Windows Explorer schließt sich ständig

cbhansen · 21.03.2016, 21:18

Liebes Trojaner-Board-Team,

leider habe ich einer falschen Installation von AntiVir zugestimmt.

Allerdings habe ich nun das Problem, dass sich ca. alle 30 Sekunden der Windows Explorer, Leiste unten geht bspw. weg und baut sich wieder neu auf.

Malewarebytes, CCleaner und Antivir habe ich bereits ausgeführt und es wurden sehr viele Fehler eliminiert

Ich hoffe, ihr könnt damit was anfangen und es besteht noch Hoffnung auf Rettung
Ich habe ein Acer-Aspire-Netbook mit einem Windows 10-32bit-Betriebssystem.

Schon einmal vielen Dank an denjenigen, der sich mit meinem Problem auseinander setzt.

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
durchgeführt von Bernd   (2016-03-21 20:03:01)
Gestartet von C:\Users\Bernd  \Downloads
Microsoft Windows 10 Home Version 1511 (X86) (2016-02-13 08:54:15)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2695852466-3627747-2698276751-500 - Administrator - Disabled)
Bernd   (S-1-5-21-2695852466-3627747-2698276751-1000 - Administrator - Enabled) => C:\Users\Bernd  
DefaultAccount (S-1-5-21-2695852466-3627747-2698276751-503 - Limited - Disabled)
Gast (S-1-5-21-2695852466-3627747-2698276751-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2695852466-3627747-2698276751-1002 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

18 Wheels of Steel: Voll aufs Gas (HKLM\...\18 Wheels of Steel: Voll aufs Gas) (Version: 1.07 - ValuSoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Acer Crystal Eye Webcam (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 2.0.4 - SuYin)
Adblock Plus für IE (32-Bit) (HKLM\...\{654F389B-E402-4F7B-BA6D-DA732BB57ACB}) (Version: 1.4 - Eyeo GmbH)
Adobe Reader XI (11.0.10) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Any Video Converter 5.0.5 (HKLM\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Ashampoo WinOptimizer 2015 (HKLM\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.60 - Ashampoo GmbH & Co. KG)
AVerMedia A309 (MiniCard, DVB-T) 1.0.0.40 (HKLM\...\AVerMedia A309 (MiniCard, DVB-T)) (Version: 1.0.0.40 - AVerMedia TECHNOLOGIES, Inc.)
Avira Launcher (HKLM\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
CameraHelperMsi (Version: 13.40.836.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
GamesBar 2.0.1.82 (HKLM\...\GamesBar) (Version: 2.0.1.82 - Oberon Media, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden
GTR (HKLM\...\{3AE8FC9B-0784-4ACB-92FE-69683FB905CA}_is1) (Version: v1.0.5.0 - SimBin Development Team AB)
HiDef Media Player 1.1.12 (HKLM\...\HiDef Media Player) (Version: 1.1.12 - HiDefMedia)
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{98D64F70-1BE2-4E06-A58E-50FF642B3F24}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
ITECIR Driver (HKLM\...\{FCED9B62-34FF-4C15-8A23-F65221F7874D}) (Version: 1.00.000 - ITE)
Join Air (HKLM\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.2 - ZTE Corporation)
Logitech Webcam-Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.40 - Logitech Inc.)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.)
Media Buzz (HKLM\...\MediaBuzzV1mode4344) (Version: 1.1 - Media Buzz) <==== ACHTUNG
Media Player (HKLM\...\MediaPlayerV1alpha579) (Version: 1.1 - Media Player) <==== ACHTUNG
Media View (HKLM\...\MediaViewV1alpha8139) (Version: 1.1 - Media View) <==== ACHTUNG
Media Watch (HKLM\...\MediaWatchV1home4109) (Version: 1.1 - Media Watch) <==== ACHTUNG
Mediathek 2.1.1 (HKLM\...\CoBiMediathek) (Version:  - )
Microsoft Flight Simulator X: Acceleration (HKLM\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 1.0.30716.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ Run Time  Lib Setup (HKLM\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Mozilla Firefox 45.0.1 (x86 de) (HKLM\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
Paint.NET v3.5.8 (HKLM\...\{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}) (Version: 3.58.0 - dotPDN LLC)
Pinnacle TVCenter Pro (HKLM\...\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}) (Version:  - )
PixiePack Codec Pack (HKLM\...\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}) (Version: 1.1.1200.0 - None)
PlayStation(R)Network Downloader (HKLM\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.07.00849 - Sony Computer Entertainment Inc.)
PlayStation(R)Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.16.2.15545 - Sony Computer Entertainment Inc.)
POIbase 1.041 (HKLM\...\POIbase_is1) (Version:  - POIbase)
QuickTime (HKLM\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.)
Race Driver 2 (HKLM\...\InstallShield_{D474A0E8-4421-43C0-BE8E-F454F91E2E2A}) (Version: 1.01.0000 - Codemasters)
Race Driver 2 (Version: 1.01.0000 - Codemasters) Hidden
Radio.fx (HKLM\...\Tobit Radio.fx Server) (Version:  - Tobit.Software)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version:  - Realtek Semiconductor Corp.)
Rich Media View (HKLM\...\RichMediaViewV1release206) (Version: 1.1 - Rich Media View) <==== ACHTUNG
Schiffsim 2006 (HKLM\...\Schiffsim) (Version:  - )
Schiff-Simulator 2006 Add-On (HKLM\...\Schiffsim_AddOn) (Version:  - )
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.15.5.201504081732 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.2.4.0 - Synaptics)
Trust Media Viewer (HKLM\...\TrustMediaViewerV1alpha1937) (Version: 1.1 - Trust Media Viewer) <==== ACHTUNG
Try Corel Snapfire muvee autoProducer add on (Version: 1.00.0000 - Ihr Firmenname) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.73 - TuneUp Software) Hidden
Verbindungsassistent (HKLM\...\Verbindungsassistent) (Version: 2.1 - Verbindungsassistent)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
World Racing 2 (HKLM\...\InstallShield_{5EBAC9CB-97D7-44CD-A82D-4FCB37F582AC}) (Version: 1.1.1 - Synetic)
World Racing 2 (Version: 1.1.1 - Synetic) Hidden
YAC (HKLM\...\iSafe) (Version:  - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ACHTUNG
Zuma Deluxe (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}) (Version:  - Oberon Media)
Zuma Deluxe (HKLM\...\BFG-Zuma Deluxe) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B7456}\localserver32 -> "C:\Program Files\Ashampoo\Ashampoo Office 2010\Presentations.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{939A0D04-0E07-48FE-A463-6623B70C3A96}\localserver32 -> "C:\Users\Bernd  \AppData\Roaming\ValueApps\IE\ValueApps.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B7456}\localserver32 -> "C:\Program Files\Ashampoo\Ashampoo Office 2010\Presentations.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{939A0D04-0E07-48FE-A463-6623B70C3A96}\localserver32 -> "C:\Users\Bernd  \AppData\Roaming\ValueApps\IE\ValueApps.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F0F3FA7-3D15-49F7-AE39-AB1E1DF5FE5B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {1244146E-2EE2-4F0B-A72E-6ED4E415D010} - System32\Tasks\{ED48629D-3AD0-4165-A6B0-2AAB16CAE90C} => pcalua.exe -a C:\Firefox\startxxl_setup.exe -d "C:\Users\Bernd  \Desktop"
Task: {12943BFF-8838-4A24-B4EE-1C055AA101D9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {12E74494-6377-4350-9226-45C04424C835} - System32\Tasks\One-Click Optimizer WO11 => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe [2015-07-10] (Ashampoo Development GmbH & Co. KG)
Task: {1418F91A-5E22-44CF-AB0D-B80B6BDF072C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C6F6BA0-B4FB-4EF4-8B11-704A2B543892} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {213501E7-AAE4-4102-AEBA-F0632E3FFAF4} - System32\Tasks\{65977C75-2673-45DA-B158-144CF2ED5427} => C:\Program Files\Skype\Phone\Skype.exe
Task: {2C0DE271-7C7E-4C42-8AD5-D45811B12D21} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2CF7ACB3-B53E-4B15-A270-DD446B1A644F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2E94DB81-2957-48FF-9E34-906A2147D1A1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C0EEE20-F056-4419-AFFC-E491475FE2C2} - System32\Tasks\Google Updater and Installer => C:\Users\Bernd  \AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3D6978A4-6DA8-45DF-81C1-DC9EE395B62A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41662CF0-D177-4732-A924-7B090FCB16A0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47B086ED-3EA9-4BF7-946A-C7AB4E217C06} - System32\Tasks\{7AFF8452-91DD-4D96-80A6-4B484A9D16C3} => pcalua.exe -a "C:\Program Files\Codemasters\Race Driver 2\HardwareSetup.exe" -d "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters\DTM Race Driver 2"
Task: {595B7FA2-72EB-445F-968B-4071193267B6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5A876DD1-4B9C-4493-A0B6-1AD4FD055023} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {5AF59161-6555-4F92-BF83-AF202602BC24} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5D092BAD-175D-44DF-B871-6CCEAD1611C8} - System32\Tasks\{5D3FCF9A-1191-42D3-8942-B8A077D1F64C} => pcalua.exe -a "C:\Users\Bernd  \AppData\Local\Temp\Temp1_Modem_Foxconn_v7.70.00.52_Vistax86.zip\Modem_Foxconn_v7.70.00.52_Vistax86\Setup.exe"
Task: {5DD99132-CCED-4D0F-9B50-5F1CDC51C6F0} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-03-24] (Hewlett-Packard)
Task: {5DD9F118-FED9-45D9-AE78-A3E7D4E67C1A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {625DCA16-A3E2-4AAB-8AA9-C4229DB19B19} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-03] (Adobe Systems Incorporated)
Task: {69A731A5-D691-48DB-B6FF-F22C2331FA06} - System32\Tasks\{BB95EDAA-41A5-486E-A7ED-C8D8DCA815D6} => pcalua.exe -a "C:\Users\Bernd  \AVM_Driver\FWLAN\pushinst.exe" -d "C:\Users\Bernd  \AVM_Driver\FWLAN" -c -first"E:"
Task: {6A30B50F-3CFB-47D7-A53F-56E64683F465} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {71733C11-4CFD-4C67-81F4-9A1F79133513} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {7B744A37-EB7B-4CE9-AD2B-89DC277B7A53} - System32\Tasks\{7422206C-18F2-4612-9242-39512E25733E} => pcalua.exe -a "c:\users\bernd  \appdata\local\lollipop\lollipop.bat"
Task: {7DA248C5-6DC0-4D32-8CF6-F6E35DB44491} - System32\Tasks\{24C57207-8A91-498F-B748-939F058C71BE} => pcalua.exe -a "C:\Users\Bernd  \AppData\Local\Temp\Temp2_Camera_Suyin_v2.0.4_Vistax86x64_XPx86x64.zip\Camera_Suyin_v2.0.4_Vistax86x64_XPx86x64\Setup.exe"
Task: {89A314B8-462D-4116-AE0C-13C3C02CF90E} - System32\Tasks\{9D84BABE-2859-44D3-9FF0-95564660BBA1} => pcalua.exe -a D:\setup.exe -d D:\
Task: {94730129-7EF3-4E6F-BD4E-F32193D50A03} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-31] (Google Inc.)
Task: {955BE23F-74AE-489D-9F64-3E1A3DA3A3A6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {96FA7C99-364C-4991-931F-315DF4EF0CF4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {970810C1-F76B-43DF-85BE-A544A36FA8C0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {9FDED1EE-C952-4F18-B226-E3D5123233C9} - System32\Tasks\{37E8B945-6888-4AA0-9C33-1BEEBE355EDA} => C:\Program Files\Verbindungsassistent\Verbindungsassistent.exe [2009-12-11] (WebToGo Mobile Internet GmbH)
Task: {A11FD406-15A5-4CC9-A941-56F493515AA8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A36AED1C-5CBA-4AF0-B10B-5C62D8F9168D} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files\CHIP Updater\CHIPUpdater.exe
Task: {AB07096C-3B6D-4644-9DE5-609B9B3F24CE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {CB85B0F3-6C2B-4D3B-9FCB-6597F9177FAF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {D3627314-40A9-4D22-8F44-4092A0ED748B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D56A6C57-2D81-4D58-8FB1-63B881449965} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-31] (Google Inc.)
Task: {E03F3744-235C-439A-9587-3CB1530B0646} - System32\Tasks\{91C21EEC-FF3A-4B21-B7EA-516B1FFA08F4} => pcalua.exe -a C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSFJE.EXE -c /R /APD /P:"EPSON SX610FW Series"
Task: {E06B4004-5633-49AE-9E52-0B1FD73C73F0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E602BC23-F118-449E-BEE4-78C983A7659D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E6661E67-83AE-410D-8984-5805FA18B1A3} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E81A5352-ACFD-4865-B3E3-63BD3D7C0037} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F751A8F2-5955-4180-8755-F59A9A1824F0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {F86F9B4E-3BCB-4355-B7BB-FB9D9C31D1A2} - System32\Tasks\{A0746AF4-5477-4CC1-B578-24774A349927} => C:\Program Files\Codemasters\Race Driver 2\RD2.exe [2004-03-25] (Codemasters)
Task: {FA7C3A39-05A4-45F3-B772-C0602EC4B857} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\One-Click Optimizer WO11.job => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 06:44 - 2015-10-30 06:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-02-12 23:31 - 2015-10-13 17:47 - 00113840 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2010-10-20 19:06 - 2013-06-03 12:06 - 03999512 _____ () C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
2006-11-02 20:40 - 2006-11-02 20:40 - 00174656 _____ () C:\Windows\system32\PSIService.exe
2009-12-11 11:47 - 2009-12-11 12:07 - 00308688 _____ () C:\Program Files\Verbindungsassistent\wtgservice.exe
2016-03-01 21:42 - 2016-02-23 11:34 - 01859960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-02-14 17:42 - 2016-02-14 17:44 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-14 17:42 - 2016-02-14 17:44 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-02-14 17:42 - 2016-02-14 17:44 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-05-03 20:35 - 2010-01-13 08:55 - 00030080 _____ () C:\Windows\snuvcdsm.exe
2011-11-11 13:08 - 2011-11-11 13:08 - 07956504 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtGui4.dll
2011-11-11 13:08 - 2011-11-11 13:08 - 02145304 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtCore4.dll
2011-11-11 13:08 - 2011-11-11 13:08 - 00342552 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtXml4.dll
2011-11-11 13:08 - 2011-11-11 13:08 - 00029208 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2011-11-11 13:08 - 2011-11-11 13:08 - 00128536 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2011-11-11 13:07 - 2011-11-11 13:07 - 00265240 _____ () C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2011-12-12 14:44 - 2011-12-12 14:44 - 00336408 _____ () C:\Program Files\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2013-07-30 16:41 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files\Sony\Sony PC Companion\TMonitorAPI.dll
2013-07-30 16:41 - 2015-10-20 17:44 - 00242176 _____ () C:\Program Files\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files\Sony\Sony PC Companion\Report.dll
2015-03-23 18:19 - 2015-03-23 18:19 - 02620416 _____ () C:\Program Files\Sony\Sony PC Companion\libxt.dll
2013-07-30 16:41 - 2015-04-21 12:22 - 00053248 _____ () C:\Program Files\Sony\Sony PC Companion\VObject.dll
2015-04-10 10:26 - 2015-04-10 10:26 - 00669696 _____ () C:\Program Files\Sony\Sony PC Companion\PhoneUpdate.dll
2013-06-11 09:31 - 2013-06-11 09:31 - 00090112 _____ () C:\Program Files\Sony\Sony PC Companion\CalEngine.dll
2012-04-04 14:33 - 2012-04-04 14:33 - 00139776 _____ () C:\Program Files\Sony\Sony PC Companion\CAgdLNotes.dll
2013-01-08 17:02 - 2013-01-08 17:02 - 00163840 _____ () C:\Program Files\Sony\Sony PC Companion\CAgdOutlook.dll
2012-07-26 11:51 - 2012-07-26 11:51 - 00208896 _____ () C:\Program Files\Sony\Sony PC Companion\VistaCalendar.dll
2011-08-12 11:19 - 2011-08-12 11:19 - 00680984 _____ () C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
2016-02-12 22:13 - 2016-02-12 22:13 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-07-30 16:41 - 2015-06-10 10:13 - 00113024 _____ () C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-10-30 06:45 - 2015-10-30 06:45 - 00164224 _____ () c:\windows\system32\WerEtw.dll
2016-03-01 21:42 - 2016-02-23 11:34 - 01859960 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-03-01 21:41 - 2016-02-23 08:48 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 05340672 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 02366464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 02656768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-02-12 23:19 - 2016-02-12 23:19 - 02411360 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:A1D3FEF0 [198]
AlternateDataStreams: C:\ProgramData\TEMP:B881EAB4 [144]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bernd  \AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Bernd  \AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Pinnacle Streaming Server.lnk => C:\Windows\pss\Pinnacle Streaming Server.lnk.CommonStartup
MSCONFIG\startupreg: (default) => 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files\avmwlanstick\FRITZWLANMini.exe
MSCONFIG\startupreg: EEventManager => C:\Program Files\Epson Software\Event Manager\EEventManager.exe
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: Launch LCDMon => "C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe"
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: PLFSetI => C:\Windows\PLFSetI.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RtHDVCpl.exe
MSCONFIG\startupreg: SAITEKAUTOCONFIGURE => C:\Program Files\Saitek\Saitek Gaming Extensions\saicnfig.exe /autorun
MSCONFIG\startupreg: SaitekInstall => "C:\Users\BERNDH~1\AppData\Local\Temp\{DDAC88B5-374A-4594-8BA4-FA8AD94CC811}\install.exe" 4
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: TaskTray => 
MSCONFIG\startupreg: UIExec => "C:\Program Files\Join Air\UIExec.exe"

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8883D768-1166-476C-A30A-8ADF55A2DB89}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{18C0C421-0B9C-40B0-8CA2-83D0F7676E66}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3B5F8D6F-29FC-4290-93DE-9E695D081C60}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7FBBA44D-9C24-4B0E-976E-24BD66463184}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9BDD2979-590F-4966-8A59-4825E29FB38A}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{44361C61-C7D8-487F-A60D-54E62D191DFB}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{C59E0600-D2AC-458F-9482-ABFBDF500036}] => (Allow) LPort=1900
FirewallRules: [{A1F20E66-FE49-474F-A54B-27C9A45FD813}] => (Allow) LPort=7900
FirewallRules: [{68C88FE3-DF9C-434C-959B-9AED7AE53129}] => (Allow) LPort=24234
FirewallRules: [{0B72ECEA-8B13-4BB8-9B62-03C85FB31E73}] => (Allow) LPort=7679
FirewallRules: [{685470C6-D238-48A8-9168-4C0C3D4D9AFD}] => (Allow) LPort=7676
FirewallRules: [{F65DD43D-8B01-447A-A4A4-3F2B6375D246}] => (Allow) LPort=8643
FirewallRules: [{B89B3D84-DB10-4F00-BF8C-BAB07132C84A}] => (Allow) LPort=8743
FirewallRules: [{CCD254AC-3949-4B02-A186-F4BAC6BC0F8B}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4C2EF6B5-E9C8-4202-881A-55A97FC9DE27}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [UDP Query User{EBB56F6D-5AD7-4CEE-B3A1-BF85365F10FE}C:\users\bernd  \appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\bernd  \appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{23EE4121-6F69-42CB-8C47-8A94A94E5090}C:\users\bernd  \appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\bernd  \appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{7038E95C-69E3-4170-AA78-94304BC9D88C}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{A49A152F-5700-47C8-8825-EAFAD481B345}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{2F98C6AF-88AB-43CB-9198-24E1223158FA}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [UDP Query User{54FD2C97-D876-4F51-9A64-416BE4626D48}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{B5664073-A534-48B9-B4BD-60F66094784A}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{8448275C-940D-4D78-A911-B3E16DD543B6}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{33FABFB1-017A-4D61-9ACE-BFD4B1A47C7A}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{B8CFDA65-8EDA-48EC-83BE-AAC7ECA737D7}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [TCP Query User{5391A338-0F78-408B-9EA5-D70FA1DA28DA}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [{22FE8A31-39DB-4A50-BBC4-2B7F67614CB0}] => (Allow) C:\Program Files\Tobit Radio.fx\Client\rfx-client.exe
FirewallRules: [{5276B93F-6EEF-4FA2-911C-B695F88261DC}] => (Allow) C:\Program Files\Tobit Radio.fx\Client\rfx-client.exe
FirewallRules: [{85A6F42F-B994-433D-82F2-5F9D28EC49B5}] => (Allow) C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
FirewallRules: [{89E54397-B9A1-4016-818B-6EB666033A46}] => (Allow) C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
FirewallRules: [{0A7A2993-4B9E-4570-AE8F-154E275CBDF3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

21-03-2016 00:38:56 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/21/2016 08:03:15 PM) (Source: Radio.fx) (EventID: 100) (User: )
Description: Failed to open session

Error: (03/21/2016 08:03:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1be8
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 08:01:15 PM) (Source: Radio.fx) (EventID: 100) (User: )
Description: Failed to open session

Error: (03/21/2016 08:00:14 PM) (Source: Radio.fx) (EventID: 100) (User: )
Description: Failed to open session

Error: (03/21/2016 07:59:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x18f8
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 07:56:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xc54
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 07:53:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1a0c
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 07:50:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1f20
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 07:46:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x13ec
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/21/2016 07:41:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1134
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5


Systemfehler:
=============
Error: (03/21/2016 08:02:16 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 08:02:16 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 08:02:12 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 08:02:12 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 07:47:16 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 07:47:16 PM) (Source: DCOM) (EventID: 10016) (User: Bernd -PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Bernd -PCBernd  S-1-5-21-2695852466-3627747-2698276751-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (03/21/2016 07:25:37 PM) (Source: DCOM) (EventID: 10001) (User: Bernd -PC)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca31CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mcaNicht verfügbarNicht verfügbar

Error: (03/21/2016 07:25:37 PM) (Source: DCOM) (EventID: 10010) (User: Bernd -PC)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca

Error: (03/21/2016 07:25:37 PM) (Source: DCOM) (EventID: 10010) (User: Bernd -PC)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca

Error: (03/21/2016 07:25:37 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {7006698D-2974-4091-A424-85DD0B909E23}


CodeIntegrity:
===================================
  Date: 2016-03-21 06:32:12.000
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-20 23:10:51.402
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-17 08:07:37.366
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 18:44:04.491
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:04.382
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:04.290
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:02.541
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:01.878
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:01.573
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:43:56.055
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz
Prozentuale Nutzung des RAM: 62%
Installierter physikalischer RAM: 3070.43 MB
Verfügbarer physikalischer RAM: 1157.75 MB
Summe virtueller Speicher: 6142.43 MB
Verfügbarer virtueller Speicher: 3961.25 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:297.55 GB) (Free:83.26 GB) NTFS
Drive d: (LOGICAL VOLUME IDENTIFIER) (CDROM) (Total:3.93 GB) (Free:0 GB) UDF

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9158A9EF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== Ende vom Addition.txt ============================

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
durchgeführt von Bernd   (Administrator) auf BERND -PC (21-03-2016 19:59:36)
Gestartet von C:\Users\Bernd  \Downloads
Geladene Profile: Bernd   &  (Verfügbare Profile: Bernd  )
Platform: Microsoft Windows 10 Home Version 1511 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
() C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Windows\System32\PSIService.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(sonix) C:\Windows\PLFSetL.exe
(Realtek Semiconductor Corp.) C:\Users\Bernd  \AppData\Local\Temp\RtkBtMnt.exe
() C:\Windows\snuvcdsm.exe
(Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Oberon Media ) C:\Program Files\GamesBar\SearchEngineProtection.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Malwarebytes) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe
(Microsoft Corporation) C:\Windows\System32\wermgr.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-18] (Synaptics, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\WINDOWS\RtHDVCpl.exe [6265376 2008-08-12] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\WINDOWS\Skytel.exe [1833504 2008-08-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [PLFSetL] => C:\WINDOWS\PLFSetL.exe [99712 2010-01-13] (sonix)
HKLM\...\Run: [SNUVCDSM] => C:\WINDOWS\snuvcdsm.exe [30080 2010-01-13] ()
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Run: [SearchEngineProtection] => C:\Program Files\Gamesbar\SearchEngineProtection.exe [591248 2011-03-03] (Oberon Media )
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SearchEngineProtection] => C:\Program Files\Gamesbar\SearchEngineProtection.exe [591248 2011-03-03] (Oberon Media )
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2016-03-21]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{60ce7c18-b511-49d7-927d-aeae77087781}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{64f27db3-5565-497b-ab60-a1a470fdbb5f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{c0b9eb1d-51cc-4e74-b628-46fcc62f2ce4}: [DhcpNameServer] 192.168.0.1
ManualProxies: 

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} -  Keine Datei
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {1d8566bd-f06f-4029-a3be-ba80af5a09f3} -  Keine Datei
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Kein Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} -  Keine Datei
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Kein Name) - {1d8566bd-f06f-4029-a3be-ba80af5a09f3} -  Keine Datei
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> DefaultScope {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {7EEEC7F9-F70A-4B84-B6BB-8ADB6C2CDF42} URL = 
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = 
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {7EEEC7F9-F70A-4B84-B6BB-8ADB6C2CDF42} URL = 
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = 
BHO: AdblockPlus -> {9FD6379A-EF46-4193-BC64-99F59DF1334F} -> C:\Users\Bernd  \AppData\LocalLow\AdblockPlus\IE\AdblockPlus.dll [2010-07-15] (Wladimir Palant)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> Kein Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> Kein Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> Kein Name - {41564952-412D-5637-00A7-7A786E7484D7} -  Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  Keine Datei
Toolbar: HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Kein Name - {41564952-412D-5637-00A7-7A786E7484D7} -  Keine Datei
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2007-08-24] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Bernd  \AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256
FF Homepage: hxxp://www.google.de/
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\npctrl.1.0.30716.0.dll [2008-07-15] ( Microsoft Corporation)
FF Plugin: @oberon-media.com/ONCAdapter -> C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.8\npapicomadapter.dll [2011-05-24] (Oberon-Media )
FF Plugin: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [Keine Datei]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2695852466-3627747-2698276751-1000: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-2695852466-3627747-2698276751-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll [Keine Datei]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-02-18] (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2013-06-26]
FF Extension: Adblock Plus - C:\Users\Bernd  \AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF Extension: LoudMo Contextual Ad Assistant - C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} [2015-08-07] [ist nicht signiert]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [ist nicht signiert]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-09] <==== ACHTUNG

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Bernd  \AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avira Browserschutz) - C:\Users\Bernd  \AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-03-20]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Bernd  \AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR HKLM\...\Chrome\Extension: [fgfdfcbeamjnjdejakdidpniblllnbpg] - C:\Windows\System32\jmdp\pnte.crx <nicht gefunden>
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe [235696 2015-10-30] (McAfee, Inc.)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] () [Datei ist nicht signiert]
R2 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
S3 UI Assistant Service; C:\Program Files\Join Air\AssistantServices.exe [247152 2010-04-27] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 WTGService; C:\Program Files\Verbindungsassistent\wtgservice.exe [308688 2009-12-11] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 itecir; C:\WINDOWS\system32\DRIVERS\itecir.sys [84600 2015-11-24] (ITE Tech. Inc. )
R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [34000 2015-11-24] (ITE Tech. Inc. )
R3 L1E; C:\WINDOWS\System32\drivers\L1E62x86.sys [55296 2015-10-30] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-03-21] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2015-10-30] (Intel Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1766784 2010-01-13] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 aspnet_state; kein ImagePath
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-21 20:01 - 2016-03-21 20:01 - 00001241 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-21 20:01 - 2016-03-21 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-21 20:00 - 2016-03-21 20:01 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\Bernd  \Downloads\avira_de_av_56f03c3f60371__ws.exe
2016-03-21 19:59 - 2016-03-21 20:01 - 00018263 _____ C:\Users\Bernd  \Downloads\FRST.txt
2016-03-21 19:57 - 2016-03-21 19:59 - 00000000 ____D C:\FRST
2016-03-21 19:56 - 2016-03-21 19:57 - 01725440 _____ (Farbar) C:\Users\Bernd  \Downloads\FRST.exe
2016-03-21 19:56 - 2016-03-21 19:56 - 02374144 _____ (Farbar) C:\Users\Bernd  \Downloads\FRST64.exe
2016-03-21 19:23 - 2016-03-21 19:23 - 00000000 ____D C:\OETemp
2016-03-21 18:29 - 2016-03-21 18:29 - 00082342 _____ C:\Users\Bernd  \Downloads\Extras.Txt
2016-03-21 18:27 - 2016-03-21 18:27 - 00183354 _____ C:\Users\Bernd  \Downloads\OTL.Txt
2016-03-21 17:56 - 2016-03-21 17:56 - 00602112 _____ (OldTimer Tools) C:\Users\Bernd  \Downloads\OTL.exe
2016-03-21 05:39 - 2016-03-21 05:39 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-03-20 22:13 - 2016-03-21 19:40 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-20 22:13 - 2016-03-21 05:39 - 00001141 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware 
2016-03-20 22:13 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-03-20 22:13 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-03-20 22:13 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-03-20 22:10 - 2016-03-20 22:11 - 22908888 _____ (Malwarebytes ) C:\Users\Bernd  \Downloads\mbam-setup-2.2.0.1024.exe
2016-03-20 21:43 - 2016-03-21 05:39 - 00001030 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-20 21:43 - 2016-03-20 21:43 - 00000000 ____D C:\Program Files\CCleaner
2016-03-20 21:41 - 2016-03-20 21:42 - 06837784 _____ (Piriform Ltd) C:\Users\Bernd  \Downloads\ccsetup515.exe
2016-03-20 09:40 - 2016-03-20 09:53 - 235505452 _____ C:\Users\Bernd  \Downloads\m291siren.zip
2016-03-20 09:32 - 2016-03-20 09:40 - 232197546 _____ C:\Users\Bernd  \Downloads\m292drew.zip
2016-03-15 10:56 - 2016-03-08 08:12 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-15 10:56 - 2016-03-08 08:12 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-03-13 20:31 - 2016-03-13 20:31 - 00089914 _____ C:\Users\Bernd  \Downloads\Verkauf_-_Angebot(1).pdf
2016-03-11 20:28 - 2016-03-11 20:37 - 260989500 _____ C:\Users\Bernd  \Downloads\m290cevihe.zip
2016-03-11 20:14 - 2016-03-11 20:28 - 335224956 _____ C:\Users\Bernd  \Downloads\m294michelle.zip
2016-03-11 20:05 - 2016-03-11 20:14 - 207007786 _____ C:\Users\Bernd  \Downloads\m293siren.zip
2016-03-09 20:14 - 2016-03-01 06:22 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-03-09 20:14 - 2016-02-24 10:15 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 20:14 - 2016-02-24 10:15 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-03-09 20:14 - 2016-02-24 10:11 - 00599904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 20:14 - 2016-02-24 09:57 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 20:14 - 2016-02-24 09:50 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-03-09 20:14 - 2016-02-24 09:19 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 20:14 - 2016-02-24 09:11 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 20:14 - 2016-02-24 09:11 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-03-09 20:14 - 2016-02-24 09:06 - 05242496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-03-09 20:14 - 2016-02-24 09:03 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-03-09 20:14 - 2016-02-24 08:59 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-09 20:14 - 2016-02-24 08:38 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-09 20:14 - 2016-02-24 08:35 - 01714016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 20:14 - 2016-02-24 08:35 - 00523752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-03-09 20:14 - 2016-02-24 08:35 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 20:14 - 2016-02-24 08:33 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 20:14 - 2016-02-24 07:34 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 20:14 - 2016-02-24 07:32 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-03-09 20:14 - 2016-02-24 07:23 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-03-09 20:14 - 2016-02-24 07:21 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-03-09 20:14 - 2016-02-24 07:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-03-09 20:14 - 2016-02-24 07:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-03-09 20:14 - 2016-02-24 07:17 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-03-09 20:14 - 2016-02-24 07:13 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-03-09 20:14 - 2016-02-24 07:08 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-03-09 20:14 - 2016-02-24 07:07 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-03-09 20:14 - 2016-02-24 07:07 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-03-09 20:14 - 2016-02-24 07:07 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-03-09 20:14 - 2016-02-24 07:06 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-03-09 20:14 - 2016-02-24 07:04 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 20:14 - 2016-02-24 07:03 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-03-09 20:14 - 2016-02-24 06:59 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-03-09 20:14 - 2016-02-24 06:55 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 20:14 - 2016-02-24 06:46 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 20:14 - 2016-02-24 06:38 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-09 20:14 - 2016-02-24 06:37 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 20:14 - 2016-02-24 06:37 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-03-09 20:14 - 2016-02-24 06:34 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-09 20:14 - 2016-02-24 06:18 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 20:14 - 2016-02-24 06:12 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 20:14 - 2016-02-24 06:12 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 20:14 - 2016-02-24 06:05 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 20:14 - 2016-02-24 05:59 - 05661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 20:13 - 2016-02-24 10:10 - 00959840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 20:13 - 2016-02-24 10:03 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 20:13 - 2016-02-24 09:15 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 20:13 - 2016-02-24 08:59 - 00118304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-03-09 20:13 - 2016-02-24 08:33 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 20:13 - 2016-02-24 08:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-03-09 20:13 - 2016-02-24 07:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-03-09 20:13 - 2016-02-24 07:54 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-03-09 20:13 - 2016-02-24 07:53 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-03-09 20:13 - 2016-02-24 07:53 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-03-09 20:13 - 2016-02-24 07:52 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-03-09 20:13 - 2016-02-24 07:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 20:13 - 2016-02-24 07:47 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-03-09 20:13 - 2016-02-24 07:46 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-03-09 20:13 - 2016-02-24 07:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-03-09 20:13 - 2016-02-24 07:40 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-03-09 20:13 - 2016-02-24 07:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 20:13 - 2016-02-24 07:40 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-03-09 20:13 - 2016-02-24 07:39 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-03-09 20:13 - 2016-02-24 07:38 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-03-09 20:13 - 2016-02-24 07:38 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 20:13 - 2016-02-24 07:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-03-09 20:13 - 2016-02-24 07:31 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-03-09 20:13 - 2016-02-24 07:31 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-03-09 20:13 - 2016-02-24 07:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-03-09 20:13 - 2016-02-24 07:28 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-03-09 20:13 - 2016-02-24 07:28 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-03-09 20:13 - 2016-02-24 07:27 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-03-09 20:13 - 2016-02-24 07:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-03-09 20:13 - 2016-02-24 07:23 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-03-09 20:13 - 2016-02-24 07:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-03-09 20:13 - 2016-02-24 07:20 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 20:13 - 2016-02-24 07:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-03-09 20:13 - 2016-02-24 07:18 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 20:13 - 2016-02-24 07:16 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 20:13 - 2016-02-24 07:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 20:13 - 2016-02-24 07:08 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-03-09 20:13 - 2016-02-24 06:51 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-03-09 20:13 - 2016-02-24 06:34 - 01887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-09 20:13 - 2016-02-24 06:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-03-09 08:13 - 2016-03-21 05:40 - 00002444 _____ C:\Users\Bernd  \AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-04 18:12 - 2016-03-04 18:12 - 00031776 _____ C:\Users\Bernd  \Downloads\18099184R.pdf
2016-03-01 21:43 - 2016-02-23 10:38 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 21:42 - 2016-02-23 11:34 - 01859960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 21:42 - 2016-02-23 11:33 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-01 21:42 - 2016-02-23 11:32 - 01820512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-01 21:42 - 2016-02-23 10:39 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:37 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-03-01 21:42 - 2016-02-23 10:30 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-01 21:42 - 2016-02-23 10:27 - 21124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-01 21:42 - 2016-02-23 09:56 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-03-01 21:42 - 2016-02-23 09:25 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 21:42 - 2016-02-23 08:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 21:42 - 2016-02-23 08:31 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 21:42 - 2016-02-23 08:30 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 21:42 - 2016-02-23 08:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 21:42 - 2016-02-23 07:59 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-01 21:42 - 2016-02-23 07:56 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 21:42 - 2016-02-23 07:55 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-01 21:42 - 2016-02-23 07:53 - 01799168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 21:42 - 2016-02-23 07:50 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-03-01 21:42 - 2016-02-23 07:47 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 21:42 - 2016-02-23 07:36 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-01 21:42 - 2016-02-23 07:36 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-01 21:42 - 2016-02-23 07:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 21:42 - 2016-02-23 07:32 - 02793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 21:42 - 2016-02-23 07:30 - 02061312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 21:42 - 2016-02-23 07:28 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-03-01 21:42 - 2016-02-09 04:23 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 21:42 - 2016-02-09 04:07 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-03-01 21:41 - 2016-02-23 11:37 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-03-01 21:41 - 2016-02-23 11:37 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-01 21:41 - 2016-02-23 11:34 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-01 21:41 - 2016-02-23 11:34 - 00926568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-01 21:41 - 2016-02-23 11:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-03-01 21:41 - 2016-02-23 11:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-03-01 21:41 - 2016-02-23 11:32 - 00462688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-01 21:41 - 2016-02-23 11:22 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-03-01 21:41 - 2016-02-23 11:16 - 00856928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-03-01 21:41 - 2016-02-23 10:40 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-03-01 21:41 - 2016-02-23 10:39 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-03-01 21:41 - 2016-02-23 10:38 - 00450912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 21:41 - 2016-02-23 10:38 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-03-01 21:41 - 2016-02-23 10:37 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 21:41 - 2016-02-23 10:23 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-03-01 21:41 - 2016-02-23 09:51 - 00381280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-01 21:41 - 2016-02-23 09:43 - 00639168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-01 21:41 - 2016-02-23 09:38 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 21:41 - 2016-02-23 09:36 - 00429920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-03-01 21:41 - 2016-02-23 09:25 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-03-01 21:41 - 2016-02-23 09:22 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-03-01 21:41 - 2016-02-23 09:21 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 21:41 - 2016-02-23 09:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 21:41 - 2016-02-23 09:16 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 21:41 - 2016-02-23 09:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-03-01 21:41 - 2016-02-23 09:14 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 21:41 - 2016-02-23 09:13 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 21:41 - 2016-02-23 09:08 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-01 21:41 - 2016-02-23 09:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 21:41 - 2016-02-23 09:07 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-03-01 21:41 - 2016-02-23 09:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-03-01 21:41 - 2016-02-23 09:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-03-01 21:41 - 2016-02-23 09:05 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 21:41 - 2016-02-23 09:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-03-01 21:41 - 2016-02-23 09:03 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-01 21:41 - 2016-02-23 09:01 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-03-01 21:41 - 2016-02-23 09:01 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 21:41 - 2016-02-23 09:01 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 21:41 - 2016-02-23 09:00 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-03-01 21:41 - 2016-02-23 08:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 21:41 - 2016-02-23 08:58 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-03-01 21:41 - 2016-02-23 08:57 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-03-01 21:41 - 2016-02-23 08:57 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 21:41 - 2016-02-23 08:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 21:41 - 2016-02-23 08:50 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 21:41 - 2016-02-23 08:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-03-01 21:41 - 2016-02-23 08:49 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 21:41 - 2016-02-23 08:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 21:41 - 2016-02-23 08:48 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-03-01 21:41 - 2016-02-23 08:48 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 21:41 - 2016-02-23 08:47 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 21:41 - 2016-02-23 08:46 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 21:41 - 2016-02-23 08:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 21:41 - 2016-02-23 08:45 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 21:41 - 2016-02-23 08:44 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-03-01 21:41 - 2016-02-23 08:43 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 21:41 - 2016-02-23 08:42 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 21:41 - 2016-02-23 08:41 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-03-01 21:41 - 2016-02-23 08:40 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-03-01 21:41 - 2016-02-23 08:38 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 21:41 - 2016-02-23 08:38 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 21:41 - 2016-02-23 08:35 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-01 21:41 - 2016-02-23 08:34 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 21:41 - 2016-02-23 08:29 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-03-01 21:41 - 2016-02-23 08:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 21:41 - 2016-02-23 08:28 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 21:41 - 2016-02-23 08:25 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-03-01 21:41 - 2016-02-23 08:23 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 21:41 - 2016-02-23 08:23 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-03-01 21:41 - 2016-02-23 08:22 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-03-01 21:41 - 2016-02-23 08:21 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 21:41 - 2016-02-23 08:21 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 21:41 - 2016-02-23 08:20 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 21:41 - 2016-02-23 08:20 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 21:41 - 2016-02-23 08:16 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 21:41 - 2016-02-23 08:14 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-03-01 21:41 - 2016-02-23 08:05 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-01 21:41 - 2016-02-23 08:05 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-03-01 21:41 - 2016-02-23 07:58 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-03-01 21:41 - 2016-02-23 07:58 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 21:41 - 2016-02-23 07:51 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 21:41 - 2016-02-23 07:36 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-03-01 21:41 - 2016-02-09 05:32 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-01 21:41 - 2016-02-09 05:14 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-03-01 21:41 - 2016-02-09 04:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-03-01 21:41 - 2016-02-09 04:09 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 18:18 - 2016-03-01 18:41 - 706869821 _____ C:\Users\Bernd  \Downloads\269_YOGI_SAUVAGE_2_COEUR_AVANT_7_SEPTIEME_MOUVEMENT.m4v
2016-02-29 16:45 - 2016-02-29 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-21 20:01 - 2014-04-24 16:30 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-21 20:01 - 2011-10-15 09:53 - 00000000 ____D C:\ProgramData\Avira
2016-03-21 19:52 - 2011-03-12 14:40 - 00001098 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-21 19:27 - 2011-03-12 14:40 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-21 19:26 - 2016-02-12 23:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-21 19:26 - 2014-02-15 16:38 - 00000000 ____D C:\Program Files\Avira
2016-03-21 19:25 - 2016-02-12 23:35 - 00000000 ____D C:\Users\Bernd  
2016-03-21 19:25 - 2015-10-30 06:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-21 19:25 - 2014-02-15 16:39 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\Avira
2016-03-21 19:20 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2016-03-21 19:08 - 2009-12-24 10:42 - 00000000 ____D C:\ProgramData\Skype
2016-03-21 19:06 - 2012-09-15 09:32 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2016-03-21 19:06 - 2012-09-15 09:31 - 00000000 ____D C:\Program Files\Sony
2016-03-21 19:05 - 2012-09-15 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-03-21 19:02 - 2014-05-21 10:52 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\DVDVideoSoft
2016-03-21 19:02 - 2010-07-05 19:10 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-03-21 19:02 - 2010-07-05 19:07 - 00000000 ____D C:\ProgramData\EPSON
2016-03-21 18:58 - 2012-02-17 18:13 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\Dropbox
2016-03-21 18:11 - 2012-12-10 20:03 - 00000000 ____D C:\ProgramData\Big Fish Games
2016-03-21 18:11 - 2012-12-10 20:02 - 00000000 ____D C:\BigFishGamesCache
2016-03-21 18:10 - 2011-10-15 18:31 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-03-21 18:09 - 2010-03-06 21:42 - 00000000 ____D C:\ProgramData\Adobe
2016-03-21 18:07 - 2011-10-15 18:31 - 00000000 ____D C:\Program Files\Adobe
2016-03-21 05:41 - 2016-02-12 23:47 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-21 05:41 - 2015-12-05 12:08 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-21 05:41 - 2015-04-13 13:33 - 00002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk
2016-03-21 05:40 - 2016-02-14 12:14 - 00001043 _____ C:\Users\Bernd  \AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-03-21 05:40 - 2015-10-26 18:04 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-03-21 05:40 - 2014-09-10 19:21 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-21 05:40 - 2014-01-10 12:20 - 00001252 _____ C:\Users\Bernd  \AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2016-03-21 05:40 - 2009-12-11 14:12 - 00002006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Program Updates.lnk
2016-03-21 05:40 - 2009-12-11 11:47 - 00002051 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Verbindungsassistent.lnk
2016-03-21 05:39 - 2015-12-18 09:21 - 00001982 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2016-03-21 05:39 - 2015-12-05 12:08 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-21 05:39 - 2015-11-17 16:19 - 00002019 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-03-21 05:39 - 2015-10-26 18:04 - 00001989 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-21 05:39 - 2015-09-28 20:00 - 00001224 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2015.lnk
2016-03-21 05:39 - 2014-09-10 19:21 - 00002200 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-21 05:39 - 2014-05-10 20:22 - 00001592 _____ C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2016-03-21 05:39 - 2013-05-21 19:00 - 00001163 _____ C:\Users\Bernd  \Desktop\Any Video Converter.lnk
2016-03-21 05:39 - 2013-03-18 18:26 - 00002188 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2016-03-21 05:39 - 2013-03-18 18:26 - 00001860 _____ C:\Users\Public\Desktop\HP ePrintCenter - HP Officejet Pro 8600.lnk
2016-03-21 05:39 - 2013-03-17 14:07 - 00001874 _____ C:\Users\Public\Desktop\Play Zuma Deluxe.lnk
2016-03-21 05:39 - 2013-02-04 12:46 - 00002679 _____ C:\Users\Bernd  \Desktop\Microsoft Office Word 2007.lnk
2016-03-21 05:39 - 2011-08-08 15:16 - 00000895 _____ C:\Users\Public\Desktop\POIbase.lnk
2016-03-21 05:39 - 2010-10-20 19:06 - 00002129 _____ C:\Users\Public\Desktop\Radio.fx.LNK
2016-03-21 05:39 - 2010-10-05 16:55 - 00001640 _____ C:\Users\Public\Desktop\Join Air.lnk
2016-03-21 05:36 - 2015-12-05 12:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-21 05:36 - 2013-12-15 11:02 - 00000000 ____D C:\Program Files\iSafe
2016-03-21 05:33 - 2009-12-13 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\18 WoS Voll aufs Gas
2016-03-21 05:33 - 2009-12-13 12:30 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-21 05:32 - 2014-05-08 21:00 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\Systweak
2016-03-21 05:32 - 2013-12-23 08:14 - 00000000 ____D C:\Program Files\Common Files\337
2016-03-21 05:32 - 2013-09-04 17:11 - 00000000 ____D C:\ProgramData\APN
2016-03-21 05:31 - 2013-12-15 11:02 - 00000000 ____D C:\Users\Bernd  \AppData\Local\genienext
2016-03-21 05:31 - 2013-12-15 11:01 - 00000000 ____D C:\Program Files\Mobogenie
2016-03-21 05:31 - 2012-11-14 17:15 - 00000000 ____D C:\Users\Bernd  \AppData\LocalLow\CT2481020
2016-03-20 20:38 - 2016-02-12 23:20 - 00000000 ____D C:\Windows.old
2016-03-20 08:08 - 2015-08-07 09:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-19 08:43 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-18 16:55 - 2015-09-28 20:00 - 00000412 _____ C:\WINDOWS\Tasks\One-Click Optimizer WO11.job
2016-03-18 07:00 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-16 20:47 - 2012-12-10 20:00 - 00000000 ____D C:\ProgramData\TEMP
2016-03-15 13:46 - 2015-12-18 10:09 - 00768010 _____ C:\Users\Bernd  \Downloads\Download.pdf
2016-03-15 10:56 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-14 11:30 - 2016-02-12 23:28 - 03747792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-14 11:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-14 11:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-13 18:40 - 2013-08-19 04:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-13 18:40 - 2010-01-12 20:32 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-10 19:40 - 2010-10-19 13:51 - 00000000 ____D C:\Users\Bernd  \AppData\Roaming\vlc
2016-03-09 08:13 - 2016-02-13 13:14 - 00000000 ___RD C:\Users\Bernd  \OneDrive
2016-03-06 20:26 - 2016-02-12 23:59 - 01773842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-06 20:26 - 2015-10-30 16:07 - 00764098 _____ C:\WINDOWS\system32\perfh007.dat
2016-03-06 20:26 - 2015-10-30 16:07 - 00157624 _____ C:\WINDOWS\system32\perfc007.dat
2016-03-06 12:13 - 2016-02-12 23:27 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-06 12:13 - 2012-02-10 17:52 - 00000000 ____D C:\Users\Bernd  \AppData\LocalLow\Temp
2016-03-05 16:44 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2016-03-05 14:44 - 2009-12-11 11:51 - 00000000 ____D C:\Users\Bernd  \AppData\Local\ElevatedDiagnostics
2016-03-05 14:09 - 2016-02-13 09:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-04 21:58 - 2015-10-30 16:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 __RSD C:\WINDOWS\Media
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-03-04 21:58 - 2015-10-30 06:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-02-25 11:03 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-02-11 17:05 - 2014-10-21 15:10 - 0000097 _____ () C:\Users\Bernd  \AppData\Roaming\WB.CFG
2009-12-11 13:28 - 2009-12-11 13:28 - 0000017 _____ () C:\Users\Bernd  \AppData\Local\resmon.resmoncfg
2015-11-30 12:10 - 2015-11-30 12:10 - 0000000 _____ () C:\Users\Bernd  \AppData\Local\{3C4932D6-5CBC-4798-B3EB-BC89F8FB4341}
2014-12-28 13:51 - 2014-12-28 13:52 - 0000000 _____ () C:\Users\Bernd  \AppData\Local\{7FDCD82B-AF96-4C4C-9C16-4464B9A2CB9D}
2015-12-15 16:08 - 2015-12-15 16:08 - 0000000 _____ () C:\Users\Bernd  \AppData\Local\{A092BE90-09AD-4F31-A236-00B426EA3D57}
2015-03-28 13:35 - 2015-03-28 13:35 - 0000000 _____ () C:\Users\Bernd  \AppData\Local\{C7DF0CF5-2298-41B2-809C-6ABF4BB19F86}
2015-08-17 10:39 - 2015-08-17 10:40 - 0000000 _____ () C:\Users\Bernd  \AppData\Local\{EF23AD51-86F9-4037-9D6F-B856F38C75DE}
2013-03-18 18:25 - 2013-03-18 18:25 - 0000057 _____ () C:\ProgramData\Ament.ini
2009-12-24 10:51 - 2010-12-14 13:16 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-12-11 13:20 - 2016-02-12 19:45 - 0202164 _____ () C:\ProgramData\nvModes.001
2009-12-11 13:20 - 2016-02-12 19:45 - 0202164 _____ () C:\ProgramData\nvModes.dat

Einige Dateien in TEMP:
====================
C:\Users\Bernd  \AppData\Local\Temp\avgnt.exe
C:\Users\Bernd  \AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpadjryd.dll
C:\Users\Bernd  \AppData\Local\Temp\RtkBtMnt.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-15 18:37

==================== Ende vom FRST.txt ============================

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 21.03.2016
Suchlaufzeit: 19:40
Protokolldatei: Maleware_ergebnis.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2016.03.21.05
Rootkit-Datenbank: v2016.03.12.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x86
Dateisystem: NTFS
Benutzer: Bernd

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 404912
Abgelaufene Zeit: 1 Std., 21 Min., 57 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Warlord711 · 22.03.2016, 10:31

Hallo cbhansen

Mein Name ist Timo und ich werde Dir bei deinem Problem behilflich sein.

Bitte arbeite alle Schritte der Reihe nach ab.
Hier findest du die Anleitung für Hilfesuchende
Lese die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
Nur Scans durchführen zu denen Du von einem Helfer aufgefordert wirst.
Bitte kein Crossposting ( posten in mehreren Foren).
Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist immer der sicherste Weg.

Wir arbeiten hier alle freiwillig und meist auch nur in unserer Freizeit. Daher kann es bei Antworten zu Verzögerungen kommen.
Solltest du innerhalb 48 Std keine Antwort von mir erhalten, dann schreib mit eine PM
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis ich oder jemand vom Team sagt, dass Du clean bist.

Führe sämtliche Tools mit administrativen Rechten aus, Vista, Win7,Win8, Win10 User mit Rechtsklick "als Administrator starten".

Hinweis: Registry Cleaner

Ich sehe, dass du sogenannte Registry Cleaner installiert hast.
In deinem Fall CCleaner, TuneUp, Arschschampoo Winoptimizer.

Wir raten von der Verwendung jeglicher Art von Registry Cleaner ab.

Der Grund ist ganz einfach:
Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich.
Man sollte nicht unnötigerweise an der Registry rumbasteln. Schon ein kleiner Fehler kann gravierende Folgen haben und auch Programme machen manchmal Fehler.
Zerstörst du die Registry, zerstörst du Windows.

Zudem ist der Nutzen zur Performancesteigerung umstritten und meist kaum im wahrnehmbaren Bereich.

Ich würde dir empfehlen, Registry Cleaner nicht weiterhin zu verwenden und über

Start --> Systemsteuerung --> Software (bei Windows XP)
Start --> Systemsteuerung --> Programme und Funktionen (bei Vista / Win 7)

zu deinstallieren.

Am besten gleich mit deinstallieren den MÜLL !

Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:
Media Buzz

Media Player

Media View

Media Watch

Rich Media View

Trust Media Viewer

YAC
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Falls eines oder mehrere Programme von Revo nicht gefunden werden, einfach weitermachen.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

cbhansen · 24.03.2016, 10:33

Hallo Timo,

vielen Dank erstmal für deine Begrüßung und deine Ausführlichen Anweisungen.
Ich finde es klasse, dass sich Leute wie du die Zeit nehmen um Anwendern die nicht so viel Ahnung haben, bin da ein gutes Beispiel :-D, zu helfen.

Ich habe alle deine Tipps durchgeführt und sende dir die entstandenen Logs.

Nochmal Danke für deine Hilfe!!!!

Bernd

AdwCleaner[c1].txt

AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v5.105 - Bericht erstellt am 23/03/2016 um 21:50:22
# Aktualisiert am 21/03/2016 von Xplode
# Datenbank : 2016-03-23.1 [Server]
# Betriebssystem : Windows 10 Home  (x86)
# Benutzername : Bernd - BERND-PC
# Gestartet von : C:\Users\Bernd\Downloads\AdwCleaner_5.105.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files\AmiExt
[-] Ordner Gelöscht : C:\Program Files\HiDefMedia
[-] Ordner Gelöscht : C:\Program Files\Common Files\337
[-] Ordner Gelöscht : C:\Program Files\Common Files\AVG Secure Search
[-] Ordner Gelöscht : C:\Program Files\Common Files\Tobit
[-] Ordner Gelöscht : C:\ProgramData\apn
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiDefMedia
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Local\emaze
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Local\PackageAware
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\DesktopIconForAmazon
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\DriverTurbo
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\eCyber
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\iSafe
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\PerformerSoft
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\Tobit
[-] Ordner Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\WinZipper
[-] Ordner Gelöscht : C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\iSafe

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\END
[-] Datei Gelöscht : C:\Users\Bernd Hansen\daemonprocess.txt
[-] Datei Gelöscht : C:\Users\Bernd Hansen\AppData\LocalLow\SkwConfig.bin
[-] Datei Gelöscht : C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\YAC.lnk

***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\Classes\Applications\lollipop.exe
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.oneclickctrl.9
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.update3webcontrol.3
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.001
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.z
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\fgfdfcbeamjnjdejakdidpniblllnbpg
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\oberontb.BrowserApi
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\oberontb.BrowserApi.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{50F7F0BE-31BA-4145-BD8B-6B0DECFED804}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
[-] Schlüssel Gelöscht : HKCU\Software\Classes\CLSID\{DB40EAF2-2025-4F74-B9EF-7C0782F26C84}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5555CC4C-FA2B-4D69-8296-B6AE5E95C0B7}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{99DCF141-03F9-4363-8D79-640FA646DEED}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3AF4400F-CDC5-4F2D-B3F1-74348E5D5CCC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{422E1393-7A4C-44FF-A7E1-8B9D146E0666}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4807D6D8-ADC8-41AF-AB9D-AE1086D1E62F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6E1CD171-29C1-4D56-A223-E31C57A0A25A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70E96298-17FC-4020-A7CF-6F81ED8CF3AB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{84A81B7E-B8CD-4891-BEA0-548D65E9610A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{867DF9A9-D013-4A1A-B685-DFF65D225ED4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{889074FC-1456-4CE8-88F7-154264DC275F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91F4CF02-F675-4E6A-B4E8-C13DF09B9B1B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A902A36E-0C79-4BD7-B561-9C058BD60210}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AB778974-218E-4734-90F0-731BE7E50E77}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADE6A9C0-12B3-457D-9A86-548FA87E04DB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B7C67027-15EB-489F-A9EA-286076CF7540}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{CDB98856-BEA3-4073-AF57-23A3583AE9E4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{CDED8922-BB3D-4E3A-9C2C-89B1C927F48B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D79CBD8E-D857-4D05-B3AD-26F722CF5B6E}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7EA7058-B19B-4A27-B50A-87A1B8FC5F30}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0EE6D408-6ED5-40C6-8C42-A041D5DE9AB0}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{13A42355-1F94-4459-B19E-F60B2C607C77}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{293DD661-C540-4AC4-9B4C-42E68369CE1B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2EC58BDB-0694-4D54-80DD-A8F2AA0427A1}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{313B508D-596D-4BDF-B0B5-E41F224E184A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{63BEF061-5EFC-4753-9806-ED0573BC7C4B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{99E29823-2F67-41C3-8AA5-6425097A771F}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41564952-412D-5637-00A7-7A786E7484D7}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A18D16ED-27B2-4B83-B70C-15E73F099546}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1A93C934-025B-4C3A-B38E-9654A7003239}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0E44BB13-2523-468B-BF51-58D5F52A84F6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27CE191D-733B-4450-AFCD-096D105288C3}
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser [{41564952-412D-5637-00A7-7A786E7484D7}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{41564952-412D-5637-00A7-7A786E7484D7}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Schlüssel Gelöscht : HKCU\Software\AmiExt
[-] Schlüssel Gelöscht : HKCU\Software\ForumerIT
[-] Schlüssel Gelöscht : HKCU\Software\IM
[-] Schlüssel Gelöscht : HKCU\Software\ImInstaller
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Softonic
[-] Schlüssel Gelöscht : HKCU\Software\Tune
[-] Schlüssel Gelöscht : HKCU\Software\V9
[-] Schlüssel Gelöscht : HKCU\Software\visualbee
[-] Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\FLV Player
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\HavingFunOnline
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Desksvc
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\hdcode
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Tune
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\V9
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\VBMZ
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\visualbee
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\winzipersvc
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\Ask.com
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AskToolbar
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\IBUpdaterService
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\IM
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\ImInstaller
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\AskToolbar
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2695852466-3627747-2698276751-1000\Software\AskPartnerNetwork
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2695852466-3627747-2698276751-1000\Software\IB Updater
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2695852466-3627747-2698276751-1000\Software\IM
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2695852466-3627747-2698276751-1000\Software\SweetIM
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2695852466-3627747-2698276751-1000\Software\WNLT
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnUpdater

***** [ Internetbrowser ] *****

[-] [C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : mystart.incredibar.com/mb155
[-] [C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : mystart.incredibar.com/

*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [15474 Bytes] - [23/03/2016 21:50:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [16298 Bytes] - [23/03/2016 21:47:50]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [15622 Bytes] ##########

--- --- ---

Junkware Removal Tool JRT.txt

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.4 (03.14.2016)
Operating System: Windows 10 Home x86 
Ran by Bernd Hansen (Administrator) on 23.03.2016 at 22:01:36,42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 6 

Successfully deleted: C:\ProgramData\pc drivers headquarters (Folder) 
Successfully deleted: C:\user.js (File) 
Successfully deleted: C:\Users\Bernd Hansen\AppData\Roaming\0F1F1C2Y1H1P1C0I0T (Folder) 
Successfully deleted: C:\Users\Bernd Hansen\AppData\Roaming\delta (Folder) 
Successfully deleted: C:\WINDOWS\System32\Tasks\Avira System Speedup Tray (Task)
Successfully deleted: C:\Program Files\reviversoft (Folder) 



Registry: 6 

Successfully deleted: HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd (Registry Key) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7EEEC7F9-F70A-4B84-B6BB-8ADB6C2CDF42} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FD6379A-EF46-4193-BC64-99F59DF1334F} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.03.2016 at 22:03:57,00
End of JRT log

Security Check - Checkup.txt

Code:

ATTFilter

Results of screen317's Security Check version 1.009  
   x86 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Antivirus    
Windows Defender   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 TuneUp Utilities Language Pack (de-DE) 
 Java version 32-bit out of Date! 
 Adobe Reader XI  
 Mozilla Firefox (45.0.1) 
 Google Chrome (48.0.2564.116) 
 Google Chrome (49.0.2623.87) 
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 Avira Antivirus sched.exe  
 Avira Antivirus avshadow.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C::  
````````````````````End of Log``````````````````````

FRST - FRST.txt

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
durchgeführt von Bernd  (Administrator) auf BERND-PC (23-03-2016 22:14:27)
Gestartet von C:\Users\Bernd\Downloads
Geladene Profile: Bernd (Verfügbare Profile: Bernd)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
() C:\Windows\System32\PSIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
() C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\Bernd Hansen\Downloads\FRST(1).exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-18] (Synaptics, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\WINDOWS\RtHDVCpl.exe [6265376 2008-08-12] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\WINDOWS\Skytel.exe [1833504 2008-08-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [PLFSetL] => C:\WINDOWS\PLFSetL.exe [99712 2010-01-13] (sonix)
HKLM\...\Run: [SNUVCDSM] => C:\WINDOWS\snuvcdsm.exe [30080 2010-01-13] ()
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [807392 2016-02-22] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira System Speedup User Starter] => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14952 2016-02-26] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2016-03-21]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{60ce7c18-b511-49d7-927d-aeae77087781}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{64f27db3-5565-497b-ab60-a1a470fdbb5f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{c0b9eb1d-51cc-4e74-b628-46fcc62f2ce4}: [DhcpNameServer] 192.168.0.1
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} -  Keine Datei
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {1d8566bd-f06f-4029-a3be-ba80af5a09f3} -  Keine Datei
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> DefaultScope {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2007-08-24] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Bernd Hansen\AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256
FF Homepage: hxxp://www.google.de/
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\npctrl.1.0.30716.0.dll [2008-07-15] ( Microsoft Corporation)
FF Plugin: @oberon-media.com/ONCAdapter -> C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.8\npapicomadapter.dll [2011-05-24] (Oberon-Media )
FF Plugin: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [Keine Datei]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2695852466-3627747-2698276751-1000: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll [Keine Datei]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-02-18] (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2013-06-26]
FF Extension: Adblock Plus - C:\Users\Bernd Hansen\AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF Extension: LoudMo Contextual Ad Assistant - C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} [2015-08-07] [ist nicht signiert]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [ist nicht signiert]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-09] <==== ACHTUNG

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avira Browserschutz) - C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-03-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [955736 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [466504 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [466504 2016-02-22] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1424880 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe [235696 2015-10-30] (McAfee, Inc.)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] () [Datei ist nicht signiert]
R2 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
R2 SpeedupService; C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [24224 2016-02-26] (Avira Operations GmbH & Co. KG)
S3 UI Assistant Service; C:\Program Files\Join Air\AssistantServices.exe [247152 2010-04-27] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 WTGService; C:\Program Files\Verbindungsassistent\wtgservice.exe [308688 2009-12-11] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [104480 2016-02-22] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [137392 2016-02-22] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44208 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [57088 2016-02-22] (Avira Operations GmbH & Co. KG)
R3 itecir; C:\WINDOWS\system32\DRIVERS\itecir.sys [84600 2015-11-24] (ITE Tech. Inc. )
R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [34000 2015-11-24] (ITE Tech. Inc. )
R3 L1E; C:\WINDOWS\System32\drivers\L1E62x86.sys [55296 2015-10-30] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2015-10-30] (Intel Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1766784 2010-01-13] ()
R1 ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [31848 2016-02-22] (Avira Operations GmbH & Co. KG)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 aspnet_state; kein ImagePath
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-23 22:13 - 2016-03-23 22:13 - 01725440 _____ (Farbar) C:\Users\Bernd Hansen\Downloads\FRST(1).exe
2016-03-23 22:05 - 2016-03-23 22:06 - 00852720 _____ C:\Users\Bernd Hansen\Downloads\SecurityCheck.exe
2016-03-23 22:03 - 2016-03-23 22:03 - 00001807 _____ C:\Users\Bernd Hansen\Desktop\JRT.txt
2016-03-23 21:59 - 2016-03-23 21:59 - 01610352 _____ (Malwarebytes) C:\Users\Bernd Hansen\Downloads\JRT.exe
2016-03-23 21:51 - 2016-03-23 21:51 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-03-23 21:45 - 2016-03-23 21:50 - 00000000 ____D C:\AdwCleaner
2016-03-23 21:44 - 2016-03-23 21:45 - 01530368 _____ C:\Users\Bernd Hansen\Downloads\AdwCleaner_5.105.exe
2016-03-23 21:32 - 2016-03-23 21:32 - 00001309 _____ C:\Users\Bernd Hansen\Desktop\Revo Uninstaller.lnk
2016-03-23 21:32 - 2016-03-23 21:32 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-03-23 21:32 - 2016-03-23 21:32 - 00000000 ____D C:\Program Files\VS Revo Group
2016-03-23 21:31 - 2016-03-23 21:31 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Bernd Hansen\Downloads\revosetup95.exe
2016-03-23 21:24 - 2016-03-23 21:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-03-22 08:31 - 2016-03-22 08:31 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\Avira
2016-03-21 21:07 - 2016-03-21 21:07 - 00001224 _____ C:\Users\Bernd Hansen\Desktop\Maleware_ergebnis.txt
2016-03-21 21:07 - 2016-03-21 21:07 - 00001192 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2016-03-21 21:05 - 2016-03-23 21:29 - 00000000 ____D C:\Users\Public\Speedup Sessions
2016-03-21 20:12 - 2016-02-22 16:44 - 00137392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-03-21 20:12 - 2016-02-22 16:44 - 00104480 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-03-21 20:12 - 2016-02-22 16:44 - 00057088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-03-21 20:12 - 2016-02-22 16:44 - 00044208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-03-21 20:12 - 2016-02-22 16:44 - 00031848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2016-03-21 20:03 - 2016-03-21 20:06 - 00047637 _____ C:\Users\Bernd Hansen\Downloads\Addition.txt
2016-03-21 20:01 - 2016-03-21 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-21 20:01 - 2016-03-21 20:01 - 00001241 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-21 20:00 - 2016-03-21 20:01 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\Bernd Hansen\Downloads\avira_de_av_56f03c3f60371__ws.exe
2016-03-21 19:59 - 2016-03-23 22:14 - 00014626 _____ C:\Users\Bernd Hansen\Downloads\FRST.txt
2016-03-21 19:57 - 2016-03-23 22:13 - 00000000 ____D C:\FRST
2016-03-21 19:56 - 2016-03-21 19:57 - 01725440 _____ (Farbar) C:\Users\Bernd Hansen\Downloads\FRST.exe
2016-03-21 19:56 - 2016-03-21 19:56 - 02374144 _____ (Farbar) C:\Users\Bernd Hansen\Downloads\FRST64.exe
2016-03-21 19:23 - 2016-03-21 19:23 - 00000000 ____D C:\OETemp
2016-03-21 18:29 - 2016-03-21 18:29 - 00082342 _____ C:\Users\Bernd Hansen\Downloads\Extras.Txt
2016-03-21 18:27 - 2016-03-21 18:27 - 00183354 _____ C:\Users\Bernd Hansen\Downloads\OTL.Txt
2016-03-21 17:56 - 2016-03-21 17:56 - 00602112 _____ (OldTimer Tools) C:\Users\Bernd Hansen\Downloads\OTL.exe
2016-03-20 22:13 - 2016-03-21 19:40 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-20 22:13 - 2016-03-21 05:39 - 00001141 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-20 22:13 - 2016-03-20 22:13 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware 
2016-03-20 22:13 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-03-20 22:13 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-03-20 22:13 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-03-20 22:10 - 2016-03-20 22:11 - 22908888 _____ (Malwarebytes ) C:\Users\Bernd Hansen\Downloads\mbam-setup-2.2.0.1024.exe
2016-03-20 21:41 - 2016-03-20 21:42 - 06837784 _____ (Piriform Ltd) C:\Users\Bernd Hansen\Downloads\ccsetup515.exe
2016-03-20 09:40 - 2016-03-20 09:53 - 235505452 _____ C:\Users\Bernd Hansen\Downloads\m291siren.zip
2016-03-20 09:32 - 2016-03-20 09:40 - 232197546 _____ C:\Users\Bernd Hansen\Downloads\m292drew.zip
2016-03-15 10:56 - 2016-03-08 08:12 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-15 10:56 - 2016-03-08 08:12 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-03-13 20:31 - 2016-03-13 20:31 - 00089914 _____ C:\Users\Bernd Hansen\Downloads\Verkauf_-_Angebot(1).pdf
2016-03-11 20:28 - 2016-03-11 20:37 - 260989500 _____ C:\Users\Bernd Hansen\Downloads\m290cevihe.zip
2016-03-11 20:14 - 2016-03-11 20:28 - 335224956 _____ C:\Users\Bernd Hansen\Downloads\m294michelle.zip
2016-03-11 20:05 - 2016-03-11 20:14 - 207007786 _____ C:\Users\Bernd Hansen\Downloads\m293siren.zip
2016-03-09 20:14 - 2016-03-01 06:22 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-03-09 20:14 - 2016-02-24 10:15 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 20:14 - 2016-02-24 10:15 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-03-09 20:14 - 2016-02-24 10:11 - 00599904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 20:14 - 2016-02-24 09:57 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 20:14 - 2016-02-24 09:50 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-03-09 20:14 - 2016-02-24 09:19 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 20:14 - 2016-02-24 09:11 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 20:14 - 2016-02-24 09:11 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-03-09 20:14 - 2016-02-24 09:06 - 05242496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-03-09 20:14 - 2016-02-24 09:03 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-03-09 20:14 - 2016-02-24 08:59 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-09 20:14 - 2016-02-24 08:38 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-09 20:14 - 2016-02-24 08:35 - 01714016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 20:14 - 2016-02-24 08:35 - 00523752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-03-09 20:14 - 2016-02-24 08:35 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-03-09 20:14 - 2016-02-24 08:35 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 20:14 - 2016-02-24 08:33 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 20:14 - 2016-02-24 07:34 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 20:14 - 2016-02-24 07:32 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-03-09 20:14 - 2016-02-24 07:23 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-03-09 20:14 - 2016-02-24 07:21 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-03-09 20:14 - 2016-02-24 07:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-03-09 20:14 - 2016-02-24 07:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-03-09 20:14 - 2016-02-24 07:17 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-03-09 20:14 - 2016-02-24 07:13 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-03-09 20:14 - 2016-02-24 07:09 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-03-09 20:14 - 2016-02-24 07:08 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-03-09 20:14 - 2016-02-24 07:07 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-03-09 20:14 - 2016-02-24 07:07 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-03-09 20:14 - 2016-02-24 07:07 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-03-09 20:14 - 2016-02-24 07:06 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-03-09 20:14 - 2016-02-24 07:04 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 20:14 - 2016-02-24 07:03 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-03-09 20:14 - 2016-02-24 06:59 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-03-09 20:14 - 2016-02-24 06:55 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 20:14 - 2016-02-24 06:46 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 20:14 - 2016-02-24 06:38 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-09 20:14 - 2016-02-24 06:37 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 20:14 - 2016-02-24 06:37 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-03-09 20:14 - 2016-02-24 06:34 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-09 20:14 - 2016-02-24 06:18 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 20:14 - 2016-02-24 06:12 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 20:14 - 2016-02-24 06:12 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 20:14 - 2016-02-24 06:05 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 20:14 - 2016-02-24 05:59 - 05661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 20:13 - 2016-02-24 10:10 - 00959840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 20:13 - 2016-02-24 10:03 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 20:13 - 2016-02-24 09:15 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 20:13 - 2016-02-24 08:59 - 00118304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-03-09 20:13 - 2016-02-24 08:33 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 20:13 - 2016-02-24 08:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-03-09 20:13 - 2016-02-24 07:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-03-09 20:13 - 2016-02-24 07:54 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-03-09 20:13 - 2016-02-24 07:53 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-03-09 20:13 - 2016-02-24 07:53 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-03-09 20:13 - 2016-02-24 07:52 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-03-09 20:13 - 2016-02-24 07:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 20:13 - 2016-02-24 07:47 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-03-09 20:13 - 2016-02-24 07:46 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-03-09 20:13 - 2016-02-24 07:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-03-09 20:13 - 2016-02-24 07:40 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-03-09 20:13 - 2016-02-24 07:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 20:13 - 2016-02-24 07:40 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-03-09 20:13 - 2016-02-24 07:39 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-03-09 20:13 - 2016-02-24 07:38 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-03-09 20:13 - 2016-02-24 07:38 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 20:13 - 2016-02-24 07:37 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 20:13 - 2016-02-24 07:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-03-09 20:13 - 2016-02-24 07:31 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-03-09 20:13 - 2016-02-24 07:31 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-03-09 20:13 - 2016-02-24 07:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-03-09 20:13 - 2016-02-24 07:28 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-03-09 20:13 - 2016-02-24 07:28 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-03-09 20:13 - 2016-02-24 07:27 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-03-09 20:13 - 2016-02-24 07:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-03-09 20:13 - 2016-02-24 07:23 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-03-09 20:13 - 2016-02-24 07:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-03-09 20:13 - 2016-02-24 07:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-03-09 20:13 - 2016-02-24 07:20 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 20:13 - 2016-02-24 07:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-03-09 20:13 - 2016-02-24 07:18 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 20:13 - 2016-02-24 07:16 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 20:13 - 2016-02-24 07:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 20:13 - 2016-02-24 07:08 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-03-09 20:13 - 2016-02-24 06:51 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-03-09 20:13 - 2016-02-24 06:34 - 01887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-09 20:13 - 2016-02-24 06:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-03-09 08:13 - 2016-03-21 05:40 - 00002444 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-04 18:12 - 2016-03-04 18:12 - 00031776 _____ C:\Users\Bernd Hansen\Downloads\18099184R.pdf
2016-03-01 21:43 - 2016-02-23 10:38 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 21:42 - 2016-02-23 11:34 - 01859960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 21:42 - 2016-02-23 11:33 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-01 21:42 - 2016-02-23 11:32 - 01820512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-01 21:42 - 2016-02-23 10:39 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:38 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 21:42 - 2016-02-23 10:37 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-03-01 21:42 - 2016-02-23 10:30 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-01 21:42 - 2016-02-23 10:27 - 21124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-01 21:42 - 2016-02-23 09:56 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-03-01 21:42 - 2016-02-23 09:25 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 21:42 - 2016-02-23 08:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 21:42 - 2016-02-23 08:31 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 21:42 - 2016-02-23 08:30 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-03-01 21:42 - 2016-02-23 08:28 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 21:42 - 2016-02-23 08:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 21:42 - 2016-02-23 07:59 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-01 21:42 - 2016-02-23 07:56 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 21:42 - 2016-02-23 07:55 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-01 21:42 - 2016-02-23 07:53 - 01799168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 21:42 - 2016-02-23 07:50 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-03-01 21:42 - 2016-02-23 07:47 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 21:42 - 2016-02-23 07:36 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-01 21:42 - 2016-02-23 07:36 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-01 21:42 - 2016-02-23 07:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 21:42 - 2016-02-23 07:32 - 02793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 21:42 - 2016-02-23 07:30 - 02061312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 21:42 - 2016-02-23 07:28 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-03-01 21:42 - 2016-02-09 04:23 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 21:42 - 2016-02-09 04:07 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-03-01 21:41 - 2016-02-23 11:37 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-03-01 21:41 - 2016-02-23 11:37 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-01 21:41 - 2016-02-23 11:34 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-01 21:41 - 2016-02-23 11:34 - 00926568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-01 21:41 - 2016-02-23 11:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-03-01 21:41 - 2016-02-23 11:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-03-01 21:41 - 2016-02-23 11:32 - 00462688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-01 21:41 - 2016-02-23 11:22 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-03-01 21:41 - 2016-02-23 11:16 - 00856928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-03-01 21:41 - 2016-02-23 10:40 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-03-01 21:41 - 2016-02-23 10:39 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-03-01 21:41 - 2016-02-23 10:38 - 00450912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 21:41 - 2016-02-23 10:38 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-03-01 21:41 - 2016-02-23 10:37 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 21:41 - 2016-02-23 10:23 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-03-01 21:41 - 2016-02-23 09:51 - 00381280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-01 21:41 - 2016-02-23 09:43 - 00639168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-01 21:41 - 2016-02-23 09:38 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 21:41 - 2016-02-23 09:36 - 00429920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-03-01 21:41 - 2016-02-23 09:25 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-03-01 21:41 - 2016-02-23 09:22 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-03-01 21:41 - 2016-02-23 09:21 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 21:41 - 2016-02-23 09:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 21:41 - 2016-02-23 09:16 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 21:41 - 2016-02-23 09:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-03-01 21:41 - 2016-02-23 09:14 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 21:41 - 2016-02-23 09:13 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 21:41 - 2016-02-23 09:08 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-01 21:41 - 2016-02-23 09:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 21:41 - 2016-02-23 09:07 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-03-01 21:41 - 2016-02-23 09:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-03-01 21:41 - 2016-02-23 09:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-03-01 21:41 - 2016-02-23 09:05 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 21:41 - 2016-02-23 09:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-03-01 21:41 - 2016-02-23 09:03 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-01 21:41 - 2016-02-23 09:01 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-03-01 21:41 - 2016-02-23 09:01 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 21:41 - 2016-02-23 09:01 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 21:41 - 2016-02-23 09:00 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-03-01 21:41 - 2016-02-23 08:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 21:41 - 2016-02-23 08:58 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-03-01 21:41 - 2016-02-23 08:57 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-03-01 21:41 - 2016-02-23 08:57 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 21:41 - 2016-02-23 08:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 21:41 - 2016-02-23 08:50 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 21:41 - 2016-02-23 08:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-03-01 21:41 - 2016-02-23 08:49 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 21:41 - 2016-02-23 08:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 21:41 - 2016-02-23 08:48 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-03-01 21:41 - 2016-02-23 08:48 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 21:41 - 2016-02-23 08:47 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 21:41 - 2016-02-23 08:46 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 21:41 - 2016-02-23 08:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 21:41 - 2016-02-23 08:45 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 21:41 - 2016-02-23 08:44 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-03-01 21:41 - 2016-02-23 08:43 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 21:41 - 2016-02-23 08:42 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 21:41 - 2016-02-23 08:41 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-03-01 21:41 - 2016-02-23 08:40 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-03-01 21:41 - 2016-02-23 08:38 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 21:41 - 2016-02-23 08:38 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 21:41 - 2016-02-23 08:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 21:41 - 2016-02-23 08:35 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-01 21:41 - 2016-02-23 08:34 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 21:41 - 2016-02-23 08:29 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-03-01 21:41 - 2016-02-23 08:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 21:41 - 2016-02-23 08:28 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 21:41 - 2016-02-23 08:25 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-03-01 21:41 - 2016-02-23 08:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-03-01 21:41 - 2016-02-23 08:23 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 21:41 - 2016-02-23 08:23 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-03-01 21:41 - 2016-02-23 08:22 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-03-01 21:41 - 2016-02-23 08:21 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 21:41 - 2016-02-23 08:21 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 21:41 - 2016-02-23 08:20 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 21:41 - 2016-02-23 08:20 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 21:41 - 2016-02-23 08:16 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 21:41 - 2016-02-23 08:14 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-03-01 21:41 - 2016-02-23 08:05 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-01 21:41 - 2016-02-23 08:05 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-03-01 21:41 - 2016-02-23 07:58 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-03-01 21:41 - 2016-02-23 07:58 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 21:41 - 2016-02-23 07:51 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 21:41 - 2016-02-23 07:36 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-03-01 21:41 - 2016-02-09 05:32 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-01 21:41 - 2016-02-09 05:14 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-03-01 21:41 - 2016-02-09 04:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-03-01 21:41 - 2016-02-09 04:09 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 18:18 - 2016-03-01 18:41 - 706869821 _____ C:\Users\Bernd Hansen\Downloads\269_YOGI_SAUVAGE_2_COEUR_AVANT_7_SEPTIEME_MOUVEMENT.m4v
2016-02-29 16:45 - 2016-02-29 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-23 22:07 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-23 22:06 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-23 21:53 - 2016-02-12 23:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-23 21:53 - 2011-03-12 14:40 - 00001098 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-23 21:53 - 2011-03-12 14:40 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-23 21:52 - 2015-10-30 06:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-23 21:50 - 2016-02-12 23:35 - 00000000 ____D C:\Users\Bernd Hansen
2016-03-23 21:31 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-23 15:23 - 2012-08-12 21:22 - 00000000 ____D C:\WINDOWS\pss
2016-03-22 06:07 - 2016-02-12 23:28 - 03747824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-22 06:05 - 2012-02-18 10:50 - 00000000 ____D C:\Program Files\QuickTime
2016-03-22 06:04 - 2012-12-10 20:00 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Oberon Media
2016-03-21 21:58 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2016-03-21 21:05 - 2011-10-15 09:53 - 00000000 ____D C:\ProgramData\Avira
2016-03-21 20:38 - 2014-02-15 16:38 - 00000000 ____D C:\Program Files\Avira
2016-03-21 20:23 - 2014-02-15 16:39 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Avira
2016-03-21 20:01 - 2014-04-24 16:30 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-21 19:08 - 2009-12-24 10:42 - 00000000 ____D C:\ProgramData\Skype
2016-03-21 19:06 - 2012-09-15 09:32 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2016-03-21 19:06 - 2012-09-15 09:31 - 00000000 ____D C:\Program Files\Sony
2016-03-21 19:05 - 2012-09-15 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-03-21 19:02 - 2014-05-21 10:52 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\DVDVideoSoft
2016-03-21 19:02 - 2010-07-05 19:10 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-03-21 19:02 - 2010-07-05 19:07 - 00000000 ____D C:\ProgramData\EPSON
2016-03-21 18:58 - 2012-02-17 18:13 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Dropbox
2016-03-21 18:11 - 2012-12-10 20:03 - 00000000 ____D C:\ProgramData\Big Fish Games
2016-03-21 18:11 - 2012-12-10 20:02 - 00000000 ____D C:\BigFishGamesCache
2016-03-21 18:10 - 2011-10-15 18:31 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-03-21 18:09 - 2010-03-06 21:42 - 00000000 ____D C:\ProgramData\Adobe
2016-03-21 18:07 - 2011-10-15 18:31 - 00000000 ____D C:\Program Files\Adobe
2016-03-21 05:41 - 2016-02-12 23:47 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-21 05:41 - 2015-12-05 12:08 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-21 05:41 - 2015-04-13 13:33 - 00002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk
2016-03-21 05:40 - 2016-02-14 12:14 - 00001043 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-03-21 05:40 - 2015-10-26 18:04 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-03-21 05:40 - 2014-09-10 19:21 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-21 05:40 - 2014-01-10 12:20 - 00001252 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2016-03-21 05:40 - 2009-12-11 14:12 - 00002006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Program Updates.lnk
2016-03-21 05:40 - 2009-12-11 11:47 - 00002051 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Verbindungsassistent.lnk
2016-03-21 05:39 - 2015-12-18 09:21 - 00001982 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2016-03-21 05:39 - 2015-12-05 12:08 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-21 05:39 - 2015-11-17 16:19 - 00002019 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-03-21 05:39 - 2015-10-26 18:04 - 00001989 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-21 05:39 - 2014-09-10 19:21 - 00002200 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-21 05:39 - 2014-05-10 20:22 - 00001592 _____ C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2016-03-21 05:39 - 2013-03-18 18:26 - 00002188 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2016-03-21 05:39 - 2013-03-18 18:26 - 00001860 _____ C:\Users\Public\Desktop\HP ePrintCenter - HP Officejet Pro 8600.lnk
2016-03-21 05:39 - 2013-03-17 14:07 - 00001874 _____ C:\Users\Public\Desktop\Play Zuma Deluxe.lnk
2016-03-21 05:39 - 2013-02-04 12:46 - 00002679 _____ C:\Users\Bernd Hansen\Desktop\Microsoft Office Word 2007.lnk
2016-03-21 05:39 - 2011-08-08 15:16 - 00000895 _____ C:\Users\Public\Desktop\POIbase.lnk
2016-03-21 05:39 - 2010-10-20 19:06 - 00002129 _____ C:\Users\Public\Desktop\Radio.fx.LNK
2016-03-21 05:39 - 2010-10-05 16:55 - 00001640 _____ C:\Users\Public\Desktop\Join Air.lnk
2016-03-21 05:36 - 2015-12-05 12:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-21 05:33 - 2009-12-13 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\18 WoS Voll aufs Gas
2016-03-21 05:33 - 2009-12-13 12:30 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-21 05:31 - 2012-11-14 17:15 - 00000000 ____D C:\Users\Bernd Hansen\AppData\LocalLow\CT2481020
2016-03-20 20:38 - 2016-02-12 23:20 - 00000000 ____D C:\Windows.old
2016-03-20 08:08 - 2015-08-07 09:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-18 16:55 - 2015-09-28 20:00 - 00000412 _____ C:\WINDOWS\Tasks\One-Click Optimizer WO11.job
2016-03-16 20:47 - 2012-12-10 20:00 - 00000000 ____D C:\ProgramData\TEMP
2016-03-15 13:46 - 2015-12-18 10:09 - 00768010 _____ C:\Users\Bernd Hansen\Downloads\Download.pdf
2016-03-14 11:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-14 11:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-13 18:40 - 2013-08-19 04:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-13 18:40 - 2010-01-12 20:32 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-09 08:13 - 2016-02-13 13:14 - 00000000 ___RD C:\Users\Bernd Hansen\OneDrive
2016-03-06 20:26 - 2016-02-12 23:59 - 01773842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-06 20:26 - 2015-10-30 16:07 - 00764098 _____ C:\WINDOWS\system32\perfh007.dat
2016-03-06 20:26 - 2015-10-30 16:07 - 00157624 _____ C:\WINDOWS\system32\perfc007.dat
2016-03-06 12:13 - 2016-02-12 23:27 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-06 12:13 - 2012-02-10 17:52 - 00000000 ____D C:\Users\Bernd Hansen\AppData\LocalLow\Temp
2016-03-05 16:44 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2016-03-05 14:44 - 2009-12-11 11:51 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\ElevatedDiagnostics
2016-03-05 14:09 - 2016-02-13 09:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-04 21:58 - 2015-10-30 16:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 __RSD C:\WINDOWS\Media
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-04 21:58 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-03-04 21:58 - 2015-10-30 06:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-02-25 11:03 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-02-11 17:05 - 2014-10-21 15:10 - 0000097 _____ () C:\Users\Bernd Hansen\AppData\Roaming\WB.CFG
2009-12-11 13:28 - 2009-12-11 13:28 - 0000017 _____ () C:\Users\Bernd Hansen\AppData\Local\resmon.resmoncfg
2015-11-30 12:10 - 2015-11-30 12:10 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{3C4932D6-5CBC-4798-B3EB-BC89F8FB4341}
2014-12-28 13:51 - 2014-12-28 13:52 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{7FDCD82B-AF96-4C4C-9C16-4464B9A2CB9D}
2015-12-15 16:08 - 2015-12-15 16:08 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{A092BE90-09AD-4F31-A236-00B426EA3D57}
2015-03-28 13:35 - 2015-03-28 13:35 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{C7DF0CF5-2298-41B2-809C-6ABF4BB19F86}
2015-08-17 10:39 - 2015-08-17 10:40 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{EF23AD51-86F9-4037-9D6F-B856F38C75DE}
2013-03-18 18:25 - 2013-03-18 18:25 - 0000057 _____ () C:\ProgramData\Ament.ini
2009-12-24 10:51 - 2010-12-14 13:16 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-12-11 13:20 - 2016-02-12 19:45 - 0202164 _____ () C:\ProgramData\nvModes.001
2009-12-11 13:20 - 2016-02-12 19:45 - 0202164 _____ () C:\ProgramData\nvModes.dat

Einige Dateien in TEMP:
====================
C:\Users\Bernd Hansen\AppData\Local\Temp\avgnt.exe
C:\Users\Bernd Hansen\AppData\Local\Temp\RtkBtMnt.exe
C:\Users\Bernd Hansen\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-15 18:37

==================== Ende vom FRST.txt ============================

--- --- ---

Warlord711 · 26.03.2016, 19:29

Sorry ich hatte nen Zahnarzt-Termin mit "Überraschung" : Wurzelkanalbehandlung...

Daher erst die verspätete Antwort.

Hat sich an der Situation des Systems etwas geändert ?

Bitte so weitermachen:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Und bitte neue FRST Logs. Haken setzen bei addition.txt dann auf Scan klicken

cbhansen · 27.03.2016, 21:04

Hallo Timo,

hoffentlich geht es dir mit deinen Zähnen wieder besser.

Im Moment bin ich nicht so oft am PC und kann deswegen nicht so schnell antworten.

Ja, der Fehler besteht leider immer noch.
Anbei die gewünschten Dateien.

Fixlist.txt

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
durchgeführt von Bernd Hansen (2016-03-27 20:56:19) Run:1
Gestartet von C:\Users\Bernd Hansen\Downloads
Geladene Profile: Bernd Hansen (Verfügbare Profile: Bernd Hansen)
Start-Modus: Normal

==============================================

fixlist Inhalt:
*****************
emptytemp:
*****************

EmptyTemp: => 974.1 MB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende vom Fixlog 20:57:54 ====

addition.txt

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
durchgeführt von Bernd Hansen (2016-03-27 20:56:19) Run:1
Gestartet von C:\Users\Bernd Hansen\Downloads
Geladene Profile: Bernd Hansen (Verfügbare Profile: Bernd Hansen)
Start-Modus: Normal

==============================================

fixlist Inhalt:
*****************
emptytemp:
*****************

EmptyTemp: => 974.1 MB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende vom Fixlog 20:57:54 ====

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
durchgeführt von Bernd Hansen (Administrator) auf BERNDHANSEN-PC (27-03-2016 21:56:18)
Gestartet von C:\Users\Bernd Hansen\Downloads
Geladene Profile: Bernd Hansen (Verfügbare Profile: Bernd Hansen)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
(RealNetworks, Inc.) C:\Program Files\Online Games Manager\ogmservice.exe
() C:\Windows\System32\PSIService.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe
() C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(sonix) C:\Windows\PLFSetL.exe
(Realtek Semiconductor Corp.) C:\Users\Bernd Hansen\AppData\Local\Temp\RtkBtMnt.exe
() C:\Windows\snuvcdsm.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
() C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.168_none_1a39dfbc6dff3448\TiWorker.exe
konnte nicht auf den Prozess zugreifen -> explorer.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-18] (Synaptics, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\WINDOWS\RtHDVCpl.exe [6265376 2008-08-12] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\WINDOWS\Skytel.exe [1833504 2008-08-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [PLFSetL] => C:\WINDOWS\PLFSetL.exe [99712 2010-01-13] (sonix)
HKLM\...\Run: [SNUVCDSM] => C:\WINDOWS\snuvcdsm.exe [30080 2010-01-13] ()
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [807392 2016-02-22] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira System Speedup User Starter] => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14952 2016-02-26] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2016-03-21]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{60ce7c18-b511-49d7-927d-aeae77087781}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{64f27db3-5565-497b-ab60-a1a470fdbb5f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{c0b9eb1d-51cc-4e74-b628-46fcc62f2ce4}: [DhcpNameServer] 192.168.0.1
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} -  Keine Datei
URLSearchHook: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 - (Kein Name) - {1d8566bd-f06f-4029-a3be-ba80af5a09f3} -  Keine Datei
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> DefaultScope {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {36377DD7-B3EB-42f5-986F-680BAF59BA9D} URL = hxxp://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2695852466-3627747-2698276751-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2007-08-24] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Bernd Hansen\AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256
FF Homepage: hxxp://www.google.de/
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\npctrl.1.0.30716.0.dll [2008-07-15] ( Microsoft Corporation)
FF Plugin: @oberon-media.com/ONCAdapter -> C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.8\npapicomadapter.dll [2011-05-24] (Oberon-Media )
FF Plugin: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [Keine Datei]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2695852466-3627747-2698276751-1000: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll [Keine Datei]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-02-18] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-02-18] (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2013-06-26]
FF Extension: Adblock Plus - C:\Users\Bernd Hansen\AppData\Roaming\Mozilla\Firefox\Profiles\jkiltgll.default-1411629472256\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF Extension: LoudMo Contextual Ad Assistant - C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} [2015-08-07] [ist nicht signiert]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [ist nicht signiert]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-04-09] <==== ACHTUNG

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avira Browserschutz) - C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-03-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Bernd Hansen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [955736 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [466504 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [466504 2016-02-22] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1424880 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe [235696 2015-10-30] (McAfee, Inc.)
R2 ogmservice; C:\Program Files\Online Games Manager\ogmservice.exe [581568 2014-03-27] (RealNetworks, Inc.)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] () [Datei ist nicht signiert]
R2 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
R2 SpeedupService; C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [24224 2016-02-26] (Avira Operations GmbH & Co. KG)
S3 UI Assistant Service; C:\Program Files\Join Air\AssistantServices.exe [247152 2010-04-27] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 WTGService; C:\Program Files\Verbindungsassistent\wtgservice.exe [308688 2009-12-11] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [104480 2016-02-22] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [137392 2016-02-22] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44208 2016-02-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [57088 2016-02-22] (Avira Operations GmbH & Co. KG)
R3 itecir; C:\WINDOWS\system32\DRIVERS\itecir.sys [84600 2015-11-24] (ITE Tech. Inc. )
R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [34000 2015-11-24] (ITE Tech. Inc. )
R3 L1E; C:\WINDOWS\System32\drivers\L1E62x86.sys [55296 2015-10-30] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2015-10-30] (Intel Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [1766784 2010-01-13] ()
R1 ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [31848 2016-02-22] (Avira Operations GmbH & Co. KG)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 aspnet_state; kein ImagePath
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-27 20:56 - 2016-03-27 20:57 - 00000532 _____ C:\Users\Bernd Hansen\Downloads\Fixlog27_03.txt
2016-03-27 20:47 - 2016-03-27 20:47 - 00000010 _____ C:\Users\Bernd Hansen\Desktop\Fixlist.txt
2016-03-27 20:08 - 2016-03-27 20:08 - 00001943 _____ C:\Users\Public\Desktop\Spiel Zuma Deluxe.lnk
2016-03-27 20:08 - 2016-03-27 20:08 - 00001188 _____ C:\Users\Public\Desktop\Weitere fantastische Spiele.lnk
2016-03-27 20:08 - 2016-03-27 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zuma Deluxe
2016-03-27 20:08 - 2016-03-27 20:08 - 00000000 ____D C:\Program Files\Zuma Deluxe
2016-03-27 20:06 - 2016-03-27 20:06 - 00001938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Manager.lnk
2016-03-27 20:06 - 2016-03-27 20:06 - 00001184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Weitere fantastische Spiele.lnk
2016-03-27 20:06 - 2016-03-27 20:06 - 00000994 _____ C:\Users\Public\Desktop\Spiele.lnk
2016-03-27 20:06 - 2016-03-27 20:06 - 00000225 _____ C:\Users\Public\Desktop\Weitere fantastische Spiele.url
2016-03-27 20:05 - 2016-03-27 20:06 - 00000000 ____D C:\Program Files\bfgclient
2016-03-27 20:05 - 2016-03-27 20:05 - 00000000 ____D C:\ProgramData\Big Fish
2016-03-27 20:02 - 2016-03-27 20:08 - 00000000 ____D C:\BigFishCache
2016-03-27 20:02 - 2016-03-27 20:06 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\Big Fish
2016-03-27 20:02 - 2016-03-27 20:02 - 00237568 _____ (Big Fish Games) C:\Users\Bernd Hansen\Downloads\bigfishgames_p252212637_s2_l2.exe
2016-03-25 09:56 - 2016-03-27 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
2016-03-25 09:56 - 2016-03-25 09:56 - 00000000 ____D C:\ProgramData\com.gamehouse.acid
2016-03-25 09:56 - 2016-03-25 09:56 - 00000000 ____D C:\Program Files\Online Games Manager
2016-03-25 09:55 - 2016-03-25 09:56 - 00000000 ____D C:\ProgramData\Trymedia
2016-03-25 09:54 - 2016-03-27 19:53 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\com.gamehouse.acid
2016-03-23 23:05 - 2016-03-23 23:06 - 00852720 _____ C:\Users\Bernd Hansen\Downloads\SecurityCheck.exe
2016-03-23 23:03 - 2016-03-23 23:03 - 00001807 _____ C:\Users\Bernd Hansen\Desktop\JRT.txt
2016-03-23 22:59 - 2016-03-23 22:59 - 01610352 _____ (Malwarebytes) C:\Users\Bernd Hansen\Downloads\JRT.exe
2016-03-23 22:51 - 2016-03-23 22:51 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-03-23 22:45 - 2016-03-23 22:50 - 00000000 ____D C:\AdwCleaner
2016-03-23 22:44 - 2016-03-23 22:45 - 01530368 _____ C:\Users\Bernd Hansen\Downloads\AdwCleaner_5.105.exe
2016-03-23 22:32 - 2016-03-24 18:37 - 00001309 _____ C:\Users\Bernd Hansen\Desktop\Revo Uninstaller.lnk
2016-03-23 22:32 - 2016-03-23 22:32 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-03-23 22:32 - 2016-03-23 22:32 - 00000000 ____D C:\Program Files\VS Revo Group
2016-03-23 22:31 - 2016-03-23 22:31 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Bernd Hansen\Downloads\revosetup95.exe
2016-03-23 22:24 - 2016-03-23 22:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-03-22 09:31 - 2016-03-22 09:31 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\Avira
2016-03-21 22:07 - 2016-03-21 22:07 - 00001224 _____ C:\Users\Bernd Hansen\Desktop\Maleware_ergebnis.txt
2016-03-21 22:07 - 2016-03-21 22:07 - 00001192 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2016-03-21 22:05 - 2016-03-27 09:11 - 00000000 ____D C:\Users\Public\Speedup Sessions
2016-03-21 21:12 - 2016-02-22 17:44 - 00137392 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-03-21 21:12 - 2016-02-22 17:44 - 00104480 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-03-21 21:12 - 2016-02-22 17:44 - 00057088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-03-21 21:12 - 2016-02-22 17:44 - 00044208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-03-21 21:12 - 2016-02-22 17:44 - 00031848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\ssmdrv.sys
2016-03-21 21:03 - 2016-03-21 21:06 - 00047637 _____ C:\Users\Bernd Hansen\Downloads\Addition.txt
2016-03-21 21:01 - 2016-03-21 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-21 21:01 - 2016-03-21 21:01 - 00001241 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-21 21:00 - 2016-03-21 21:01 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\Bernd Hansen\Downloads\avira_de_av_56f03c3f60371__ws.exe
2016-03-21 20:59 - 2016-03-27 21:56 - 00015822 _____ C:\Users\Bernd Hansen\Downloads\FRST.txt
2016-03-21 20:57 - 2016-03-27 21:56 - 00000000 ____D C:\FRST
2016-03-21 20:56 - 2016-03-21 20:57 - 01725440 _____ (Farbar) C:\Users\Bernd Hansen\Downloads\FRST.exe
2016-03-21 20:56 - 2016-03-21 20:56 - 02374144 _____ (Farbar) C:\Users\Bernd Hansen\Downloads\FRST64.exe
2016-03-21 20:23 - 2016-03-21 20:23 - 00000000 ____D C:\OETemp
2016-03-21 19:29 - 2016-03-21 19:29 - 00082342 _____ C:\Users\Bernd Hansen\Downloads\Extras.Txt
2016-03-21 19:27 - 2016-03-21 19:27 - 00183354 _____ C:\Users\Bernd Hansen\Downloads\OTL.Txt
2016-03-21 18:56 - 2016-03-21 18:56 - 00602112 _____ (OldTimer Tools) C:\Users\Bernd Hansen\Downloads\OTL.exe
2016-03-20 23:13 - 2016-03-21 20:40 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-20 23:13 - 2016-03-21 06:39 - 00001141 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-20 23:13 - 2016-03-20 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-20 23:13 - 2016-03-20 23:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-20 23:13 - 2016-03-20 23:13 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware 
2016-03-20 23:13 - 2015-10-05 10:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-03-20 23:13 - 2015-10-05 10:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-03-20 23:13 - 2015-10-05 10:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-03-20 23:10 - 2016-03-20 23:11 - 22908888 _____ (Malwarebytes ) C:\Users\Bernd Hansen\Downloads\mbam-setup-2.2.0.1024.exe
2016-03-20 22:41 - 2016-03-20 22:42 - 06837784 _____ (Piriform Ltd) C:\Users\Bernd Hansen\Downloads\ccsetup515.exe
2016-03-20 10:40 - 2016-03-20 10:53 - 235505452 _____ C:\Users\Bernd Hansen\Downloads\m291siren.zip
2016-03-20 10:32 - 2016-03-20 10:40 - 232197546 _____ C:\Users\Bernd Hansen\Downloads\m292drew.zip
2016-03-15 11:56 - 2016-03-08 09:12 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-15 11:56 - 2016-03-08 09:12 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-03-13 21:31 - 2016-03-13 21:31 - 00089914 _____ C:\Users\Bernd Hansen\Downloads\Verkauf_-_Angebot(1).pdf
2016-03-11 21:28 - 2016-03-11 21:37 - 260989500 _____ C:\Users\Bernd Hansen\Downloads\m290cevihe.zip
2016-03-11 21:14 - 2016-03-11 21:28 - 335224956 _____ C:\Users\Bernd Hansen\Downloads\m294michelle.zip
2016-03-11 21:05 - 2016-03-11 21:14 - 207007786 _____ C:\Users\Bernd Hansen\Downloads\m293siren.zip
2016-03-09 21:14 - 2016-03-01 07:22 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-03-09 21:14 - 2016-02-24 11:15 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 21:14 - 2016-02-24 11:15 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-03-09 21:14 - 2016-02-24 11:11 - 00599904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 21:14 - 2016-02-24 10:57 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 21:14 - 2016-02-24 10:50 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-03-09 21:14 - 2016-02-24 10:19 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 21:14 - 2016-02-24 10:11 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 21:14 - 2016-02-24 10:11 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-03-09 21:14 - 2016-02-24 10:06 - 05242496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-03-09 21:14 - 2016-02-24 10:03 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-03-09 21:14 - 2016-02-24 09:59 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-09 21:14 - 2016-02-24 09:38 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-09 21:14 - 2016-02-24 09:35 - 01714016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-03-09 21:14 - 2016-02-24 09:35 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 21:14 - 2016-02-24 09:35 - 00523752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-03-09 21:14 - 2016-02-24 09:35 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-03-09 21:14 - 2016-02-24 09:35 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-03-09 21:14 - 2016-02-24 09:35 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 21:14 - 2016-02-24 09:33 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 21:14 - 2016-02-24 08:34 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 21:14 - 2016-02-24 08:32 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-03-09 21:14 - 2016-02-24 08:23 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-03-09 21:14 - 2016-02-24 08:21 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-03-09 21:14 - 2016-02-24 08:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-03-09 21:14 - 2016-02-24 08:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-03-09 21:14 - 2016-02-24 08:17 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-03-09 21:14 - 2016-02-24 08:13 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-03-09 21:14 - 2016-02-24 08:09 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-03-09 21:14 - 2016-02-24 08:09 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-03-09 21:14 - 2016-02-24 08:09 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-03-09 21:14 - 2016-02-24 08:09 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-03-09 21:14 - 2016-02-24 08:08 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-03-09 21:14 - 2016-02-24 08:07 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-03-09 21:14 - 2016-02-24 08:07 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-03-09 21:14 - 2016-02-24 08:07 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-03-09 21:14 - 2016-02-24 08:06 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-03-09 21:14 - 2016-02-24 08:04 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 21:14 - 2016-02-24 08:03 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-03-09 21:14 - 2016-02-24 07:59 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-03-09 21:14 - 2016-02-24 07:55 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 21:14 - 2016-02-24 07:46 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 21:14 - 2016-02-24 07:38 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-09 21:14 - 2016-02-24 07:37 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 21:14 - 2016-02-24 07:37 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-03-09 21:14 - 2016-02-24 07:34 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-09 21:14 - 2016-02-24 07:18 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 21:14 - 2016-02-24 07:12 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 21:14 - 2016-02-24 07:12 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 21:14 - 2016-02-24 07:05 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 21:14 - 2016-02-24 06:59 - 05661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 21:13 - 2016-02-24 11:10 - 00959840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 21:13 - 2016-02-24 11:03 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 21:13 - 2016-02-24 10:15 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 21:13 - 2016-02-24 09:59 - 00118304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-03-09 21:13 - 2016-02-24 09:33 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 21:13 - 2016-02-24 09:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-03-09 21:13 - 2016-02-24 08:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-03-09 21:13 - 2016-02-24 08:54 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-03-09 21:13 - 2016-02-24 08:53 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-03-09 21:13 - 2016-02-24 08:53 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-03-09 21:13 - 2016-02-24 08:52 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-03-09 21:13 - 2016-02-24 08:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 21:13 - 2016-02-24 08:47 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-03-09 21:13 - 2016-02-24 08:46 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-03-09 21:13 - 2016-02-24 08:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-03-09 21:13 - 2016-02-24 08:40 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-03-09 21:13 - 2016-02-24 08:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 21:13 - 2016-02-24 08:40 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-03-09 21:13 - 2016-02-24 08:39 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-03-09 21:13 - 2016-02-24 08:38 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-03-09 21:13 - 2016-02-24 08:38 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-03-09 21:13 - 2016-02-24 08:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-03-09 21:13 - 2016-02-24 08:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 21:13 - 2016-02-24 08:37 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 21:13 - 2016-02-24 08:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-03-09 21:13 - 2016-02-24 08:31 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-03-09 21:13 - 2016-02-24 08:31 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-03-09 21:13 - 2016-02-24 08:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-03-09 21:13 - 2016-02-24 08:28 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-03-09 21:13 - 2016-02-24 08:28 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-03-09 21:13 - 2016-02-24 08:27 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-03-09 21:13 - 2016-02-24 08:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-03-09 21:13 - 2016-02-24 08:23 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-03-09 21:13 - 2016-02-24 08:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-03-09 21:13 - 2016-02-24 08:21 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-03-09 21:13 - 2016-02-24 08:21 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-03-09 21:13 - 2016-02-24 08:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-03-09 21:13 - 2016-02-24 08:20 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 21:13 - 2016-02-24 08:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-03-09 21:13 - 2016-02-24 08:18 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 21:13 - 2016-02-24 08:16 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 21:13 - 2016-02-24 08:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 21:13 - 2016-02-24 08:08 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-03-09 21:13 - 2016-02-24 07:51 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-03-09 21:13 - 2016-02-24 07:34 - 01887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-09 21:13 - 2016-02-24 07:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-03-09 09:13 - 2016-03-21 06:40 - 00002444 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-04 19:12 - 2016-03-04 19:12 - 00031776 _____ C:\Users\Bernd Hansen\Downloads\18099184R.pdf
2016-03-01 22:43 - 2016-02-23 11:38 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 22:42 - 2016-02-23 12:34 - 01859960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 22:42 - 2016-02-23 12:33 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-01 22:42 - 2016-02-23 12:32 - 01820512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-01 22:42 - 2016-02-23 11:39 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 22:42 - 2016-02-23 11:38 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-03-01 22:42 - 2016-02-23 11:38 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 22:42 - 2016-02-23 11:38 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 22:42 - 2016-02-23 11:38 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 22:42 - 2016-02-23 11:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 22:42 - 2016-02-23 11:37 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-03-01 22:42 - 2016-02-23 11:30 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-01 22:42 - 2016-02-23 11:27 - 21124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-01 22:42 - 2016-02-23 10:56 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-03-01 22:42 - 2016-02-23 10:25 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 22:42 - 2016-02-23 09:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 22:42 - 2016-02-23 09:31 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 22:42 - 2016-02-23 09:30 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 22:42 - 2016-02-23 09:28 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-03-01 22:42 - 2016-02-23 09:28 - 00810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-03-01 22:42 - 2016-02-23 09:28 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 22:42 - 2016-02-23 09:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 22:42 - 2016-02-23 08:59 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-01 22:42 - 2016-02-23 08:56 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 22:42 - 2016-02-23 08:55 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-01 22:42 - 2016-02-23 08:53 - 01799168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 22:42 - 2016-02-23 08:50 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-03-01 22:42 - 2016-02-23 08:47 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 22:42 - 2016-02-23 08:36 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-01 22:42 - 2016-02-23 08:36 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-01 22:42 - 2016-02-23 08:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 22:42 - 2016-02-23 08:32 - 02793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 22:42 - 2016-02-23 08:30 - 02061312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 22:42 - 2016-02-23 08:28 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-03-01 22:42 - 2016-02-09 05:23 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 22:42 - 2016-02-09 05:07 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-03-01 22:41 - 2016-02-23 12:37 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-03-01 22:41 - 2016-02-23 12:37 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-01 22:41 - 2016-02-23 12:34 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-01 22:41 - 2016-02-23 12:34 - 00926568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-01 22:41 - 2016-02-23 12:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-03-01 22:41 - 2016-02-23 12:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-03-01 22:41 - 2016-02-23 12:32 - 00462688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-01 22:41 - 2016-02-23 12:22 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-03-01 22:41 - 2016-02-23 12:16 - 00856928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-03-01 22:41 - 2016-02-23 11:40 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-03-01 22:41 - 2016-02-23 11:39 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-03-01 22:41 - 2016-02-23 11:38 - 00450912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 22:41 - 2016-02-23 11:38 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-03-01 22:41 - 2016-02-23 11:37 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 22:41 - 2016-02-23 11:23 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-03-01 22:41 - 2016-02-23 10:51 - 00381280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-01 22:41 - 2016-02-23 10:43 - 00639168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-01 22:41 - 2016-02-23 10:38 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 22:41 - 2016-02-23 10:36 - 00429920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-03-01 22:41 - 2016-02-23 10:25 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-03-01 22:41 - 2016-02-23 10:22 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-03-01 22:41 - 2016-02-23 10:21 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 22:41 - 2016-02-23 10:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 22:41 - 2016-02-23 10:16 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 22:41 - 2016-02-23 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-03-01 22:41 - 2016-02-23 10:14 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 22:41 - 2016-02-23 10:13 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 22:41 - 2016-02-23 10:08 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-01 22:41 - 2016-02-23 10:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 22:41 - 2016-02-23 10:07 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-03-01 22:41 - 2016-02-23 10:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-03-01 22:41 - 2016-02-23 10:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-03-01 22:41 - 2016-02-23 10:05 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 22:41 - 2016-02-23 10:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-03-01 22:41 - 2016-02-23 10:03 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-01 22:41 - 2016-02-23 10:01 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-03-01 22:41 - 2016-02-23 10:01 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 22:41 - 2016-02-23 10:01 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 22:41 - 2016-02-23 10:00 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-03-01 22:41 - 2016-02-23 09:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 22:41 - 2016-02-23 09:58 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-03-01 22:41 - 2016-02-23 09:57 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-03-01 22:41 - 2016-02-23 09:57 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 22:41 - 2016-02-23 09:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 22:41 - 2016-02-23 09:50 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 22:41 - 2016-02-23 09:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-03-01 22:41 - 2016-02-23 09:49 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 22:41 - 2016-02-23 09:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 22:41 - 2016-02-23 09:48 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-03-01 22:41 - 2016-02-23 09:48 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 22:41 - 2016-02-23 09:47 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 22:41 - 2016-02-23 09:46 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 22:41 - 2016-02-23 09:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 22:41 - 2016-02-23 09:45 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 22:41 - 2016-02-23 09:44 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-03-01 22:41 - 2016-02-23 09:43 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 22:41 - 2016-02-23 09:42 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 22:41 - 2016-02-23 09:41 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-03-01 22:41 - 2016-02-23 09:40 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-03-01 22:41 - 2016-02-23 09:38 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 22:41 - 2016-02-23 09:38 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 22:41 - 2016-02-23 09:36 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-01 22:41 - 2016-02-23 09:36 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 22:41 - 2016-02-23 09:36 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 22:41 - 2016-02-23 09:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 22:41 - 2016-02-23 09:35 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-01 22:41 - 2016-02-23 09:34 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 22:41 - 2016-02-23 09:29 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-03-01 22:41 - 2016-02-23 09:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 22:41 - 2016-02-23 09:28 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 22:41 - 2016-02-23 09:25 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-03-01 22:41 - 2016-02-23 09:24 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 22:41 - 2016-02-23 09:24 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-03-01 22:41 - 2016-02-23 09:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-03-01 22:41 - 2016-02-23 09:23 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 22:41 - 2016-02-23 09:23 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-03-01 22:41 - 2016-02-23 09:22 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-03-01 22:41 - 2016-02-23 09:21 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 22:41 - 2016-02-23 09:21 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 22:41 - 2016-02-23 09:20 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 22:41 - 2016-02-23 09:20 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 22:41 - 2016-02-23 09:16 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 22:41 - 2016-02-23 09:14 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-03-01 22:41 - 2016-02-23 09:05 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-01 22:41 - 2016-02-23 09:05 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-03-01 22:41 - 2016-02-23 08:58 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-03-01 22:41 - 2016-02-23 08:58 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 22:41 - 2016-02-23 08:51 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 22:41 - 2016-02-23 08:36 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-03-01 22:41 - 2016-02-09 06:32 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-01 22:41 - 2016-02-09 06:14 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-03-01 22:41 - 2016-02-09 05:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-03-01 22:41 - 2016-02-09 05:09 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 19:18 - 2016-03-01 19:41 - 706869821 _____ C:\Users\Bernd Hansen\Downloads\269_YOGI_SAUVAGE_2_COEUR_AVANT_7_SEPTIEME_MOUVEMENT.m4v
2016-02-29 17:45 - 2016-02-29 17:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-27 21:54 - 2016-02-13 00:59 - 01773842 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-27 21:54 - 2015-10-30 17:07 - 00764098 _____ C:\WINDOWS\system32\perfh007.dat
2016-03-27 21:54 - 2015-10-30 17:07 - 00157624 _____ C:\WINDOWS\system32\perfc007.dat
2016-03-27 21:54 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-03-27 21:52 - 2011-03-12 15:40 - 00001098 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 21:49 - 2011-03-12 15:40 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 21:47 - 2016-02-13 00:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-27 21:46 - 2015-10-30 07:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-27 20:09 - 2012-12-10 21:00 - 00000000 ____D C:\ProgramData\TEMP
2016-03-27 20:09 - 2010-02-10 23:15 - 00000010 _____ C:\WINDOWS\popcinfo.dat
2016-03-27 20:08 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 12:39 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-27 09:19 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-27 09:18 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-25 17:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-03-25 17:00 - 2015-09-28 21:00 - 00000412 _____ C:\WINDOWS\Tasks\One-Click Optimizer WO11.job
2016-03-24 19:46 - 2010-10-11 19:57 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\Microsoft Game Studios
2016-03-24 19:41 - 2012-12-10 21:00 - 00000000 ____D C:\ProgramData\Oberon Media
2016-03-24 19:41 - 2009-12-13 13:30 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-23 22:50 - 2016-02-13 00:35 - 00000000 ____D C:\Users\Bernd Hansen
2016-03-23 16:23 - 2012-08-12 22:22 - 00000000 ____D C:\WINDOWS\pss
2016-03-22 07:07 - 2016-02-13 00:28 - 03747824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-22 07:05 - 2012-02-18 11:50 - 00000000 ____D C:\Program Files\QuickTime
2016-03-22 07:04 - 2012-12-10 21:00 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Oberon Media
2016-03-21 22:05 - 2011-10-15 10:53 - 00000000 ____D C:\ProgramData\Avira
2016-03-21 21:38 - 2014-02-15 17:38 - 00000000 ____D C:\Program Files\Avira
2016-03-21 21:23 - 2014-02-15 17:39 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Avira
2016-03-21 21:01 - 2014-04-24 17:30 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-21 20:08 - 2009-12-24 11:42 - 00000000 ____D C:\ProgramData\Skype
2016-03-21 20:06 - 2012-09-15 10:32 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2016-03-21 20:06 - 2012-09-15 10:31 - 00000000 ____D C:\Program Files\Sony
2016-03-21 20:05 - 2012-09-15 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-03-21 20:02 - 2014-05-21 11:52 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\DVDVideoSoft
2016-03-21 20:02 - 2010-07-05 20:10 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-03-21 20:02 - 2010-07-05 20:07 - 00000000 ____D C:\ProgramData\EPSON
2016-03-21 19:58 - 2012-02-17 19:13 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Roaming\Dropbox
2016-03-21 19:11 - 2012-12-10 21:03 - 00000000 ____D C:\ProgramData\Big Fish Games
2016-03-21 19:11 - 2012-12-10 21:02 - 00000000 ____D C:\BigFishGamesCache
2016-03-21 19:10 - 2011-10-15 19:31 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-03-21 19:09 - 2010-03-06 22:42 - 00000000 ____D C:\ProgramData\Adobe
2016-03-21 19:07 - 2011-10-15 19:31 - 00000000 ____D C:\Program Files\Adobe
2016-03-21 06:41 - 2016-02-13 00:47 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-21 06:41 - 2015-12-05 13:08 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-21 06:41 - 2015-04-13 14:33 - 00002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk
2016-03-21 06:40 - 2016-02-14 13:14 - 00001043 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-03-21 06:40 - 2015-10-26 19:04 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-03-21 06:40 - 2014-09-10 20:21 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-21 06:40 - 2014-01-10 13:20 - 00001252 _____ C:\Users\Bernd Hansen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2016-03-21 06:40 - 2009-12-11 15:12 - 00002006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Program Updates.lnk
2016-03-21 06:40 - 2009-12-11 12:47 - 00002051 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Verbindungsassistent.lnk
2016-03-21 06:39 - 2015-12-18 10:21 - 00001982 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2016-03-21 06:39 - 2015-12-05 13:08 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-21 06:39 - 2015-11-17 17:19 - 00002019 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-03-21 06:39 - 2015-10-26 19:04 - 00001989 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-21 06:39 - 2014-09-10 20:21 - 00002200 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-21 06:39 - 2014-05-10 21:22 - 00001592 _____ C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2016-03-21 06:39 - 2013-03-18 19:26 - 00002188 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2016-03-21 06:39 - 2013-03-18 19:26 - 00001860 _____ C:\Users\Public\Desktop\HP ePrintCenter - HP Officejet Pro 8600.lnk
2016-03-21 06:39 - 2013-02-04 13:46 - 00002679 _____ C:\Users\Bernd Hansen\Desktop\Microsoft Office Word 2007.lnk
2016-03-21 06:39 - 2011-08-08 16:16 - 00000895 _____ C:\Users\Public\Desktop\POIbase.lnk
2016-03-21 06:39 - 2010-10-20 20:06 - 00002129 _____ C:\Users\Public\Desktop\Radio.fx.LNK
2016-03-21 06:39 - 2010-10-05 17:55 - 00001640 _____ C:\Users\Public\Desktop\Join Air.lnk
2016-03-21 06:36 - 2015-12-05 13:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-21 06:33 - 2009-12-13 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\18 WoS Voll aufs Gas
2016-03-21 06:31 - 2012-11-14 18:15 - 00000000 ____D C:\Users\Bernd Hansen\AppData\LocalLow\CT2481020
2016-03-20 21:38 - 2016-02-13 00:20 - 00000000 ____D C:\Windows.old
2016-03-20 09:08 - 2015-08-07 10:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-15 14:46 - 2015-12-18 11:09 - 00768010 _____ C:\Users\Bernd Hansen\Downloads\Download.pdf
2016-03-14 12:27 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-14 12:27 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-13 19:40 - 2013-08-19 05:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-13 19:40 - 2010-01-12 21:32 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-09 09:13 - 2016-02-13 14:14 - 00000000 ___RD C:\Users\Bernd Hansen\OneDrive
2016-03-06 13:13 - 2016-02-13 00:27 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-06 13:13 - 2012-02-10 18:52 - 00000000 ____D C:\Users\Bernd Hansen\AppData\LocalLow\Temp
2016-03-05 17:44 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-03-05 15:44 - 2009-12-11 12:51 - 00000000 ____D C:\Users\Bernd Hansen\AppData\Local\ElevatedDiagnostics
2016-03-05 15:09 - 2016-02-13 10:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-04 22:58 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 __RSD C:\WINDOWS\Media
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-04 22:58 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-03-04 22:58 - 2015-10-30 07:13 - 00000000 ____D C:\WINDOWS\system32\Dism

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-02-11 18:05 - 2014-10-21 16:10 - 0000097 _____ () C:\Users\Bernd Hansen\AppData\Roaming\WB.CFG
2009-12-11 14:28 - 2009-12-11 14:28 - 0000017 _____ () C:\Users\Bernd Hansen\AppData\Local\resmon.resmoncfg
2015-11-30 13:10 - 2015-11-30 13:10 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{3C4932D6-5CBC-4798-B3EB-BC89F8FB4341}
2014-12-28 14:51 - 2014-12-28 14:52 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{7FDCD82B-AF96-4C4C-9C16-4464B9A2CB9D}
2015-12-15 17:08 - 2015-12-15 17:08 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{A092BE90-09AD-4F31-A236-00B426EA3D57}
2015-03-28 14:35 - 2015-03-28 14:35 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{C7DF0CF5-2298-41B2-809C-6ABF4BB19F86}
2015-08-17 11:39 - 2015-08-17 11:40 - 0000000 _____ () C:\Users\Bernd Hansen\AppData\Local\{EF23AD51-86F9-4037-9D6F-B856F38C75DE}
2013-03-18 19:25 - 2013-03-18 19:25 - 0000057 _____ () C:\ProgramData\Ament.ini
2009-12-24 11:51 - 2010-12-14 14:16 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-12-11 14:20 - 2016-02-12 20:45 - 0202164 _____ () C:\ProgramData\nvModes.001
2009-12-11 14:20 - 2016-02-12 20:45 - 0202164 _____ () C:\ProgramData\nvModes.dat

Einige Dateien in TEMP:
====================
C:\Users\Bernd Hansen\AppData\Local\Temp\avgnt.exe
C:\Users\Bernd Hansen\AppData\Local\Temp\RtkBtMnt.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-15 19:37

==================== Ende vom FRST.txt ============================

--- --- ---

Warlord711 · 29.03.2016, 09:10

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

FF Extension: LoudMo Contextual Ad Assistant - C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} [2015-08-07] [ist nicht signiert]

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Die Attention.txt war leider nicht mit dabei (beim letzten Posting). Bitte nachreichen.

Downloade dir bitte

Farbar Service Scanner

Starte das Tool mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

cbhansen · 30.03.2016, 11:46

Hallo Tim,
ich bin bis Freitag ohne meinen Laptop unterwegs und melde mich sobald ich wieder Zuhause bin.

cbhansen · 02.04.2016, 19:20

Hallo Timo,

so, der Urlaub ist leider wieder vorbei, aber jetzt kann ich mich wenigstens wieder um den Rechner kümmern.

Anbei die benötigten Protokoll, hoffentlich kannst du damit etwas anfangen ;-)

Nochmals danke für deine Hilfe!

Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
durchgeführt von Bernd Hansen (2016-03-27 21:58:08)
Gestartet von C:\Users\Bernd Hansen\Downloads
Microsoft Windows 10 Home Version 1511 (X86) (2016-02-13 08:54:15)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2695852466-3627747-2698276751-500 - Administrator - Disabled)
Bernd Hansen (S-1-5-21-2695852466-3627747-2698276751-1000 - Administrator - Enabled) => C:\Users\Bernd Hansen
DefaultAccount (S-1-5-21-2695852466-3627747-2698276751-503 - Limited - Disabled)
Gast (S-1-5-21-2695852466-3627747-2698276751-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2695852466-3627747-2698276751-1002 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

18 Wheels of Steel: Voll aufs Gas (HKLM\...\18 Wheels of Steel: Voll aufs Gas) (Version: 1.07 - ValuSoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Acer Crystal Eye Webcam (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 2.0.4 - SuYin)
Adblock Plus für IE (32-Bit) (HKLM\...\{654F389B-E402-4F7B-BA6D-DA732BB57ACB}) (Version: 1.4 - Eyeo GmbH)
Adobe Reader XI (11.0.10) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AVerMedia A309 (MiniCard, DVB-T) 1.0.0.40 (HKLM\...\AVerMedia A309 (MiniCard, DVB-T)) (Version: 1.0.0.40 - AVerMedia TECHNOLOGIES, Inc.)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Big Fish: Game Manager (HKLM\...\BFGC) (Version: 3.3.0.2 - )
CameraHelperMsi (Version: 13.40.836.0 - Logitech) Hidden
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden
HiDef Media Player 1.1.12 (HKLM\...\HiDef Media Player) (Version: 1.1.12 - HiDefMedia)
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{98D64F70-1BE2-4E06-A58E-50FF642B3F24}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
ITECIR Driver (HKLM\...\{FCED9B62-34FF-4C15-8A23-F65221F7874D}) (Version: 1.00.000 - ITE)
Join Air (HKLM\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.2 - ZTE Corporation)
Logitech Webcam-Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.40 - Logitech Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.226.1 - McAfee, Inc.)
Microsoft Flight Simulator X (HKLM\...\InstallShield_{F535B2CF-C9BB-4162-B03A-02D6971F32CC}) (Version: 10.0.60905 - Microsoft Game Studios)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 1.0.30716.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ Run Time  Lib Setup (HKLM\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Mozilla Firefox 45.0.1 (x86 de) (HKLM\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
Online Games Manager v1.30 (HKLM\...\Online Games Manager) (Version: 1.30.14 - Real Networks, Inc.)
Paint.NET v3.5.8 (HKLM\...\{9CF4A37B-A8C4-44D7-8C53-13B9D9594BB2}) (Version: 3.58.0 - dotPDN LLC)
Pinnacle TVCenter Pro (HKLM\...\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}) (Version:  - )
PixiePack Codec Pack (HKLM\...\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}) (Version: 1.1.1200.0 - None)
PlayStation(R)Network Downloader (HKLM\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.07.00849 - Sony Computer Entertainment Inc.)
PlayStation(R)Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.16.2.15545 - Sony Computer Entertainment Inc.)
Race Driver 2 (HKLM\...\InstallShield_{D474A0E8-4421-43C0-BE8E-F454F91E2E2A}) (Version: 1.01.0000 - Codemasters)
Race Driver 2 (Version: 1.01.0000 - Codemasters) Hidden
Radio.fx (HKLM\...\Tobit Radio.fx Server) (Version:  - Tobit.Software)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version:  - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Schiffsim 2006 (HKLM\...\Schiffsim) (Version:  - )
Schiff-Simulator 2006 Add-On (HKLM\...\Schiffsim_AddOn) (Version:  - )
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.15.5.201504081732 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.2.4.0 - Synaptics)
Try Corel Snapfire muvee autoProducer add on (Version: 1.00.0000 - Ihr Firmenname) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.73 - TuneUp Software) Hidden
Verbindungsassistent (HKLM\...\Verbindungsassistent) (Version: 2.1 - Verbindungsassistent)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
World Racing 2 (HKLM\...\InstallShield_{5EBAC9CB-97D7-44CD-A82D-4FCB37F582AC}) (Version: 1.1.1 - Synetic)
World Racing 2 (Version: 1.1.1 - Synetic) Hidden
Zuma Deluxe (HKLM\...\BFG-Zuma Deluxe) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B7456}\localserver32 -> "C:\Program Files\Ashampoo\Ashampoo Office 2010\Presentations.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{939A0D04-0E07-48FE-A463-6623B70C3A96}\localserver32 -> "C:\Users\Bernd Hansen\AppData\Roaming\ValueApps\IE\ValueApps.exe" => Keine Datei
CustomCLSID: HKU\S-1-5-21-2695852466-3627747-2698276751-1000_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => Keine Datei

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0F0F3FA7-3D15-49F7-AE39-AB1E1DF5FE5B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {1244146E-2EE2-4F0B-A72E-6ED4E415D010} - System32\Tasks\{ED48629D-3AD0-4165-A6B0-2AAB16CAE90C} => pcalua.exe -a C:\Firefox\startxxl_setup.exe -d "C:\Users\Bernd Hansen\Desktop"
Task: {12943BFF-8838-4A24-B4EE-1C055AA101D9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {12E74494-6377-4350-9226-45C04424C835} - System32\Tasks\One-Click Optimizer WO11 => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe
Task: {1418F91A-5E22-44CF-AB0D-B80B6BDF072C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C6F6BA0-B4FB-4EF4-8B11-704A2B543892} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {213501E7-AAE4-4102-AEBA-F0632E3FFAF4} - System32\Tasks\{65977C75-2673-45DA-B158-144CF2ED5427} => C:\Program Files\Skype\Phone\Skype.exe
Task: {2C0DE271-7C7E-4C42-8AD5-D45811B12D21} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2CF7ACB3-B53E-4B15-A270-DD446B1A644F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2E94DB81-2957-48FF-9E34-906A2147D1A1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C0EEE20-F056-4419-AFFC-E491475FE2C2} - System32\Tasks\Google Updater and Installer => C:\Users\Bernd Hansen\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3D6978A4-6DA8-45DF-81C1-DC9EE395B62A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41662CF0-D177-4732-A924-7B090FCB16A0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47B086ED-3EA9-4BF7-946A-C7AB4E217C06} - System32\Tasks\{7AFF8452-91DD-4D96-80A6-4B484A9D16C3} => pcalua.exe -a "C:\Program Files\Codemasters\Race Driver 2\HardwareSetup.exe" -d "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters\DTM Race Driver 2"
Task: {595B7FA2-72EB-445F-968B-4071193267B6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5A876DD1-4B9C-4493-A0B6-1AD4FD055023} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {5AF59161-6555-4F92-BF83-AF202602BC24} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5D092BAD-175D-44DF-B871-6CCEAD1611C8} - System32\Tasks\{5D3FCF9A-1191-42D3-8942-B8A077D1F64C} => pcalua.exe -a "C:\Users\Bernd Hansen\AppData\Local\Temp\Temp1_Modem_Foxconn_v7.70.00.52_Vistax86.zip\Modem_Foxconn_v7.70.00.52_Vistax86\Setup.exe"
Task: {5DD99132-CCED-4D0F-9B50-5F1CDC51C6F0} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-03-24] (Hewlett-Packard)
Task: {5DD9F118-FED9-45D9-AE78-A3E7D4E67C1A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {625DCA16-A3E2-4AAB-8AA9-C4229DB19B19} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-03] (Adobe Systems Incorporated)
Task: {69A731A5-D691-48DB-B6FF-F22C2331FA06} - System32\Tasks\{BB95EDAA-41A5-486E-A7ED-C8D8DCA815D6} => pcalua.exe -a "C:\Users\Bernd Hansen\AVM_Driver\FWLAN\pushinst.exe" -d "C:\Users\Bernd Hansen\AVM_Driver\FWLAN" -c -first"E:"
Task: {6A30B50F-3CFB-47D7-A53F-56E64683F465} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {71733C11-4CFD-4C67-81F4-9A1F79133513} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {7B744A37-EB7B-4CE9-AD2B-89DC277B7A53} - System32\Tasks\{7422206C-18F2-4612-9242-39512E25733E} => pcalua.exe -a "c:\users\bernd hansen\appdata\local\lollipop\lollipop.bat"
Task: {7DA248C5-6DC0-4D32-8CF6-F6E35DB44491} - System32\Tasks\{24C57207-8A91-498F-B748-939F058C71BE} => pcalua.exe -a "C:\Users\Bernd Hansen\AppData\Local\Temp\Temp2_Camera_Suyin_v2.0.4_Vistax86x64_XPx86x64.zip\Camera_Suyin_v2.0.4_Vistax86x64_XPx86x64\Setup.exe"
Task: {89A314B8-462D-4116-AE0C-13C3C02CF90E} - System32\Tasks\{9D84BABE-2859-44D3-9FF0-95564660BBA1} => pcalua.exe -a D:\setup.exe -d D:\
Task: {94730129-7EF3-4E6F-BD4E-F32193D50A03} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-31] (Google Inc.)
Task: {955BE23F-74AE-489D-9F64-3E1A3DA3A3A6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {970810C1-F76B-43DF-85BE-A544A36FA8C0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {9FDED1EE-C952-4F18-B226-E3D5123233C9} - System32\Tasks\{37E8B945-6888-4AA0-9C33-1BEEBE355EDA} => C:\Program Files\Verbindungsassistent\Verbindungsassistent.exe [2009-12-11] (WebToGo Mobile Internet GmbH)
Task: {A11FD406-15A5-4CC9-A941-56F493515AA8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A36AED1C-5CBA-4AF0-B10B-5C62D8F9168D} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files\CHIP Updater\CHIPUpdater.exe
Task: {AB07096C-3B6D-4644-9DE5-609B9B3F24CE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {CB85B0F3-6C2B-4D3B-9FCB-6597F9177FAF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {D3627314-40A9-4D22-8F44-4092A0ED748B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D56A6C57-2D81-4D58-8FB1-63B881449965} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-31] (Google Inc.)
Task: {E03F3744-235C-439A-9587-3CB1530B0646} - System32\Tasks\{91C21EEC-FF3A-4B21-B7EA-516B1FFA08F4} => pcalua.exe -a C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSFJE.EXE -c /R /APD /P:"EPSON SX610FW Series"
Task: {E06B4004-5633-49AE-9E52-0B1FD73C73F0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E602BC23-F118-449E-BEE4-78C983A7659D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E6661E67-83AE-410D-8984-5805FA18B1A3} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E81A5352-ACFD-4865-B3E3-63BD3D7C0037} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F751A8F2-5955-4180-8755-F59A9A1824F0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {F86F9B4E-3BCB-4355-B7BB-FB9D9C31D1A2} - System32\Tasks\{A0746AF4-5477-4CC1-B578-24774A349927} => C:\Program Files\Codemasters\Race Driver 2\RD2.exe [2004-03-25] (Codemasters)
Task: {FA7C3A39-05A4-45F3-B772-C0602EC4B857} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\One-Click Optimizer WO11.job => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 07:44 - 2015-10-30 07:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-02-13 00:31 - 2015-10-13 18:47 - 00113840 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2006-11-02 21:40 - 2006-11-02 21:40 - 00174656 _____ () C:\Windows\system32\PSIService.exe
2009-12-11 12:47 - 2009-12-11 13:07 - 00308688 _____ () C:\Program Files\Verbindungsassistent\wtgservice.exe
2010-10-20 20:06 - 2013-06-03 13:06 - 03999512 _____ () C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
2016-03-01 22:42 - 2016-02-23 12:34 - 01859960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-05-03 21:35 - 2010-01-13 09:55 - 00030080 _____ () C:\Windows\snuvcdsm.exe
2011-11-11 14:08 - 2011-11-11 14:08 - 02145304 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtCore4.dll
2011-11-11 14:08 - 2011-11-11 14:08 - 07956504 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtGui4.dll
2011-11-11 14:08 - 2011-11-11 14:08 - 00342552 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtXml4.dll
2011-11-11 14:08 - 2011-11-11 14:08 - 00029208 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2011-11-11 14:08 - 2011-11-11 14:08 - 00128536 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2011-11-11 14:07 - 2011-11-11 14:07 - 00265240 _____ () C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2011-12-12 15:44 - 2011-12-12 15:44 - 00336408 _____ () C:\Program Files\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2013-07-30 17:41 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files\Sony\Sony PC Companion\TMonitorAPI.dll
2013-07-30 17:41 - 2015-10-20 18:44 - 00242176 _____ () C:\Program Files\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files\Sony\Sony PC Companion\Report.dll
2015-03-23 19:19 - 2015-03-23 19:19 - 02620416 _____ () C:\Program Files\Sony\Sony PC Companion\libxt.dll
2013-07-30 17:41 - 2015-04-21 13:22 - 00053248 _____ () C:\Program Files\Sony\Sony PC Companion\VObject.dll
2015-04-10 11:26 - 2015-04-10 11:26 - 00669696 _____ () C:\Program Files\Sony\Sony PC Companion\PhoneUpdate.dll
2013-06-11 10:31 - 2013-06-11 10:31 - 00090112 _____ () C:\Program Files\Sony\Sony PC Companion\CalEngine.dll
2012-04-04 15:33 - 2012-04-04 15:33 - 00139776 _____ () C:\Program Files\Sony\Sony PC Companion\CAgdLNotes.dll
2013-01-08 18:02 - 2013-01-08 18:02 - 00163840 _____ () C:\Program Files\Sony\Sony PC Companion\CAgdOutlook.dll
2012-07-26 12:51 - 2012-07-26 12:51 - 00208896 _____ () C:\Program Files\Sony\Sony PC Companion\VistaCalendar.dll
2011-08-12 12:19 - 2011-08-12 12:19 - 00680984 _____ () C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
2013-07-30 17:41 - 2015-06-10 11:13 - 00113024 _____ () C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-10-30 07:45 - 2015-10-30 07:45 - 00164224 _____ () c:\windows\system32\WerEtw.dll
2016-03-01 22:42 - 2016-02-23 12:34 - 01859960 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-02-13 00:19 - 2016-02-13 00:19 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-03-01 22:41 - 2016-02-23 09:48 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-02-13 00:19 - 2016-02-13 00:19 - 05340672 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-02-13 00:19 - 2016-02-13 00:19 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-02-13 00:19 - 2016-02-13 00:19 - 02366464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-02-13 00:19 - 2016-02-13 00:19 - 02656768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:A1D3FEF0 [223]
AlternateDataStreams: C:\ProgramData\TEMP:B881EAB4 [144]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2695852466-3627747-2698276751-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bernd Hansen\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Pinnacle Streaming Server.lnk => C:\Windows\pss\Pinnacle Streaming Server.lnk.CommonStartup
MSCONFIG\startupreg: (default) => 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files\avmwlanstick\FRITZWLANMini.exe
MSCONFIG\startupreg: EEventManager => C:\Program Files\Epson Software\Event Manager\EEventManager.exe
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: Launch LCDMon => "C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe"
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: NvMediaCenter => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
MSCONFIG\startupreg: PLFSetI => C:\Windows\PLFSetI.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RtHDVCpl.exe
MSCONFIG\startupreg: SAITEKAUTOCONFIGURE => C:\Program Files\Saitek\Saitek Gaming Extensions\saicnfig.exe /autorun
MSCONFIG\startupreg: SaitekInstall => "C:\Users\BERNDH~1\AppData\Local\Temp\{DDAC88B5-374A-4594-8BA4-FA8AD94CC811}\install.exe" 4
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: TaskTray => 
MSCONFIG\startupreg: UIExec => "C:\Program Files\Join Air\UIExec.exe"

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8883D768-1166-476C-A30A-8ADF55A2DB89}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{18C0C421-0B9C-40B0-8CA2-83D0F7676E66}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3B5F8D6F-29FC-4290-93DE-9E695D081C60}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7FBBA44D-9C24-4B0E-976E-24BD66463184}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9BDD2979-590F-4966-8A59-4825E29FB38A}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{44361C61-C7D8-487F-A60D-54E62D191DFB}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{C59E0600-D2AC-458F-9482-ABFBDF500036}] => (Allow) LPort=1900
FirewallRules: [{A1F20E66-FE49-474F-A54B-27C9A45FD813}] => (Allow) LPort=7900
FirewallRules: [{68C88FE3-DF9C-434C-959B-9AED7AE53129}] => (Allow) LPort=24234
FirewallRules: [{0B72ECEA-8B13-4BB8-9B62-03C85FB31E73}] => (Allow) LPort=7679
FirewallRules: [{685470C6-D238-48A8-9168-4C0C3D4D9AFD}] => (Allow) LPort=7676
FirewallRules: [{F65DD43D-8B01-447A-A4A4-3F2B6375D246}] => (Allow) LPort=8643
FirewallRules: [{B89B3D84-DB10-4F00-BF8C-BAB07132C84A}] => (Allow) LPort=8743
FirewallRules: [{CCD254AC-3949-4B02-A186-F4BAC6BC0F8B}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4C2EF6B5-E9C8-4202-881A-55A97FC9DE27}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [UDP Query User{EBB56F6D-5AD7-4CEE-B3A1-BF85365F10FE}C:\users\bernd hansen\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\bernd hansen\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{23EE4121-6F69-42CB-8C47-8A94A94E5090}C:\users\bernd hansen\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\bernd hansen\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{7038E95C-69E3-4170-AA78-94304BC9D88C}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{A49A152F-5700-47C8-8825-EAFAD481B345}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{2F98C6AF-88AB-43CB-9198-24E1223158FA}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [UDP Query User{54FD2C97-D876-4F51-9A64-416BE4626D48}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{B5664073-A534-48B9-B4BD-60F66094784A}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{8448275C-940D-4D78-A911-B3E16DD543B6}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{33FABFB1-017A-4D61-9ACE-BFD4B1A47C7A}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{B8CFDA65-8EDA-48EC-83BE-AAC7ECA737D7}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [TCP Query User{5391A338-0F78-408B-9EA5-D70FA1DA28DA}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [{22FE8A31-39DB-4A50-BBC4-2B7F67614CB0}] => (Allow) C:\Program Files\Tobit Radio.fx\Client\rfx-client.exe
FirewallRules: [{5276B93F-6EEF-4FA2-911C-B695F88261DC}] => (Allow) C:\Program Files\Tobit Radio.fx\Client\rfx-client.exe
FirewallRules: [{85A6F42F-B994-433D-82F2-5F9D28EC49B5}] => (Allow) C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
FirewallRules: [{89E54397-B9A1-4016-818B-6EB666033A46}] => (Allow) C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
FirewallRules: [{0A7A2993-4B9E-4570-AE8F-154E275CBDF3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

27-03-2016 12:38:07 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/27/2016 09:58:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x13dc
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:55:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x13d4
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:54:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x134c
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:53:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x9ac
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:52:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xe34
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:51:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x830
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Vollständiger Name des fehlerhaften Pakets: Explorer.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Explorer.EXE5

Error: (03/27/2016 09:45:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BerndHansen-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (03/27/2016 09:45:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BerndHansen-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (03/27/2016 09:45:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1d00
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5

Error: (03/27/2016 09:44:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.10586.104, Zeitstempel: 0x56aafa81
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x2c1c
Startzeit der fehlerhaften Anwendung: 0xexplorer.exe0
Pfad der fehlerhaften Anwendung: explorer.exe1
Pfad des fehlerhaften Moduls: explorer.exe2
Berichtskennung: explorer.exe3
Vollständiger Name des fehlerhaften Pakets: explorer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: explorer.exe5


Systemfehler:
=============
Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/27/2016 09:46:00 PM) (Source: DCOM) (EventID: 10010) (User: BerndHansen-PC)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}


CodeIntegrity:
===================================
  Date: 2016-03-27 21:54:57.539
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-25 08:32:48.094
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-21 06:32:12.000
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-20 23:10:51.402
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-17 08:07:37.366
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 18:44:04.491
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:04.382
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:04.290
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:02.541
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-03-15 18:44:01.878
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 3070.43 MB
Verfügbarer physikalischer RAM: 1597.81 MB
Summe virtueller Speicher: 6142.43 MB
Verfügbarer virtueller Speicher: 4275.23 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:297.55 GB) (Free:91.25 GB) NTFS
Drive d: (LOGICAL VOLUME IDENTIFIER) (CDROM) (Total:3.93 GB) (Free:0 GB) UDF

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9158A9EF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== Ende vom Addition.txt ============================

Fixlog.txt

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
durchgeführt von Bernd Hansen (2016-04-02 20:04:28) Run:2
Gestartet von C:\Users\Bernd Hansen\Downloads
Geladene Profile: Bernd Hansen (Verfügbare Profile: Bernd Hansen)
Start-Modus: Normal

==============================================

fixlist Inhalt:
*****************
FF Extension: LoudMo Contextual Ad Assistant - C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} [2015-08-07] [ist nicht signiert]
         
*****************

C:\Program Files\Mozilla Firefox\extensions\{e8cc21ee-09b4-26bd-2e50-4ddb8682af2b} => erfolgreich verschoben

==== Ende vom Fixlog 20:04:28 ====

FSS.txt

Code:

ATTFilter

heiFarbar Service Scanner Version: 27-01-2016
Ran by Bernd Hansen (administrator) on 02-04-2016 at 20:06:57
Running from "C:\Users\Bernd Hansen\Downloads"
Microsoft Windows 10 Home  (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\WINDOWS\system32\nsisvc.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\afd.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\tdx.sys => File is digitally signed
C:\WINDOWS\system32\Drivers\tcpip.sys => File is digitally signed
C:\WINDOWS\system32\dnsrslvr.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\mpssvc.dll => File is digitally signed
C:\WINDOWS\system32\bfe.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\WINDOWS\system32\SDRSVC.dll => File is digitally signed
C:\WINDOWS\system32\vssvc.exe => File is digitally signed
C:\WINDOWS\system32\wscsvc.dll => File is digitally signed
C:\WINDOWS\system32\wbem\WMIsvc.dll => File is digitally signed
C:\WINDOWS\system32\wuaueng.dll => File is digitally signed
C:\WINDOWS\system32\qmgr.dll => File is digitally signed
C:\WINDOWS\system32\es.dll => File is digitally signed
C:\WINDOWS\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\WINDOWS\system32\ipnathlp.dll => File is digitally signed
C:\WINDOWS\system32\iphlpsvc.dll => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed


**** End of log ****

Warlord711 · 04.04.2016, 09:41

Siehr für mich erstmal nach zerschossenem Windows aus - bedanken kannst du dich bei TuneUp & Co.

Mal schauen ob man noch etwas retten kann, ansonsten ggf. per Neu- oder Reparaturinstallation.

sfc /scannow - Windows Systemintegritätsüberprüfung

klicken auf den Start-Button und
in das Suchfenster cmd eingeben.
Es erscheint im oberen Teil des Fensters ein schwarzes Symbol.
Hierauf folgt ein Rechtsklick und
wählen aus dem Kontextmenü den Eintrag Als Administrator ausführen aus.

Im nun geöffneten Fenster

Code:

ATTFilter

sfc /scannow

eingeben, gefolgt von einem Druck auf die Enter-Taste.

Nach Abschluss der Aktion wird darüber informiert welche Fehler durch SFC gefunden wurden. Auch, wenn keine Fehler gefunden wurden, teilt SFC dies am Ende mit, wie auf dem Screenshot zu sehen.

Bitte das Ergebnis mitteilen.

Kopier bitte den Inhalt der Codebox in die Zwischenablage, indem du auf Alles auswählen klickst und dann STRG+C oder Rechte Maustaste - Kopieren wählst.
Code:
ATTFilter
```
findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >%userprofile%\Desktop\sfcdetails.txt
         
```
Drücke jetzt die Windowstaste + R und füge den kopierten Befehle per STRG+V oder Rechte Maustaste - Einfügen ein.
Drücke die Eingabetaste oder OK
Auf dem Desktop wir die Datei sfcdetails.txt erzeugt. Poste mir deren Inhalt

cbhansen · 04.04.2016, 18:30

Hallo Timo,

danke für deine ausführlichen Anleitungen.

Anbei der Inhalt des cmd-Fensters und der Datei sfcdetails.txt.

Code:

ATTFilter

Vom Windows-Ressourcenschutz wurden beschädigte Dateien gefunden, und
einige davon konnten nicht repariert werden. Weitere Informationen finden Sie in der Datei "CBS.Log" unter "windir\Logs\CBS\CBS.log",
z.B. "C:\Windows\Logs\CBS\CBS.log".
Hinweis: Bei der Offlinewartung wird die Protokollierung derzeit nicht unterstützt.

Code:

ATTFilter

2016-03-21 19:30:21, Info                  CSI    0000000a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:30:21, Info                  CSI    0000000b [SR] Beginning Verify and Repair transaction
2016-03-21 19:30:30, Info                  CSI    0000007c [SR] Verify complete
2016-03-21 19:30:30, Info                  CSI    0000007d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:30:30, Info                  CSI    0000007e [SR] Beginning Verify and Repair transaction
2016-03-21 19:30:40, Info                  CSI    000000f4 [SR] Verify complete
2016-03-21 19:30:40, Info                  CSI    000000f5 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:30:40, Info                  CSI    000000f6 [SR] Beginning Verify and Repair transaction
2016-03-21 19:30:48, Info                  CSI    0000015c [SR] Verify complete
2016-03-21 19:30:48, Info                  CSI    0000015d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:30:48, Info                  CSI    0000015e [SR] Beginning Verify and Repair transaction
2016-03-21 19:30:55, Info                  CSI    000001c4 [SR] Verify complete
2016-03-21 19:30:55, Info                  CSI    000001c5 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:30:55, Info                  CSI    000001c6 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:04, Info                  CSI    0000022c [SR] Verify complete
2016-03-21 19:31:04, Info                  CSI    0000022d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:04, Info                  CSI    0000022e [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:09, Info                  CSI    00000293 [SR] Verify complete
2016-03-21 19:31:09, Info                  CSI    00000294 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:09, Info                  CSI    00000295 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:13, Info                  CSI    000002fa [SR] Verify complete
2016-03-21 19:31:13, Info                  CSI    000002fb [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:13, Info                  CSI    000002fc [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:18, Info                  CSI    00000361 [SR] Verify complete
2016-03-21 19:31:18, Info                  CSI    00000362 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:18, Info                  CSI    00000363 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:22, Info                  CSI    000003c8 [SR] Verify complete
2016-03-21 19:31:22, Info                  CSI    000003c9 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:22, Info                  CSI    000003ca [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:29, Info                  CSI    00000432 [SR] Verify complete
2016-03-21 19:31:29, Info                  CSI    00000433 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:29, Info                  CSI    00000434 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:36, Info                  CSI    00000499 [SR] Verify complete
2016-03-21 19:31:36, Info                  CSI    0000049a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:36, Info                  CSI    0000049b [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:39, Info                  CSI    00000500 [SR] Verify complete
2016-03-21 19:31:40, Info                  CSI    00000501 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:40, Info                  CSI    00000502 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:46, Info                  CSI    00000567 [SR] Verify complete
2016-03-21 19:31:46, Info                  CSI    00000568 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:46, Info                  CSI    00000569 [SR] Beginning Verify and Repair transaction
2016-03-21 19:31:56, Info                  CSI    000005ce [SR] Verify complete
2016-03-21 19:31:56, Info                  CSI    000005cf [SR] Verifying 100 (0x00000064) components
2016-03-21 19:31:56, Info                  CSI    000005d0 [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:00, Info                  CSI    000005d2 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:32:02, Info                  CSI    00000613 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:32:02, Info                  CSI    00000614 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:32:02, Info                  CSI    00000617 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Event Viewer.lnk"; source file in store is also corrupted
2016-03-21 19:32:03, Info                  CSI    0000063e [SR] Verify complete
2016-03-21 19:32:03, Info                  CSI    0000063f [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:03, Info                  CSI    00000640 [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:08, Info                  CSI    000006a5 [SR] Verify complete
2016-03-21 19:32:08, Info                  CSI    000006a6 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:08, Info                  CSI    000006a7 [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:14, Info                  CSI    0000070c [SR] Verify complete
2016-03-21 19:32:14, Info                  CSI    0000070d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:14, Info                  CSI    0000070e [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:20, Info                  CSI    00000773 [SR] Verify complete
2016-03-21 19:32:20, Info                  CSI    00000774 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:20, Info                  CSI    00000775 [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:26, Info                  CSI    000007dd [SR] Verify complete
2016-03-21 19:32:27, Info                  CSI    000007de [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:27, Info                  CSI    000007df [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:32, Info                  CSI    00000846 [SR] Verify complete
2016-03-21 19:32:32, Info                  CSI    00000847 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:32, Info                  CSI    00000848 [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:43, Info                  CSI    000008bd [SR] Verify complete
2016-03-21 19:32:44, Info                  CSI    000008be [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:44, Info                  CSI    000008bf [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:51, Info                  CSI    0000092a [SR] Verify complete
2016-03-21 19:32:51, Info                  CSI    0000092b [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:51, Info                  CSI    0000092c [SR] Beginning Verify and Repair transaction
2016-03-21 19:32:56, Info                  CSI    0000099a [SR] Verify complete
2016-03-21 19:32:56, Info                  CSI    0000099b [SR] Verifying 100 (0x00000064) components
2016-03-21 19:32:56, Info                  CSI    0000099c [SR] Beginning Verify and Repair transaction
2016-03-21 19:33:01, Info                  CSI    00000a06 [SR] Verify complete
2016-03-21 19:33:01, Info                  CSI    00000a07 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:33:01, Info                  CSI    00000a08 [SR] Beginning Verify and Repair transaction
2016-03-21 19:33:08, Info                  CSI    00000a0a [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:33:10, Info                  CSI    00000a37 [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:33:10, Info                  CSI    00000a38 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:33:10, Info                  CSI    00000a3b [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:18]"Steps Recorder.lnk"; source file in store is also corrupted
2016-03-21 19:33:13, Info                  CSI    00000a8f [SR] Verify complete
2016-03-21 19:33:14, Info                  CSI    00000a90 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:33:14, Info                  CSI    00000a91 [SR] Beginning Verify and Repair transaction
2016-03-21 19:33:16, Info                  CSI    00000a93 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:33:27, Info                  CSI    00000b01 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:33:27, Info                  CSI    00000b02 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:33:27, Info                  CSI    00000b05 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:16]"Task Manager.lnk"; source file in store is also corrupted
2016-03-21 19:33:27, Info                  CSI    00000b0e [SR] Verify complete
2016-03-21 19:33:27, Info                  CSI    00000b0f [SR] Verifying 100 (0x00000064) components
2016-03-21 19:33:27, Info                  CSI    00000b10 [SR] Beginning Verify and Repair transaction
2016-03-21 19:33:39, Info                  CSI    00000b83 [SR] Verify complete
2016-03-21 19:33:39, Info                  CSI    00000b84 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:33:39, Info                  CSI    00000b85 [SR] Beginning Verify and Repair transaction
2016-03-21 19:33:51, Info                  CSI    00000bf2 [SR] Verify complete
2016-03-21 19:33:51, Info                  CSI    00000bf3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:33:51, Info                  CSI    00000bf4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:01, Info                  CSI    00000c66 [SR] Verify complete
2016-03-21 19:34:02, Info                  CSI    00000c67 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:34:02, Info                  CSI    00000c68 [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:14, Info                  CSI    00000ccf [SR] Verify complete
2016-03-21 19:34:15, Info                  CSI    00000cd0 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:34:15, Info                  CSI    00000cd1 [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:24, Info                  CSI    00000d38 [SR] Verify complete
2016-03-21 19:34:24, Info                  CSI    00000d39 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:34:24, Info                  CSI    00000d3a [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:31, Info                  CSI    00000d3c [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:34:35, Info                  CSI    00000d86 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:34:35, Info                  CSI    00000d87 [SR] This component was referenced by [l:159]"Microsoft-Windows-Client-Features-Package-AutoMerged-com~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-com-Deployment"
2016-03-21 19:34:35, Info                  CSI    00000d8a [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"Component Services.lnk"; source file in store is also corrupted
2016-03-21 19:34:38, Info                  CSI    00000db3 [SR] Verify complete
2016-03-21 19:34:39, Info                  CSI    00000db4 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:34:39, Info                  CSI    00000db5 [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:46, Info                  CSI    00000db7 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:34:52, Info                  CSI    00000dd1 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:34:52, Info                  CSI    00000dd2 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:34:52, Info                  CSI    00000dd5 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Computer Management.lnk"; source file in store is also corrupted
2016-03-21 19:34:56, Info                  CSI    00000e27 [SR] Verify complete
2016-03-21 19:34:56, Info                  CSI    00000e28 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:34:56, Info                  CSI    00000e29 [SR] Beginning Verify and Repair transaction
2016-03-21 19:34:58, Info                  CSI    00000e2b [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:34:59, Info                  CSI    00000e2d [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:35:04, Info                  CSI    00000e4c [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:35:04, Info                  CSI    00000e4d [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:35:04, Info                  CSI    00000e50 [SR] Could not reproject corrupted file [l:81 ml:82]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools"\[l:17]"Character Map.lnk"; source file in store is also corrupted
2016-03-21 19:35:10, Info                  CSI    00000eb2 [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:35:10, Info                  CSI    00000eb3 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:35:10, Info                  CSI    00000eb6 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Disk Cleanup.lnk"; source file in store is also corrupted
2016-03-21 19:35:14, Info                  CSI    00000efd [SR] Verify complete
2016-03-21 19:35:14, Info                  CSI    00000efe [SR] Verifying 100 (0x00000064) components
2016-03-21 19:35:14, Info                  CSI    00000eff [SR] Beginning Verify and Repair transaction
2016-03-21 19:35:28, Info                  CSI    00000fd9 [SR] Verify complete
2016-03-21 19:35:28, Info                  CSI    00000fda [SR] Verifying 100 (0x00000064) components
2016-03-21 19:35:28, Info                  CSI    00000fdb [SR] Beginning Verify and Repair transaction
2016-03-21 19:35:37, Info                  CSI    0000104c [SR] Verify complete
2016-03-21 19:35:38, Info                  CSI    0000104d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:35:38, Info                  CSI    0000104e [SR] Beginning Verify and Repair transaction
2016-03-21 19:35:51, Info                  CSI    000010c5 [SR] Verify complete
2016-03-21 19:35:51, Info                  CSI    000010c6 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:35:51, Info                  CSI    000010c7 [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:01, Info                  CSI    00001146 [SR] Verify complete
2016-03-21 19:36:02, Info                  CSI    00001147 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:36:02, Info                  CSI    00001148 [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:12, Info                  CSI    000011d0 [SR] Verify complete
2016-03-21 19:36:12, Info                  CSI    000011d1 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:36:12, Info                  CSI    000011d2 [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:16, Info                  CSI    000011d4 [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:36:20, Info                  CSI    000011e9 [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:36:20, Info                  CSI    000011ea [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:36:20, Info                  CSI    000011ed [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:10]"dfrgui.lnk"; source file in store is also corrupted
2016-03-21 19:36:22, Info                  CSI    00001246 [SR] Verify complete
2016-03-21 19:36:22, Info                  CSI    00001247 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:36:22, Info                  CSI    00001248 [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:30, Info                  CSI    000012b2 [SR] Verify complete
2016-03-21 19:36:30, Info                  CSI    000012b3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:36:30, Info                  CSI    000012b4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:40, Info                  CSI    0000131d [SR] Verify complete
2016-03-21 19:36:40, Info                  CSI    0000131e [SR] Verifying 100 (0x00000064) components
2016-03-21 19:36:40, Info                  CSI    0000131f [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:51, Info                  CSI    0000139d [SR] Verify complete
2016-03-21 19:36:51, Info                  CSI    0000139e [SR] Verifying 100 (0x00000064) components

Code:

ATTFilter

000139f [SR] Beginning Verify and Repair transaction
2016-03-21 19:36:56, Info                  CSI    000013a1 [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:37:06, Info                  CSI    000013ff [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:37:06, Info                  CSI    00001400 [SR] This component was referenced by [l:105]"Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~x86~~10.0.10586.0.FaxServicesClientPackage"
2016-03-21 19:37:06, Info                  CSI    00001403 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Fax and Scan.lnk"; source file in store is also corrupted
2016-03-21 19:37:08, Info                  CSI    0000142e [SR] Verify complete
2016-03-21 19:37:08, Info                  CSI    0000142f [SR] Verifying 100 (0x00000064) components
2016-03-21 19:37:08, Info                  CSI    00001430 [SR] Beginning Verify and Repair transaction
2016-03-21 19:37:23, Info                  CSI    000014b2 [SR] Verify complete
2016-03-21 19:37:24, Info                  CSI    000014b3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:37:24, Info                  CSI    000014b4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:37:47, Info                  CSI    00001594 [SR] Verify complete
2016-03-21 19:37:47, Info                  CSI    00001595 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:37:47, Info                  CSI    00001596 [SR] Beginning Verify and Repair transaction
2016-03-21 19:37:59, Info                  CSI    0000160a [SR] Verify complete
2016-03-21 19:37:59, Info                  CSI    0000160b [SR] Verifying 100 (0x00000064) components
2016-03-21 19:37:59, Info                  CSI    0000160c [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:08, Info                  CSI    00001679 [SR] Verify complete
2016-03-21 19:38:08, Info                  CSI    0000167a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:08, Info                  CSI    0000167b [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:24, Info                  CSI    00001745 [SR] Verify complete
2016-03-21 19:38:24, Info                  CSI    00001746 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:24, Info                  CSI    00001747 [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:31, Info                  CSI    000017af [SR] Verify complete
2016-03-21 19:38:31, Info                  CSI    000017b0 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:31, Info                  CSI    000017b1 [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:35, Info                  CSI    00001816 [SR] Verify complete
2016-03-21 19:38:35, Info                  CSI    00001817 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:35, Info                  CSI    00001818 [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:46, Info                  CSI    0000188e [SR] Verify complete
2016-03-21 19:38:46, Info                  CSI    0000188f [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:46, Info                  CSI    00001890 [SR] Beginning Verify and Repair transaction
2016-03-21 19:38:52, Info                  CSI    000018f7 [SR] Verify complete
2016-03-21 19:38:52, Info                  CSI    000018f8 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:38:52, Info                  CSI    000018f9 [SR] Beginning Verify and Repair transaction
2016-03-21 19:39:01, Info                  CSI    0000196b [SR] Verify complete
2016-03-21 19:39:01, Info                  CSI    0000196c [SR] Verifying 100 (0x00000064) components
2016-03-21 19:39:01, Info                  CSI    0000196d [SR] Beginning Verify and Repair transaction
2016-03-21 19:39:17, Info                  CSI    000019ef [SR] Verify complete
2016-03-21 19:39:18, Info                  CSI    000019f0 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:39:18, Info                  CSI    000019f1 [SR] Beginning Verify and Repair transaction
2016-03-21 19:39:22, Info                  CSI    000019f3 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:39:26, Info                  CSI    00001a05 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:39:26, Info                  CSI    00001a06 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-drivers~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-drivers-Deployment"
2016-03-21 19:39:26, Info                  CSI    00001a09 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:19]"iSCSI Initiator.lnk"; source file in store is also corrupted
2016-03-21 19:39:30, Info                  CSI    00001a67 [SR] Verify complete
2016-03-21 19:39:30, Info                  CSI    00001a68 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:39:30, Info                  CSI    00001a69 [SR] Beginning Verify and Repair transaction
2016-03-21 19:39:47, Info                  CSI    00001b22 [SR] Verify complete
2016-03-21 19:39:48, Info                  CSI    00001b23 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:39:48, Info                  CSI    00001b24 [SR] Beginning Verify and Repair transaction
2016-03-21 19:39:50, Info                  CSI    00001b26 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:39:56, Info                  CSI    00001b28 [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:39:56, Info                  CSI    00001b35 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:39:56, Info                  CSI    00001b36 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-03-21 19:39:57, Info                  CSI    00001b39 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:21]"ODBC Data Sources.lnk"; source file in store is also corrupted
2016-03-21 19:40:00, Info                  CSI    00001b8f [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:40:00, Info                  CSI    00001b90 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:40:00, Info                  CSI    00001b93 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:27]"Memory Diagnostics Tool.lnk"; source file in store is also corrupted
2016-03-21 19:40:00, Info                  CSI    00001ba5 [SR] Verify complete
2016-03-21 19:40:01, Info                  CSI    00001ba6 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:40:01, Info                  CSI    00001ba7 [SR] Beginning Verify and Repair transaction
2016-03-21 19:40:25, Info                  CSI    00001c2d [SR] Verify complete
2016-03-21 19:40:25, Info                  CSI    00001c2e [SR] Verifying 100 (0x00000064) components
2016-03-21 19:40:25, Info                  CSI    00001c2f [SR] Beginning Verify and Repair transaction
2016-03-21 19:40:41, Info                  CSI    00001ca5 [SR] Verify complete
2016-03-21 19:40:41, Info                  CSI    00001ca6 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:40:41, Info                  CSI    00001ca7 [SR] Beginning Verify and Repair transaction
2016-03-21 19:41:01, Info                  CSI    00001d22 [SR] Verify complete
2016-03-21 19:41:01, Info                  CSI    00001d23 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:41:01, Info                  CSI    00001d24 [SR] Beginning Verify and Repair transaction
2016-03-21 19:41:03, Info                  CSI    00001d26 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:27, Info                  CSI    00001d3c [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:27, Info                  CSI    00001d3d [SR] This component was referenced by [l:91]"Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~x86~~10.0.10586.0.WindowsMediaPlayer"
2016-03-21 19:41:27, Info                  CSI    00001d40 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Media Player.lnk"; source file in store is also corrupted
2016-03-21 19:41:39, Info                  CSI    00001ded [SR] Verify complete
2016-03-21 19:41:40, Info                  CSI    00001dee [SR] Verifying 100 (0x00000064) components
2016-03-21 19:41:40, Info                  CSI    00001def [SR] Beginning Verify and Repair transaction
2016-03-21 19:41:45, Info                  CSI    00001df1 [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:47, Info                  CSI    00001df3 [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:52, Info                  CSI    00001e33 [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:52, Info                  CSI    00001e34 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:41:52, Info                  CSI    00001e37 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:24]"System Configuration.lnk"; source file in store is also corrupted
2016-03-21 19:41:54, Info                  CSI    00001e6a [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:41:54, Info                  CSI    00001e6b [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:41:54, Info                  CSI    00001e6e [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"System Information.lnk"; source file in store is also corrupted
2016-03-21 19:41:56, Info                  CSI    00001e92 [SR] Verify complete
2016-03-21 19:41:56, Info                  CSI    00001e93 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:41:56, Info                  CSI    00001e94 [SR] Beginning Verify and Repair transaction
2016-03-21 19:41:57, Info                  CSI    00001e96 [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:42:30, Info                  CSI    00001efb [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:42:30, Info                  CSI    00001efc [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:42:30, Info                  CSI    00001eff [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:9]"Paint.lnk"; source file in store is also corrupted
2016-03-21 19:42:31, Info                  CSI    00001f16 [SR] Verify complete
2016-03-21 19:42:32, Info                  CSI    00001f17 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:42:32, Info                  CSI    00001f18 [SR] Beginning Verify and Repair transaction
2016-03-21 19:42:41, Info                  CSI    00001f84 [SR] Verify complete
2016-03-21 19:42:42, Info                  CSI    00001f85 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:42:42, Info                  CSI    00001f86 [SR] Beginning Verify and Repair transaction
2016-03-21 19:42:59, Info                  CSI    00002004 [SR] Verify complete
2016-03-21 19:42:59, Info                  CSI    00002005 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:42:59, Info                  CSI    00002006 [SR] Beginning Verify and Repair transaction
2016-03-21 19:43:10, Info                  CSI    0000206c [SR] Verify complete
2016-03-21 19:43:10, Info                  CSI    0000206d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:43:10, Info                  CSI    0000206e [SR] Beginning Verify and Repair transaction
2016-03-21 19:43:28, Info                  CSI    000020f8 [SR] Verify complete
2016-03-21 19:43:28, Info                  CSI    000020f9 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:43:28, Info                  CSI    000020fa [SR] Beginning Verify and Repair transaction
2016-03-21 19:43:49, Info                  CSI    00002178 [SR] Verify complete
2016-03-21 19:43:49, Info                  CSI    00002179 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:43:49, Info                  CSI    0000217a [SR] Beginning Verify and Repair transaction
2016-03-21 19:43:57, Info                  CSI    0000217c [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:43:57, Info                  CSI    0000217e [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:44:02, Info                  CSI    000021e1 [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:44:02, Info                  CSI    000021e2 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:44:02, Info                  CSI    000021e4 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:44:02, Info                  CSI    000021e5 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:44:02, Info                  CSI    000021e8 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:20]"Resource Monitor.lnk"; source file in store is also corrupted
2016-03-21 19:44:02, Info                  CSI    000021eb [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Performance Monitor.lnk"; source file in store is also corrupted
2016-03-21 19:44:02, Info                  CSI    000021f3 [SR] Verify complete
2016-03-21 19:44:02, Info                  CSI    000021f4 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:44:02, Info                  CSI    000021f5 [SR] Beginning Verify and Repair transaction
2016-03-21 19:44:22, Info                  CSI    00002280 [SR] Verify complete
2016-03-21 19:44:22, Info                  CSI    00002281 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:44:22, Info                  CSI    00002282 [SR] Beginning Verify and Repair transaction
2016-03-21 19:44:37, Info                  CSI    00002304 [SR] Verify complete
2016-03-21 19:44:38, Info                  CSI    00002305 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:44:38, Info                  CSI    00002306 [SR] Beginning Verify and Repair transaction
2016-03-21 19:44:53, Info                  CSI    0000237a [SR] Verify complete
2016-03-21 19:44:53, Info                  CSI    0000237b [SR] Verifying 100 (0x00000064) components
2016-03-21 19:44:53, Info                  CSI    0000237c [SR] Beginning Verify and Repair transaction
2016-03-21 19:45:06, Info                  CSI    000023ee [SR] Verify complete
2016-03-21 19:45:06, Info                  CSI    000023ef [SR] Verifying 100 (0x00000064) components
2016-03-21 19:45:06, Info                  CSI    000023f0 [SR] Beginning Verify and Repair transaction
2016-03-21 19:45:21, Info                  CSI    00002465 [SR] Verify complete
2016-03-21 19:45:21, Info                  CSI    00002466 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:45:21, Info                  CSI    00002467 [SR] Beginning Verify and Repair transaction
2016-03-21 19:45:33, Info                  CSI    000024da [SR] Verify complete
2016-03-21 19:45:33, Info                  CSI    000024db [SR] Verifying 100 (0x00000064) components
2016-03-21 19:45:33, Info                  CSI    000024dc [SR] Beginning Verify and Repair transaction
2016-03-21 19:45:43, Info                  CSI    00002551 [SR] Verify complete
2016-03-21 19:45:43, Info                  CSI    00002552 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:45:43, Info                  CSI    00002553 [SR] Beginning Verify and Repair transaction
2016-03-21 19:46:02, Info                  CSI    000025d8 [SR] Verify complete
2016-03-21 19:46:02, Info                  CSI    000025d9 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:46:02, Info                  CSI    000025da [SR] Beginning Verify and Repair transaction
2016-03-21 19:46:20, Info                  CSI    00002655 [SR] Verify complete
2016-03-21 19:46:21, Info                  CSI    00002656 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:46:21, Info                  CSI    00002657 [SR] Beginning Verify and Repair transaction
2016-03-21 19:46:35, Info                  CSI    000026c6 [SR] Verify complete
2016-03-21 19:46:35, Info                  CSI    000026c7 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:46:35, Info                  CSI    000026c8 [SR] Beginning Verify and Repair transaction
2016-03-21 19:46:36, Info                  CSI    000026ca [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:46:56, Info                  CSI    000026e9 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:46:56, Info                  CSI    000026ea [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:46:56, Info                  CSI    000026ed [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:12]"services.lnk"; source file in store is also corrupted
2016-03-21 19:47:00, Info                  CSI    00002749 [SR] Verify complete
2016-03-21 19:47:00, Info                  CSI    0000274a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:47:00, Info                  CSI    0000274b [SR] Beginning Verify and Repair transaction
2016-03-21 19:47:08, Info                  CSI    0000274d [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:10, Info                  CSI    0000274f [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:15, Info                  CSI    0000275d [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:15, Info                  CSI    0000275e [SR] This component was referenced by [l:86]"Microsoft-Windows-SnippingTool-Package~31bf3856ad364e35~x86~~10.0.10586.0.SnippingTool"
2016-03-21 19:47:15, Info                  CSI    00002761 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:17]"Snipping Tool.lnk"; source file in store is also corrupted
2016-03-21 19:47:16, Info                  CSI    0000277d [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:16, Info                  CSI    0000277e [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-03-21 19:47:16, Info                  CSI    00002781 [SR] Could not reproject corrupted file [l:70 ml:71]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility"\[l:22]"Speech Recognition.lnk"; source file in store is also corrupted
2016-03-21 19:47:24, Info                  CSI    000027e6 [SR] Verify complete
2016-03-21 19:47:24, Info                  CSI    000027e7 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:47:24, Info                  CSI    000027e8 [SR] Beginning Verify and Repair transaction
2016-03-21 19:47:26, Info                  CSI    000027ea [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:29, Info                  CSI    000027ec [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:36, Info                  CSI    00002840 [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:36, Info                  CSI    00002841 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:47:36, Info                  CSI    00002844 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Default Programs.lnk"; source file in store is also corrupted
2016-03-21 19:47:37, Info                  CSI    0000285b [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:37, Info                  CSI    0000285c [SR] This component was referenced by [l:84]"Microsoft-Windows-StickyNotes-Package~31bf3856ad364e35~x86~~10.0.10586.0.StickyNotes"
2016-03-21 19:47:37, Info                  CSI    0000285f [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:16]"Sticky Notes.lnk"; source file in store is also corrupted
2016-03-21 19:47:37, Info                  CSI    00002869 [SR] Verify complete
2016-03-21 19:47:37, Info                  CSI    0000286a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:47:37, Info                  CSI    0000286b [SR] Beginning Verify and Repair transaction
2016-03-21 19:47:45, Info                  CSI    0000286d [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:52, Info                  CSI    000028d0 [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:47:52, Info                  CSI    000028d1 [SR] This component was referenced by [l:78]"Microsoft-Windows-TabletPC-Package~31bf3856ad364e35~x86~~10.0.10586.0.TabletPC"
2016-03-21 19:47:52, Info                  CSI    000028d4 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:20]"Math Input Panel.lnk"; source file in store is also corrupted
2016-03-21 19:47:53, Info                  CSI    000028ea [SR] Verify complete
2016-03-21 19:47:53, Info                  CSI    000028eb [SR] Verifying 100 (0x00000064) components
2016-03-21 19:47:53, Info                  CSI    000028ec [SR] Beginning Verify and Repair transaction
2016-03-21 19:47:59, Info                  CSI    000028ee [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:48:05, Info                  CSI    000028f6 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:48:05, Info                  CSI    000028f7 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv-Deployment"
2016-03-21 19:48:05, Info                  CSI    000028fa [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:29]"Remote Desktop Connection.lnk"; source file in store is also corrupted
2016-03-21 19:48:14, Info                  CSI    00002984 [SR] Verify complete
2016-03-21 19:48:14, Info                  CSI    00002985 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:48:14, Info                  CSI    00002986 [SR] Beginning Verify and Repair transaction
2016-03-21 19:48:26, Info                  CSI    00002988 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:48:42, Info                  CSI    000029f6 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:48:42, Info                  CSI    000029f7 [SR] This component was referenced by [l:77]"Package_982_for_KB3140768~31bf3856ad364e35~x86~~10.0.1.3.3140768-2137_neutral"
2016-03-21 19:48:42, Info                  CSI    000029f8 [SR] This component was referenced by [l:77]"Package_970_for_KB3140743~31bf3856ad364e35~x86~~10.0.1.5.3140743-1723_neutral"
2016-03-21 19:48:43, Info                  CSI    000029fb [SR] Could not reproject corrupted file [l:78 ml:79]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC"\[l:19]"Windows Journal.lnk"; source file in store is also corrupted
2016-03-21 19:48:49, Info                  CSI    00002a17 [SR] Verify complete
2016-03-21 19:48:49, Info                  CSI    00002a18 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:48:49, Info                  CSI    00002a19 [SR] Beginning Verify and Repair transaction
2016-03-21 19:49:08, Info                  CSI    00002a8d [SR] Verify complete
2016-03-21 19:49:08, Info                  CSI    00002a8e [SR] Verifying 100 (0x00000064) components
2016-03-21 19:49:08, Info                  CSI    00002a8f [SR] Beginning Verify and Repair transaction
2016-03-21 19:49:21, Info                  CSI    00002aff [SR] Verify complete
2016-03-21 19:49:21, Info                  CSI    00002b00 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:49:21, Info                  CSI    00002b01 [SR] Beginning Verify and Repair transaction
2016-03-21 19:49:41, Info                  CSI    00002b75 [SR] Verify complete
2016-03-21 19:49:41, Info                  CSI    00002b76 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:49:41, Info                  CSI    00002b77 [SR] Beginning Verify and Repair transaction
2016-03-21 19:49:58, Info                  CSI    00002bf3 [SR] Verify complete
2016-03-21 19:49:58, Info                  CSI    00002bf4 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:49:58, Info                  CSI    00002bf5 [SR] Beginning Verify and Repair transaction
2016-03-21 19:50:17, Info                  CSI    00002c78 [SR] Verify complete
2016-03-21 19:50:17, Info                  CSI    00002c79 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:50:17, Info                  CSI    00002c7a [SR] Beginning Verify and Repair transaction
2016-03-21 19:50:27, Info                  CSI    00002ce9 [SR] Verify complete
2016-03-21 19:50:28, Info                  CSI    00002cea [SR] Verifying 100 (0x00000064) components
2016-03-21 19:50:28, Info                  CSI    00002ceb [SR] Beginning Verify and Repair transaction
2016-03-21 19:50:44, Info                  CSI    00002d5c [SR] Verify complete
2016-03-21 19:50:44, Info                  CSI    00002d5d [SR] Verifying 100 (0x00000064) components
2016-03-21 19:50:44, Info                  CSI    00002d5e [SR] Beginning Verify and Repair transaction
2016-03-21 19:51:05, Info                  CSI    00002dd2 [SR] Verify complete
2016-03-21 19:51:05, Info                  CSI    00002dd3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:51:05, Info                  CSI    00002dd4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:51:16, Info                  CSI    00002dd6 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:51:23, Info                  CSI    00002e38 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:51:23, Info                  CSI    00002e39 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:51:23, Info                  CSI    00002e3c [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:11]"Wordpad.lnk"; source file in store is also corrupted
2016-03-21 19:51:24, Info                  CSI    00002e4f [SR] Verify complete
2016-03-21 19:51:24, Info                  CSI    00002e50 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:51:24, Info                  CSI    00002e51 [SR] Beginning Verify and Repair transaction
2016-03-21 19:51:29, Info                  CSI    00002e53 [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:51:55, Info                  CSI    00002ec7 [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:51:55, Info                  CSI    00002ec8 [SR] This component was referenced by [l:108]"Microsoft-Windows-Xps-Foundation-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Xps-Foundation-Xps-Viewer"
2016-03-21 19:51:55, Info                  CSI    00002ecb [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:14]"XPS Viewer.lnk"; source file in store is also corrupted
2016-03-21 19:51:58, Info                  CSI    00002ee9 [SR] Verify complete
2016-03-21 19:51:58, Info                  CSI    00002eea [SR] Verifying 100 (0x00000064) components
2016-03-21 19:51:58, Info                  CSI    00002eeb [SR] Beginning Verify and Repair transaction
2016-03-21 19:52:26, Info                  CSI    00002fe5 [SR] Verify complete
2016-03-21 19:52:26, Info                  CSI    00002fe6 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:52:26, Info                  CSI    00002fe7 [SR] Beginning Verify and Repair transaction
2016-03-21 19:52:46, Info                  CSI    00003073 [SR] Verify complete
2016-03-21 19:52:46, Info                  CSI    00003074 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:52:46, Info                  CSI    00003075 [SR] Beginning Verify and Repair transaction
2016-03-21 19:52:58, Info                  CSI    000030e2 [SR] Verify complete
2016-03-21 19:52:58, Info                  CSI    000030e3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:52:58, Info                  CSI    000030e4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:53:09, Info                  CSI    00003149 [SR] Verify complete
2016-03-21 19:53:10, Info                  CSI    0000314a [SR] Verifying 100 (0x00000064) components
2016-03-21 19:53:10, Info                  CSI    0000314b [SR] Beginning Verify and Repair transaction
2016-03-21 19:53:26, Info                  CSI    000031b2 [SR] Verify complete
2016-03-21 19:53:26, Info                  CSI    000031b3 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:53:26, Info                  CSI    000031b4 [SR] Beginning Verify and Repair transaction
2016-03-21 19:53:36, Info                  CSI    0000321a [SR] Verify complete
2016-03-21 19:53:36, Info                  CSI    0000321b [SR] Verifying 100 (0x00000064) components
2016-03-21 19:53:36, Info                  CSI    0000321c [SR] Beginning Verify and Repair transaction
2016-03-21 19:53:50, Info                  CSI    00003285 [SR] Verify complete
2016-03-21 19:53:50, Info                  CSI    00003286 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:53:50, Info                  CSI    00003287 [SR] Beginning Verify and Repair transaction
2016-03-21 19:54:09, Info                  CSI    00003320 [SR] Verify complete
2016-03-21 19:54:09, Info                  CSI    00003321 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:54:09, Info                  CSI    00003322 [SR] Beginning Verify and Repair transaction
2016-03-21 19:54:15, Info                  CSI    00003324 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:54:17, Info                  CSI    0000332f [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:54:17, Info                  CSI    00003330 [SR] This component was referenced by [l:121]"Microsoft-Windows-Network-Security-MPSSVC-net-Package~31bf3856ad364e35~x86~~10.0.10586.0.ce2174d5653b70aa9d5da20c715f3e8e"
2016-03-21 19:54:17, Info                  CSI    00003333 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:43]"Windows Firewall with Advanced Security.lnk"; source file in store is also corrupted
2016-03-21 19:54:20, Info                  CSI    00003393 [SR] Verify complete
2016-03-21 19:54:20, Info                  CSI    00003394 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:54:20, Info                  CSI    00003395 [SR] Beginning Verify and Repair transaction
2016-03-21 19:54:54, Info                  CSI    00003401 [SR] Verify complete
2016-03-21 19:54:54, Info                  CSI    00003402 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:54:54, Info                  CSI    00003403 [SR] Beginning Verify and Repair transaction
2016-03-21 19:55:16, Info                  CSI    00003468 [SR] Verify complete
2016-03-21 19:55:17, Info                  CSI    00003469 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:55:17, Info                  CSI    0000346a [SR] Beginning Verify and Repair transaction
2016-03-21 19:55:26, Info                  CSI    0000346c [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:55:29, Info                  CSI    000034c1 [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:55:29, Info                  CSI    000034c2 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:55:29, Info                  CSI    000034c5 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:18]"Task Scheduler.lnk"; source file in store is also corrupted
2016-03-21 19:55:30, Info                  CSI    000034db [SR] Verify complete
2016-03-21 19:55:30, Info                  CSI    000034dc [SR] Verifying 100 (0x00000064) components
2016-03-21 19:55:30, Info                  CSI    000034dd [SR] Beginning Verify and Repair transaction
2016-03-21 19:55:38, Info                  CSI    00003543 [SR] Verify complete
2016-03-21 19:55:38, Info                  CSI    00003544 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:55:38, Info                  CSI    00003545 [SR] Beginning Verify and Repair transaction
2016-03-21 19:56:07, Info                  CSI    000035b3 [SR] Verify complete
2016-03-21 19:56:07, Info                  CSI    000035b4 [SR] Verifying 100 (0x00000064) components
2016-03-21 19:56:07, Info                  CSI    000035b5 [SR] Beginning Verify and Repair transaction
2016-03-21 19:56:12, Info                  CSI    000035b7 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:25, Info                  CSI    000035f9 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:25, Info                  CSI    000035fa [SR] This component was referenced by [l:92]"Windows-Defender-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Windows-Defender-AppLayer"
2016-03-21 19:56:25, Info                  CSI    000035fd [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Windows Defender.lnk"; source file in store is also corrupted
2016-03-21 19:56:30, Info                  CSI    00003635 [SR] Verify complete
2016-03-21 19:56:31, Info                  CSI    00003636 [SR] Verifying 83 (0x00000053) components
2016-03-21 19:56:31, Info                  CSI    00003637 [SR] Beginning Verify and Repair transaction
2016-03-21 19:56:39, Info                  CSI    0000368b [SR] Verify complete
2016-03-21 19:56:39, Info                  CSI    0000368c [SR] Repairing 30 (0x0000001e) components
2016-03-21 19:56:39, Info                  CSI    0000368d [SR] Beginning Verify and Repair transaction
2016-03-21 19:56:39, Info                  CSI    0000368f [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    00003691 [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    00003693 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    00003695 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    00003697 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    00003699 [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    0000369b [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    0000369d [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    0000369f [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:39, Info                  CSI    000036a1 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:56:39, Info                  CSI    000036a3 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036a5 [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036a7 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036a9 [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036ab [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036ad [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036af [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036b1 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036b3 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036b5 [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036b7 [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036b9 [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036bb [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036bd [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:40, Info                  CSI    000036bf [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:41, Info                  CSI    000036c1 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:56:41, Info                  CSI    000036c3 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:41, Info                  CSI    000036c5 [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:41, Info                  CSI    000036c7 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:41, Info                  CSI    000036c9 [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036cb [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036ce [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036cf [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:42, Info                  CSI    000036d2 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:16]"Task Manager.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036d7 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036d8 [SR] This component was referenced by [l:159]"Microsoft-Windows-Client-Features-Package-AutoMerged-com~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-com-Deployment"
2016-03-21 19:56:42, Info                  CSI    000036db [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"Component Services.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036df [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036e0 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-03-21 19:56:42, Info                  CSI    000036e3 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:21]"ODBC Data Sources.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036e7 [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036e8 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:56:42, Info                  CSI    000036eb [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:9]"Paint.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036ef [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036f0 [SR] This component was referenced by [l:105]"Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~x86~~10.0.10586.0.FaxServicesClientPackage"
2016-03-21 19:56:42, Info                  CSI    000036f3 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Fax and Scan.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036f7 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    000036f8 [SR] This component was referenced by [l:121]"Microsoft-Windows-Network-Security-MPSSVC-net-Package~31bf3856ad364e35~x86~~10.0.10586.0.ce2174d5653b70aa9d5da20c715f3e8e"
2016-03-21 19:56:42, Info                  CSI    000036fb [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:43]"Windows Firewall with Advanced Security.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    000036ff [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    00003700 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:42, Info                  CSI    00003703 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:24]"System Configuration.lnk"; source file in store is also corrupted
2016-03-21 19:56:42, Info                  CSI    00003707 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:42, Info                  CSI    00003708 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:56:43, Info                  CSI    0000370b [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:12]"services.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000370f [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003710 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:56:43, Info                  CSI    00003713 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:18]"Task Scheduler.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003717 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003718 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:56:43, Info                  CSI    0000371b [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Event Viewer.lnk"; source file in store is also corrupted 
2016-03-21 19:56:43, Info                  CSI    0000371f [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003720 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-03-21 19:56:43, Info                  CSI    00003723 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Computer Management.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003727 [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003728 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:56:43, Info                  CSI    0000372b [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Disk Cleanup.lnk"; source file in store is also corrupted 
2016-03-21 19:56:43, Info                  CSI    0000372f [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003730 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:43, Info                  CSI    00003733 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"System Information.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003737 [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003738 [SR] This component was referenced by [l:84]"Microsoft-Windows-StickyNotes-Package~31bf3856ad364e35~x86~~10.0.10586.0.StickyNotes"
2016-03-21 19:56:43, Info                  CSI    0000373b [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:16]"Sticky Notes.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000373f [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003740 [SR] This component was referenced by [l:108]"Microsoft-Windows-Xps-Foundation-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Xps-Foundation-Xps-Viewer"
2016-03-21 19:56:43, Info                  CSI    00003743 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:14]"XPS Viewer.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003747 [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003748 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:56:43, Info                  CSI    0000374b [SR] Could not reproject corrupted file [l:81 ml:82]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools"\[l:17]"Character Map.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000374f [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003750 [SR] This component was referenced by [l:91]"Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~x86~~10.0.10586.0.WindowsMediaPlayer"
2016-03-21 19:56:43, Info                  CSI    00003753 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Media Player.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003757 [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003758 [SR] This component was referenced by [l:78]"Microsoft-Windows-TabletPC-Package~31bf3856ad364e35~x86~~10.0.10586.0.TabletPC"
2016-03-21 19:56:43, Info                  CSI    0000375b [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:20]"Math Input Panel.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000375f [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003760 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:43, Info                  CSI    00003763 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:18]"Steps Recorder.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003767 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:56:43, Info                  CSI    00003768 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-drivers~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-drivers-Deployment"
2016-03-21 19:56:43, Info                  CSI    0000376b [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:19]"iSCSI Initiator.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000376f [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003770 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:43, Info                  CSI    00003773 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:27]"Memory Diagnostics Tool.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    00003777 [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003778 [SR] This component was referenced by [l:86]"Microsoft-Windows-SnippingTool-Package~31bf3856ad364e35~x86~~10.0.10586.0.SnippingTool"
2016-03-21 19:56:43, Info                  CSI    0000377b [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:17]"Snipping Tool.lnk"; source file in store is also corrupted
2016-03-21 19:56:43, Info                  CSI    0000377f [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:43, Info                  CSI    00003780 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-03-21 19:56:44, Info                  CSI    00003783 [SR] Could not reproject corrupted file [l:70 ml:71]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility"\[l:22]"Speech Recognition.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    00003788 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    00003789 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv-Deployment"
2016-03-21 19:56:44, Info                  CSI    0000378c [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:29]"Remote Desktop Connection.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    00003790 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    00003791 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:56:44, Info                  CSI    00003794 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:11]"Wordpad.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    0000379a [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    0000379b [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:44, Info                  CSI    0000379e [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:10]"dfrgui.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    000037a2 [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    000037a3 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:44, Info                  CSI    000037a5 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    000037a6 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-03-21 19:56:44, Info                  CSI    000037a9 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:20]"Resource Monitor.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    000037ac [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Performance Monitor.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    000037b0 [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:44, Info                  CSI    000037b1 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-03-21 19:56:44, Info                  CSI    000037b4 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Default Programs.lnk"; source file in store is also corrupted
2016-03-21 19:56:44, Info                  CSI    000037b8 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-03-21 19:56:44, Info                  CSI    000037b9 [SR] This component was referenced by [l:77]"Package_982_for_KB3140768~31bf3856ad364e35~x86~~10.0.1.3.3140768-2137_neutral"
2016-03-21 19:56:44, Info                  CSI    000037ba [SR] This component was referenced by [l:77]"Package_970_for_KB3140743~31bf3856ad364e35~x86~~10.0.1.5.3140743-1723_neutral"
2016-03-21 19:56:45, Info                  CSI    000037bd [SR] Could not reproject corrupted file [l:78 ml:79]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC"\[l:19]"Windows Journal.lnk"; source file in store is also corrupted
2016-03-21 19:56:45, Info                  CSI    000037c4 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-03-21 19:56:45, Info                  CSI    000037c5 [SR] This component was referenced by [l:92]"Windows-Defender-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Windows-Defender-AppLayer"
2016-03-21 19:56:45, Info                  CSI    000037c8 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Windows Defender.lnk"; source file in store is also corrupted
2016-03-21 19:56:45, Info                  CSI    000037ca [SR] Repair complete
2016-03-21 19:56:45, Info                  CSI    000037cb [SR] Committing transaction
2016-03-21 19:56:47, Info                  CSI    000037d0 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired
2016-04-04 17:19:10, Info                  CSI    0000000a [SR] Verifying 100 (0x00000064) components
2016-04-04 17:19:10, Info                  CSI    0000000b [SR] Beginning Verify and Repair transaction
2016-04-04 17:19:20, Info                  CSI    0000007a [SR] Verify complete
2016-04-04 17:19:21, Info                  CSI    0000007b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:19:21, Info                  CSI    0000007c [SR] Beginning Verify and Repair transaction
2016-04-04 17:19:31, Info                  CSI    000000f3 [SR] Verify complete
2016-04-04 17:19:31, Info                  CSI    000000f4 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:19:31, Info                  CSI    000000f5 [SR] Beginning Verify and Repair transaction
2016-04-04 17:19:42, Info                  CSI    0000015b [SR] Verify complete
2016-04-04 17:19:43, Info                  CSI    0000015c [SR] Verifying 100 (0x00000064) components
2016-04-04 17:19:43, Info                  CSI    0000015d [SR] Beginning Verify and Repair transaction
2016-04-04 17:19:53, Info                  CSI    000001c3 [SR] Verify complete
2016-04-04 17:19:53, Info                  CSI    000001c4 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:19:53, Info                  CSI    000001c5 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:05, Info                  CSI    00000230 [SR] Verify complete
2016-04-04 17:20:05, Info                  CSI    00000231 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:05, Info                  CSI    00000232 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:10, Info                  CSI    00000297 [SR] Verify complete
2016-04-04 17:20:11, Info                  CSI    00000298 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:11, Info                  CSI    00000299 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:16, Info                  CSI    000002fe [SR] Verify complete
2016-04-04 17:20:16, Info                  CSI    000002ff [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:16, Info                  CSI    00000300 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:21, Info                  CSI    00000365 [SR] Verify complete
2016-04-04 17:20:21, Info                  CSI    00000366 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:21, Info                  CSI    00000367 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:25, Info                  CSI    000003cc [SR] Verify complete
2016-04-04 17:20:26, Info                  CSI    000003cd [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:26, Info                  CSI    000003ce [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:33, Info                  CSI    00000435 [SR] Verify complete
2016-04-04 17:20:33, Info                  CSI    00000436 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:33, Info                  CSI    00000437 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:39, Info                  CSI    0000049c [SR] Verify complete
2016-04-04 17:20:39, Info                  CSI    0000049d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:39, Info                  CSI    0000049e [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:43, Info                  CSI    00000503 [SR] Verify complete
2016-04-04 17:20:44, Info                  CSI    00000504 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:44, Info                  CSI    00000505 [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:48, Info                  CSI    0000056a [SR] Verify complete
2016-04-04 17:20:48, Info                  CSI    0000056b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:48, Info                  CSI    0000056c [SR] Beginning Verify and Repair transaction
2016-04-04 17:20:56, Info                  CSI    000005d1 [SR] Verify complete
2016-04-04 17:20:56, Info                  CSI    000005d2 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:20:56, Info                  CSI    000005d3 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:02, Info                  CSI    000005d5 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:21:05, Info                  CSI    0000061a [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:21:05, Info                  CSI    0000061b [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:21:05, Info                  CSI    0000061e [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Event Viewer.lnk"; source file in store is also corrupted 
2016-04-04 17:21:06, Info                  CSI    00000642 [SR] Verify complete
2016-04-04 17:21:06, Info                  CSI    00000643 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:06, Info                  CSI    00000644 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:13, Info                  CSI    000006a9 [SR] Verify complete
2016-04-04 17:21:13, Info                  CSI    000006aa [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:13, Info                  CSI    000006ab [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:20, Info                  CSI    00000710 [SR] Verify complete
2016-04-04 17:21:21, Info                  CSI    00000711 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:21, Info                  CSI    00000712 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:25, Info                  CSI    00000777 [SR] Verify complete
2016-04-04 17:21:26, Info                  CSI    00000778 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:26, Info                  CSI    00000779 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:30, Info                  CSI    000007de [SR] Verify complete
2016-04-04 17:21:30, Info                  CSI    000007df [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:30, Info                  CSI    000007e0 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:34, Info                  CSI    00000845 [SR] Verify complete
2016-04-04 17:21:34, Info                  CSI    00000846 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:34, Info                  CSI    00000847 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:43, Info                  CSI    000008b5 [SR] Verify complete
2016-04-04 17:21:43, Info                  CSI    000008b6 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:43, Info                  CSI    000008b7 [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:46, Info                  CSI    0000091c [SR] Verify complete
2016-04-04 17:21:46, Info                  CSI    0000091d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:46, Info                  CSI    0000091e [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:50, Info                  CSI    0000098c [SR] Verify complete
2016-04-04 17:21:50, Info                  CSI    0000098d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:50, Info                  CSI    0000098e [SR] Beginning Verify and Repair transaction
2016-04-04 17:21:55, Info                  CSI    000009f7 [SR] Verify complete
2016-04-04 17:21:55, Info                  CSI    000009f8 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:21:55, Info                  CSI    000009f9 [SR] Beginning Verify and Repair transaction
2016-04-04 17:22:09, Info                  CSI    00000a7a [SR] Verify complete
2016-04-04 17:22:09, Info                  CSI    00000a7b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:22:09, Info                  CSI    00000a7c [SR] Beginning Verify and Repair transaction
2016-04-04 17:22:13, Info                  CSI    00000a7e [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:22:17, Info                  CSI    00000a80 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:22:25, Info                  CSI    00000aad [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:22:25, Info                  CSI    00000aae [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:22:25, Info                  CSI    00000ab1 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:18]"Steps Recorder.lnk"; source file in store is also corrupted
2016-04-04 17:22:28, Info                  CSI    00000af3 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:22:28, Info                  CSI    00000af4 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:22:28, Info                  CSI    00000af7 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:16]"Task Manager.lnk"; source file in store is also corrupted
2016-04-04 17:22:28, Info                  CSI    00000b00 [SR] Verify complete
2016-04-04 17:22:28, Info                  CSI    00000b01 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:22:28, Info                  CSI    00000b02 [SR] Beginning Verify and Repair transaction
2016-04-04 17:22:39, Info                  CSI    00000b69 [SR] Verify complete
2016-04-04 17:22:40, Info                  CSI    00000b6a [SR] Verifying 100 (0x00000064) components
2016-04-04 17:22:40, Info                  CSI    00000b6b [SR] Beginning Verify and Repair transaction
2016-04-04 17:22:50, Info                  CSI    00000bdc [SR] Verify complete
2016-04-04 17:22:50, Info                  CSI    00000bdd [SR] Verifying 100 (0x00000064) components
2016-04-04 17:22:50, Info                  CSI    00000bde [SR] Beginning Verify and Repair transaction
2016-04-04 17:23:00, Info                  CSI    00000c54 [SR] Verify complete
2016-04-04 17:23:00, Info                  CSI    00000c55 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:23:00, Info                  CSI    00000c56 [SR] Beginning Verify and Repair transaction
2016-04-04 17:23:19, Info                  CSI    00000ccc [SR] Verify complete
2016-04-04 17:23:20, Info                  CSI    00000ccd [SR] Verifying 100 (0x00000064) components
2016-04-04 17:23:20, Info                  CSI    00000cce [SR] Beginning Verify and Repair transaction
2016-04-04 17:23:32, Info                  CSI    00000d36 [SR] Verify complete
2016-04-04 17:23:32, Info                  CSI    00000d37 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:23:32, Info                  CSI    00000d38 [SR] Beginning Verify and Repair transaction
2016-04-04 17:23:41, Info                  CSI    00000da0 [SR] Verify complete
2016-04-04 17:23:41, Info                  CSI    00000da1 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:23:41, Info                  CSI    00000da2 [SR] Beginning Verify and Repair transaction
2016-04-04 17:23:44, Info                  CSI    00000da4 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:23:52, Info                  CSI    00000da6 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:23:58, Info                  CSI    00000dc4 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:23:58, Info                  CSI    00000dc5 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:23:58, Info                  CSI    00000dc8 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Computer Management.lnk"; source file in store is also corrupted
2016-04-04 17:24:02, Info                  CSI    00000e00 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:24:02, Info                  CSI    00000e01 [SR] This component was referenced by [l:159]"Microsoft-Windows-Client-Features-Package-AutoMerged-com~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-com-Deployment"

cbhansen · 04.04.2016, 18:31

3.Teil sfcdetails.txt

Code:

ATTFilter

2016-04-04 17:24:02, Info                  CSI    00000e04 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"Component Services.lnk"; source file in store is also corrupted
2016-04-04 17:24:04, Info                  CSI    00000e22 [SR] Verify complete
2016-04-04 17:24:04, Info                  CSI    00000e23 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:24:04, Info                  CSI    00000e24 [SR] Beginning Verify and Repair transaction
2016-04-04 17:24:07, Info                  CSI    00000e26 [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:24:08, Info                  CSI    00000e28 [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:24:11, Info                  CSI    00000e4a [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:24:11, Info                  CSI    00000e4b [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:24:11, Info                  CSI    00000e4e [SR] Could not reproject corrupted file [l:81 ml:82]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools"\[l:17]"Character Map.lnk"; source file in store is also corrupted
2016-04-04 17:24:16, Info                  CSI    00000ea7 [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:24:16, Info                  CSI    00000ea8 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:24:16, Info                  CSI    00000eab [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Disk Cleanup.lnk"; source file in store is also corrupted 
2016-04-04 17:24:21, Info                  CSI    00000eed [SR] Verify complete
2016-04-04 17:24:22, Info                  CSI    00000eee [SR] Verifying 100 (0x00000064) components
2016-04-04 17:24:22, Info                  CSI    00000eef [SR] Beginning Verify and Repair transaction
2016-04-04 17:24:36, Info                  CSI    00000fb9 [SR] Verify complete
2016-04-04 17:24:36, Info                  CSI    00000fba [SR] Verifying 100 (0x00000064) components
2016-04-04 17:24:36, Info                  CSI    00000fbb [SR] Beginning Verify and Repair transaction
2016-04-04 17:24:48, Info                  CSI    00001048 [SR] Verify complete
2016-04-04 17:24:48, Info                  CSI    00001049 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:24:48, Info                  CSI    0000104a [SR] Beginning Verify and Repair transaction
2016-04-04 17:25:04, Info                  CSI    000010c0 [SR] Verify complete
2016-04-04 17:25:04, Info                  CSI    000010c1 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:25:04, Info                  CSI    000010c2 [SR] Beginning Verify and Repair transaction
2016-04-04 17:25:16, Info                  CSI    0000113f [SR] Verify complete
2016-04-04 17:25:16, Info                  CSI    00001140 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:25:16, Info                  CSI    00001141 [SR] Beginning Verify and Repair transaction
2016-04-04 17:25:30, Info                  CSI    000011c8 [SR] Verify complete
2016-04-04 17:25:30, Info                  CSI    000011c9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:25:30, Info                  CSI    000011ca [SR] Beginning Verify and Repair transaction
2016-04-04 17:25:35, Info                  CSI    000011cc [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:25:38, Info                  CSI    000011e4 [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:25:38, Info                  CSI    000011e5 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:25:38, Info                  CSI    000011e8 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:10]"dfrgui.lnk"; source file in store is also corrupted
2016-04-04 17:25:41, Info                  CSI    00001243 [SR] Verify complete
2016-04-04 17:25:42, Info                  CSI    00001244 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:25:42, Info                  CSI    00001245 [SR] Beginning Verify and Repair transaction
2016-04-04 17:25:52, Info                  CSI    000012b4 [SR] Verify complete
2016-04-04 17:25:53, Info                  CSI    000012b5 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:25:53, Info                  CSI    000012b6 [SR] Beginning Verify and Repair transaction
2016-04-04 17:26:05, Info                  CSI    0000131c [SR] Verify complete
2016-04-04 17:26:05, Info                  CSI    0000131d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:26:05, Info                  CSI    0000131e [SR] Beginning Verify and Repair transaction
2016-04-04 17:26:16, Info                  CSI    00001395 [SR] Verify complete
2016-04-04 17:26:16, Info                  CSI    00001396 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:26:16, Info                  CSI    00001397 [SR] Beginning Verify and Repair transaction
2016-04-04 17:26:23, Info                  CSI    00001399 [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:26:29, Info                  CSI    000013fc [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:26:29, Info                  CSI    000013fd [SR] This component was referenced by [l:105]"Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~x86~~10.0.10586.0.FaxServicesClientPackage"
2016-04-04 17:26:29, Info                  CSI    00001400 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Fax and Scan.lnk"; source file in store is also corrupted
2016-04-04 17:26:34, Info                  CSI    00001434 [SR] Verify complete
2016-04-04 17:26:34, Info                  CSI    00001435 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:26:34, Info                  CSI    00001436 [SR] Beginning Verify and Repair transaction
2016-04-04 17:26:53, Info                  CSI    000014bb [SR] Verify complete
2016-04-04 17:26:53, Info                  CSI    000014bc [SR] Verifying 100 (0x00000064) components
2016-04-04 17:26:53, Info                  CSI    000014bd [SR] Beginning Verify and Repair transaction
2016-04-04 17:27:18, Info                  CSI    0000159d [SR] Verify complete
2016-04-04 17:27:18, Info                  CSI    0000159e [SR] Verifying 100 (0x00000064) components
2016-04-04 17:27:18, Info                  CSI    0000159f [SR] Beginning Verify and Repair transaction
2016-04-04 17:27:29, Info                  CSI    00001612 [SR] Verify complete
2016-04-04 17:27:29, Info                  CSI    00001613 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:27:29, Info                  CSI    00001614 [SR] Beginning Verify and Repair transaction
2016-04-04 17:27:41, Info                  CSI    0000168a [SR] Verify complete
2016-04-04 17:27:41, Info                  CSI    0000168b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:27:41, Info                  CSI    0000168c [SR] Beginning Verify and Repair transaction
2016-04-04 17:27:58, Info                  CSI    00001757 [SR] Verify complete
2016-04-04 17:27:58, Info                  CSI    00001758 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:27:58, Info                  CSI    00001759 [SR] Beginning Verify and Repair transaction
2016-04-04 17:28:09, Info                  CSI    000017c7 [SR] Verify complete
2016-04-04 17:28:09, Info                  CSI    000017c8 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:28:09, Info                  CSI    000017c9 [SR] Beginning Verify and Repair transaction
2016-04-04 17:28:18, Info                  CSI    00001834 [SR] Verify complete
2016-04-04 17:28:18, Info                  CSI    00001835 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:28:18, Info                  CSI    00001836 [SR] Beginning Verify and Repair transaction
2016-04-04 17:28:33, Info                  CSI    000018b3 [SR] Verify complete
2016-04-04 17:28:33, Info                  CSI    000018b4 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:28:33, Info                  CSI    000018b5 [SR] Beginning Verify and Repair transaction
2016-04-04 17:28:47, Info                  CSI    00001926 [SR] Verify complete
2016-04-04 17:28:48, Info                  CSI    00001927 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:28:48, Info                  CSI    00001928 [SR] Beginning Verify and Repair transaction
2016-04-04 17:28:57, Info                  CSI    00001998 [SR] Verify complete
2016-04-04 17:28:57, Info                  CSI    00001999 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:28:57, Info                  CSI    0000199a [SR] Beginning Verify and Repair transaction
2016-04-04 17:29:16, Info                  CSI    00001a13 [SR] Verify complete
2016-04-04 17:29:16, Info                  CSI    00001a14 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:29:16, Info                  CSI    00001a15 [SR] Beginning Verify and Repair transaction
2016-04-04 17:29:20, Info                  CSI    00001a17 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:29:22, Info                  CSI    00001a25 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:29:22, Info                  CSI    00001a26 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-drivers~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-drivers-Deployment"
2016-04-04 17:29:22, Info                  CSI    00001a29 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:19]"iSCSI Initiator.lnk"; source file in store is also corrupted
2016-04-04 17:29:27, Info                  CSI    00001a93 [SR] Verify complete
2016-04-04 17:29:27, Info                  CSI    00001a94 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:29:27, Info                  CSI    00001a95 [SR] Beginning Verify and Repair transaction
2016-04-04 17:29:41, Info                  CSI    00001b34 [SR] Verify complete
2016-04-04 17:29:41, Info                  CSI    00001b35 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:29:41, Info                  CSI    00001b36 [SR] Beginning Verify and Repair transaction
2016-04-04 17:29:44, Info                  CSI    00001b38 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:29:48, Info                  CSI    00001b45 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:29:48, Info                  CSI    00001b46 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-04-04 17:29:48, Info                  CSI    00001b49 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:21]"ODBC Data Sources.lnk"; source file in store is also corrupted
2016-04-04 17:29:58, Info                  CSI    00001bd0 [SR] Verify complete
2016-04-04 17:29:58, Info                  CSI    00001bd1 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:29:58, Info                  CSI    00001bd2 [SR] Beginning Verify and Repair transaction
2016-04-04 17:29:59, Info                  CSI    00001bd4 [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:30:17, Info                  CSI    00001c4c [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:30:17, Info                  CSI    00001c4d [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:30:17, Info                  CSI    00001c50 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:27]"Memory Diagnostics Tool.lnk"; source file in store is also corrupted
2016-04-04 17:30:21, Info                  CSI    00001c73 [SR] Verify complete
2016-04-04 17:30:21, Info                  CSI    00001c74 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:30:21, Info                  CSI    00001c75 [SR] Beginning Verify and Repair transaction
2016-04-04 17:30:43, Info                  CSI    00001cf8 [SR] Verify complete
2016-04-04 17:30:43, Info                  CSI    00001cf9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:30:43, Info                  CSI    00001cfa [SR] Beginning Verify and Repair transaction
2016-04-04 17:31:01, Info                  CSI    00001d72 [SR] Verify complete
2016-04-04 17:31:02, Info                  CSI    00001d73 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:31:02, Info                  CSI    00001d74 [SR] Beginning Verify and Repair transaction
2016-04-04 17:31:08, Info                  CSI    00001d76 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:31:29, Info                  CSI    00001d90 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:31:29, Info                  CSI    00001d91 [SR] This component was referenced by [l:91]"Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~x86~~10.0.10586.0.WindowsMediaPlayer"
2016-04-04 17:31:29, Info                  CSI    00001d94 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Media Player.lnk"; source file in store is also corrupted
2016-04-04 17:31:39, Info                  CSI    00001e08 [SR] Verify complete
2016-04-04 17:31:39, Info                  CSI    00001e09 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:31:39, Info                  CSI    00001e0a [SR] Beginning Verify and Repair transaction
2016-04-04 17:31:43, Info                  CSI    00001e0c [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:31:48, Info                  CSI    00001e5d [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:31:48, Info                  CSI    00001e5e [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:31:48, Info                  CSI    00001e61 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:24]"System Configuration.lnk"; source file in store is also corrupted
2016-04-04 17:31:54, Info                  CSI    00001edf [SR] Verify complete
2016-04-04 17:31:55, Info                  CSI    00001ee0 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:31:55, Info                  CSI    00001ee1 [SR] Beginning Verify and Repair transaction
2016-04-04 17:31:56, Info                  CSI    00001ee3 [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:31:57, Info                  CSI    00001ee5 [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:32:05, Info                  CSI    00001f3f [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:32:05, Info                  CSI    00001f40 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:32:05, Info                  CSI    00001f43 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"System Information.lnk"; source file in store is also corrupted
2016-04-04 17:32:06, Info                  CSI    00001f4c [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:32:06, Info                  CSI    00001f4d [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:32:06, Info                  CSI    00001f50 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:9]"Paint.lnk"; source file in store is also corrupted
2016-04-04 17:32:06, Info                  CSI    00001f61 [SR] Verify complete
2016-04-04 17:32:07, Info                  CSI    00001f62 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:32:07, Info                  CSI    00001f63 [SR] Beginning Verify and Repair transaction
2016-04-04 17:32:16, Info                  CSI    00001fcf [SR] Verify complete
2016-04-04 17:32:16, Info                  CSI    00001fd0 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:32:16, Info                  CSI    00001fd1 [SR] Beginning Verify and Repair transaction
2016-04-04 17:32:30, Info                  CSI    00002049 [SR] Verify complete
2016-04-04 17:32:30, Info                  CSI    0000204a [SR] Verifying 100 (0x00000064) components
2016-04-04 17:32:30, Info                  CSI    0000204b [SR] Beginning Verify and Repair transaction
2016-04-04 17:32:51, Info                  CSI    000020be [SR] Verify complete
2016-04-04 17:32:51, Info                  CSI    000020bf [SR] Verifying 100 (0x00000064) components
2016-04-04 17:32:51, Info                  CSI    000020c0 [SR] Beginning Verify and Repair transaction
2016-04-04 17:33:06, Info                  CSI    00002136 [SR] Verify complete
2016-04-04 17:33:06, Info                  CSI    00002137 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:33:06, Info                  CSI    00002138 [SR] Beginning Verify and Repair transaction
2016-04-04 17:33:20, Info                  CSI    000021b8 [SR] Verify complete
2016-04-04 17:33:21, Info                  CSI    000021b9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:33:21, Info                  CSI    000021ba [SR] Beginning Verify and Repair transaction
2016-04-04 17:33:32, Info                  CSI    0000222d [SR] Verify complete
2016-04-04 17:33:32, Info                  CSI    0000222e [SR] Verifying 100 (0x00000064) components
2016-04-04 17:33:32, Info                  CSI    0000222f [SR] Beginning Verify and Repair transaction
2016-04-04 17:33:33, Info                  CSI    00002231 [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:33:33, Info                  CSI    00002233 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:33:44, Info                  CSI    000022ac [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:33:44, Info                  CSI    000022ad [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:33:44, Info                  CSI    000022af [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:33:44, Info                  CSI    000022b0 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:33:44, Info                  CSI    000022b3 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:20]"Resource Monitor.lnk"; source file in store is also corrupted
2016-04-04 17:33:44, Info                  CSI    000022b6 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Performance Monitor.lnk"; source file in store is also corrupted
2016-04-04 17:33:45, Info                  CSI    000022c3 [SR] Verify complete
2016-04-04 17:33:45, Info                  CSI    000022c4 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:33:45, Info                  CSI    000022c5 [SR] Beginning Verify and Repair transaction
2016-04-04 17:33:58, Info                  CSI    00002352 [SR] Verify complete
2016-04-04 17:33:58, Info                  CSI    00002353 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:33:58, Info                  CSI    00002354 [SR] Beginning Verify and Repair transaction
2016-04-04 17:34:14, Info                  CSI    000023cd [SR] Verify complete
2016-04-04 17:34:14, Info                  CSI    000023ce [SR] Verifying 100 (0x00000064) components
2016-04-04 17:34:14, Info                  CSI    000023cf [SR] Beginning Verify and Repair transaction
2016-04-04 17:34:25, Info                  CSI    00002441 [SR] Verify complete
2016-04-04 17:34:25, Info                  CSI    00002442 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:34:25, Info                  CSI    00002443 [SR] Beginning Verify and Repair transaction
2016-04-04 17:34:33, Info                  CSI    000024ae [SR] Verify complete
2016-04-04 17:34:34, Info                  CSI    000024af [SR] Verifying 100 (0x00000064) components
2016-04-04 17:34:34, Info                  CSI    000024b0 [SR] Beginning Verify and Repair transaction
2016-04-04 17:34:48, Info                  CSI    0000252e [SR] Verify complete
2016-04-04 17:34:48, Info                  CSI    0000252f [SR] Verifying 100 (0x00000064) components
2016-04-04 17:34:48, Info                  CSI    00002530 [SR] Beginning Verify and Repair transaction
2016-04-04 17:34:58, Info                  CSI    0000259c [SR] Verify complete
2016-04-04 17:34:58, Info                  CSI    0000259d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:34:58, Info                  CSI    0000259e [SR] Beginning Verify and Repair transaction
2016-04-04 17:35:10, Info                  CSI    00002613 [SR] Verify complete
2016-04-04 17:35:10, Info                  CSI    00002614 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:35:10, Info                  CSI    00002615 [SR] Beginning Verify and Repair transaction
2016-04-04 17:35:26, Info                  CSI    0000269d [SR] Verify complete
2016-04-04 17:35:26, Info                  CSI    0000269e [SR] Verifying 100 (0x00000064) components
2016-04-04 17:35:26, Info                  CSI    0000269f [SR] Beginning Verify and Repair transaction
2016-04-04 17:35:40, Info                  CSI    0000270c [SR] Verify complete
2016-04-04 17:35:40, Info                  CSI    0000270d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:35:40, Info                  CSI    0000270e [SR] Beginning Verify and Repair transaction
2016-04-04 17:35:42, Info                  CSI    00002710 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:35:53, Info                  CSI    0000272d [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:35:53, Info                  CSI    0000272e [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:35:53, Info                  CSI    00002731 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:12]"services.lnk"; source file in store is also corrupted
2016-04-04 17:36:00, Info                  CSI    00002797 [SR] Verify complete
2016-04-04 17:36:00, Info                  CSI    00002798 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:36:00, Info                  CSI    00002799 [SR] Beginning Verify and Repair transaction
2016-04-04 17:36:08, Info                  CSI    0000279b [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:09, Info                  CSI    000027a7 [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:09, Info                  CSI    000027a8 [SR] This component was referenced by [l:86]"Microsoft-Windows-SnippingTool-Package~31bf3856ad364e35~x86~~10.0.10586.0.SnippingTool"
2016-04-04 17:36:09, Info                  CSI    000027ab [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:17]"Snipping Tool.lnk"; source file in store is also corrupted
2016-04-04 17:36:15, Info                  CSI    00002819 [SR] Verify complete
2016-04-04 17:36:15, Info                  CSI    0000281a [SR] Verifying 100 (0x00000064) components
2016-04-04 17:36:15, Info                  CSI    0000281b [SR] Beginning Verify and Repair transaction
2016-04-04 17:36:16, Info                  CSI    0000281d [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:21, Info                  CSI    0000281f [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:24, Info                  CSI    00002821 [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:28, Info                  CSI    0000284a [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:28, Info                  CSI    0000284b [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-04-04 17:36:28, Info                  CSI    0000284e [SR] Could not reproject corrupted file [l:70 ml:71]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility"\[l:22]"Speech Recognition.lnk"; source file in store is also corrupted
2016-04-04 17:36:33, Info                  CSI    0000288a [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:33, Info                  CSI    0000288b [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:36:33, Info                  CSI    0000288e [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Default Programs.lnk"; source file in store is also corrupted
2016-04-04 17:36:34, Info                  CSI    000028a7 [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:34, Info                  CSI    000028a8 [SR] This component was referenced by [l:84]"Microsoft-Windows-StickyNotes-Package~31bf3856ad364e35~x86~~10.0.10586.0.StickyNotes"
2016-04-04 17:36:34, Info                  CSI    000028ab [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:16]"Sticky Notes.lnk"; source file in store is also corrupted
2016-04-04 17:36:35, Info                  CSI    000028b5 [SR] Verify complete
2016-04-04 17:36:35, Info                  CSI    000028b6 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:36:35, Info                  CSI    000028b7 [SR] Beginning Verify and Repair transaction
2016-04-04 17:36:42, Info                  CSI    000028b9 [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:47, Info                  CSI    00002919 [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:47, Info                  CSI    0000291a [SR] This component was referenced by [l:78]"Microsoft-Windows-TabletPC-Package~31bf3856ad364e35~x86~~10.0.10586.0.TabletPC"
2016-04-04 17:36:47, Info                  CSI    0000291d [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:20]"Math Input Panel.lnk"; source file in store is also corrupted
2016-04-04 17:36:48, Info                  CSI    00002930 [SR] Verify complete
2016-04-04 17:36:49, Info                  CSI    00002931 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:36:49, Info                  CSI    00002932 [SR] Beginning Verify and Repair transaction
2016-04-04 17:36:54, Info                  CSI    00002934 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:56, Info                  CSI    00002939 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:36:56, Info                  CSI    0000293a [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv-Deployment"
2016-04-04 17:36:56, Info                  CSI    0000293d [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:29]"Remote Desktop Connection.lnk"; source file in store is also corrupted
2016-04-04 17:37:05, Info                  CSI    000029bf [SR] Verify complete
2016-04-04 17:37:05, Info                  CSI    000029c0 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:37:05, Info                  CSI    000029c1 [SR] Beginning Verify and Repair transaction
2016-04-04 17:37:21, Info                  CSI    00002a32 [SR] Verify complete
2016-04-04 17:37:21, Info                  CSI    00002a33 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:37:21, Info                  CSI    00002a34 [SR] Beginning Verify and Repair transaction
2016-04-04 17:37:23, Info                  CSI    00002a36 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:37:38, Info                  CSI    00002a91 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:37:38, Info                  CSI    00002a92 [SR] This component was referenced by [l:77]"Package_982_for_KB3140768~31bf3856ad364e35~x86~~10.0.1.3.3140768-2137_neutral"
2016-04-04 17:37:38, Info                  CSI    00002a93 [SR] This component was referenced by [l:77]"Package_970_for_KB3140743~31bf3856ad364e35~x86~~10.0.1.5.3140743-1723_neutral"
2016-04-04 17:37:38, Info                  CSI    00002a96 [SR] Could not reproject corrupted file [l:78 ml:79]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC"\[l:19]"Windows Journal.lnk"; source file in store is also corrupted
2016-04-04 17:37:40, Info                  CSI    00002ab1 [SR] Verify complete
2016-04-04 17:37:40, Info                  CSI    00002ab2 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:37:40, Info                  CSI    00002ab3 [SR] Beginning Verify and Repair transaction
2016-04-04 17:37:51, Info                  CSI    00002b1f [SR] Verify complete
2016-04-04 17:37:51, Info                  CSI    00002b20 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:37:51, Info                  CSI    00002b21 [SR] Beginning Verify and Repair transaction
2016-04-04 17:38:10, Info                  CSI    00002b9f [SR] Verify complete
2016-04-04 17:38:10, Info                  CSI    00002ba0 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:38:10, Info                  CSI    00002ba1 [SR] Beginning Verify and Repair transaction
2016-04-04 17:38:24, Info                  CSI    00002c1c [SR] Verify complete
2016-04-04 17:38:24, Info                  CSI    00002c1d [SR] Verifying 100 (0x00000064) components
2016-04-04 17:38:24, Info                  CSI    00002c1e [SR] Beginning Verify and Repair transaction
2016-04-04 17:38:35, Info                  CSI    00002c98 [SR] Verify complete
2016-04-04 17:38:35, Info                  CSI    00002c99 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:38:35, Info                  CSI    00002c9a [SR] Beginning Verify and Repair transaction
2016-04-04 17:38:44, Info                  CSI    00002d0b [SR] Verify complete
2016-04-04 17:38:44, Info                  CSI    00002d0c [SR] Verifying 100 (0x00000064) components
2016-04-04 17:38:44, Info                  CSI    00002d0d [SR] Beginning Verify and Repair transaction
2016-04-04 17:38:54, Info                  CSI    00002d77 [SR] Verify complete
2016-04-04 17:38:54, Info                  CSI    00002d78 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:38:54, Info                  CSI    00002d79 [SR] Beginning Verify and Repair transaction
2016-04-04 17:39:10, Info                  CSI    00002de5 [SR] Verify complete
2016-04-04 17:39:11, Info                  CSI    00002de6 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:39:11, Info                  CSI    00002de7 [SR] Beginning Verify and Repair transaction
2016-04-04 17:39:23, Info                  CSI    00002de9 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:39:27, Info                  CSI    00002e45 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:39:27, Info                  CSI    00002e46 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:39:28, Info                  CSI    00002e49 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:11]"Wordpad.lnk"; source file in store is also corrupted
2016-04-04 17:39:28, Info                  CSI    00002e58 [SR] Verify complete
2016-04-04 17:39:29, Info                  CSI    00002e59 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:39:29, Info                  CSI    00002e5a [SR] Beginning Verify and Repair transaction
2016-04-04 17:39:34, Info                  CSI    00002e5c [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:39:46, Info                  CSI    00002eba [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:39:46, Info                  CSI    00002ebb [SR] This component was referenced by [l:108]"Microsoft-Windows-Xps-Foundation-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Xps-Foundation-Xps-Viewer"
2016-04-04 17:39:47, Info                  CSI    00002ebe [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:14]"XPS Viewer.lnk"; source file in store is also corrupted
2016-04-04 17:39:48, Info                  CSI    00002eda [SR] Verify complete
2016-04-04 17:39:48, Info                  CSI    00002edb [SR] Verifying 100 (0x00000064) components
2016-04-04 17:39:48, Info                  CSI    00002edc [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:07, Info                  CSI    00002fdb [SR] Verify complete
2016-04-04 17:40:07, Info                  CSI    00002fdc [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:07, Info                  CSI    00002fdd [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:20, Info                  CSI    0000306a [SR] Verify complete
2016-04-04 17:40:20, Info                  CSI    0000306b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:20, Info                  CSI    0000306c [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:31, Info                  CSI    000030d8 [SR] Verify complete
2016-04-04 17:40:31, Info                  CSI    000030d9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:31, Info                  CSI    000030da [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:40, Info                  CSI    00003140 [SR] Verify complete
2016-04-04 17:40:40, Info                  CSI    00003141 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:40, Info                  CSI    00003142 [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:51, Info                  CSI    000031a8 [SR] Verify complete
2016-04-04 17:40:51, Info                  CSI    000031a9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:51, Info                  CSI    000031aa [SR] Beginning Verify and Repair transaction
2016-04-04 17:40:58, Info                  CSI    00003210 [SR] Verify complete
2016-04-04 17:40:58, Info                  CSI    00003211 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:40:58, Info                  CSI    00003212 [SR] Beginning Verify and Repair transaction
2016-04-04 17:41:09, Info                  CSI    0000327a [SR] Verify complete
2016-04-04 17:41:09, Info                  CSI    0000327b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:41:09, Info                  CSI    0000327c [SR] Beginning Verify and Repair transaction
2016-04-04 17:41:22, Info                  CSI    00003319 [SR] Verify complete
2016-04-04 17:41:23, Info                  CSI    0000331a [SR] Verifying 100 (0x00000064) components
2016-04-04 17:41:23, Info                  CSI    0000331b [SR] Beginning Verify and Repair transaction
2016-04-04 17:41:32, Info                  CSI    00003381 [SR] Verify complete
2016-04-04 17:41:32, Info                  CSI    00003382 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:41:32, Info                  CSI    00003383 [SR] Beginning Verify and Repair transaction
2016-04-04 17:41:32, Info                  CSI    00003385 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:41:46, Info                  CSI    00003397 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:41:46, Info                  CSI    00003398 [SR] This component was referenced by [l:121]"Microsoft-Windows-Network-Security-MPSSVC-net-Package~31bf3856ad364e35~x86~~10.0.10586.0.ce2174d5653b70aa9d5da20c715f3e8e"
2016-04-04 17:41:46, Info                  CSI    0000339b [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:43]"Windows Firewall with Advanced Security.lnk"; source file in store is also corrupted
2016-04-04 17:41:49, Info                  CSI    000033fa [SR] Verify complete
2016-04-04 17:41:49, Info                  CSI    000033fb [SR] Verifying 100 (0x00000064) components
2016-04-04 17:41:49, Info                  CSI    000033fc [SR] Beginning Verify and Repair transaction
2016-04-04 17:42:06, Info                  CSI    00003461 [SR] Verify complete
2016-04-04 17:42:06, Info                  CSI    00003462 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:42:06, Info                  CSI    00003463 [SR] Beginning Verify and Repair transaction
2016-04-04 17:42:13, Info                  CSI    000034c8 [SR] Verify complete
2016-04-04 17:42:13, Info                  CSI    000034c9 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:42:13, Info                  CSI    000034ca [SR] Beginning Verify and Repair transaction
2016-04-04 17:42:15, Info                  CSI    000034cc [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:42:20, Info                  CSI    00003522 [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:42:20, Info                  CSI    00003523 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:42:20, Info                  CSI    00003526 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:18]"Task Scheduler.lnk"; source file in store is also corrupted
2016-04-04 17:42:21, Info                  CSI    0000353a [SR] Verify complete
2016-04-04 17:42:21, Info                  CSI    0000353b [SR] Verifying 100 (0x00000064) components
2016-04-04 17:42:21, Info                  CSI    0000353c [SR] Beginning Verify and Repair transaction
2016-04-04 17:42:35, Info                  CSI    000035a1 [SR] Verify complete
2016-04-04 17:42:35, Info                  CSI    000035a2 [SR] Verifying 100 (0x00000064) components
2016-04-04 17:42:35, Info                  CSI    000035a3 [SR] Beginning Verify and Repair transaction
2016-04-04 17:42:42, Info                  CSI    000035a5 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:42:53, Info                  CSI    000035e4 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:42:53, Info                  CSI    000035e5 [SR] This component was referenced by [l:92]"Windows-Defender-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Windows-Defender-AppLayer"
2016-04-04 17:42:53, Info                  CSI    000035e8 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Windows Defender.lnk"; source file in store is also corrupted
2016-04-04 17:42:55, Info                  CSI    0000361e [SR] Verify complete
2016-04-04 17:42:55, Info                  CSI    0000361f [SR] Verifying 100 (0x00000064) components
2016-04-04 17:42:55, Info                  CSI    00003620 [SR] Beginning Verify and Repair transaction
2016-04-04 17:43:03, Info                  CSI    00003688 [SR] Verify complete
2016-04-04 17:43:03, Info                  CSI    00003689 [SR] Verifying 2 components
2016-04-04 17:43:03, Info                  CSI    0000368a [SR] Beginning Verify and Repair transaction
2016-04-04 17:43:03, Info                  CSI    0000368d [SR] Verify complete
2016-04-04 17:43:03, Info                  CSI    0000368e [SR] Repairing 30 (0x0000001e) components
2016-04-04 17:43:03, Info                  CSI    0000368f [SR] Beginning Verify and Repair transaction
2016-04-04 17:43:03, Info                  CSI    00003691 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:03, Info                  CSI    00003693 [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    00003695 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    00003697 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    00003699 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    0000369b [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    0000369d [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    0000369f [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:04, Info                  CSI    000036a1 [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036a3 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:43:05, Info                  CSI    000036a5 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036a7 [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036a9 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036ab [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036ad [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:05, Info                  CSI    000036af [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036b1 [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036b3 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036b5 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036b7 [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036b9 [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036bb [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036bd [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036bf [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036c1 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:06, Info                  CSI    000036c3 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:43:07, Info                  CSI    000036c5 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036c7 [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036c9 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036cb [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036cd [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036d0 [SR] Cannot repair member file [l:16]"Task Manager.lnk" of Microsoft-Windows-AdvancedTaskManager, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036d1 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:07, Info                  CSI    000036d4 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:16]"Task Manager.lnk"; source file in store is also corrupted
2016-04-04 17:43:07, Info                  CSI    000036d8 [SR] Cannot repair member file [l:22]"Component Services.lnk" of Microsoft-Windows-COM-ComPlus-Admin-CompSvcLink, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036d9 [SR] This component was referenced by [l:159]"Microsoft-Windows-Client-Features-Package-AutoMerged-com~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-com-Deployment"
2016-04-04 17:43:07, Info                  CSI    000036dc [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"Component Services.lnk"; source file in store is also corrupted
2016-04-04 17:43:07, Info                  CSI    000036e0 [SR] Cannot repair member file [l:21]"ODBC Data Sources.lnk" of Microsoft-Windows-Microsoft-Data-Access-Components-(MDAC)-ODBC-Administrator, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036e1 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-04-04 17:43:07, Info                  CSI    000036e4 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:21]"ODBC Data Sources.lnk"; source file in store is also corrupted
2016-04-04 17:43:07, Info                  CSI    000036e8 [SR] Cannot repair member file [l:9]"Paint.lnk" of Microsoft-Windows-mspaint, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:07, Info                  CSI    000036e9 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:43:08, Info                  CSI    000036ec [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:9]"Paint.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    000036f0 [SR] Cannot repair member file [l:24]"Windows Fax and Scan.lnk" of Microsoft-Windows-Fax-Client-Applications, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    000036f1 [SR] This component was referenced by [l:105]"Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~x86~~10.0.10586.0.FaxServicesClientPackage"
2016-04-04 17:43:08, Info                  CSI    000036f4 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Fax and Scan.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    000036f8 [SR] Cannot repair member file [l:43]"Windows Firewall with Advanced Security.lnk" of Networking-MPSSVC-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    000036f9 [SR] This component was referenced by [l:121]"Microsoft-Windows-Network-Security-MPSSVC-net-Package~31bf3856ad364e35~x86~~10.0.10586.0.ce2174d5653b70aa9d5da20c715f3e8e"
2016-04-04 17:43:08, Info                  CSI    000036fc [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:43]"Windows Firewall with Advanced Security.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003700 [SR] Cannot repair member file [l:24]"System Configuration.lnk" of Microsoft-Windows-MsConfig-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003701 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:08, Info                  CSI    00003704 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:24]"System Configuration.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003708 [SR] Cannot repair member file [l:12]"services.lnk" of Microsoft-Windows-ServicesSnapIn, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003709 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:43:08, Info                  CSI    0000370c [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:12]"services.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003710 [SR] Cannot repair member file [l:18]"Task Scheduler.lnk" of TaskSchedulerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003711 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:43:08, Info                  CSI    00003714 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:18]"Task Scheduler.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003718 [SR] Cannot repair member file [l:16]"Event Viewer.lnk" of EventViewerSettings, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003719 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:43:08, Info                  CSI    0000371c [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Event Viewer.lnk"; source file in store is also corrupted 
2016-04-04 17:43:08, Info                  CSI    00003720 [SR] Cannot repair member file [l:23]"Computer Management.lnk" of Microsoft-Windows-ComputerManagementSnapin, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003721 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-admin~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-admin-Deployment"
2016-04-04 17:43:08, Info                  CSI    00003724 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Computer Management.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003728 [SR] Cannot repair member file [l:16]"Disk Cleanup.lnk" of Microsoft-Windows-cleanmgr, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003729 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:43:08, Info                  CSI    0000372c [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:16]"Disk Cleanup.lnk"; source file in store is also corrupted 
2016-04-04 17:43:08, Info                  CSI    00003730 [SR] Cannot repair member file [l:22]"System Information.lnk" of Microsoft-Windows-MSInfo32-Exe, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003731 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:08, Info                  CSI    00003734 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:22]"System Information.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003738 [SR] Cannot repair member file [l:16]"Sticky Notes.lnk" of Microsoft-Windows-StickyNotes-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003739 [SR] This component was referenced by [l:84]"Microsoft-Windows-StickyNotes-Package~31bf3856ad364e35~x86~~10.0.10586.0.StickyNotes"
2016-04-04 17:43:08, Info                  CSI    0000373c [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:16]"Sticky Notes.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003740 [SR] Cannot repair member file [l:14]"XPS Viewer.lnk" of Microsoft-Windows-XPSReachViewer, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003741 [SR] This component was referenced by [l:108]"Microsoft-Windows-Xps-Foundation-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Xps-Foundation-Xps-Viewer"
2016-04-04 17:43:08, Info                  CSI    00003744 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:14]"XPS Viewer.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003748 [SR] Cannot repair member file [l:17]"Character Map.lnk" of Microsoft-Windows-charmap, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003749 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:43:08, Info                  CSI    0000374c [SR] Could not reproject corrupted file [l:81 ml:82]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools"\[l:17]"Character Map.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003750 [SR] Cannot repair member file [l:24]"Windows Media Player.lnk" of Microsoft-Windows-MediaPlayer-Shortcut, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003751 [SR] This component was referenced by [l:91]"Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~x86~~10.0.10586.0.WindowsMediaPlayer"
2016-04-04 17:43:08, Info                  CSI    00003754 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:24]"Windows Media Player.lnk"; source file in store is also corrupted
2016-04-04 17:43:08, Info                  CSI    00003758 [SR] Cannot repair member file [l:20]"Math Input Panel.lnk" of Microsoft-Windows-TabletPC-MathInputPanel, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:08, Info                  CSI    00003759 [SR] This component was referenced by [l:78]"Microsoft-Windows-TabletPC-Package~31bf3856ad364e35~x86~~10.0.10586.0.TabletPC"
2016-04-04 17:43:09, Info                  CSI    0000375c [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:20]"Math Input Panel.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003760 [SR] Cannot repair member file [l:18]"Steps Recorder.lnk" of Microsoft-Windows-Application-Compatibility-ProblemStepsRecorder, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    00003761 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:09, Info                  CSI    00003764 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:18]"Steps Recorder.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003768 [SR] Cannot repair member file [l:19]"iSCSI Initiator.lnk" of Microsoft-Windows-iSCSI_Initiator_UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:43:09, Info                  CSI    00003769 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-drivers~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-drivers-Deployment"
2016-04-04 17:43:09, Info                  CSI    0000376c [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:19]"iSCSI Initiator.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003770 [SR] Cannot repair member file [l:27]"Memory Diagnostics Tool.lnk" of Microsoft-Windows-Memory-Diagnostic-Schedule, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    00003771 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:09, Info                  CSI    00003774 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:27]"Memory Diagnostics Tool.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003778 [SR] Cannot repair member file [l:17]"Snipping Tool.lnk" of Microsoft-Windows-SnippingTool-App, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    00003779 [SR] This component was referenced by [l:86]"Microsoft-Windows-SnippingTool-Package~31bf3856ad364e35~x86~~10.0.10586.0.SnippingTool"
2016-04-04 17:43:09, Info                  CSI    0000377c [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:17]"Snipping Tool.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003780 [SR] Cannot repair member file [l:22]"Speech Recognition.lnk" of Microsoft-Windows-Speech-UserExperience, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    00003781 [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-enduser~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-enduser-Deployment"
2016-04-04 17:43:09, Info                  CSI    00003784 [SR] Could not reproject corrupted file [l:70 ml:71]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility"\[l:22]"Speech Recognition.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003789 [SR] Cannot repair member file [l:29]"Remote Desktop Connection.lnk" of Microsoft-Windows-TerminalServices-TerminalServicesClient, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    0000378a [SR] This component was referenced by [l:167]"Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-termsrv-Deployment"
2016-04-04 17:43:09, Info                  CSI    0000378d [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:29]"Remote Desktop Connection.lnk"; source file in store is also corrupted
2016-04-04 17:43:09, Info                  CSI    00003791 [SR] Cannot repair member file [l:11]"Wordpad.lnk" of Microsoft-Windows-wordpad, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:09, Info                  CSI    00003792 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:43:10, Info                  CSI    00003795 [SR] Could not reproject corrupted file [l:68 ml:69]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories"\[l:11]"Wordpad.lnk"; source file in store is also corrupted
2016-04-04 17:43:10, Info                  CSI    0000379a [SR] Cannot repair member file [l:10]"dfrgui.lnk" of Microsoft-Windows-Defrag-AdminUI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:10, Info                  CSI    0000379b [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:10, Info                  CSI    0000379e [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:10]"dfrgui.lnk"; source file in store is also corrupted
2016-04-04 17:43:10, Info                  CSI    000037a2 [SR] Cannot repair member file [l:20]"Resource Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:10, Info                  CSI    000037a3 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:10, Info                  CSI    000037a5 [SR] Cannot repair member file [l:23]"Performance Monitor.lnk" of Microsoft-Windows-PerformanceToolsGui, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:10, Info                  CSI    000037a6 [SR] This component was referenced by [l:161]"Microsoft-Windows-Client-Features-Package-AutoMerged-base~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-base-Deployment"
2016-04-04 17:43:10, Info                  CSI    000037a9 [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:20]"Resource Monitor.lnk"; source file in store is also corrupted
2016-04-04 17:43:10, Info                  CSI    000037ac [SR] Could not reproject corrupted file [l:77 ml:78]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools"\[l:23]"Performance Monitor.lnk"; source file in store is also corrupted
2016-04-04 17:43:10, Info                  CSI    000037b0 [SR] Cannot repair member file [l:20]"Default Programs.lnk" of Microsoft-Windows-sud-link, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:10, Info                  CSI    000037b1 [SR] This component was referenced by [l:163]"Microsoft-Windows-Client-Features-Package-AutoMerged-shell~31bf3856ad364e35~x86~~10.0.10586.0.Microsoft-Windows-Client-Features-Package-AutoMerged-shell-Deployment"
2016-04-04 17:43:10, Info                  CSI    000037b4 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Default Programs.lnk"; source file in store is also corrupted
2016-04-04 17:43:10, Info                  CSI    000037b8 [SR] Cannot repair member file [l:19]"Windows Journal.lnk" of Microsoft-Windows-TabletPC-Journal, version 10.0.10586.122, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch 
2016-04-04 17:43:10, Info                  CSI    000037b9 [SR] This component was referenced by [l:77]"Package_982_for_KB3140768~31bf3856ad364e35~x86~~10.0.1.3.3140768-2137_neutral"
2016-04-04 17:43:10, Info                  CSI    000037ba [SR] This component was referenced by [l:77]"Package_970_for_KB3140743~31bf3856ad364e35~x86~~10.0.1.5.3140743-1723_neutral"
2016-04-04 17:43:10, Info                  CSI    000037bd [SR] Could not reproject corrupted file [l:78 ml:79]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC"\[l:19]"Windows Journal.lnk"; source file in store is also corrupted
2016-04-04 17:43:11, Info                  CSI    000037c2 [SR] Cannot repair member file [l:20]"Windows Defender.lnk" of Windows-Defender-UI, version 10.0.10586.0, arch x86, nonSxS, pkt {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2016-04-04 17:43:11, Info                  CSI    000037c3 [SR] This component was referenced by [l:92]"Windows-Defender-Client-Package~31bf3856ad364e35~x86~~10.0.10586.0.Windows-Defender-AppLayer"
2016-04-04 17:43:11, Info                  CSI    000037c6 [SR] Could not reproject corrupted file [l:69 ml:70]"\??\C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools"\[l:20]"Windows Defender.lnk"; source file in store is also corrupted
2016-04-04 17:43:11, Info                  CSI    000037c8 [SR] Repair complete
2016-04-04 17:43:11, Info                  CSI    000037c9 [SR] Committing transaction
2016-04-04 17:43:12, Info                  CSI    000037ce [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired

Warlord711 · 06.04.2016, 10:34

Hmm, zeigt zwar Fehler aber nicht unbedingt die, die man erwartet.

Bitte Rechner neustarten und dann:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

cmd: Dism.exe /online /Cleanup-Image /StartComponentCleanup&sfc/scannow&Dism /Online /Cleanup-Image /RestoreHealth&sfc/scannow

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Das wird eine Weile dauern. Danach den Rechner nochmal neustarten und die Schritte in http://www.trojaner-board.de/177107-...ml#post1576292 nochmal durchführen inkl. Log Posten.

Windows Explorer schließt sich ständig

Plagegeister aller Art und deren Bekämpfung: Windows Explorer schließt sich ständig