F1-7FB2D19876D4}] => (Allow) D:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{DDEEF39F-50D1-434F-A82D-FF04DDF3771D}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{5986AE7D-3E8E-4AD0-954E-54E46B82B68A}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{405E41EF-6A5B-4605-A10C-A86C9002CD7D}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{20EF6E8D-5157-47EE-A085-E378E2421A7C}] => (Allow) D:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{8DB989CC-C80F-4E8A-BD9C-17563026FC68}] => (Allow) D:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{8AD834EB-6212-4F4E-9FCA-6EB5D79CA1E5}] => (Allow) D:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA5B17B6-FA61-4161-9E20-B19E4E58F758}] => (Allow) C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{60A72A68-3272-468E-AEE8-2CDC61B7D79C}] => (Allow) C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FABF74DD-39CC-442B-9B58-B9D40DC94D1F}] => (Allow) C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{EDB9C0AC-9E29-4489-BAC9-BBD78281C2EA}] => (Allow) C:\Users\user\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DED545E2-3608-4632-B9A0-5D37A25E1C17}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F89C5755-E44E-441A-BD6D-6304DA5FCE22}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A48E2627-AC63-4876-87EB-6AE0B5E4CDE6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4AA59D78-D832-4360-80ED-7AE50AC950F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{3FA1FBDC-B7EE-4978-8C37-9FE4C331CC5C}D:\program files (x86)\activison\call of duty - black ops\blackops.exe] => (Allow) D:\program files (x86)\activison\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{2D7331C8-A555-4B4E-9E73-45535324722F}D:\program files (x86)\activison\call of duty - black ops\blackops.exe] => (Allow) D:\program files (x86)\activison\call of duty - black ops\blackops.exe
FirewallRules: [{ABADA420-69DB-4B2F-ABB6-D3DC244F162F}] => (Block) D:\program files (x86)\activison\call of duty - black ops\blackops.exe
FirewallRules: [{5B95B8DB-5EAF-4722-A6E3-242C087BA5C7}] => (Block) D:\program files (x86)\activison\call of duty - black ops\blackops.exe
FirewallRules: [{C02CC6FC-C415-4177-BBFD-6736AE0CA180}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{291AFEAB-84E3-42F3-B02C-9375F343C1E9}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BD1EEC63-4B9E-4D4A-A2CE-875F18E20E77}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{2D98C77B-0DB4-4961-B3EF-5BBEEA3154BC}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{4A917ED2-1002-4C49-8F8F-92748B0C7466}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{3D032E6E-66AB-40EA-8910-644F8D5293A5}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{9D2009C4-9DFD-4E90-9BC5-29869CCEDE5B}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{5D47EEE5-41A2-40A4-B71E-E26C5114DD73}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{407C3664-A423-4B03-BD60-807D9756B7FA}D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe] => (Allow) D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{A5435BD4-7CA8-41E4-B430-677E48080723}D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe] => (Allow) D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe
FirewallRules: [{5BD90B94-C2A4-4677-A173-5F1B4F7FD0A8}] => (Block) D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe
FirewallRules: [{30B0EC1E-9A3F-42A2-AAAB-3B57A5901CA6}] => (Block) D:\program files (x86)\xcom enemy within\xew\binaries\win32\xcomew.exe
FirewallRules: [{F5773630-D01E-4C87-9460-BEFD8484314C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/10/2015 07:04:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: GTAVLauncher.exe, sürüm: 1.0.372.2, zaman damgası: 0x5576ce28
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x000000027f8cd5f8
Hatalı işlem kimliği: 0xda8
Uygulama başlangıç zamanı: 0xGTAVLauncher.exe0
Hatalı uygulama yolu: GTAVLauncher.exe1
Hatalı modül yolu: GTAVLauncher.exe2
Rapor kimliği: GTAVLauncher.exe3
Error: (06/10/2015 06:47:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x032f4c0d
Hatalı işlem kimliği: 0xf08
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3
Error: (06/10/2015 06:47:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (06/10/2015 06:44:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/10/2015 03:59:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: GTA5.exe, sürüm: 1.0.350.2, zaman damgası: 0x554348e6
Hatalı modül adı: GTA5.exe, sürüm: 1.0.350.2, zaman damgası: 0x554348e6
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x000000000098fb34
Hatalı işlem kimliği: 0x778
Uygulama başlangıç zamanı: 0xGTA5.exe0
Hatalı uygulama yolu: GTA5.exe1
Hatalı modül yolu: GTA5.exe2
Rapor kimliği: GTA5.exe3
Error: (06/10/2015 03:50:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: GTAVLauncher.exe programının 1.0.350.1 sürümü, Windows ile birlikte çalışmayı durdurdu ve kapatıldı. Sorun hakkında daha fazla bilgi olup olmadığını görmek için Eylem Merkezi denetim masasında sorunun geçmişini denetleyin.
İşlem Kimlik No: 15e4
Başlatma Saati: 01d0a37b7a836ee8
Sona Erdirme Saati: 66
Uygulama Yolu: D:\Program Files (x86)\Rockstar Games\GTAVLauncher.exe
Rapor Kimliği: 4690a818-0f6f-11e5-9e7f-ac220b835a42
Error: (06/10/2015 03:49:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: GTA5.exe, sürüm: 1.0.350.2, zaman damgası: 0x554348e6
Hatalı modül adı: GTA5.exe, sürüm: 1.0.350.2, zaman damgası: 0x554348e6
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x000000000156554c
Hatalı işlem kimliği: 0xc9c
Uygulama başlangıç zamanı: 0xGTA5.exe0
Hatalı uygulama yolu: GTA5.exe1
Hatalı modül yolu: GTA5.exe2
Rapor kimliği: GTA5.exe3
Error: (06/10/2015 03:22:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: IAStorDataMgrSvc.exe, sürüm: 12.0.0.1083, zaman damgası: 0x50f6d81d
Hatalı modül adı: unknown, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Özel durum kodu: 0xc0000005
Hata uzaklığı 0x036a4c0d
Hatalı işlem kimliği: 0xb74
Uygulama başlangıç zamanı: 0xIAStorDataMgrSvc.exe0
Hatalı uygulama yolu: IAStorDataMgrSvc.exe1
Hatalı modül yolu: IAStorDataMgrSvc.exe2
Rapor kimliği: IAStorDataMgrSvc.exe3
Error: (06/10/2015 03:22:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (06/10/2015 03:19:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (06/10/2015 06:47:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/10/2015 03:22:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/10/2015 00:21:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/10/2015 00:41:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/09/2015 11:40:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/09/2015 07:14:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/09/2015 05:58:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/09/2015 05:55:10 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 17:53:48, 09.06.2015 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.
Error: (06/09/2015 01:23:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Error: (06/08/2015 11:16:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Intel(R) Rapid Storage Technology hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.
Microsoft Office:
=========================
Error: (06/10/2015 07:04:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTAVLauncher.exe1.0.372.25576ce28unknown0.0.0.000000000c0000005000000027f8cd5f8da801d0a396df396a8dD:\Program Files (x86)\Rockstar Games\GTAVLauncher.exeunknown50bc209c-0f8a-11e5-8bb2-ac220b835a42
Error: (06/10/2015 06:47:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005032f4c0df0801d0a39496995a97C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknownf02b05ad-0f87-11e5-8bb2-ac220b835a42
Error: (06/10/2015 06:47:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (06/10/2015 06:44:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/10/2015 03:59:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.2554348e6GTA5.exe1.0.350.2554348e6c0000005000000000098fb3477801d0a37ce0044f2fD:\Program Files (x86)\Rockstar Games\GTA5.exeD:\Program Files (x86)\Rockstar Games\GTA5.exe75d052ec-0f70-11e5-9e7f-ac220b835a42
Error: (06/10/2015 03:50:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: GTAVLauncher.exe1.0.350.115e401d0a37b7a836ee866D:\Program Files (x86)\Rockstar Games\GTAVLauncher.exe4690a818-0f6f-11e5-9e7f-ac220b835a42
Error: (06/10/2015 03:49:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GTA5.exe1.0.350.2554348e6GTA5.exe1.0.350.2554348e6c0000005000000000156554cc9c01d0a37b925b9a69D:\Program Files (x86)\Rockstar Games\GTA5.exeD:\Program Files (x86)\Rockstar Games\GTA5.exe2ae9bdae-0f6f-11e5-9e7f-ac220b835a42
Error: (06/10/2015 03:22:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.0.0.108350f6d81dunknown0.0.0.000000000c0000005036a4c0db7401d0a377f8b08f3dC:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown51909acc-0f6b-11e5-9e7f-ac220b835a42
Error: (06/10/2015 03:22:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Uygulama: IAStorDataMgrSvc.exe
Framework Sürümü: v4.0.30319
Açıklama: İşlenmeyen bir özel durum nedeniyle işlem sonlandırıldı.
Özel Durum Bilgisi: System.NullReferenceException
Yığın:
konum: IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
konum: IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
konum: IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
konum: System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
konum: System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
konum: System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
konum: System.Threading.ThreadPoolWorkQueue.Dispatch()
konum: System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (06/10/2015 03:19:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz
Percentage of memory in use: 26%
Total physical RAM: 8097.91 MB
Available physical RAM: 5967.83 MB
Total Pagefile: 16194.02 MB
Available Pagefile: 13806.24 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.79 GB) (Free:53.93 GB) NTFS
Drive d: (Yeni Birim) (Fixed) (Total:931.41 GB) (Free:744.42 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0F93EAA4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 0F93EADC)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)
==================== End of log ============================ --- --- --- |