Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
AVir meldet 'HEUR/HTML.Malware'

AVir meldet 'HEUR/HTML.Malware'


Plagegeister aller Art und deren Bekämpfung: AVir meldet 'HEUR/HTML.Malware'

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 13.09.2010, 13:15   #3
sontaya
 
AVir meldet 'HEUR/HTML.Malware' - Standard

AVir meldet 'HEUR/HTML.Malware'


So, danke schonmal für die Hilfe. ;-)

Random Logfile (Log.txt)
[code]
RSIT Logfile:
Code:
ATTFilter
Logfile of random's system information tool 1.08 (written by random/random)
Run by Sonja at 2010-09-13 13:55:36
Microsoft Windows 7 Starter  
System drive C: has 42 GB (61%) free of 69 GB
Total RAM: 1014 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:56:09, on 13.09.2010
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\windows\system32\Dwm.exe
C:\windows\system32\taskhost.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskeng.exe
C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\windows\system32\igfxext.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\samsung\SAMSUN~2\SUPCLI~1.EXE
C:\Users\Sonja\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\928J4AG9\RSIT[1].exe
C:\Program Files\trend micro\Sonja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SBCONVERT - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O2 - BHO: SearchPredictObj Class - {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - C:\PROGRA~1\SEARCH~1\SEARCH~1.DLL
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: GrabberObj Class - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\SPEEDB~1\Toolbar\grabber.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: SpeedBit Video Downloader - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [SpeedBitVideoAccelerator] C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - Global Startup: Mozilla Thunderbird.lnk = C:\Program Files\Mozilla Thunderbird\thunderbird.exe
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Sonja\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe

--
End of file - 8439 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}]
SBCONVERT Class - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll [2010-09-11 2447360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{389943B0-C3A2-4E69-82CB-8596A84CB3DC}]
SearchPredictObj Class - C:\PROGRA~1\SEARCH~1\SEARCH~1.DLL [2010-04-14 443880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2009-11-10 433648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID-Anmelde-Hilfsprogramm - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-10 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-11-10 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-11-10 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}]
GrabberObj Class - C:\PROGRA~1\SPEEDB~1\Toolbar\grabber.dll [2010-09-11 185944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-10 256112]
{0329E7D6-6F54-462D-93F6-F5C3118BADF2} - SpeedBit Video Downloader - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll [2010-09-11 2447360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-08-25 7719456]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-09-12 1557800]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\windows\system32\igfxpers.exe [2009-09-23 150552]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpeedBitVideoAccelerator"=C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe [2010-09-11 1607272]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Mozilla Thunderbird.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-13 13:55:37 ----D---- C:\Program Files\trend micro
2010-09-13 13:55:36 ----D---- C:\rsit
2010-09-12 13:32:44 ----D---- C:\Program Files\ERUNT
2010-09-12 13:16:56 ----A---- C:\windows\system32\MRT.exe
2010-09-11 23:52:15 ----D---- C:\Users\Sonja\AppData\Roaming\Malwarebytes
2010-09-11 23:51:24 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2010-09-11 23:50:54 ----D---- C:\ProgramData\Malwarebytes
2010-09-11 23:50:52 ----A---- C:\windows\system32\drivers\mbam.sys
2010-09-11 23:50:51 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-09-11 15:03:41 ----D---- C:\Program Files\SpeedBit Video Accelerator
2010-09-11 15:03:11 ----D---- C:\ProgramData\SpeedBit
2010-09-11 15:03:11 ----D---- C:\Program Files\SearchPredict
2010-09-11 15:03:04 ----D---- C:\Program Files\SpeedBit Video Downloader
2010-09-11 14:51:21 ----D---- C:\ProgramData\Sun
2010-09-11 14:51:10 ----D---- C:\Program Files\Common Files\Java
2010-09-11 14:49:41 ----A---- C:\windows\system32\javaws.exe
2010-09-11 14:49:41 ----A---- C:\windows\system32\javaw.exe
2010-09-11 14:49:41 ----A---- C:\windows\system32\deployJava1.dll
2010-09-11 14:49:40 ----A---- C:\windows\system32\java.exe
2010-09-11 14:47:31 ----D---- C:\Program Files\Java
2010-09-11 14:35:02 ----D---- C:\Users\Sonja\AppData\Roaming\DVDVideoSoftIEHelpers
2010-09-11 14:33:35 ----D---- C:\Program Files\DVDVideoSoft
2010-09-11 14:33:35 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2010-09-11 00:27:24 ----A---- C:\windows\system32\PresentationHostProxy.dll
2010-09-11 00:27:24 ----A---- C:\windows\system32\PresentationHost.exe
2010-09-11 00:27:24 ----A---- C:\windows\system32\netfxperf.dll
2010-09-11 00:27:24 ----A---- C:\windows\system32\mscoree.dll
2010-09-11 00:27:23 ----A---- C:\windows\system32\dfshim.dll
2010-09-10 22:33:26 ----N---- C:\windows\system32\MpSigStub.exe
2010-09-10 15:58:04 ----A---- C:\windows\system32\msv1_0.dll
2010-09-10 15:56:08 ----D---- C:\windows\system32\x64
2010-09-10 15:51:37 ----A---- C:\windows\system32\kernel32.dll
2010-09-10 15:51:34 ----A---- C:\windows\system32\apphelp.dll
2010-09-10 15:51:26 ----A---- C:\windows\system32\lsasrv.dll
2010-09-10 15:51:25 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2010-09-10 15:51:17 ----A---- C:\windows\system32\CPFilters.dll
2010-09-10 15:51:08 ----A---- C:\windows\system32\psisdecd.dll
2010-09-10 15:51:02 ----A---- C:\windows\system32\browserchoice.exe
2010-09-10 15:49:29 ----A---- C:\windows\system32\drivers\tcpip.sys
2010-09-10 15:48:46 ----A---- C:\windows\system32\drivers\fvevol.sys
2010-09-10 15:48:27 ----A---- C:\windows\system32\ir32_32.dll
2010-09-10 15:48:27 ----A---- C:\windows\system32\iccvid.dll
2010-09-10 15:48:22 ----A---- C:\windows\explorer.exe
2010-09-10 15:48:20 ----A---- C:\windows\system32\winlogon.exe
2010-09-10 15:48:14 ----A---- C:\windows\system32\msasn1.dll
2010-09-10 15:48:10 ----A---- C:\windows\system32\rtutils.dll
2010-09-10 15:48:01 ----A---- C:\windows\system32\inetcomm.dll
2010-09-10 15:47:55 ----A---- C:\windows\system32\msxml3.dll
2010-09-10 15:47:46 ----A---- C:\windows\system32\ntdll.dll
2010-09-10 15:47:30 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2010-09-10 15:47:23 ----A---- C:\windows\system32\asycfilt.dll
2010-09-10 15:47:19 ----A---- C:\windows\system32\drivers\srv.sys
2010-09-10 15:47:18 ----A---- C:\windows\system32\drivers\srv2.sys
2010-09-10 15:47:16 ----A---- C:\windows\system32\drivers\srvnet.sys
2010-09-10 15:47:12 ----A---- C:\windows\system32\jscript.dll
2010-09-10 15:47:09 ----A---- C:\windows\system32\t2embed.dll
2010-09-10 15:46:31 ----A---- C:\windows\system32\ntoskrnl.exe
2010-09-10 15:46:30 ----A---- C:\windows\system32\ntkrnlpa.exe
2010-09-10 15:44:41 ----A---- C:\windows\system32\quartz.dll
2010-09-10 15:44:40 ----A---- C:\windows\system32\msvidc32.dll
2010-09-10 15:44:40 ----A---- C:\windows\system32\mciavi32.dll
2010-09-10 15:44:39 ----A---- C:\windows\system32\avifil32.dll
2010-09-10 15:44:38 ----A---- C:\windows\system32\iyuv_32.dll
2010-09-10 15:44:37 ----A---- C:\windows\system32\msyuv.dll
2010-09-10 15:44:37 ----A---- C:\windows\system32\msrle32.dll
2010-09-10 15:44:36 ----A---- C:\windows\system32\tsbyuv.dll
2010-09-10 15:44:27 ----A---- C:\windows\system32\mshtml.dll
2010-09-10 15:44:24 ----A---- C:\windows\system32\ieframe.dll
2010-09-10 15:44:22 ----A---- C:\windows\system32\mstime.dll
2010-09-10 15:44:20 ----A---- C:\windows\system32\urlmon.dll
2010-09-10 15:44:18 ----A---- C:\windows\system32\wininet.dll
2010-09-10 15:44:18 ----A---- C:\windows\system32\iedkcs32.dll
2010-09-10 15:44:17 ----A---- C:\windows\system32\iepeers.dll
2010-09-10 15:44:16 ----A---- C:\windows\system32\msfeedsbs.dll
2010-09-10 15:44:15 ----A---- C:\windows\system32\ieui.dll
2010-09-10 15:44:14 ----A---- C:\windows\system32\jsproxy.dll
2010-09-10 15:44:13 ----A---- C:\windows\system32\msfeedssync.exe
2010-09-10 15:44:04 ----A---- C:\windows\system32\shell32.dll
2010-09-10 15:43:59 ----A---- C:\windows\system32\vbscript.dll
2010-09-10 15:43:55 ----A---- C:\windows\system32\secproc_isv.dll
2010-09-10 15:43:54 ----A---- C:\windows\system32\secproc.dll
2010-09-10 15:43:53 ----A---- C:\windows\system32\RMActivate_isv.exe
2010-09-10 15:43:52 ----A---- C:\windows\system32\RMActivate.exe
2010-09-10 15:43:51 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2010-09-10 15:43:51 ----A---- C:\windows\system32\secproc_ssp.dll
2010-09-10 15:43:49 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2010-09-10 15:43:49 ----A---- C:\windows\system32\RMActivate_ssp.exe
2010-09-10 15:43:45 ----A---- C:\windows\system32\schannel.dll
2010-09-10 15:43:35 ----A---- C:\windows\system32\tzres.dll
2010-09-10 15:43:07 ----A---- C:\windows\system32\win32k.sys
2010-09-10 15:43:03 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2010-09-10 15:43:01 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2010-09-10 15:42:59 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2010-09-10 15:42:41 ----A---- C:\windows\system32\atmfd.dll
2010-09-10 15:42:40 ----A---- C:\windows\system32\fontsub.dll
2010-09-10 15:42:40 ----A---- C:\windows\system32\atmlib.dll
2010-09-10 15:20:07 ----D---- C:\Users\Sonja\AppData\Roaming\Mozilla
2010-09-10 15:19:30 ----D---- C:\Users\Sonja\AppData\Roaming\Thunderbird
2010-09-10 15:17:54 ----D---- C:\Program Files\Mozilla Thunderbird
2010-09-10 15:09:30 ----D---- C:\Users\Sonja\AppData\Roaming\Avira
2010-09-10 15:09:14 ----A---- C:\windows\system32\wintrust.dll
2010-09-10 15:06:29 ----A---- C:\windows\system32\drivers\ssmdrv.sys
2010-09-10 15:06:18 ----A---- C:\windows\system32\drivers\avipbb.sys
2010-09-10 15:06:17 ----A---- C:\windows\system32\drivers\avgntmgr.sys
2010-09-10 15:06:17 ----A---- C:\windows\system32\drivers\avgntflt.sys
2010-09-10 15:06:17 ----A---- C:\windows\system32\drivers\avgntdd.sys
2010-09-10 15:06:17 ----A---- C:\windows\system32\cabview.dll
2010-09-10 15:06:11 ----D---- C:\ProgramData\Avira
2010-09-10 15:06:11 ----D---- C:\Program Files\Avira
2010-09-10 15:01:58 ----D---- C:\Users\Sonja\AppData\Roaming\Macromedia
2010-09-10 15:01:58 ----D---- C:\Users\Sonja\AppData\Roaming\Adobe
2010-09-10 14:58:18 ----D---- C:\Users\Sonja\AppData\Roaming\Google

======List of files/folders modified in the last 1 months======

2010-09-13 13:55:48 ----D---- C:\windows\Prefetch
2010-09-13 13:55:39 ----D---- C:\windows\Temp
2010-09-13 13:55:37 ----RD---- C:\Program Files
2010-09-13 13:42:51 ----D---- C:\windows\system32\config
2010-09-13 12:23:50 ----D---- C:\windows\system32\catroot2
2010-09-13 12:19:47 ----D---- C:\windows\winsxs
2010-09-13 12:03:54 ----D---- C:\windows\system32\catroot
2010-09-13 11:54:38 ----D---- C:\windows\rescache
2010-09-13 09:22:49 ----D---- C:\windows\System32
2010-09-13 04:30:02 ----D---- C:\Program Files\Windows Sidebar
2010-09-13 04:30:01 ----D---- C:\Program Files\Windows Media Player
2010-09-13 04:30:01 ----D---- C:\Program Files\Windows Mail
2010-09-13 04:30:01 ----D---- C:\Program Files\Internet Explorer
2010-09-13 04:30:01 ----D---- C:\Program Files\DVD Maker
2010-09-13 04:30:00 ----D---- C:\Program Files\Windows Photo Viewer
2010-09-13 04:29:59 ----D---- C:\Program Files\Windows Defender
2010-09-13 04:29:59 ----D---- C:\Program Files\Common Files\System
2010-09-13 04:29:55 ----D---- C:\windows\servicing
2010-09-13 04:29:55 ----D---- C:\windows\IME
2010-09-13 04:29:55 ----D---- C:\windows\DigitalLocker
2010-09-13 04:29:55 ----D---- C:\Windows
2010-09-13 04:29:54 ----D---- C:\windows\inf
2010-09-13 04:29:53 ----D---- C:\windows\system32\winrm
2010-09-13 04:29:53 ----D---- C:\windows\system32\oobe
2010-09-13 04:29:53 ----D---- C:\windows\system32\migwiz
2010-09-13 04:29:53 ----D---- C:\windows\PolicyDefinitions
2010-09-13 04:29:52 ----D---- C:\windows\system32\it-IT
2010-09-13 04:29:32 ----D---- C:\windows\system32\sysprep
2010-09-13 04:29:32 ----D---- C:\windows\system32\slmgr
2010-09-13 04:29:32 ----D---- C:\windows\system32\Setup
2010-09-13 04:29:32 ----D---- C:\windows\system32\migration
2010-09-13 04:29:32 ----D---- C:\windows\system32\drivers
2010-09-13 04:29:32 ----D---- C:\windows\system32\Boot
2010-09-13 04:29:30 ----D---- C:\windows\system32\WCN
2010-09-13 04:29:30 ----D---- C:\windows\system32\MUI
2010-09-13 04:29:30 ----D---- C:\windows\system32\drivers\UMDF
2010-09-13 04:29:30 ----D---- C:\windows\system32\Dism
2010-09-13 04:29:25 ----D---- C:\windows\system32\Printing_Admin_Scripts
2010-09-13 04:29:17 ----D---- C:\windows\system32\com
2010-09-13 04:29:15 ----D---- C:\windows\AppPatch
2010-09-13 04:28:43 ----D---- C:\windows\system32\fr-FR
2010-09-13 04:28:24 ----D---- C:\windows\system32\XPSViewer
2010-09-13 04:28:22 ----D---- C:\windows\system32\DriverStore
2010-09-13 04:28:11 ----D---- C:\windows\system32\wbem
2010-09-13 04:27:01 ----D---- C:\windows\system32\en-US
2010-09-12 20:46:35 ----SHD---- C:\System Volume Information
2010-09-12 20:18:20 ----D---- C:\windows\Logs
2010-09-12 13:16:57 ----D---- C:\windows\debug
2010-09-12 13:16:51 ----SHD---- C:\windows\Installer
2010-09-12 13:16:38 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-12 13:16:34 ----SD---- C:\Users\Sonja\AppData\Roaming\Microsoft
2010-09-12 13:16:20 ----D---- C:\Program Files\Microsoft
2010-09-11 23:50:54 ----HD---- C:\ProgramData
2010-09-11 22:14:36 ----D---- C:\windows\Downloaded Program Files
2010-09-11 15:43:31 ----D---- C:\windows\Microsoft.NET
2010-09-11 15:42:52 ----RSD---- C:\windows\assembly
2010-09-11 15:18:49 ----D---- C:\windows\system32\Tasks
2010-09-11 14:51:10 ----D---- C:\Program Files\Common Files
2010-09-11 14:03:11 ----D---- C:\windows\system32\wdi
2010-09-11 00:51:30 ----D---- C:\ProgramData\WinClon
2010-09-11 00:27:03 ----D---- C:\ProgramData\Microsoft Help
2010-09-11 00:25:23 ----D---- C:\Program Files\Microsoft Works
2010-09-11 00:13:13 ----D---- C:\Program Files\Microsoft Silverlight
2010-09-10 23:38:52 ----A---- C:\windows\system32\PerfStringBackup.INI
2010-09-10 19:35:54 ----D---- C:\ProgramData\McAfee
2010-09-10 19:19:46 ----D---- C:\windows\Tasks
2010-09-10 19:02:23 ----D---- C:\windows\system32\de-DE
2010-09-10 15:00:10 ----D---- C:\windows\system32\LogFiles
2010-09-10 14:59:12 ----SD---- C:\ProgramData\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 SABI;SAMSUNG Kernel Driver For Windows 7; \??\C:\windows\system32\Drivers\SABI.sys [2009-05-28 10752]
R1 ssmdrv;ssmdrv; C:\windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-09-21 1218048]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 btwaudio;Bluetooth-Audiogerät; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2009-07-01 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
R3 hspabus;SAMSUNG HSPA USB Composite Device driver (WDM); C:\windows\system32\DRIVERS\hspabus.sys [2009-08-19 89632]
R3 hspamdfl;SAMSUNG HSPA Modem Filter; C:\windows\system32\DRIVERS\hspamdfl.sys [2009-08-19 12832]
R3 hspamdm;SAMSUNG HSPA Modem Drivers; C:\windows\system32\DRIVERS\hspamdm.sys [2009-08-19 117664]
R3 hspaserd;SAMSUNG HSPA Modem Diagnostic Serial Port (WDM); C:\windows\system32\DRIVERS\hspaserd.sys [2009-08-19 96416]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2009-08-25 2754336]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2009-09-12 229040]
R3 VMC326;Vimicro Camera Service VMC326; C:\windows\System32\Drivers\VMC326.sys [2009-08-10 237696]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Bluetooth-Porttreiber; C:\windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2009-08-05 54632]
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-09-10 267432]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-11 582944]
R2 OberonGameConsoleService;Oberon Media Game Console service; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [2009-08-13 44312]
R2 VideoAcceleratorService;VideoAcceleratorService; C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe [2010-09-11 300656]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 yksvc;Marvell Yukon Service; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 fsssvc;Windows Live Family Safety-Dienst; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-11-10 182768]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2009-11-10 332272]

-----------------EOF-----------------
--- --- ---


Random Logfile 2 (info.txt)
[code]
info.txtRSIT Logfile:
Code:
ATTFilter
logfile of random's system information tool 1.08 2010-09-13 13:56:16

======Uninstall list======

Adobe Flash Player 10 ActiveX-->C:\windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe -maintain activex
Adobe Reader 9.1 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A91000000001}
Alice Greenfingers-->"C:\Program Files\Samsung Casual Games\Alice Greenfingers\Uninstall.exe" "C:\Program Files\Samsung Casual Games\Alice Greenfingers\install.log"
AnyPC Client-->C:\Program Files\InstallShield Installation Information\{1AFA1FEF-8CF9-4A51-AC46-64FAA7F3D9E2}\setup.exe
Atheros Client Installation Program-->"C:\Program Files\InstallShield Installation Information\{D1434266-0486-4469-B338-A60082CC04E1}\setup.exe" -runfromtemp -l0x0009 -removeonly
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Compatibility Pack für 2007 Office System-->MsiExec.exe /X{90120000-0020-0407-0000-0000000FF1CE}
Connection Manager-->"C:\Program Files\InstallShield Installation Information\{077E2E73-01E0-4F37-81AD-C93C6C2F0933}\setup.exe" -runfromtemp -l0x0009 -removeonly
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
Dairy Dash-->"C:\Program Files\Samsung Casual Games\Dairy Dash\Uninstall.exe" "C:\Program Files\Samsung Casual Games\Dairy Dash\install.log"
Easy Display Manager-->"C:\Program Files\InstallShield Installation Information\{17283B95-21A8-4996-97DA-547A48DB266F}\setup.exe" -runfromtemp -l0x0009 -removeonly
Easy Network Manager-->MsiExec.exe /I{B660E0D0-A8CB-45A7-96FB-93E8C915A0B2}
Easy Resolution Manager-->MsiExec.exe /I{45535A5E-1F81-4F35-BE1D-43D10A7D03B4}
Easy SpeedUp Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF367AA4-070B-493C-9575-85BE59D789C9}\setup.exe" -l0x9 Remove
EasyBatteryManager-->"C:\Program Files\InstallShield Installation Information\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}\setup.exe" -runfromtemp -l0x0009 -removeonly
ERUNT 1.1j-->"C:\Program Files\ERUNT\unins000.exe"
Farm Frenzy 2-->"C:\Program Files\Samsung Casual Games\Farm Frenzy 2\Uninstall.exe" "C:\Program Files\Samsung Casual Games\Farm Frenzy 2\install.log"
Free Audio CD Burner version 1.4-->"C:\Program Files\DVDVideoSoft\Free Audio CD Burner\unins000.exe"
Free YouTube to MP3 Converter version 3.8-->"C:\Program Files\DVDVideoSoft\Free YouTube to MP3 Converter\unins000.exe"
Game Pack-->"C:\Program Files\Samsung Casual Games\GameConsole\unins000.exe"
Go-Go Gourmet-->"C:\Program Files\Samsung Casual Games\Go-Go Gourmet\Uninstall.exe" "C:\Program Files\Samsung Casual Games\Go-Go Gourmet\install.log"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Intel(R) Graphics Media Accelerator Driver-->C:\windows\system32\igxpun.exe -uninstall
Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0407-0000-0000000FF1CE} /uninstall {26454C26-D259-4543-AA60-3189E09C5F76}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Excel MUI (German) 2007-->MsiExec.exe /X{90120000-0016-0407-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.5-->MsiExec.exe /I{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}
Microsoft Office OneNote MUI (German) 2007-->MsiExec.exe /X{90120000-00A1-0407-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (German) 2007-->MsiExec.exe /X{90120000-0018-0407-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (German)-->MsiExec.exe /X{95120000-00AF-0407-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Italian) 2007-->MsiExec.exe /X{90120000-001F-0410-0000-0000000FF1CE}
Microsoft Office Proofing (German) 2007-->MsiExec.exe /X{90120000-002C-0407-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0410-0000-0000000FF1CE} /uninstall {322296D4-1EAE-4030-9FBC-D2787EB25FA2}
Microsoft Office Shared MUI (German) 2007-->MsiExec.exe /X{90120000-006E-0407-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word MUI (German) 2007-->MsiExec.exe /X{90120000-001B-0407-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Works-->MsiExec.exe /I{39D0E034-1042-4905-BECB-5502909FCB7C}
Mozilla Thunderbird (3.1.3)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
Namuga 1.3M Webcam-->C:\Program Files\InstallShield Installation Information\{71A51B59-E7D3-11DB-A386-005056C00008}\setup.exe -runfromtemp -l0x0009 -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe"  -removeonly
SAMSUNG HSPA Modem Software-->C:\windows\system32\Samsung_USB_Drivers\MODEM\HSPAUninstall.exe
Samsung Recovery Solution 4-->"C:\Program Files\InstallShield Installation Information\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}\setup.exe" -runfromtemp -l0x0009 -removeonly
Samsung Support Center-->MsiExec.exe /I{4D2121FE-5CCC-4D47-B3A0-BF56045A5099}
Samsung Update Plus-->"C:\Program Files\InstallShield Installation Information\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}\setup.exe" -runfromtemp -l0x0009 -removeonly
Security Update for 2007 Microsoft Office System (KB2277947)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5857EE21-03D0-482E-9620-5A30B314A2AE}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for 2007 Microsoft Office System (KB982312)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}
Security Update for 2007 Microsoft Office System (KB982331)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E8766951-2B6C-4022-86E8-80D2D1762B76}
Security Update for Microsoft Office Excel 2007 (KB982308)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB2251419)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7E9103DA-253F-41FF-9E83-7C83806C77DA}
SpeedBit Video Accelerator-->"C:\Program Files\SpeedBit Video Accelerator\VARemove.exe" temp
SpeedBit Video Downloader-->"C:\Program Files\SpeedBit Video Downloader\GRRemove.exe" temp
Synaptics Pointing Device Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Uninstall 1.0.0.1-->"C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office OneNote 2007 (KB980729)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {329050A9-EF80-40F9-B633-74508F54C1FF}
Update für Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0407-0000-0000000FF1CE} /uninstall {BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}
Update für Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0407-0000-0000000FF1CE} /uninstall {EA160DA3-E9B5-4D03-A518-21D306665B96}
Update für Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0407-0000-0000000FF1CE} /uninstall {38472199-D7B6-4833-A949-10E4EE6365A1}
User Guide-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}\setup.exe" -l0x9 Remove
WIDCOMM Bluetooth Software-->MsiExec.exe /X{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbtums-win7x86-brcm.inf_x86_neutral_6f5c4fcf7ed58496\bcbtums-win7x86-brcm.inf
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbtums-vistax86-brcm.inf_x86_neutral_a622a4701b0a8e59\bcbtums-vistax86-brcm.inf
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbthid32.inf_x86_neutral_6c4f31312ffe9ed6\bcbthid32.inf
Windows Live Call-->MsiExec.exe /I{5FC68772-6D56-41C6-9DF1-24E868198AE6}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}
Windows Live Family Safety-->MsiExec.exe /X{994223F3-A99B-4DDD-9E1D-0190A17C6860}
Windows Live Fotogalerie-->MsiExec.exe /X{2BA722D1-48D1-406E-9123-8AE5431D63EF}
Windows Live ID-Anmelde-Assistent-->MsiExec.exe /X{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}
Windows Live Mail-->MsiExec.exe /I{C4D738F7-996A-4C81-B8FA-C4E26D767E41}
Windows Live Messenger-->MsiExec.exe /X{41E654A9-26D0-4EAC-854B-0FA824FFFABB}
Windows Live Movie Maker-->MsiExec.exe /X{3EFEF049-23D4-4B46-8903-4592FEA51018}
Windows Live Sync-->MsiExec.exe /X{76618402-179D-4699-A66B-D351C59436BC}
Windows Live Writer-->MsiExec.exe /X{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}
Windows Live-Uploadtool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

======System event log======

Computer Name: WIN-6MU9GFOC98J
Event Code: 104
Message: Die Protokolldatei "Application" wurde gelöscht.
Record Number: 1864
Source Name: Microsoft-Windows-Eventlog
Time Written: 20100220095848.255316-000
Event Type: Informationen
User: SonjasPC\Administrator

Computer Name: WIN-6MU9GFOC98J
Event Code: 104
Message: Die Protokolldatei "System" wurde gelöscht.
Record Number: 1863
Source Name: Microsoft-Windows-Eventlog
Time Written: 20100220095847.927715-000
Event Type: Informationen
User: SonjasPC\Administrator

Computer Name: WIN-6MU9GFOC98J
Event Code: 7036
Message: Dienst "Application Experience" befindet sich jetzt im Status "running".
Record Number: 1862
Source Name: Service Control Manager
Time Written: 20100220095847.412914-000
Event Type: Informationen
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 20001
Message: Der Prozess zum Installieren von Treiber FileRepository\disk.inf_x86_neutral_b431b61a11f8df6c\disk.inf für Geräteinstanz-ID USBSTOR\DISK&VEN_SANDISK&PROD_U3_CRUZER_MICRO&REV_8.02\0202810A2ED319D0&0 wurde mit folgendem Status beendet: 0x0.
Record Number: 1861
Source Name: Microsoft-Windows-UserPnp
Time Written: 20100220095846.492513-000
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM

Computer Name: WIN-6MU9GFOC98J
Event Code: 20003
Message: Der Prozess zum Hinzufügen von Dienst disk für Geräteinstanz-ID USBSTOR\DISK&VEN_SANDISK&PROD_U3_CRUZER_MICRO&REV_8.02\0202810A2ED319D0&0 wurde mit folgendem Status beendet: 0.
Record Number: 1860
Source Name: Microsoft-Windows-UserPnp
Time Written: 20100220095846.118112-000
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM

=====Application event log=====

Computer Name: SonjasPC
Event Code: 4625
Message: Das EventSystem-Subsystem unterdrückt duplizierte Ereignisprotokolleinträge für eine Dauer von 86400 Sekunden. Dieses Zeitlimit kann durch den REG_DWORD-Wert SuppressDuplicateDuration unter folgendem Registrierungsschlüssel gesteuert werden: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 293
Source Name: Microsoft-Windows-EventSystem
Time Written: 20100421133124.000000-000
Event Type: Informationen
User: 

Computer Name: SonjasPC
Event Code: 1532
Message: Das Benutzerprofil wurde angehalten  


Record Number: 292
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20100220095928.440986-000
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM

Computer Name: WIN-6MU9GFOC98J
Event Code: 1003
Message: Windows Search wurde gestartet.

Record Number: 291
Source Name: Microsoft-Windows-Search
Time Written: 20100220095905.000000-000
Event Type: Informationen
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 1013
Message: Windows Search wurde normal beendet.

Record Number: 290
Source Name: Microsoft-Windows-Search
Time Written: 20100220095905.000000-000
Event Type: Informationen
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 103
Message: Windows (3144) Windows: Das Datenbankmodul hat die Instanz (0) beendet.
Record Number: 289
Source Name: ESENT
Time Written: 20100220095905.000000-000
Event Type: Informationen
User: 

=====Security event log=====

Computer Name: WIN-6MU9GFOC98J
Event Code: 4672
Message: Einer neuen Anmeldung wurden besondere Rechte zugewiesen.

Antragsteller:
	Sicherheits-ID:		S-1-5-18
	Kontoname:		SYSTEM
	Kontodomäne:		NT AUTHORITY
	Anmelde-ID:		0x3e7

Berechtigungen:		SeAssignPrimaryTokenPrivilege
			SeTcbPrivilege
			SeSecurityPrivilege
			SeTakeOwnershipPrivilege
			SeLoadDriverPrivilege
			SeBackupPrivilege
			SeRestorePrivilege
			SeDebugPrivilege
			SeAuditPrivilege
			SeSystemEnvironmentPrivilege
			SeImpersonatePrivilege
Record Number: 391
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100220095905.805347-000
Event Type: Überwachung erfolgreich
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 4624
Message: Ein Konto wurde erfolgreich angemeldet.

Antragsteller:
	Sicherheits-ID:		S-1-5-18
	Kontoname:		WIN-6MU9GFOC98J$
	Kontodomäne:		WORKGROUP
	Anmelde-ID:		0x3e7

Anmeldetyp:			5

Neue Anmeldung:
	Sicherheits-ID:		S-1-5-18
	Kontoname:		SYSTEM
	Kontodomäne:		NT AUTHORITY
	Anmelde-ID:		0x3e7
	Anmelde-GUID:		{00000000-0000-0000-0000-000000000000}

Prozessinformationen:
	Prozess-ID:		0x204
	Prozessname:		C:\Windows\System32\services.exe

Netzwerkinformationen:
	Arbeitsstationsname:	
	Quellnetzwerkadresse:	-
	Quellport:		-

Detaillierte Authentifizierungsinformationen:
	Anmeldeprozess:		Advapi  
	Authentifizierungspaket:	Negotiate
	Übertragene Dienste:	-
	Paketname (nur NTLM):	-
	Schlüssellänge:		0

Dieses Ereignis wird beim Erstellen einer Anmeldesitzung generiert. Es wird auf dem Computer generiert, auf den zugegriffen wurde.

Die Antragstellerfelder geben das Konto auf dem lokalen System an, von dem die Anmeldung angefordert wurde. Dies ist meistens ein Dienst wie der Serverdienst oder ein lokaler Prozess wie "Winlogon.exe" oder "Services.exe".

Das Anmeldetypfeld gibt den jeweiligen Anmeldetyp an. Die häufigsten Typen sind 2 (interaktiv) und 3 (Netzwerk).

Die Felder für die neue Anmeldung geben das Konto an, für das die Anmeldung erstellt wurde, d. h. das angemeldete Konto.

Die Netzwerkfelder geben die Quelle einer Remoteanmeldeanforderung an. der Arbeitsstationsname ist nicht immer verfügbar und kann in manchen Fällen leer bleiben.

Die Felder für die Authentifizierungsinformationen enthalten detaillierte Informationen zu dieser speziellen Anmeldeanforderung.
	 - Die Anmelde-GUID ist ein eindeutiger Bezeichner, der verwendet werden kann, um dieses Ereignis mit einem KDC-Ereignis zu korrelieren.
	- Die übertragenen Dienste geben an, welche Zwischendienste an der Anmeldeanforderung beteiligt waren.
	- Der Paketname gibt das in den NTLM-Protokollen verwendete Unterprotokoll an.
	- Die Schlüssellänge gibt die Länge des generierten Sitzungsschlüssels an. Wenn kein Sitzungsschlüssel angefordert wurde, ist dieser Wert 0.
Record Number: 390
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100220095905.805347-000
Event Type: Überwachung erfolgreich
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 4738
Message: Ein Benutzerkonto wurde geändert.

Antragsteller:
	Sicherheits-ID:		S-1-5-21-2879688688-820032715-2798379708-500
	Kontoname:		Administrator
	Kontodomäne:		WIN-6MU9GFOC98J
	Anmelde-ID:		0x1cce5

Zielkonto:
	Sicherheits-ID:		S-1-5-21-2879688688-820032715-2798379708-500
	Kontoname:		Administrator
	Kontodomäne:		WIN-6MU9GFOC98J

Geänderte Attribute:
	SAM-Kontoname:	-
	Anzeigename:		-
	Benutzerprinzipalname:	-
	Stammverzeichnis:		-
	Stammlaufwerk:		-
	Skriptpfad:		-
	Profilpfad:		-
	Benutzerarbeitsstationen:	-
	Letzte Kennwortänderung:	-
	Konto gültig bis:		-
	Primäre Gruppen-ID:	-
	Darf delegieren an:	-
	Alter Benutzerkontensteuerungswert:		0x210
	Neuer Benutzerkontensteuerungswert:		0x211
	Benutzerkontensteuerung:	
		Konto Deaktiviert
	Benutzerparameter:	-
	SID-Verlauf:		-
	Anmeldezeiten:		-

Weitere Informationen:
	Berechtigungen:		-
Record Number: 389
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100220095849.316118-000
Event Type: Überwachung erfolgreich
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 4725
Message: Ein Benutzerkonto wurde deaktiviert.

Antragsteller:
	Sicherheits-ID:		S-1-5-21-2879688688-820032715-2798379708-500
	Kontoname:		Administrator
	Kontodomäne:		WIN-6MU9GFOC98J
	Anmelde-ID:		0x1cce5

Zielkonto:
	Sicherheits-ID:		S-1-5-21-2879688688-820032715-2798379708-500
	Kontoname:		Administrator
	Kontodomäne:		WIN-6MU9GFOC98J
Record Number: 388
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100220095849.316118-000
Event Type: Überwachung erfolgreich
User: 

Computer Name: WIN-6MU9GFOC98J
Event Code: 1102
Message: Das Überwachungsprotokoll wurde gelöscht.
Subjekt:
	Sicherheits-ID:	S-1-5-21-2879688688-820032715-2798379708-500
	Kontoname:	Administrator
	Domänenname:	WIN-6MU9GFOC98J
	Anmelde-ID:	0x1cce5
Record Number: 387
Source Name: Microsoft-Windows-Eventlog
Time Written: 20100220095848.785717-000
Event Type: Überwachung erfolgreich
User: 

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%CommonProgramFiles%\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 28 Stepping 2, GenuineIntel
"PROCESSOR_REVISION"=1c02

-----------------EOF-----------------
--- --- ---


installierte Programme
Code:
ATTFilter
Adobe Flash Player 10 ActiveX	Adobe Systems Incorporated	10.09.2010	6,00MB	10.1.82.76
Adobe Reader 9.1 - Deutsch	Adobe Systems Incorporated	20.04.2010	229,8MB	9.1.0
Alice Greenfingers	Oberon Media	20.04.2010		
AnyPC Client	Doctorsoft	20.04.2010		1.0.0.12
Atheros Client Installation Program	Atheros	09.11.2009		1.0.1.0805
Avira AntiVir Personal - Free Antivirus	Avira GmbH	09.09.2010	59,8MB	10.0.0.567
CCleaner	Piriform	12.09.2010		2.35
Compatibility Pack für 2007 Office System	Microsoft Corporation	11.09.2010	79,6MB	12.0.6425.1000
Connection Manager	Samsung	09.11.2009		1.69.0101
CyberLink YouCam	CyberLink Corp.	20.04.2010	77,5MB	2.0.3304
Dairy Dash	Oberon Media	20.04.2010		
Easy Display Manager	Samsung Electronics Co., Ltd.	09.11.2009		3.0
Easy Network Manager	Samsung	09.11.2009	19,1MB	4.2.4
Easy Resolution Manager	Samsung	09.11.2009	5,51MB	1.0.0
Easy SpeedUp Manager	Samsung Electronics Co.,Ltd.	09.11.2009		3.0.0.4
EasyBatteryManager	Samsung	09.11.2009		4.0.0.2
ERUNT 1.1j	Lars Hederer	11.09.2010		
Farm Frenzy 2	Oberon Media	20.04.2010		
Free Audio CD Burner version 1.4	DVDVideoSoft Limited.	10.09.2010	8,09MB	
Free YouTube to MP3 Converter version 3.8	DVDVideoSoft Limited.	10.09.2010	32,1MB	
Game Pack	Oberon Media, Inc.	20.04.2010		5.3.0.10
Go-Go Gourmet	Oberon Media	20.04.2010		
Google Toolbar for Internet Explorer	Google Inc.	09.11.2009		
Intel(R) Graphics Media Accelerator Driver	Intel Corporation	09.09.2010	54,3MB	8.15.10.1930
Java(TM) 6 Update 21	Oracle	10.09.2010	94,9MB	6.0.210
Malwarebytes' Anti-Malware	Malwarebytes Corporation	10.09.2010	8,51MB	
Marvell Miniport Driver	Marvell	09.11.2009		10.70.3.3
Microsoft Office Home and Student 2007	Microsoft Corporation	20.04.2010		12.0.6425.1000
Microsoft Office Live Add-in 1.5	Microsoft Corporation	11.09.2010	0,50MB	2.0.4024.1
Microsoft Office PowerPoint Viewer 2007 (German)	Microsoft Corporation	11.09.2010	62,2MB	12.0.6425.1000
Microsoft Office Suite Activation Assistant	Microsoft Corporation	20.04.2010	8,37MB	2.9
Microsoft Silverlight	Microsoft Corporation	10.09.2010	29,1MB	3.0.50611.0
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	20.04.2010	1,72MB	3.1.0000
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148	Microsoft Corporation	09.09.2010	0,58MB	9.0.30729.4148
Microsoft Works	Microsoft Corporation	10.09.2010	544,6MB	9.7.0621
Mozilla Thunderbird (3.1.3)	Mozilla	09.09.2010		3.1.3 (de)
Namuga 1.3M Webcam	Vimicro Corporation	09.11.2009		1.00.0000
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	09.11.2009		6.0.1.5923
SAMSUNG HSPA Modem Software		09.11.2009		
Samsung Recovery Solution 4	Samsung	09.11.2009		4.0.0.4
Samsung Support Center	Samsung	09.11.2009	40,8MB	1.0.1
Samsung Update Plus	Samsung Electronics Co., Ltd.	09.11.2009		2.0
SpeedBit Video Accelerator	SpeedBit Ltd.	10.09.2010		3136(build_1093)
SpeedBit Video Downloader	SpeedBit Ltd.	10.09.2010		1146(build_381)
Synaptics Pointing Device Driver	Synaptics Incorporated	09.11.2009		14.0.5.1
Uninstall 1.0.0.1		10.09.2010	10,6MB	
User Guide		09.11.2009		1.0
WIDCOMM Bluetooth Software	Broadcom Corporation	20.04.2010	88,4MB	6.2.1.100
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000)	Broadcom	20.04.2010		06/15/2009 6.2.0.9000
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405)	Broadcom	20.04.2010		07/30/2009 6.2.0.9405
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800)	Broadcom	20.04.2010		07/28/2009 6.2.0.9800
Windows Live Essentials	Microsoft Corporation	20.04.2010		14.0.8089.0726
Windows Live ID-Anmelde-Assistent	Microsoft Corporation	11.09.2010	5,52MB	6.500.3165.0
Windows Live Sync	Microsoft Corporation	20.04.2010	2,79MB	14.0.8089.726
Windows Live-Uploadtool	Microsoft Corporation	20.04.2010	0,22MB	14.0.8014.1029
Hoffe, dass war jetzt alles richtig.
__________________
 

Themen zu AVir meldet 'HEUR/HTML.Malware'
antivir, avgntflt.sys, avira, components, conhost.exe, controlset002, converter, corp./icp, device driver, downloader, e-mail, error, excel, fehler, flash player, fontcache, google, helper, ieframe.dll, iexplore.exe, install.exe, installation, local\temp, location, locker, logfile, microsoft office word, mozilla, mozilla thunderbird, mp3, msiinstaller, nicht gefunden, nvstor.sys, office 2007, oldtimer, otl.exe, plug-in, problem, programdata, programm, rarsfx0, realtek, registry, saver, sched.exe, security, security update, shell32.dll, software, system, taskhost.exe, virus, webcheck, windows


« Eventuell Trojanerbefall? Backdoor Bot 56172 | Vielfacher Malwarebefall. JAVA/Agent.M.1 und Trojaner TR/Riner.YG z.B. »


Ähnliche Themen: AVir meldet 'HEUR/HTML.Malware'


  1. AntiVir hat Malware gefunden; HEUR/HTML.Malware
    Plagegeister aller Art und deren Bekämpfung - 17.12.2011 (3)
  2. Malware Trace, HEUR/HTML.Malware
    Log-Analyse und Auswertung - 02.12.2011 (30)
  3. HEUR/HTML.Malware von AV bei IE
    Plagegeister aller Art und deren Bekämpfung - 08.07.2010 (1)
  4. TR/Agent.AR,TR/Click.Klik,HEUR/HTML.Malware,HTML/Crypted.Gen, dwwin.exe, drwtsu32.exe
    Plagegeister aller Art und deren Bekämpfung - 25.05.2010 (1)
  5. werde Malware nicht los z.B. HEUR/HTML.Malware [heuristic
    Log-Analyse und Auswertung - 31.03.2010 (10)
  6. Malware Problem HEUR/HTML.Malware
    Log-Analyse und Auswertung - 29.03.2010 (1)
  7. HEUR/HTML.Malware
    Plagegeister aller Art und deren Bekämpfung - 20.11.2009 (28)
  8. Trojan.bho und heur/html.malware
    Log-Analyse und Auswertung - 12.08.2009 (7)
  9. heur/html.malware
    Plagegeister aller Art und deren Bekämpfung - 05.08.2009 (1)
  10. TR/Rootkit.Gen & HTML/Infected.WebPage.Gen' & HEUR/HTML.Malware gefunden
    Log-Analyse und Auswertung - 25.06.2009 (31)
  11. EXP/ASF.GetCodec.Gen,HEUR/HTML.Malware,TR/Dropper.Gen,HEUR/HTML.Malware
    Plagegeister aller Art und deren Bekämpfung - 10.04.2009 (17)
  12. HEUR/HTML.Malware
    Plagegeister aller Art und deren Bekämpfung - 19.01.2009 (1)
  13. HEUR/HTML.Malware Problem
    Plagegeister aller Art und deren Bekämpfung - 09.01.2009 (0)
  14. HEUR.HTML/Malware
    Mülltonne - 15.12.2008 (0)
  15. HEUR/HTML.Malware
    Mülltonne - 10.12.2008 (2)
  16. HEUR/HTML Malware, .vbs ????
    Plagegeister aller Art und deren Bekämpfung - 22.06.2008 (4)
  17. Heur/HTML Malware
    Log-Analyse und Auswertung - 28.05.2008 (12)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema AVir meldet 'HEUR/HTML.Malware' - So, danke schonmal für die Hilfe. ;-) Random Logfile (Log.txt) [code] RSIT Logfile: Code: Alles auswählen Aufklappen ATTFilter Logfile of random's system information tool 1.08 (written by random/random) Run by - AVir meldet 'HEUR/HTML.Malware'...
Archiv
Du betrachtest: AVir meldet 'HEUR/HTML.Malware' auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27