Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:01-12-2015
durchgeführt von Aneczka (Administrator) auf ANECZKA-PC (03-12-2015 17:07:47)
Gestartet von C:\Users\Aneczka\Desktop
Geladene Profile: Aneczka (Verfügbare Profile: Aneczka & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: "C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" "%1")
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

() C:\Windows\SysWOW64\PSIService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(GG Network S.A.) C:\Users\Aneczka\AppData\Local\GG\Application\gghub.exe
(GG Network S.A.) C:\Users\Aneczka\AppData\Local\GG\Application\ggapp.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8067616 2009-08-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe [61440 2009-02-25] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1280836393-1798441447-3805755999-1000\...\Run: [ehTray.exe] => c:\windows\ehome\ehtray.exe [163328 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-21-1280836393-1798441447-3805755999-1000\...\Run: [GG] => C:\Users\Aneczka\AppData\Local\GG\Application\gghub.exe [4078144 2015-03-24] (GG Network S.A.)
HKU\S-1-5-21-1280836393-1798441447-3805755999-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8295bc72-cd7b-11de-a620-806e6f6e6963}: [NameServer] 5.104.108.204
Tcpip\..\Interfaces\{8A33152E-8310-44E3-A789-1B2464D318C3}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-1280836393-1798441447-3805755999-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1280836393-1798441447-3805755999-1000 -> SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05] (Microsoft Corporation)
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Kein Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> Keine Datei
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-03]
CHR Extension: (Google Docs) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-03]
CHR Extension: (Google Drive) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-07]
CHR Extension: (Google-Suche) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Search by Image (by Google)) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2015-10-30]
CHR Extension: (Bing) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-07-23]
CHR Extension: (Google Tabellen) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-03]
CHR Extension: (Google Docs Offline) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2015-04-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-03]
CHR Extension: (Google Quick Scroll) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2015-09-04]
CHR Extension: (Google Mail) - C:\Users\Aneczka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]

Opera: 
=======
OPR Extension: (Photo Tagger) - C:\Users\Aneczka\AppData\Roaming\Opera Software\Opera Stable\Extensions\mknamppckfmfbebjliiohafcmbhladbl [2015-10-11]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] ()
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 ahcix64s; C:\Windows\System32\DRIVERS\ahcix64s.sys [224272 2008-09-10] (AMD Technologies Inc.)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [10632 2007-10-12] (Advanced Micro Devices)
S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-09-03] (Brother Industries Ltd.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S4 FTT3; C:\Windows\system32\drivers\ftt3.sys [199176 2008-02-19] (Promise Technology, Inc.)
S4 mv64xx; C:\Windows\system32\drivers\mv64xx.sys [316456 2008-09-01] (Marvell Semiconductor, Inc.)
S4 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [166944 2008-08-18] (NVIDIA Corporation)
S3 phaudlwr; C:\Windows\System32\DRIVERS\phaudlwr.sys [114608 2009-10-20] (Philips Applied Technologies)
S3 RTL2832UBDA; C:\Windows\SysWOW64\drivers\RTL2832UBDA.sys [117152 2009-10-26] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\Windows\SysWOW64\Drivers\RTL2832UUSB.sys [38944 2009-10-26] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832U_IRHID; C:\Windows\SysWOW64\DRIVERS\RTL2832U_IRHID.sys [44320 2009-10-05] (Realtek)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications)
S3 SPC530; C:\Windows\System32\drivers\SPC530.sys [583168 2008-05-21] (                                                            )
S3 SPC530m; C:\Windows\System32\drivers\SPC530m.sys [8192 2008-05-21] (                                                            )

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-03 17:01 - 2015-12-03 17:01 - 00218114 _____ C:\Users\Aneczka\Documents\cc_20151203_170154.reg
2015-12-03 16:55 - 2015-12-03 16:55 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\Mozilla
2015-12-03 16:47 - 2015-12-03 16:50 - 00092474 _____ C:\Users\Aneczka\Desktop\Fixlog.txt
2015-12-03 16:21 - 2015-12-03 16:21 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\Real
2015-12-03 14:22 - 2015-12-03 14:22 - 00003300 _____ C:\Windows\System32\Tasks\{52D8C232-7C87-457C-8FCA-73DB3FC2F280}
2015-12-03 11:14 - 2015-12-03 11:14 - 00859321 _____ C:\Users\Aneczka\Documents\gmer.txt
2015-12-03 04:45 - 2015-12-03 04:45 - 00380416 _____ C:\Users\Aneczka\Desktop\s5lm7j84.exe
2015-12-03 03:31 - 2015-12-03 03:31 - 723143704 _____ C:\Windows\MEMORY.DMP
2015-12-03 03:31 - 2015-12-03 03:31 - 00468120 _____ C:\Windows\Minidump\120315-45833-01.dmp
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla7
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla6
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla5
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla4
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla3
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla2
2015-12-03 01:11 - 2015-12-03 07:32 - 00003292 _____ C:\Windows\System32\Tasks\Urla1
2015-12-03 00:05 - 2015-12-03 00:05 - 00116039 _____ C:\Users\Aneczka\Desktop\Shortcut.txt
2015-12-03 00:04 - 2015-12-03 00:05 - 00051969 _____ C:\Users\Aneczka\Desktop\Addition.txt
2015-12-03 00:03 - 2015-12-03 17:08 - 00011240 _____ C:\Users\Aneczka\Desktop\FRST.txt
2015-12-03 00:03 - 2015-12-03 00:03 - 02350080 _____ (Farbar) C:\Users\Aneczka\Desktop\FRST64.exe
2015-12-02 23:13 - 2015-12-03 17:07 - 00000000 ____D C:\FRST
2015-12-02 23:11 - 2015-12-03 14:24 - 00000000 ____D C:\Users\Aneczka\AppData\Local\Deployment
2015-12-02 23:11 - 2015-12-02 23:11 - 00000000 ____D C:\Users\Aneczka\AppData\Local\Apps\2.0
2015-12-02 22:44 - 2015-12-02 22:45 - 00000000 ____D C:\KVRT_Data
2015-12-02 22:20 - 2015-12-02 22:20 - 22908888 _____ (Malwarebytes ) C:\Users\Aneczka\Downloads\Malwarebytes Anti-Malware Free 2.2.0.1024.exe
2015-12-02 19:54 - 2015-12-02 19:54 - 00000000 ____D C:\Program Files (x86)\ESET
2015-11-30 23:27 - 2015-12-02 20:38 - 00000000 ____D C:\AdwCleaner
2015-11-30 23:12 - 2015-12-02 21:45 - 00000000 ____D C:\EEK
2015-11-30 22:55 - 2015-11-30 22:55 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-30 01:11 - 2015-12-02 21:45 - 00000000 ____D C:\Users\Aneczka\Documents\benko
2015-11-29 17:45 - 2015-11-29 17:45 - 00751167 _____ C:\Users\Aneczka\Downloads\zdjciadlaciebie11.zip
2015-11-29 15:23 - 2015-11-30 22:15 - 00000000 ____D C:\ProgramData\HitmanPro
2015-11-29 15:10 - 2015-11-29 15:11 - 00455503 _____ C:\Users\Aneczka\Downloads\DummyCreator.zip
2015-11-27 08:14 - 2015-11-27 08:14 - 00368133 _____ C:\Users\Aneczka\Downloads\IKEA-Geschenk-20151127.pdf
2015-11-26 20:01 - 2015-11-26 20:01 - 00597239 _____ C:\Users\Aneczka\Downloads\zdjciadlaciebie8.zip
2015-11-25 21:52 - 2015-11-25 21:52 - 00216178 _____ C:\Users\Aneczka\Desktop\Connections.pdf
2015-11-23 21:29 - 2015-11-23 21:30 - 01511741 _____ C:\Users\Aneczka\Desktop\trumpet-amigo-gebraucht-g000801180.pdf
2015-11-23 12:20 - 2015-11-23 12:20 - 01687663 _____ C:\Users\Aneczka\Downloads\zdjciadlaciebie21.zip
2015-11-20 13:59 - 2015-11-20 13:59 - 00003870 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1444504844
2015-11-20 13:58 - 2015-12-02 21:57 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3786124F-0B00-4DEE-B7DD-765BDC341960}
2015-11-19 19:36 - 2015-11-19 19:36 - 00969658 _____ C:\Users\Aneczka\Downloads\zdjciadlaciebie14.zip
2015-11-17 14:24 - 2015-11-17 14:24 - 00091832 _____ C:\Users\Aneczka\Downloads\BIGinformiert_Leistungsübersicht.pdf
2015-11-17 12:32 - 2015-11-17 12:32 - 00573616 _____ C:\Users\Aneczka\Downloads\Ice_Pop_Koozie.pdf
2015-11-16 19:17 - 2015-11-16 19:17 - 00000000 ____D C:\Users\Aneczka\Desktop\lyzwy
2015-11-16 19:16 - 2015-11-16 19:16 - 00083113 _____ C:\Users\Aneczka\Downloads\2bilderfrsie.zip
2015-11-15 21:12 - 2015-12-03 01:14 - 00000000 ____D C:\Users\Aneczka\Desktop\dkk
2015-11-15 21:11 - 2015-11-15 21:11 - 00197655 _____ C:\Users\Aneczka\Downloads\4bilderfrsie.zip
2015-11-15 15:04 - 2015-11-15 15:05 - 00048497 _____ C:\Users\Aneczka\Desktop\sfcdetails.txt
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\vpnplugins
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\SysWOW64\SMI
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\SysWOW64\Ipmi
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\SysWOW64\AppLocker
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\SysWOW64\0409
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\SystemResources
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\system32\Ipmi
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\system32\AppLocker
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\system32\0409
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\InputMethod
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\ImmersiveControlPanel
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\FileManager
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\ELAMBKUP
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\CSC
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\CbsTemp
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\BrowserChoice
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Windows\AppReadiness
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Users\Aneczka\Desktop\Portablemd
2015-11-15 14:15 - 2015-11-15 14:15 - 00000000 ____D C:\Users\Aneczka\Desktop\Devices
2015-11-13 18:24 - 2015-10-30 08:09 - 00000001 ___SH C:\BOOTNXT
2015-11-13 12:33 - 2015-11-13 12:33 - 09982926 _____ C:\Users\Aneczka\Desktop\D5200VRUM_EU(Pl)01(2).pdf
2015-11-12 23:52 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-12 22:47 - 2015-11-12 22:47 - 01599510 _____ C:\Users\Aneczka\Desktop\ba_beluga_dt._05.09.pdf
2015-11-12 07:34 - 2015-12-03 16:14 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-12 07:34 - 2015-11-12 09:15 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-11 06:25 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-11 06:25 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-11 06:25 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 06:25 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-11 06:25 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 06:25 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 06:25 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-11 06:25 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-11 06:25 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-11 06:25 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 06:25 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-11 06:25 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-11 06:25 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-11 06:25 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-11 06:25 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-11 06:25 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-11 06:25 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 06:25 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 06:25 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-11 06:25 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 06:25 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-11 06:25 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-11 06:25 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 06:25 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-11 06:25 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-11 06:25 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-11 06:25 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-11 06:25 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-11 06:25 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-11 06:25 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-11 06:25 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-11 06:25 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-11 06:25 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-11 06:25 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-11 06:25 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-11 06:25 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-11 06:25 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-11 06:25 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-11 06:25 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-11 06:25 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-11 06:25 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-11 06:25 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 06:25 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 06:25 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-11 06:25 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-11 06:25 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-11 06:25 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-11 06:25 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 06:25 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-11 06:25 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-11 06:25 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-11 06:25 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 06:25 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-11 06:25 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-11 06:25 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-11 06:25 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-11 06:25 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-11 06:25 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-11 06:25 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-11 06:25 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 06:25 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 06:25 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-11 06:25 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-11 06:25 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-11 06:25 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-11 06:25 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 06:25 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-11 06:25 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 06:25 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 06:25 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-11 06:25 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-11 06:25 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-11 06:25 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-11 06:25 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-11 06:23 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 06:23 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 06:23 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-11 06:23 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-11 06:23 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-11 06:23 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-11 06:23 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-11 06:23 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-11 06:23 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-11 06:23 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-11 06:23 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-11 06:23 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-11 06:23 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-11 06:23 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-11 06:23 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-11 06:23 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-11 06:23 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-11 06:23 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-11 06:23 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-11 06:23 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-11 06:23 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-11 06:23 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-11 06:23 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-11 06:23 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-11 06:23 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-11 06:23 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 06:23 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-11 06:23 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 06:23 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 06:23 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 06:23 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-11 06:22 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-11 06:22 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-11 06:22 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-11 06:22 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-11 06:22 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-11 06:22 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-11 06:22 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-11 06:22 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-11 06:22 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-11 06:22 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-11 06:22 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-11 06:22 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 06:22 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 06:22 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 06:22 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 06:22 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-11 06:22 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-11 06:22 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-11 06:22 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-10 23:27 - 2015-11-10 23:27 - 09982926 _____ C:\Users\Aneczka\Desktop\D5200VRUM_EU(Pl)01.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-03 17:04 - 2009-11-09 23:05 - 00019344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-03 17:04 - 2009-11-09 23:05 - 00019344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-03 16:52 - 2015-01-24 21:35 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-03 16:52 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-03 16:49 - 2013-04-21 21:32 - 00000000 ____D C:\Windows\pss
2015-12-03 16:49 - 2009-12-08 10:49 - 00000000 ___SD C:\Users\Aneczka\AppData\LocalLow\Temp
2015-12-03 16:48 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-12-03 16:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-12-03 16:42 - 2010-01-27 21:23 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-03 16:37 - 2009-08-26 12:55 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-12-03 16:36 - 2013-07-12 14:59 - 00000000 ____D C:\Program Files (x86)\Xvid
2015-12-03 16:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-12-03 15:59 - 2012-06-26 10:04 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-12-03 14:40 - 2013-07-12 15:02 - 00000000 ____D C:\Program Files\DivX
2015-12-03 14:40 - 2013-07-12 14:59 - 00000000 ____D C:\ProgramData\DivX
2015-12-03 14:40 - 2013-07-12 14:59 - 00000000 ____D C:\Program Files (x86)\DivX
2015-12-03 14:37 - 2009-10-18 16:20 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-12-03 14:27 - 2009-11-23 14:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-03 11:13 - 2012-09-05 19:12 - 00281600 ___SH C:\Users\Aneczka\Documents\Thumbs.db
2015-12-03 04:34 - 2013-06-20 08:01 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\GG
2015-12-03 03:31 - 2010-02-01 20:43 - 00000000 ____D C:\Windows\Minidump
2015-12-03 03:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-03 00:34 - 2010-04-14 09:38 - 00000000 ____D C:\Program Files (x86)\TransDeu3
2015-12-02 21:51 - 2014-03-12 15:42 - 00000000 ____D C:\Users\Aneczka\AppData\Local\GG
2015-12-02 21:48 - 2009-11-09 23:07 - 00000000 ____D C:\Users\Aneczka
2015-12-02 21:46 - 2015-04-05 22:33 - 00000000 ___SD C:\Windows\system32\GWX
2015-12-02 21:46 - 2014-10-21 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-02 21:46 - 2013-06-20 08:04 - 00000000 ___SD C:\Users\Aneczka\GG dysk
2015-12-02 21:46 - 2013-02-12 10:45 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\GetRightToGo
2015-12-02 21:46 - 2012-08-19 13:40 - 00000000 ____D C:\Users\Aneczka\Desktop\DLA MAMY
2015-12-02 21:46 - 2011-10-26 10:51 - 00000000 ____D C:\Windows\system32\Macromed
2015-12-02 21:46 - 2011-07-21 14:57 - 00000000 ___HD C:\Users\Aneczka\Desktop\.picasaoriginals
2015-12-02 21:46 - 2011-03-29 15:53 - 00000000 ____D C:\Users\Gast
2015-12-02 21:46 - 2010-04-21 17:15 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\Malwarebytes
2015-12-02 21:46 - 2010-04-21 17:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-02 21:46 - 2009-11-21 21:48 - 00000000 ____D C:\Windows\Downloaded Installations
2015-12-02 21:46 - 2009-08-26 14:38 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-02 21:46 - 2009-08-26 12:59 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-12-02 21:46 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\Offline Web Pages
2015-12-02 21:46 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2015-12-02 21:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-12-02 21:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-12-02 21:44 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2015-12-02 21:43 - 2009-11-23 23:52 - 00000000 ____D C:\Users\Aneczka\AppData\Roaming\Adobe
2015-12-02 21:43 - 2009-08-26 12:52 - 00000000 ____D C:\ProgramData\Adobe
2015-12-02 21:29 - 2010-01-26 14:44 - 00000000 ____D C:\Users\Aneczka\AppData\Local\ElevatedDiagnostics
2015-11-18 07:43 - 2015-01-21 08:21 - 00000000 ____D C:\Users\Aneczka\Desktop\BEHINDERUNG
2015-11-15 14:15 - 2009-07-14 18:58 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2015-11-14 14:05 - 2014-10-21 11:38 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-14 13:21 - 2015-10-30 20:27 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-14 13:03 - 2009-08-26 12:19 - 00008192 __RSH C:\BOOTSECT.BAK
2015-11-14 12:53 - 2009-11-09 20:54 - 00010368 _____ C:\Windows\diagerr.xml
2015-11-14 12:53 - 2009-11-09 20:54 - 00008259 _____ C:\Windows\diagwrn.xml
2015-11-14 12:50 - 2009-11-09 23:01 - 00000000 ____D C:\Windows\Panther
2015-11-14 01:18 - 2012-03-04 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-11-14 01:11 - 2011-12-17 17:08 - 00000000 ____D C:\ProgramData\Skype
2015-11-14 01:07 - 2009-11-26 15:03 - 00000000 ____D C:\Users\Aneczka\Documents\My PSP Files
2015-11-14 00:57 - 2011-02-26 14:53 - 00000000 ____D C:\Users\Aneczka\Desktop\EBAY_do sprzedania
2015-11-13 07:33 - 2009-07-14 05:45 - 03009248 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-12 09:15 - 2012-03-30 18:10 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-12 09:15 - 2011-06-09 21:31 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-12 05:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-11-12 04:32 - 2009-07-14 18:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2015-11-12 04:32 - 2009-07-14 18:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2015-11-12 04:32 - 2009-07-14 06:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-12 03:59 - 2013-08-14 20:20 - 00000000 ____D C:\Windows\system32\MRT
2015-11-12 03:32 - 2009-11-11 12:41 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-12 03:10 - 2011-05-13 11:48 - 01594028 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-11-12 03:06 - 2009-07-14 19:18 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-09 22:46 - 2015-04-03 15:14 - 00000190 _____ C:\Users\Aneczka\Desktop\hwmonitorw.ini
2015-11-09 22:45 - 2015-01-21 08:22 - 00000000 ____D C:\Users\Aneczka\Desktop\ENGLISCH
2015-11-09 22:42 - 2013-02-16 14:18 - 00000000 ____D C:\Users\Aneczka\Desktop\nie wiem
2015-11-07 19:40 - 2009-10-13 16:31 - 00000000 ____D C:\Users\Aneczka\Documents\przepisy
2015-11-07 16:08 - 2011-11-30 18:00 - 00000000 ____D C:\Users\Aneczka\Desktop\Jobcenter Kiel

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-10-02 16:42 - 2014-02-11 01:10 - 0000197 _____ () C:\Users\Aneczka\AppData\Roaming\WB.CFG
2009-10-06 14:51 - 2012-09-26 15:16 - 0001178 _____ () C:\Users\Aneczka\AppData\Roaming\wklnhst.dat
2009-11-21 14:52 - 2015-09-06 17:58 - 0033792 _____ () C:\Users\Aneczka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-16 12:38 - 2015-03-16 12:38 - 0274045 _____ () C:\Users\Aneczka\AppData\Local\dsi1.dat
2015-03-16 12:38 - 2015-03-16 12:38 - 0161916 _____ () C:\Users\Aneczka\AppData\Local\dsi2.dat
2010-06-25 21:29 - 2014-10-23 15:17 - 0007630 _____ () C:\Users\Aneczka\AppData\Local\Resmon.ResmonCfg
2014-01-14 16:30 - 2014-01-14 16:32 - 0012182 _____ () C:\ProgramData\1389713436.10276.bin
2014-01-14 16:30 - 2014-01-14 16:30 - 0017892 _____ () C:\ProgramData\1389713436.11768.bin
2014-01-14 16:30 - 2014-01-14 16:31 - 0000784 _____ () C:\ProgramData\1389713436.12200.bin
2014-01-14 16:31 - 2014-01-14 16:36 - 0001638 _____ () C:\ProgramData\1389713436.12300.bin
2014-01-14 16:30 - 2014-01-14 16:31 - 0001091 _____ () C:\ProgramData\1389713436.12676.bin
2014-01-14 16:30 - 2014-01-14 16:36 - 0070999 _____ () C:\ProgramData\1389713436.13172.bin
2014-01-14 16:30 - 2014-01-14 16:30 - 0003746 _____ () C:\ProgramData\1389713436.16020.bin
2014-01-14 16:30 - 2014-01-14 16:36 - 0032856 _____ () C:\ProgramData\1389713436.5908.bin
2014-01-14 16:30 - 2014-01-14 16:31 - 0001090 _____ () C:\ProgramData\1389713436.7068.bin
2014-01-14 16:30 - 2014-01-14 16:36 - 0143316 _____ () C:\ProgramData\1389713436.7148.bin
2014-01-14 16:30 - 2014-01-14 16:31 - 0010535 _____ () C:\ProgramData\1389713436.7832.bin
2014-10-23 07:56 - 2014-10-23 08:04 - 0015260 _____ () C:\ProgramData\1414047401.2340.bin
2014-10-23 07:57 - 2014-10-23 08:04 - 0001409 _____ () C:\ProgramData\1414047401.6008.bin
2014-10-23 07:57 - 2014-10-23 08:04 - 0003711 _____ () C:\ProgramData\1414047401.9020.bin
2009-12-22 10:59 - 2012-12-21 22:54 - 0005955 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
C:\Users\Aneczka\AppData\Local\Temp\bs.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-30 16:32

==================== Ende von FRST.txt ============================