| |
| |||||||
Log-Analyse und Auswertung: Startfenster.de autotyped in DiscordWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
Gestern, 15:07
| #1 |
| |  Startfenster.de autotyped in Discord Ich habe mir wohl versehentlich mit einem inkorrekten VLC Media Player Download Startfenster.de eingefangen. Ich habe sowohl den schlechten VLC Install, als auch Startfenster.de deinstalliert, mache mir aber Gedanken ob das reicht, da ich beim Starten des PC's trotzdem kurz meinen Mauszeiger nicht bewegen konnte und als es dann wieder ging und ich Discord geöffnet hab, hat sich automatisch in den offenen Chat "startfenster.de" geschrieben und selbstständig abgeschickt. Ich würd eine komplette Neuinstallation wenn möglich gerne vermeiden wenn es geht, und wende mich dementsprechend ans Forum. Danke! Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 27.11.2025
Scan-Zeit: 14:35
Protokolldatei: ff7f3192-cb95-11f0-87cc-d843aebf4af9.json
-Softwaredaten-
Version: 5.4.4.225
Komponentenversion: 145.0.5428
Version des Aktualisierungspakets: 1.0.105259
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 11 (Build 26200.7171)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-5B7DNVS\****
-Scan-Übersicht-
Scan-Typ: Benutzerdefinierter Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 487882
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 13 Min., 4 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
durchgeführt von ***** (Administrator) auf DESKTOP-5B7DNVS (Micro-Star International Co., L
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-11-2025
durchgeführt von ***** (27-11-2025 15:03:07)
Gestartet von C:\Users\*****\Desktop
Microsoft Windows 11 Home Version 25H2 26200.7171 (X64) (2025-10-13 17:06:31)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-4252590687-447299869-1890298697-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4252590687-447299869-1890298697-503 - Limited - Disabled)
Gast (S-1-5-21-4252590687-447299869-1890298697-501 - Limited - Disabled)
***** (S-1-5-21-4252590687-447299869-1890298697-1001 - Administrator - Enabled) => C:\Users\*****
WDAGUtilityAccount (S-1-5-21-4252590687-447299869-1890298697-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.06.24.2226 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{10CFBFB2-C0A2-49CA-81BA-CF1B999D06FD}) (Version: 25.20.25315.0337 - Advanced Micro Devices, Inc.)
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.53 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.39.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 25.9.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{39215ab4-d0e3-42bf-841b-fc5b04cda78d}) (Version: 7.06.24.2226 - Advanced Micro Devices, Inc.) Hidden
calibre 64bit (HKLM\...\{429F48B2-900F-4B4A-BC8A-2172EF35DC0B}) (Version: 8.13.0 - Kovid Goyal)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CLIP STUDIO 4.1.4 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 4.1.4 - CELSYS)
CLIP STUDIO PAINT 4.0.3 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 4.0.3 - CELSYS)
Discord (HKU\S-1-5-21-4252590687-447299869-1890298697-1001\...\Discord) (Version: 1.0.9211 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.0.0 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{38097d10-c2c5-437f-b9ef-2f5c5299df4f}) (Version: 13.566.0.6079 - Electronic Arts)
League of Legends (HKU\S-1-5-21-4252590687-447299869-1890298697-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 5.4.4.225 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.4.225 - Malwarebytes)
Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.13 (x64) (HKLM\...\{6CD2C0A9-55E7-4133-BC19-205CCF2B64C9}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.13 (x64) (HKLM\...\{BB5AC4BC-A263-43DA-A530-9CB56342D6B8}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.13 (x64) (HKLM\...\{C7FB4EEE-D481-4AC1-B113-120A9124FE50}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.19328.20244 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 142.0.3595.94 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.206.1021.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.13 (x64) (HKLM\...\{852F821B-340A-4473-BA94-8FAFD5AFFE85}) (Version: 64.52.27986 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.13 (x64) (HKLM-x32\...\{e882eb81-b18c-4676-88f0-9a6ea9db6090}) (Version: 8.0.13.34517 - Microsoft Corporation)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 145.0.2 (x64 de)) (Version: 145.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 143.0.4 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19328.20106 - Microsoft Corporation) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9862.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.75.324.2025 - Realtek)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.4.11-1 - Wacom Technology Corp.)
Packages:
=========
@{MicrosoftWindows.58683691.InpApp_1000.26100.6899.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-11-12] (Microsoft Windows)
Ink.Handwriting.de-DE.1.0 -> C:\Program Files\WindowsApps\microsoft.ink.handwriting.de-de.1.0_0.850.1840.0_x64__8wekyb3d8bbwe [2025-10-13] (Microsoft Corporation)
Ink.Handwriting.de-DE.1.0 -> C:\Program Files\WindowsApps\microsoft.ink.handwriting.de-de.1.0_0.850.1840.0_x86__8wekyb3d8bbwe [2025-10-13] (Microsoft Corporation)
Ink.Handwriting.Main.de-DE.1.0 -> C:\Program Files\WindowsApps\Microsoft.Ink.Handwriting.Main.de-DE.1.0_0.850.1840.0_x64__8wekyb3d8bbwe [2025-10-13] (Microsoft Corporation)
Local AI Manager for Microsoft 365 -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2025-11-22] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2025-11-27] ()
Microsoft 365 companion apps -> C:\Program Files\WindowsApps\Microsoft.M365Companions_2.2510.22000.0_x64__8wekyb3d8bbwe [2025-11-04] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2025-11-22] ()
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2025-11-22] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.53.374.0_x64__dt26b99r8h8gj [2025-10-13] (Realtek Semiconductor Corp)
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2025.1.0.0_x64__v826wp6bftszj [2025-10-13] (Charles Milette) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-11-12] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-11-12] (Microsoft Windows)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-27] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.206.1021.0003\FileSyncShell64.dll [2025-11-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-11-27] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\*****\Downloads\551.23-desktop-win10-win11-64bit-international-dch-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\551.76-desktop-win10-win11-64bit-international-dch-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\551.86-desktop-win10-win11-64bit-international-dch-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\amd-software-adrenalin-edition-24.12.1-minimalsetup-241204_web.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\amd_chipset_software_6.10.17.152.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\blender-4.0.2-windows-x64.msi:MBAM.Zone.Identifier [113]
AlternateDataStreams: C:\Users\*****\Downloads\EAappInstaller(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\EAappInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\GeForceNOW-release.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\Install League of Legends euw(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\Install League of Legends euw(2).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\Install League of Legends euw.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\Install League of Legends na.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\SteelSeriesGG76.0.0Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x64(2).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x64.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x86(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x86(2).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\VC_redist.x86.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\WhatsApp Installer.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\whql-amd-software-adrenalin-edition-24.12.1-win10-win11-dec-rdna.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\windowsdesktop-runtime-6.0.27-win-x64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\windowsdesktop-runtime-6.0.27-win-x64.exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\windowsdesktop-runtime-7.0.3-win-x64(1).exe:BDU [0]
AlternateDataStreams: C:\Users\*****\Downloads\windowsdesktop-runtime-7.0.3-win-x64.exe:BDU [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSVC => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2025-11-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-11-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-11-02] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-4252590687-447299869-1890298697-1001\...\sharepoint.com -> hxxps://univie365-files.sharepoint.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2024-04-01 08:26 - 2024-04-01 08:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
DNS Servers: 10.0.0.138
ist aktiviert.
Network Binding:
=============
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt640x64.sys
WLAN: RZ616 Wi-Fi 6E 160MHz -> mtkwl6ex.sys
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4252590687-447299869-1890298697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\*****\Documents\BioWare\Dragon Age The Veilguard\Screenshots\DragonAgeScreenshotWin32__2025-01-07_001.png
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{98A13FAC-DB03-48E8-923A-F04EA9E46E33}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9E73F5D5-7B56-42C4-B2BB-556699047F89}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DD4B575D-B413-4ABC-AC91-9D169FF28D35}] => (Allow) E:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2319A06E-3BE6-4E08-B68C-DAAB632A3D92}] => (Allow) E:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{72E52601-A805-47EA-BF3A-C92460CAA6B0}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6475A955-AAC8-4C69-869C-BBFACC326425}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1D434774-6FF7-4D6F-B33A-6D1272FA1B3D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DE66F4E9-77FB-48C5-9441-66A7417E0E41}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{30220341-BC02-45ED-8FD3-73EB61EB63A5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{19490C76-E7FC-4E15-8A01-BD0629E070E4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2E8D8600-AB18-42B2-8B0D-C18F60628892}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C6401078-C1AB-41FE-B2F7-A7C2662D10AF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{300C3E27-DE35-4802-8A18-780A3B063F3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{26DB2180-BD50-4DA9-840A-780BB632AA3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A199E682-AE7F-4BAA-8896-37052AE7CE89}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F34AB963-435D-4D7A-896A-C30598BA9D93}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F7F0465B-DD7E-4779-86F1-4D5A7A1B5086}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{A4E4E1FA-B8AD-4E4A-8659-F16EC6603D03}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{4E7A8E23-8E91-4BDC-97C6-99B31073B62A}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{B01EFA9E-3040-4F31-8B81-6EA9F219A287}] => (Block) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{629A663E-92C1-4955-A425-F2AAFD913E4D}] => (Block) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{371826D1-5369-43BC-8C51-839814AA9166}] => (Allow) C:\Users\*****\Desktop\steam.exe => Keine Datei
FirewallRules: [{872DF034-8911-4CA1-8BDF-04549B441B26}] => (Allow) C:\Users\*****\Desktop\steam.exe => Keine Datei
FirewallRules: [{AC47E43E-CCBB-4D38-906C-9FAC57F4D7A8}] => (Allow) C:\Users\*****\Desktop\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [{B385AD77-6EFB-4C2A-9E35-60CB62104E91}] => (Allow) C:\Users\*****\Desktop\bin\cef\cef.win7x64\steamwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{16EC073A-8911-4422-B73E-52CD36506E5B}E:\steam\steamapps\common\baldurs gate 3\bin\bg3.exe] => (Allow) E:\steam\steamapps\common\baldurs gate 3\bin\bg3.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{ED3DE2F0-1B86-44FB-8BCA-70B334007342}E:\steam\steamapps\common\baldurs gate 3\bin\bg3.exe] => (Allow) E:\steam\steamapps\common\baldurs gate 3\bin\bg3.exe (Larian Studios Games Ltd. -> )
FirewallRules: [TCP Query User{5324A5BC-FE07-474D-B4C2-015E68DF9E5A}E:\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) E:\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{90FA0B07-D901-4C80-98FC-114441E1E221}E:\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) E:\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{5FD506AC-4174-403D-BE64-A64711DF9D56}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{435B1F11-A18E-46BD-A90C-390EECD2AD5E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DE4FF631-48B2-4F7D-BA87-7B1349459E55}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C80FDF63-E399-4640-9E2D-6E47A1FDAA15}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4DC66A58-41B8-485D-A706-CDA0229AB2BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{466C685A-E202-4479-8C8A-5586D486BEB1}] => (Allow) E:\Steam\steamapps\common\Dispatch\Dispatch.exe (AdHoc Studio) [Datei ist nicht signiert]
FirewallRules: [{78352B78-2A6A-48EA-A222-52739DAE64C7}] => (Allow) E:\Steam\steamapps\common\Dispatch\Dispatch.exe (AdHoc Studio) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F576DD2F-C374-4ED6-9DA5-92335BEF5FF3}E:\steam\steamapps\common\dispatch\dispatch\binaries\win64\dispatch-win64-shipping.exe] => (Allow) E:\steam\steamapps\common\dispatch\dispatch\binaries\win64\dispatch-win64-shipping.exe (AdHoc Studio) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{4FA750CE-AA01-4A69-96E1-8CADE48D6213}E:\steam\steamapps\common\dispatch\dispatch\binaries\win64\dispatch-win64-shipping.exe] => (Allow) E:\steam\steamapps\common\dispatch\dispatch\binaries\win64\dispatch-win64-shipping.exe (AdHoc Studio) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{A5CAFB7F-5D54-478A-834B-171B91092759}E:\steam\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe] => (Allow) E:\steam\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{43877CD6-3567-4580-886B-951D18A03F29}E:\steam\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe] => (Allow) E:\steam\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [Datei ist nicht signiert]
FirewallRules: [{67A167A5-B539-4E16-8FFC-FCCA968DF19A}] => (Allow) E:\Steam\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
FirewallRules: [{5083B484-BB20-472E-9999-AA3CCFF6B2C4}] => (Allow) E:\Steam\steamapps\common\Guild Wars 2\Gw2-64.exe (ArenaNet, LLc -> ArenaNet)
==================== Wiederherstellungspunkte =========================
21-11-2025 10:11:34 Windows Update
24-11-2025 16:41:33 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (11/27/2025 02:22:36 PM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5
Error: (11/26/2025 09:34:10 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Error: (11/25/2025 06:33:41 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Error: (11/24/2025 06:33:41 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Error: (11/24/2025 04:41:25 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv; Beschreibung = Windows Update; Fehler = 0x81000101).
Error: (11/23/2025 07:51:04 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Error: (11/22/2025 08:55:14 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Error: (11/21/2025 06:33:41 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155
Systemfehler:
=============
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office Click-to-Run Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Realtek Audio Universal Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Wacom Professional Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD Provisioning Packages Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD Crash Defender Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/27/2025 02:21:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD External Events Utility" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/27/2025 02:09:21 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT-AUTORITÄT)
Description: Secure Boot CA/keys need to be updated. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:Micro-Star International Co., Ltd.;FirmwareManufacturer:American Megatrends International, LLC.;FirmwareVersion:1.H2;OEMModelBaseBoard:B650 GAMING PLUS WIFI (MS-7E26);OEMManufacturerName:Micro-Star International Co., Ltd.;OSArchitecture:amd64;
BucketId: 3bbd0cec99adc4bb5cf5430ea6e0d0875703ac694a87b325b593d82887741fed
BucketConfidenceLevel:
UpdateType: 0
HResult: 0
Error: (11/27/2025 11:18:42 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office Click-to-Run Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
================
Date: 2025-11-27 13:40:17
Description:
Microsoft Defender Antivirus śčåп ħąś ьэĕŋ şŧøφρеδ ъзƒőѓз çőмрłêτìòή.%ň %ţŞčдň ΪĎ:%в{9CDD1EC0-5AEF-4398-92BA-AE5EC5A27290}%ň %ŧŞčåη Ŧўρę:%вAntimalware%η %ŧŚĉàň Ρäґαм℮ŧéѓš:%ъSchnellüberprüfung%ñ %тЦśёѓ:%ъNT-AUTORITÄT\SYSTEM%π %τŠţõφ Яëąšбⁿ:%вŔР€ сóňйê¢τїøй ŗŭⁿδôẅñ
Date: 2025-11-25 15:12:19
Description:
Microsoft Defender Antivirus śčåп ħąś ьэĕŋ şŧøφρеδ ъзƒőѓз çőмрłêτìòή.%ň %ţŞčдň ΪĎ:%в{262709C1-6F85-4D40-96C4-99184E10A5A2}%ň %ŧŞčåη Ŧўρę:%вAntimalware%η %ŧŚĉàň Ρäґαм℮ŧéѓš:%ъSchnellüberprüfung%ñ %тЦśёѓ:%ъNT-AUTORITÄT\SYSTEM%π %τŠţõφ Яëąšбⁿ:%вŞċħęðùłėđ ŝ¢ǻй ẁąş ѕĸϊρφέđ веčаџŝĕ ťĥε łąşţ şϋς¢еşѕƒûļ şċаņ ẁäş ẁìţħϊή ťђè ļдšţ 7 ďªÿş
Date: 2025-11-24 14:22:28
Description:
Microsoft Defender Antivirus śčåп ħąś ьэĕŋ şŧøφρеδ ъзƒőѓз çőмрłêτìòή.%ň %ţŞčдň ΪĎ:%в{488B5435-D402-44CA-A30F-BF9168ED0992}%ň %ŧŞčåη Ŧўρę:%вAntimalware%η %ŧŚĉàň Ρäґαм℮ŧéѓš:%ъSchnellüberprüfung%ñ %тЦśёѓ:%ъNT-AUTORITÄT\SYSTEM%π %τŠţõφ Яëąšбⁿ:%вŞċħęðùłėđ ŝ¢ǻй ẁąş ѕĸϊρφέđ веčаџŝĕ ťĥε łąşţ şϋς¢еşѕƒûļ şċаņ ẁäş ẁìţħϊή ťђè ļдšţ 7 ďªÿş
Date: 2025-11-22 21:00:35
Description:
Microsoft Defender Antivirus śčåп ħąś ьэĕŋ şŧøφρеδ ъзƒőѓз çőмрłêτìòή.%ň %ţŞčдň ΪĎ:%в{23E5FC11-5B2A-4D61-8231-4ABA81DE602D}%ň %ŧŞčåη Ŧўρę:%вAntimalware%η %ŧŚĉàň Ρäґαм℮ŧéѓš:%ъSchnellüberprüfung%ñ %тЦśёѓ:%ъNT-AUTORITÄT\SYSTEM%π %τŠţõφ Яëąšбⁿ:%вŞċħęðùłėđ ŝ¢ǻй ẁąş ѕĸϊρφέđ веčаџŝĕ ťĥε łąşţ şϋς¢еşѕƒûļ şċаņ ẁäş ẁìţħϊή ťђè ļдšţ 7 ďªÿş
Date: 2025-11-21 14:18:32
Description:
Microsoft Defender Antivirus śčåп ħąś ьэĕŋ şŧøφρеδ ъзƒőѓз çőмрłêτìòή.%ň %ţŞčдň ΪĎ:%в{9B783103-53F1-485D-9D28-94B030BF34F7}%ň %ŧŞčåη Ŧўρę:%вAntimalware%η %ŧŚĉàň Ρäґαм℮ŧéѓš:%ъSchnellüberprüfung%ñ %тЦśёѓ:%ъNT-AUTORITÄT\SYSTEM%π %τŠţõφ Яëąšбⁿ:%вŞċħęðùłėđ ŝ¢ǻй ẁąş ѕĸϊρφέđ веčаџŝĕ ťĥε łąşţ şϋς¢еşѕƒûļ şċаņ ẁäş ẁìţħϊή ťђè ļдšţ 7 ďªÿş
Event[0]
Date: 2025-10-23 08:32:27
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Security Intelligence aufgetreten. Es wird versucht, zu einer vorherigen Version zurückzukehren.
Security Intelligence versucht: Aktuell
Fehlercode: 0x80501102
Fehlerbeschreibung: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security Intelligence-Version: 1.439.362.0;1.439.362.0
Modulversion: 1.1.25090.3001
Date: 2025-10-14 22:15:46
Description:
Fehler des Microsoft Defender Antivirus-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x8007043c
Fehlerbeschreibung: Der Dienst kann nicht im abgesicherten Modus gestartet werden.
Ursache: Die Antischadsoft-Sicherheitsfunktion wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.
CodeIntegrity:
===============
Date: 2025-11-27 14:22:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2025-11-27 11:41:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.25100.9008-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Microsoft signing level requirements.
Date: 2025-11-27 11:40:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends International, LLC. 1.H2 11/21/2024
Hauptplatine: Micro-Star International Co., Ltd. B650 GAMING PLUS WIFI (MS-7E26)
Prozessor: AMD Ryzen 5 7600X 6-Core Processor
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 31849.99 MB
Verfügbarer physikalischer RAM: 22881.45 MB
Summe virtueller Speicher: 33897.99 MB
Verfügbarer virtueller Speicher: 23303.78 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.08 GB) (Free:683.4 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive d: (System-reserviert) (Fixed) (Total:0.05 GB) (Free:0.04 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive e: (Volume) (Fixed) (Total:1863.01 GB) (Free:894.26 GB) (Model: Samsung SSD 870 EVO 2TB) NTFS
\\?\Volume{e9e6433a-5d2b-42dd-830d-a6a2b57abfce}\ () (Fixed) (Total:0.77 GB) (Free:0.12 GB) NTFS
\\?\Volume{ea3f6075-a82b-11f0-89ac-d843aebf4af9}\ () (Fixed) (Total:0.51 GB) (Free:0.5 GB) NTFS
\\?\Volume{ea3f6074-a82b-11f0-89ac-d843aebf4af9}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CDA99928)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: A81B05FE)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
| Themen zu Startfenster.de autotyped in Discord |
| .dll, administrator, antivirus, browser, defender, explorer, file, firefox, firewall, geforce, helper, home, internet, internet explorer, neustart, programme, registry, security, starten, svchost.exe, tcp, temp, udp, updates, windows |
Baum-Darstellung