Windows 8: Teil eines Botnets & Trojanerbefall? - Logfiles

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:26-11-2015
durchgeführt von ThomasL 0176******29 (Administrator) auf LERCH-017638239 (27-11-2015 17:24:27)
Gestartet von C:\Users\ThomasL 0176******29\Downloads
Geladene Profile: ThomasL 0176******29 & ReportServer$SQLEXPRESS &  (Verfügbare Profile: ThomasL 0176******29 & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher$SQLEXPRESS)
Platform: Windows 8.1 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Softex Inc.) C:\Program Files\Lenovo\Fingerprint Manager Pro\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Sanford, L.P.) C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe
(Evolis Card Printer) C:\Program Files\Evolis Card Printer\Evolis Premium Suite\EvoPCSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(%CFullName%) C:\Program Files\Lenovo\Fingerprint Manager Pro\opvapp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\csisyncclient.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
() C:\Program Files\Ditto\Ditto.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Flux Software LLC) C:\Users\ThomasL 0176******29\AppData\Local\FluxSoftware\Flux\flux.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Evolis Card Printer) C:\Program Files\Evolis Card Printer\Evolis Premium Suite\PrinterManager.exe
(RescueTime, Inc.) C:\Program Files (x86)\RescueTime\RescueTime.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\Launchy\Launchy.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung Connection Manager\ModemPnPService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(SunplusIT, Inc.) C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\x64\avfulsvr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteTray.exe
(Evernote) C:\Program Files (x86)\Evernote\Skitch\Skitch.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\cammute.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\ThomasL 0176******29\Downloads\Defogger.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [341448 2014-11-07] (Lenovo Group Limited)
HKLM\...\Run: [TpShocks] => C:\WINDOWS\system32\TpShocks.exe [382248 2013-06-20] (Lenovo.)
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [939976 2015-02-20] (Lenovo)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-09-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1792800 2014-10-21] (Lenovo Group Limited)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-03-23] (Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-03-23] (Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [30152 2015-03-23] (Lenovo Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2823848 2015-02-05] (Synaptics Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-07-26] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Blackcomb] => C:\Program Files (x86)\Samsung Connection Manager\ModemPnPService.exe [131072 2011-02-11] (Samsung Electronics.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [788176 2015-11-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [MMReminderService] => C:\Program Files (x86)\Mindjet\MindManager 8\MMReminderService.exe [38240 2009-12-18] (Mindjet)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [DLSService] => "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe"
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1723040 2014-09-01] (SunplusIT, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2292912 2015-09-17] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Ditto] => C:\Program Files\Ditto\Ditto.exe [1717872 2012-11-08] ()
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [f.lux] => C:\Users\ThomasL 0176******29\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [DymoQuickPrint] => C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe [1867056 2014-03-20] (Sanford, L.P.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe /start
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Google Update] => C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-03-25] (Google Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Dropbox Update] => C:\Users\ThomasL 0176******29\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-28] (Dropbox, Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48145024 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [GoogleChromeAutoLaunch_67ACB60E01AFF1F32402F0B6E8BE28E0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Skitch] => C:\Program Files (x86)\Evernote\Skitch\Skitch.exe [4863296 2015-04-30] (Evernote)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\MountPoints2: {7bf58adc-47b4-11e4-8250-5c514f78ade2} - "D:\AutoInstaller.exe" 
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\MountPoints2: {7bf58d0d-47b4-11e4-8250-5c514f78ade2} - "D:\AutoInstaller.exe" 
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Ditto] => C:\Program Files\Ditto\Ditto.exe [1717872 2012-11-08] ()
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [f.lux] => C:\Users\ThomasL 0176******29\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DymoQuickPrint] => C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe [1867056 2014-03-20] (Sanford, L.P.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe /start
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-03-25] (Google Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Dropbox Update] => C:\Users\ThomasL 0176******29\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-28] (Dropbox, Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48145024 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_67ACB60E01AFF1F32402F0B6E8BE28E0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skitch] => C:\Program Files (x86)\Evernote\Skitch\Skitch.exe [4863296 2015-04-30] (Evernote)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {7bf58adc-47b4-11e4-8250-5c514f78ade2} - "D:\AutoInstaller.exe" 
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {7bf58d0d-47b4-11e4-8250-5c514f78ade2} - "D:\AutoInstaller.exe" 
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Evolis Printer Manager.lnk [2015-03-03]
ShortcutTarget: Evolis Printer Manager.lnk -> C:\Program Files\Evolis Card Printer\Evolis Premium Suite\PrinterManager.exe (Evolis Card Printer)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2014-09-29]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RescueTime.lnk [2014-10-12]
ShortcutTarget: RescueTime.lnk -> C:\Program Files (x86)\RescueTime\RescueTime.exe (RescueTime, Inc.)
Startup: C:\Users\ThomasL 0176******29\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-06-28]
ShortcutTarget: Dropbox.lnk -> C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\ThomasL 0176******29\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2014-10-07]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\ThomasL 0176******29\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2014-10-07]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{95F65AF9-43E0-48E5-9EEC-65CE35D9B7AC}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
URLSearchHook: [S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] ACHTUNG => Standard URLSearchHook fehlt
URLSearchHook: [S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933] ACHTUNG => Standard URLSearchHook fehlt
URLSearchHook: [S-1-5-80-425977601-1203083412-1631309457-2457533047-3321749933-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] ACHTUNG => Standard URLSearchHook fehlt
URLSearchHook: [S-1-5-80-997390408-2153310517-3119169589-2253446180-2226563786-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0] ACHTUNG => Standard URLSearchHook fehlt
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-870434993-2128780150-3758257639-1001 -> DefaultScope {025A1D3D-31FF-4B79-B97D-0E9694925239} URL = 
SearchScopes: HKU\S-1-5-21-870434993-2128780150-3758257639-1001 -> {025A1D3D-31FF-4B79-B97D-0E9694925239} URL = 
SearchScopes: HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {025A1D3D-31FF-4B79-B97D-0E9694925239} URL = 
SearchScopes: HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {025A1D3D-31FF-4B79-B97D-0E9694925239} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-09-29] (LastPass)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Kein Name -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: CmjBrowserHelperObject Object -> {6FE6A929-59D1-4763-91AD-29B61CFFB35B} -> C:\Program Files (x86)\Mindjet\MindManager 8\Mm8InternetExplorer.dll [2009-12-18] (Mindjet)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-06] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-09-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-09-29] (LastPass)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-06] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2014-09-29] (LastPass)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2014-09-29] (LastPass)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-11-11] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default
FF NetworkProxy: "autoconfig_url", "https://www.bibliothek.fhws.de/proxy.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2014-09-29] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-11-11] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-09-17] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-05-06] ()
FF Plugin-x32: @dymo.com/DymoLabelFramework -> C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll [2014-03-20] ( Sanford L.P.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-07-26] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-07-26] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-06] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass.dll [2014-09-29] (LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2014-11-11] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-09-17] (Adobe Systems)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001: @citrixonline.com/appdetectorplugin -> C:\Users\ThomasL 0176******29\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-11-10] (Citrix Online)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001: @talk.google.com/O1DPlugin -> C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001: @tools.google.com/Google Update;version=3 -> C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001: @tools.google.com/Google Update;version=9 -> C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @citrixonline.com/appdetectorplugin -> C:\Users\ThomasL 0176******29\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-11-10] (Citrix Online)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/GoogleTalkPlugin -> C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/O1DPlugin -> C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=3 -> C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=9 -> C:\Users\ThomasL 0176******29\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\ThomasL 0176******29\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\ThomasL 0176******29\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\searchplugins\youtube-videosuche.xml [2015-02-28]
FF SearchPlugin: C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\searchplugins\youtube.xml [2014-11-01]
FF Extension: Web Developer - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2015-05-30]
FF Extension: Live HTTP headers - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2015-06-15]
FF Extension: Thumbnail Zoom Plus - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\thumbnailZoom@dadler.github.com.xpi [2015-07-29]
FF Extension: MozBar - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\toolbar@seomoz.org.xpi [2015-09-12]
FF Extension: LastPass - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\support@lastpass.com [2015-09-26]
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-10-18] [ist nicht signiert]
FF Extension: NoScript - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-24]
FF Extension: Avira Browser Safety - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\abs@avira.com [2015-10-23] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\colorPicker@colorPicker.xpi [2015-05-28] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\jid1-7m2vI7AUZN1Ovg@jetpack.xpi [2015-11-08] [ist nicht signiert]
FF Extension: Nimbus Screen Capture - editable screenshots. - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\nimbusscreencaptureff@everhelper.me.xpi [2015-10-30]
FF Extension: FireShot - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2015-11-08]
FF Extension: ProxTube - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-04-09] [ist nicht signiert]
FF Extension: Video DownloadHelper - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-30]
FF Extension: Adblock Plus - C:\Users\ThomasL 0176******29\AppData\Roaming\Mozilla\Firefox\Profiles\caouhisc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-26]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-09-26] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-10-27] [ist nicht signiert]
FF HKU\S-1-5-21-870434993-2128780150-3758257639-1001\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12
FF Extension: ThinkVantage Password Manager - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 [2014-12-21] [ist nicht signiert]
FF HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12
FF Extension: ThinkVantage Password Manager - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 [2014-12-21] [ist nicht signiert]

Chrome: 
=======
CHR DefaultSearchKeyword: Profile 1 -> lp
CHR Session Restore: Profile 1 -> ist aktiviert.
CHR Profile: C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Präsentationen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-15]
CHR Extension: (Google Docs) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-15]
CHR Extension: (Google Drive) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (RescueTime for Chrome™ & ChromeOS™) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2015-09-15]
CHR Extension: (Web Developer) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2015-09-15]
CHR Extension: (ColorZilla) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2015-09-15]
CHR Extension: (YouTube) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Pomodoro) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjinlkmekfmkgnalpjgcjofplmgnlbfk [2015-09-15]
CHR Extension: (Google-Suche) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (iMacros for Chrome) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp [2015-09-15]
CHR Extension: (Daum Equation Editor) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dinfmiceliiomokeofbocegmacmagjhe [2015-09-15]
CHR Extension: (FB Pixel Helper) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2015-11-03]
CHR Extension: (Type Scout - Besser tippen! :)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fedokkaolmkkoeedicihicdeppjjeamj [2015-09-15]
CHR Extension: (RegExp Tester) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fekbbmalpajhfifodaakkfeodkpigjbk [2015-09-26]
CHR Extension: (Google Tabellen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-15]
CHR Extension: (News Feed Eradicator for Facebook) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fjcldmjmjhkklehbacihaiopjklihlgg [2015-11-08]
CHR Extension: (Page Analytics (by Google)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2015-11-17]
CHR Extension: (Google Docs Offline) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Impactana Content Marketing Toolbar) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gidhppoakegddkkpmgoejeadomghnkie [2015-11-05]
CHR Extension: (AdBlock) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (ScriptBlock) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2015-09-15]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2015-10-27]
CHR Extension: (Clearly) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\iooicodkiihhpojmmeghjclgihfjdjhj [2015-09-15]
CHR Extension: (WhatFont) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-09-15]
CHR Extension: (Google Analytics Debugger) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jnkmfdileelhofjcijamephohjechhna [2015-09-15]
CHR Extension: (Silver Bird Plus (Twitter Client)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kagejfgngcmkbaacpmcnbpkhmhoeccee [2015-09-15]
CHR Extension: (Tag Assistant (by Google)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2015-11-27]
CHR Extension: (StayFocusd) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\laankejkbhbdhmipfmgcngdelahlfoji [2015-09-15]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-09-15]
CHR Extension: (Scraper) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbigbapnjcgaffohmbkdlecaccepngjd [2015-09-15]
CHR Extension: (Lightshot (Screenshot Tool)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2015-09-15]
CHR Extension: (HTTP Headers) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mhbpoeinkhpajikalhfpjjafpfgjnmgk [2015-09-15]
CHR Extension: (Ghostery) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-09-19]
CHR Extension: (WASP.inspector: Analytics Solution Profiler) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\niaoghengfohplclhbjnjheodgkejpih [2015-09-26]
CHR Extension: (Drag & Drop Search) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\njdeknfopjeielabfoglnmbggkegcanm [2015-09-15]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-15]
CHR Extension: (Hover Zoom) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2015-11-27]
CHR Extension: (Buffer) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\noojglkidnpfjbincgijbaiedldjfbhh [2015-11-20]
CHR Extension: (Page Monitor) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pemhgklkefakciniebenbfclihhmmfcd [2015-10-16]
CHR Extension: (Google Mail) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-15]
CHR Profile: C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Präsentationen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-04]
CHR Extension: (Google Docs) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-04]
CHR Extension: (Google Drive) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-11]
CHR Extension: (YouTube) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Google-Suche) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-11]
CHR Extension: (Google Tabellen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-04]
CHR Extension: (Avira Browserschutz) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-11-11]
CHR Extension: (Google Docs Offline) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-06]
CHR Extension: (Tag Assistant (by Google)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2015-11-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-10-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-04]
CHR Extension: (Google Mail) - C:\Users\ThomasL 0176******29\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-04]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-870434993-2128780150-3758257639-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\THOMAS~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-09-16]
CHR HKU\S-1-5-21-870434993-2128780150-3758257639-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\THOMAS~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-09-16]
CHR HKU\S-1-5-21-870434993-2128780150-3758257639-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lpdfbkehegfmedglgemnhbnpmfmioggj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [669872 2015-09-15] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [936544 2015-11-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466408 2015-11-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466408 2015-11-12] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1105952 2015-11-12] (Avira Operations GmbH & Co. KG)
R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [560584 2015-03-23] (Lenovo Corporation)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG)
S4 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [283296 2013-07-26] (Intel Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2797752 2015-10-13] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-10-29] (Digital Wave Ltd.)
R2 DymoPnpService; C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [33072 2014-03-20] (Sanford, L.P.)
R2 Evolis Print Center Service; C:\Program Files\Evolis Card Printer\Evolis Premium Suite\EvoPCSvc.exe [1952024 2014-12-02] (Evolis Card Printer)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-12] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-07-26] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [619776 2015-01-15] (Lenovo)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2023592 2015-09-25] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584632 2015-03-06] (LENOVO INCORPORATED.)
R3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [625608 2015-03-23] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-13] (Lenovo Group Limited)
R2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [22576 2014-02-21] (Lenovo)
S3 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [480712 2015-03-23] (Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [469720 2015-05-12] ()
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272424 2015-08-17] (Lenovo)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 MSSQL$JTLWAWI; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29181272 2008-12-18] (Microsoft Corporation)
S4 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [190904 2012-06-12] (Microsoft Corporation)
S4 MSSQLFDLauncher$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe [49752 2012-02-11] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 omniserv; C:\Program Files\Lenovo\Fingerprint Manager Pro\OmniServ.exe [103936 2015-04-02] (Softex Inc.) [Datei ist nicht signiert]
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-12-05] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [328488 2014-12-05] (Lenovo Group Limited)
R2 ReportServer$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe [2348472 2012-06-12] (Microsoft Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [608696 2012-06-12] (Microsoft Corporation)
R3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836176 2015-11-10] (Valve Corporation) [Datei ist nicht signiert]
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [21536 2015-09-29] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49968 2015-01-29] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137800 2015-09-23] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-09-24] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [74440 2015-09-23] (Avira Operations GmbH & Co. KG)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-04-22] (Motorola Solutions, Inc.)
S3 C2XXCOM; C:\Windows\system32\DRIVERS\C2XXCOM76.sys [49920 2010-08-09] (Samsung Electronics)
S3 C2xxUSB; C:\Windows\system32\DRIVERS\C2xxUSB76.sys [46080 2010-11-04] (Samsung Electronics)
S3 C2xxUsbStorage; C:\Windows\system32\DRIVERS\C2xSTR76.sys [9216 2010-06-10] (Samsung Electronics)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [394520 2015-03-24] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [199624 2014-06-06] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-04-15] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-04-15] ()
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [77992 2013-10-04] (Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-04-15] ()
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [29496 2014-04-07] (Lenovo)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [4103920 2015-08-23] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew02.sys [3507680 2014-06-18] (Intel Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R1 OMNISMI; C:\WINDOWS\SysWOW64\drivers\omnismi.sys [14776 2014-06-24] ()
S4 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2013-07-24] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [32936 2015-02-05] (Synaptics Incorporated)
R1 SMIDriver; C:\Windows\System32\drivers\smi.sys [19656 2015-01-29] (Windows (R) Win 7 DDK provider)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [682272 2014-09-04] (Sunplus)
S3 SWIX64; C:\Program Files (x86)\Lenovo\System Update\tvsuhd64.sys [34976 2015-06-29] (Lenovo Group Limited)
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2014-05-19] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2014-05-19] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700296 2014-05-19] ()
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [206744 2013-06-20] (Windows (R) Win 7 DDK provider)
S3 vl810filter; C:\Windows\system32\DRIVERS\vl810filter.sys [17008 2011-11-17] (VIA Labs, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-11-23] ()

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-27 17:24 - 2015-11-27 17:24 - 00069002 _____ C:\Users\ThomasL 0176******29\Downloads\FRST.txt
2015-11-27 17:24 - 2015-11-27 17:24 - 00000000 ____D C:\FRST
2015-11-27 17:19 - 2015-11-27 17:19 - 00380416 _____ C:\Users\ThomasL 0176******29\Downloads\Gmer-19357.exe
2015-11-27 17:17 - 2015-11-27 17:17 - 00000000 _____ C:\Users\ThomasL 0176******29\defogger_reenable
2015-11-27 17:15 - 2015-11-27 17:15 - 02348544 _____ (Farbar) C:\Users\ThomasL 0176******29\Downloads\FRST64.exe
2015-11-27 17:15 - 2015-11-27 17:15 - 00050477 _____ C:\Users\ThomasL 0176******29\Downloads\Defogger.exe
2015-11-27 12:13 - 2015-11-27 12:13 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\test
2015-11-27 12:12 - 2015-11-27 12:13 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\Neuer Ordner
2015-11-25 11:54 - 2015-11-25 11:54 - 00132381 _____ C:\Users\ThomasL 0176******29\Downloads\UB5.pdf
2015-11-25 11:52 - 2015-11-25 11:52 - 00183962 _____ C:\Users\ThomasL 0176******29\Downloads\dglueb5.pdf
2015-11-25 11:52 - 2015-11-25 11:52 - 00183962 _____ C:\Users\ThomasL 0176******29\Downloads\dglueb5(1).pdf
2015-11-24 18:41 - 2015-11-24 21:44 - 11819327 _____ C:\Users\ThomasL 0176******29\Desktop\google-tag-manager.pptx
2015-11-24 17:35 - 2015-11-24 17:37 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\sophia
2015-11-23 22:40 - 2015-11-23 22:40 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2015-11-23 21:11 - 2015-11-23 21:15 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\download-tracking-mit-dem-google-tag-manager
2015-11-23 20:26 - 2015-11-23 20:32 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\google-adwords-conversion-tracking
2015-11-23 18:22 - 2015-11-23 18:52 - 00010880 _____ C:\Users\ThomasL 0176******29\Downloads\Web-Analytics - Google Tag Manager (copy)-report.xlsx
2015-11-23 18:22 - 2015-11-23 18:22 - 00003878 _____ C:\Users\ThomasL 0176******29\Downloads\Web-Analytics - Google Tag Manager (copy)-report (1).xlsx
2015-11-23 16:35 - 2015-11-23 16:35 - 02115868 _____ C:\Users\ThomasL 0176******29\Desktop\google-tag-manager-praesentation.pdf
2015-11-23 16:33 - 2015-11-23 16:33 - 02115508 _____ C:\Users\ThomasL 0176******29\Desktop\präsentation-google-tag-manager.pdf
2015-11-23 14:55 - 2015-11-23 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2015-11-23 14:52 - 2015-11-23 15:05 - 00000000 ____D C:\xampp
2015-11-23 14:47 - 2015-11-23 14:48 - 112275208 _____ (Bitnami) C:\Users\ThomasL 0176******29\Downloads\xampp-win32-5.6.14-3-VC11-installer.exe
2015-11-23 00:10 - 2015-11-23 00:10 - 00138131 _____ C:\Users\ThomasL 0176******29\Downloads\DHL-Marke-KGKV6N5D4K.pdf
2015-11-22 21:14 - 2015-11-22 21:19 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\Google-Analytics-Datenschutzkonform-mit-dem-Google-Tag-Manager-einbinden
2015-11-22 20:24 - 2015-11-22 20:33 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\die_oberfläche
2015-11-22 13:46 - 2015-11-22 13:46 - 00050373 _____ C:\Users\ThomasL 0176******29\Downloads\widerruf.pdf
2015-11-20 08:42 - 2015-11-20 08:42 - 00142371 _____ C:\Users\ThomasL 0176******29\Downloads\Gründercamp15-Agenda(4).pdf
2015-11-18 16:43 - 2015-11-18 16:43 - 00142371 _____ C:\Users\ThomasL 0176******29\Downloads\Gründercamp15-Agenda(3).pdf
2015-11-18 00:23 - 2015-11-18 00:23 - 00200087 _____ C:\Users\ThomasL 0176******29\Desktop\Tag-Manager-Logo.psd
2015-11-17 22:42 - 2015-11-17 22:50 - 21469437 _____ C:\Users\ThomasL 0176******29\Desktop\download.zip
2015-11-17 22:20 - 2015-11-17 22:20 - 00099990 _____ C:\Users\ThomasL 0176******29\Desktop\Search-Replace-DB-master.zip
2015-11-17 22:20 - 2015-11-17 22:20 - 00009741 _____ C:\Users\ThomasL 0176******29\Desktop\searchreplacedb21.zip
2015-11-17 21:49 - 2015-11-17 22:03 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\luxury-customers.com
2015-11-17 16:11 - 2015-11-17 16:11 - 01710080 _____ C:\Users\ThomasL 0176******29\Desktop\gauder_akustik.unbounce
2015-11-17 15:08 - 2015-11-17 15:15 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\errors on dog id page
2015-11-17 15:02 - 2015-11-17 15:02 - 00003272 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask
2015-11-17 15:02 - 2015-11-17 15:02 - 00003170 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_LENOVO_MICPKEY
2015-11-17 15:02 - 2015-11-17 15:02 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-11-17 15:02 - 2015-11-17 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-11-17 15:02 - 2015-11-17 15:02 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-11-17 15:02 - 2015-07-30 07:05 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 03233472 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 02984208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 02492152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 01331336 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-11-17 15:02 - 2015-07-30 07:05 - 00084624 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 04577024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-11-17 15:02 - 2015-07-30 07:02 - 02946304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 02711296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-11-17 15:02 - 2015-07-30 07:02 - 01759488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 00953728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 00358272 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 00122328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-11-17 15:02 - 2015-07-30 07:02 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-11-17 15:02 - 2015-07-30 04:53 - 03653631 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-11-17 15:02 - 2015-06-24 22:41 - 00000098 _____ C:\WINDOWS\system32\Drivers\RTMICAR.DAT
2015-11-17 15:02 - 2014-02-21 13:48 - 00004904 _____ C:\WINDOWS\system32\Drivers\SAMSFPA.DAT
2015-11-17 15:02 - 2013-05-23 15:05 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.DAT
2015-11-17 15:01 - 2015-11-17 15:01 - 00000000 ____D C:\Program Files\Common Files\Intel
2015-11-17 15:01 - 2015-11-17 15:01 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-11-17 15:01 - 2015-08-17 18:18 - 00148208 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe
2015-11-17 15:01 - 2015-08-17 18:18 - 00072432 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmctl.exe
2015-11-17 15:01 - 2015-08-17 18:18 - 00064208 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\ibmpmdrv.sys
2015-11-17 15:01 - 2015-08-17 18:18 - 00042224 _____ (Lenovo.) C:\WINDOWS\system32\tpinspm.dll
2015-11-17 14:59 - 2015-11-17 15:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-11-17 13:52 - 2015-11-17 13:52 - 00134136 _____ C:\Users\ThomasL 0176******29\Desktop\Pruefungsplan_Datum-2.pdf
2015-11-17 12:40 - 2015-11-17 12:40 - 00000074 _____ C:\Users\ThomasL 0176******29\Desktop\Primacy – 223 - Druckbandfehler - Evolis.url
2015-11-16 16:10 - 2015-11-16 16:10 - 00027019 _____ C:\Users\ThomasL 0176******29\Downloads\d01cac41.csv
2015-11-16 16:06 - 2015-11-16 16:06 - 00032831 _____ C:\Users\ThomasL 0176******29\Downloads\d01cac41(1).sql
2015-11-16 09:48 - 2015-11-16 09:48 - 00142371 _____ C:\Users\ThomasL 0176******29\Downloads\Gründercamp15-Agenda(2).pdf
2015-11-16 09:19 - 2015-11-16 09:19 - 00691937 _____ C:\Users\ThomasL 0176******29\Downloads\05_JS_ScopeClosures.pdf
2015-11-15 10:03 - 2015-11-24 07:44 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\dogs
2015-11-14 13:09 - 2015-11-14 13:09 - 02397788 _____ C:\Users\ThomasL 0176******29\Downloads\1516_07 - GenericsComparable(1).pdf
2015-11-14 11:12 - 2015-11-14 11:12 - 24779881 _____ C:\Users\ThomasL 0176******29\Desktop\Prog 2 bisher.pdf
2015-11-14 10:46 - 2015-11-14 10:46 - 02397788 _____ C:\Users\ThomasL 0176******29\Downloads\1516_07 - GenericsComparable.pdf
2015-11-14 10:45 - 2015-11-14 10:46 - 02763474 _____ C:\Users\ThomasL 0176******29\Downloads\1516_06 - Polymorphie2(3).pdf
2015-11-14 10:45 - 2015-11-14 10:45 - 10795204 _____ C:\Users\ThomasL 0176******29\Downloads\1516_03 - Packages.pdf
2015-11-14 10:45 - 2015-11-14 10:45 - 06270408 _____ C:\Users\ThomasL 0176******29\Downloads\1516_02 - Abstrakter Datentyp.pdf
2015-11-14 10:45 - 2015-11-14 10:45 - 02507249 _____ C:\Users\ThomasL 0176******29\Downloads\1516_04 - Exceptions.pdf
2015-11-14 10:45 - 2015-11-14 10:45 - 00938006 _____ C:\Users\ThomasL 0176******29\Downloads\1516_05 - Vererbung(1).pdf
2015-11-14 10:04 - 2015-11-14 10:04 - 00443532 _____ C:\Users\ThomasL 0176******29\Downloads\Uebung2(1).pdf
2015-11-14 09:50 - 2015-11-14 09:50 - 00443532 _____ C:\Users\ThomasL 0176******29\Downloads\Uebung2.pdf
2015-11-14 08:56 - 2015-11-14 08:56 - 02763474 _____ C:\Users\ThomasL 0176******29\Downloads\1516_06 - Polymorphie2(2).pdf
2015-11-14 08:56 - 2015-11-14 08:56 - 02763474 _____ C:\Users\ThomasL 0176******29\Downloads\1516_06 - Polymorphie2(1).pdf
2015-11-14 08:55 - 2015-11-14 08:55 - 00042396 _____ C:\Users\ThomasL 0176******29\Downloads\Uebung5.pdf
2015-11-14 08:27 - 2015-11-14 08:27 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-13 18:28 - 2015-11-15 17:29 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\Million_Dollar_Bundle
2015-11-12 20:49 - 2015-11-13 23:04 - 08679359 _____ C:\Users\ThomasL 0176******29\Desktop\bearbeitetv3.psd
2015-11-12 18:44 - 2015-11-12 18:44 - 00303280 _____ C:\Users\ThomasL 0176******29\Desktop\2015-11-12_183920.psd
2015-11-12 09:04 - 2015-11-12 09:04 - 00313801 _____ C:\Users\ThomasL 0176******29\Downloads\2015-EC-01-Intro(1).pdf
2015-11-11 18:10 - 2015-11-11 18:10 - 00142371 _____ C:\Users\ThomasL 0176******29\Downloads\Gründercamp15-Agenda(1).pdf
2015-11-11 15:45 - 2015-11-11 15:45 - 00313801 _____ C:\Users\ThomasL 0176******29\Downloads\2015-EC-01-Intro.pdf
2015-11-11 15:45 - 2015-11-11 15:45 - 00142371 _____ C:\Users\ThomasL 0176******29\Downloads\Gründercamp15-Agenda.pdf
2015-11-11 15:32 - 2015-11-11 15:32 - 05286088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-11-11 15:20 - 2015-09-29 13:24 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2015-11-11 15:20 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-11-11 15:20 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2015-11-11 15:20 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-11-11 15:20 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-11-11 09:06 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 09:06 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 09:06 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-11-11 09:06 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-11-11 09:06 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 09:06 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-11 09:06 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-11-11 09:06 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-11 09:06 - 2015-10-30 23:39 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-11-11 09:06 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-11 09:06 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-11-11 09:06 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-11-11 09:06 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 09:06 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-11-11 09:06 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-11-11 09:06 - 2015-10-30 23:14 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-11-11 09:06 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-11-11 09:06 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-11 09:06 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 09:06 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-11-11 09:06 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-11-11 09:06 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-11 09:06 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-11-11 09:06 - 2015-10-20 22:54 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-11-11 09:06 - 2015-10-20 15:53 - 03705856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-11-11 09:06 - 2015-10-20 15:36 - 02243072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-11-11 09:06 - 2015-10-20 15:35 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-11-11 09:06 - 2015-10-20 15:34 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-11-11 09:06 - 2015-10-20 15:34 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-11-11 09:06 - 2015-10-20 15:34 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-11-11 09:06 - 2015-10-20 15:33 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-11-11 09:06 - 2015-10-20 15:14 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-11-11 09:06 - 2015-10-20 15:13 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-11-11 09:06 - 2015-10-20 15:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-11-11 09:06 - 2015-10-20 15:13 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-11-11 09:06 - 2015-10-17 15:19 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-11-11 09:06 - 2015-10-15 17:08 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 09:06 - 2015-10-15 16:46 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-11 09:06 - 2015-10-15 00:02 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 09:06 - 2015-10-15 00:02 - 01659560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-11-11 09:06 - 2015-10-15 00:02 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-11-11 09:06 - 2015-10-15 00:02 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-11-11 09:06 - 2015-10-15 00:02 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-11-11 09:06 - 2015-10-13 18:10 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 09:06 - 2015-10-13 18:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 09:06 - 2015-10-13 16:59 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2015-11-11 09:06 - 2015-10-13 16:59 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-11-11 09:06 - 2015-10-13 16:59 - 00137960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2015-11-11 09:06 - 2015-10-13 16:59 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2015-11-11 09:06 - 2015-10-13 16:59 - 00106952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-11-11 09:06 - 2015-10-13 16:59 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-11-11 09:06 - 2015-10-11 07:36 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-11-11 09:06 - 2015-10-11 07:36 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-11-11 09:06 - 2015-10-10 19:40 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-11-11 09:06 - 2015-10-10 19:39 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-11-11 09:06 - 2015-10-10 19:07 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-11-11 09:06 - 2015-10-10 18:33 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-11-11 09:06 - 2015-10-10 18:27 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-11-11 09:06 - 2015-10-10 18:11 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-11-11 09:06 - 2015-10-10 17:45 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-11-11 09:06 - 2015-10-08 17:08 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-11-11 09:06 - 2015-09-12 14:47 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-11-11 09:06 - 2015-09-07 17:22 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-11-11 09:06 - 2015-09-07 17:21 - 00825856 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2015-11-11 09:06 - 2015-09-07 17:17 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2015-11-11 09:06 - 2015-09-07 16:54 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-11-11 09:06 - 2015-09-07 16:30 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-11-11 09:06 - 2015-08-10 19:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-11-11 09:06 - 2015-08-10 19:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-11-11 09:06 - 2015-08-10 18:49 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-11-11 09:06 - 2015-08-10 17:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-11-11 09:06 - 2015-08-10 17:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-11-10 21:00 - 2015-11-10 21:01 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Citrix
2015-11-10 20:11 - 2015-11-10 20:11 - 30091776 _____ (Microsoft Corporation) C:\Users\ThomasL 0176******29\Downloads\IE10-Windows6.1-x86-de-de_b16521.exe
2015-11-10 20:02 - 2015-11-10 21:05 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\hunde-perso.de-backup-10-11-2015
2015-11-10 15:18 - 2015-11-10 15:18 - 00000000 ____D C:\Users\ThomasL 0176******29\SAP Clients
2015-11-10 15:15 - 2015-11-10 15:15 - 00000000 ____D C:\Program Files (x86)\FreeCodecPack
2015-11-10 14:46 - 2015-11-10 14:46 - 00000000 ____D C:\Program Files (x86)\SAP
2015-11-10 14:15 - 2015-11-10 14:59 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\WIN
2015-11-10 10:36 - 2015-11-10 10:36 - 02763474 _____ C:\Users\ThomasL 0176******29\Downloads\1516_06 - Polymorphie2.pdf
2015-11-10 10:36 - 2015-11-10 10:36 - 00938006 _____ C:\Users\ThomasL 0176******29\Downloads\1516_05 - Vererbung.pdf
2015-11-10 10:33 - 2015-11-10 10:33 - 00070085 _____ C:\Users\ThomasL 0176******29\Downloads\Uebung4.pdf
2015-11-09 12:25 - 2015-11-09 12:25 - 00307500 _____ C:\Users\ThomasL 0176******29\Desktop\anleitung-kathi.pdf
2015-11-09 10:44 - 2015-11-09 10:59 - 461885536 _____ C:\Users\ThomasL 0176******29\Desktop\JavaScript Scope Chains and Closures.mp4
2015-11-07 17:29 - 2015-11-07 17:29 - 00000088 _____ C:\Users\ThomasL 0176******29\Desktop\Sour Cream (Rezept mit Bild) von katipinky - Chefkoch.de.url
2015-11-07 12:29 - 2015-11-10 09:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-05 22:36 - 2015-11-05 22:36 - 184359137 _____ C:\Users\ThomasL 0176******29\Documents\charlie-munger.zip
2015-11-05 15:17 - 2015-11-05 15:17 - 01376578 _____ C:\Users\ThomasL 0176******29\Desktop\holiday-email-marketing-landing-guide.pdf
2015-11-04 10:39 - 2015-11-04 10:39 - 00194536 ____H C:\Users\ThomasL 0176******29\Desktop\~WRL0005.tmp
2015-11-03 22:57 - 2015-11-03 22:57 - 00001354 _____ C:\Users\ThomasL 0176******29\Downloads\data(6).csv
2015-11-03 18:03 - 2015-11-03 18:03 - 00001354 _____ C:\Users\ThomasL 0176******29\Downloads\data(5).csv
2015-11-02 12:46 - 2015-11-03 00:08 - 00000000 ____D C:\thomas bilder
2015-11-01 19:56 - 2015-11-01 19:56 - 00275521 _____ C:\Users\ThomasL 0176******29\Downloads\Modulhandbuch_EC_2015-10-12.pdf
2015-11-01 12:05 - 2015-11-01 12:05 - 01318271 _____ C:\Users\ThomasL 0176******29\Downloads\Excellent-Analytics.zip
2015-11-01 12:05 - 2015-11-01 12:05 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\Ampliofy
2015-11-01 11:28 - 2015-11-01 11:28 - 02544963 _____ C:\Users\ThomasL 0176******29\Desktop\Online Marketing » Dekonstruktion.pdf
2015-11-01 11:28 - 2015-11-01 11:28 - 00525146 _____ C:\Users\ThomasL 0176******29\Desktop\Was kostet ein Neukunde im Online Marketing_.pdf
2015-10-31 22:12 - 2015-10-31 22:12 - 00000134 _____ C:\Users\ThomasL 0176******29\Desktop\Dynamic Landing Page Content- How to Increase Conversions through Increased Relevancy - PPC Hero®.url
2015-10-28 18:10 - 2015-10-28 18:10 - 00301170 _____ C:\Users\ThomasL 0176******29\Downloads\AdWords_Bootcamp_Tag2.pdf
2015-10-28 13:02 - 2015-10-28 13:02 - 06539752 _____ (Tim Kosse) C:\Users\ThomasL 0176******29\Downloads\FileZilla_3.14.1_win64-setup.exe
2015-10-28 09:03 - 2015-10-28 09:03 - 00000000 ____D C:\ProgramData\Logitech

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-27 17:24 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2015-11-27 17:22 - 2014-10-02 17:53 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\ClassicShell
2015-11-27 17:22 - 2014-09-16 22:00 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-870434993-2128780150-3758257639-1001
2015-11-27 17:17 - 2014-09-29 09:39 - 00000000 ____D C:\Users\ThomasL 0176******29
2015-11-27 17:03 - 2015-03-18 22:35 - 00000000 ____D C:\ProgramData\firebird
2015-11-27 17:03 - 2015-01-21 14:28 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-27 17:03 - 2014-09-30 20:03 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\Skype
2015-11-27 17:02 - 2014-10-08 09:45 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\Ditto
2015-11-27 17:01 - 2014-09-28 23:10 - 28736000 ___SH C:\Users\ThomasL 0176******29\Desktop\Thumbs.db
2015-11-27 17:00 - 2014-09-29 08:09 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\LocalLow\LastPass
2015-11-27 16:53 - 2015-06-09 09:27 - 00000684 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-870434993-2128780150-3758257639-1001.job
2015-11-27 16:49 - 2015-03-01 09:56 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Deployment
2015-11-27 16:45 - 2014-09-26 15:33 - 00001150 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-27 16:40 - 2015-03-25 17:05 - 00001212 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-870434993-2128780150-3758257639-1001UA.job
2015-11-27 16:32 - 2014-10-22 16:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-27 16:27 - 2015-06-28 09:17 - 00001316 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-870434993-2128780150-3758257639-1001UA.job
2015-11-27 15:39 - 2015-06-23 18:48 - 00000780 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-870434993-2128780150-3758257639-1001.job
2015-11-27 15:10 - 2014-09-29 10:35 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\vlc
2015-11-27 15:08 - 2015-10-25 16:39 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-27 11:43 - 2014-09-29 15:10 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Adobe
2015-11-27 11:12 - 2014-10-10 15:18 - 02194944 ___SH C:\Users\ThomasL 0176******29\Downloads\Thumbs.db
2015-11-27 10:45 - 2014-09-26 15:33 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-27 09:52 - 2014-12-15 19:42 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Skitch
2015-11-27 08:54 - 2015-08-03 18:27 - 00000000 ___RD C:\Users\ThomasL 0176******29\Creative Cloud Files
2015-11-27 08:53 - 2014-10-16 18:01 - 00000000 ___RD C:\Users\ThomasL 0176******29\Google Drive
2015-11-27 08:53 - 2014-09-29 10:10 - 00000000 __RDO C:\Users\ThomasL 0176******29\OneDrive
2015-11-27 08:53 - 2014-09-16 21:55 - 00000000 __SHD C:\Users\ThomasL 0176******29\IntelGraphicsProfiles
2015-11-26 20:40 - 2015-03-25 17:05 - 00001160 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-870434993-2128780150-3758257639-1001Core.job
2015-11-26 20:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-25 21:02 - 2015-01-08 20:43 - 00189440 ___SH C:\Users\ThomasL 0176******29\Documents\Thumbs.db
2015-11-25 14:53 - 2014-10-05 23:00 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\FileZilla
2015-11-25 14:34 - 2014-09-29 15:18 - 00000000 ___RD C:\Users\ThomasL 0176******29\Desktop\Dropbox
2015-11-25 08:45 - 2014-10-31 10:37 - 00001456 _____ C:\Users\ThomasL 0176******29\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2015-11-25 07:48 - 2013-08-22 16:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-11-25 07:47 - 2014-11-11 10:46 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-11-25 07:09 - 2015-08-03 17:37 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-11-24 18:52 - 2014-03-18 11:04 - 02222002 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-24 18:52 - 2014-03-18 10:25 - 00940568 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-24 18:52 - 2014-03-18 10:25 - 00221500 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-24 18:52 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2015-11-24 17:27 - 2014-09-16 22:18 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\CrashDumps
2015-11-24 12:45 - 2014-10-16 17:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-11-24 00:43 - 2015-10-04 17:41 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\google tag manager
2015-11-23 22:53 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-23 22:40 - 2013-10-19 19:13 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2015-11-23 22:39 - 2013-09-29 03:04 - 00000000 ____D C:\ProgramData\Validity
2015-11-23 22:39 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-23 22:39 - 2013-08-22 15:44 - 05202064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-23 21:00 - 2014-10-31 14:55 - 00018432 _____ C:\Users\ThomasL 0176******29\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-23 18:22 - 2014-09-16 21:54 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Packages
2015-11-23 16:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-22 20:37 - 2014-10-12 11:51 - 00000000 ____D C:\Users\ThomasL 0176******29\Documents\Camtasia Studio
2015-11-22 19:12 - 2014-10-05 23:10 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\DVDVideoSoft
2015-11-21 17:20 - 2015-06-23 18:48 - 00003824 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-870434993-2128780150-3758257639-1001
2015-11-21 17:20 - 2015-06-09 09:27 - 00003728 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-870434993-2128780150-3758257639-1001
2015-11-20 14:34 - 2014-09-29 10:18 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\Dropbox
2015-11-20 07:27 - 2015-06-28 09:17 - 00001264 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-870434993-2128780150-3758257639-1001Core.job
2015-11-19 19:11 - 2014-11-20 06:34 - 00000000 ____D C:\Users\ReportServer$SQLEXPRESS
2015-11-18 14:22 - 2015-06-10 14:52 - 00000000 ____D C:\Users\ThomasL 0176******29\Documents\eclipse
2015-11-17 20:24 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-17 20:07 - 2015-06-01 18:34 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\ElevatedDiagnostics
2015-11-17 15:12 - 2015-10-04 17:42 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\Bewerbung Canada Widerfunnel Praktikum
2015-11-17 15:02 - 2014-09-29 09:36 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-11-17 15:02 - 2013-09-29 02:55 - 00003158 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_Dolby
2015-11-17 15:02 - 2013-09-29 02:55 - 00003146 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2015-11-17 15:02 - 2013-09-29 02:54 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-11-17 15:01 - 2015-07-02 22:29 - 00000000 ____D C:\Users\Packages
2015-11-17 15:01 - 2013-09-29 02:56 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-17 15:01 - 2013-09-29 02:54 - 00000000 ____D C:\ProgramData\Intel
2015-11-17 15:01 - 2013-09-29 02:52 - 00000000 ____D C:\Program Files (x86)\Intel
2015-11-17 15:00 - 2015-01-21 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-11-17 15:00 - 2015-01-21 14:28 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-11-17 14:59 - 2014-09-29 09:36 - 00000000 ____D C:\Program Files\Intel
2015-11-17 14:57 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2015-11-17 13:57 - 2014-10-07 09:57 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Eclipse
2015-11-17 07:51 - 2015-07-08 08:46 - 00001839 _____ C:\Users\ThomasL 0176******29\AppData\Roaming\Microsoft\Windows\Start Menu\REACHit Drive.lnk
2015-11-17 07:51 - 2014-11-24 21:23 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Downloaded Installations
2015-11-17 07:51 - 2013-09-29 03:03 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2015-11-14 14:58 - 2015-10-17 21:21 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\google analytics fragen
2015-11-13 18:00 - 2014-10-12 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RescueTime
2015-11-13 18:00 - 2014-10-12 11:08 - 00000000 ____D C:\Program Files (x86)\RescueTime
2015-11-12 18:36 - 2014-10-02 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-11-12 10:33 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2015-11-11 22:27 - 2015-10-27 20:17 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2015-11-11 18:04 - 2014-09-21 10:15 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Roaming\TeamViewer
2015-11-11 15:51 - 2014-09-21 10:19 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 15:51 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-11 15:43 - 2014-09-21 10:19 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-11 15:32 - 2014-10-22 16:13 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-11 11:27 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-11-10 14:57 - 2014-09-29 18:48 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-10 09:14 - 2014-09-29 15:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-09 23:20 - 2014-10-30 22:35 - 00000000 ____D C:\Users\ThomasL 0176******29\Documents\Calibre-Bibliothek
2015-11-09 23:19 - 2015-01-05 21:11 - 00000000 ____D C:\Users\ThomasL 0176******29\calibre
2015-11-07 11:15 - 2013-09-28 20:21 - 00000000 ____D C:\ProgramData\Lenovo
2015-11-07 11:14 - 2013-09-29 03:04 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2015-11-07 11:14 - 2013-09-29 03:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2015-11-07 11:14 - 2013-09-29 03:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-11-07 11:14 - 2013-09-29 02:51 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-11-06 12:26 - 2015-05-21 13:50 - 00000000 ____D C:\Users\ThomasL 0176******29\Desktop\dog ids
2015-11-06 11:10 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-05 16:50 - 2015-10-16 22:39 - 18081229 _____ C:\Users\ThomasL 0176******29\Desktop\lars-landing-page-arrow-down-dog-landing-page-mit-pfeil-nach-unten.psd
2015-11-05 12:23 - 2014-09-30 20:03 - 00000000 ____D C:\ProgramData\Skype
2015-11-03 10:28 - 2015-06-11 11:02 - 00000000 ____D C:\Users\ThomasL 0176******29\workspace1
2015-11-03 01:23 - 2013-08-22 16:38 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:23 - 2013-08-22 16:38 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-01 12:06 - 2014-11-20 06:37 - 00000000 ____D C:\Users\ThomasL 0176******29\AppData\Local\Microsoft_Corporation
2015-10-31 20:45 - 2015-05-15 08:26 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-31 12:27 - 2015-03-23 21:53 - 00192427 _____ C:\Users\ThomasL 0176******29\Desktop\Campaign Tagging Tool für Google Analytics - v140627.xlsm

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-11-21 15:15 - 2014-11-21 15:16 - 0044120 __RSH () C:\Program Files (x86)\DLS8Uninstall.log
2014-09-29 08:09 - 2014-09-29 08:09 - 15000576 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-09-16 21:55 - 2014-09-26 15:35 - 0002936 _____ () C:\Users\ThomasL 0176******29\AppData\Roaming\AbsoluteReminder.xml
2015-04-27 15:59 - 2015-05-24 18:38 - 0000132 _____ () C:\Users\ThomasL 0176******29\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-09-26 15:35 - 2014-09-26 15:35 - 0076976 _____ () C:\Users\ThomasL 0176******29\AppData\Roaming\LoJackSetup.exe
2015-04-30 13:53 - 2015-04-30 13:53 - 0001158 _____ () C:\Users\ThomasL 0176******29\AppData\Roaming\ShiftN.ini
2014-10-31 10:37 - 2015-11-25 08:45 - 0001456 _____ () C:\Users\ThomasL 0176******29\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2014-10-31 14:55 - 2015-11-23 21:00 - 0018432 _____ () C:\Users\ThomasL 0176******29\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-16 21:54 - 2014-09-16 22:42 - 0000377 _____ () C:\Users\ThomasL 0176******29\AppData\Local\RegisteredPackageInformation.xml
2014-09-26 15:37 - 2014-09-26 15:37 - 6339968 _____ (Absolute Software Corp.) C:\Users\ThomasL 0176******29\AppData\Local\Setup.exe
2014-07-01 23:25 - 2014-07-01 23:25 - 0000003 _____ () C:\ProgramData\AbsoluteNotifier.txt
2014-11-20 13:48 - 2014-11-20 13:48 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-09-29 09:36 - 2014-09-29 09:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\ThomasL 0176******29\AppData\Local\Temp\avgnt.exe
C:\Users\ThomasL 0176******29\AppData\Local\Temp\deleteFile.exe
C:\Users\ThomasL 0176******29\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplpiqld.dll
C:\Users\ThomasL 0176******29\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmnvd0h.dll
C:\Users\ThomasL 0176******29\AppData\Local\Temp\RescueTimeInstaller.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-11-23 22:56

==================== Ende von FRST.txt ============================