![]() |
|
Log-Analyse und Auswertung: Ist mein PC Sauber?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
![]() | #1 |
![]() ![]() | ![]() Ist mein PC Sauber? Hallo, Und zwar möchte ich gerne wissen ob mein PC Trojaner und Viren frei ist. Ich habe Windows 7 64bit Edition. Ich poste jetzt mal den DDS log + Attach Code:
ATTFilter . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31 Run by Robin at 10:54:53 on 2012-03-13 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.4095.2497 [GMT 1:00] . AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\taskhost.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Robin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com uURLSearchHooks: H - No File mWinlogon: Userinit=userinit.exe BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: DhcpNameServer = 192.168.0.1 TCP: Interfaces\{D246AA05-B192-4ADE-9E16-6595A44BBE02} : DhcpNameServer = 192.168.0.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} {9030D464-4C02-4ABF-8ECC-5164760863C6} {DBC80044-A445-435b-BC74-9C25C1C588A9} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui IE-X64: {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\sz5n2qep.default\ FF - prefs.js: browser.search.selectedEngine - ICQ Search FF - prefs.js: browser.startup.homepage - hxxp://de.ask.com/?l=dis&o=102869&gct=hp FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.3&q= FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll . ---- FIREFOX POLICIES ---- pref('extensions.shownSelectionUI',true); pref('extensions.autoDisableScopes',0); . ============= SERVICES / DRIVERS =============== . R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?] R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?] R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?] R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-3-8 44768] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-2 2348352] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-2-9 382272] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856] S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\Windows\system32\DRIVERS\ManyCam_x64.sys --> C:\Windows\system32\DRIVERS\ManyCam_x64.sys [?] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] . =============== Created Last 30 ================ . . ==================== Find3M ==================== . 2012-03-08 22:17:23 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-03-07 04:59:34 55384 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys 2012-03-07 01:52:04 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2012-03-07 00:15:19 41184 ----a-w- C:\Windows\avastSS.scr 2012-03-07 00:04:06 819032 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2012-03-07 00:02:20 53080 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2012-03-07 00:01:52 69976 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2012-03-05 09:24:47 175616 ----a-w- C:\Windows\System32\msclmd.dll 2012-03-05 09:24:47 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll 2012-03-02 11:04:51 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys 2012-03-02 09:24:38 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll 2012-02-24 09:36:50 230952 ----a-w- C:\Windows\System32\drivers\PCTSD64.sys 2012-02-23 08:18:36 279656 ------w- C:\Windows\System32\MpSigStub.exe 2012-02-10 03:14:04 6074176 ----a-w- C:\Windows\System32\nvcpl.dll 2012-02-10 03:14:01 3089728 ----a-w- C:\Windows\System32\nvsvc64.dll 2012-02-10 03:07:03 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll 2012-02-10 03:07:00 889664 ----a-w- C:\Windows\System32\nvvsvc.exe 2012-02-10 03:07:00 63296 ----a-w- C:\Windows\System32\nvshext.dll 2012-02-10 03:07:00 118080 ----a-w- C:\Windows\System32\nvmctray.dll 2012-02-10 03:05:59 2497985 ----a-w- C:\Windows\System32\nvcoproc.bin 2012-02-09 19:05:44 416064 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2012-01-17 12:46:01 31040 ----a-w- C:\Windows\System32\nvhdap64.dll 2012-01-17 12:45:56 188224 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys 2012-01-17 12:45:55 1451840 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll 2012-01-14 04:06:27 3145728 ----a-w- C:\Windows\System32\win32k.sys 2012-01-04 10:44:20 509952 ----a-w- C:\Windows\System32\ntshrui.dll 2012-01-04 08:58:41 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll 2012-01-03 07:03:12 810496 ----a-w- C:\Windows\System32\xvidcore.dll 2012-01-03 07:03:12 80896 ----a-w- C:\Windows\System32\ff_vfw.dll 2012-01-03 07:03:12 183808 ----a-w- C:\Windows\System32\xvidvfw.dll 2012-01-03 07:03:10 389120 ----a-w- C:\Windows\SysWow64\actskn43.ocx 2012-01-03 07:03:10 389120 ----a-w- C:\Windows\System32\actskn43.ocx 2011-12-30 06:26:08 515584 ----a-w- C:\Windows\System32\timedate.cpl 2011-12-30 05:27:56 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl 2011-12-28 03:59:24 498688 ----a-w- C:\Windows\System32\drivers\afd.sys 2011-12-16 08:46:06 634880 ----a-w- C:\Windows\System32\msvcrt.dll 2011-12-16 07:52:58 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll . ============= FINISH: 10:55:52,69 =============== Attach: Code:
ATTFilter . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume2 Install Date: 02.03.2012 09:13:31 System Uptime: 12.03.2012 19:50:37 (15 hours ago) . Motherboard: ASUSTeK Computer INC. | | M4A88TD-V EVO/USB3 Processor: AMD Phenom(tm) II X4 965 Processor | AM3 | 792/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 217 GiB total, 123,889 GiB free. D: is FIXED (NTFS) - 106 GiB total, 21,553 GiB free. E: is CDROM (UDF) F: is CDROM () G: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: Device ID: NUSB3\ROOT_HUB30\5&36403F85&0 Manufacturer: Name: PNP Device ID: NUSB3\ROOT_HUB30\5&36403F85&0 Service: . ==== System Restore Points =================== . RP24: 08.03.2012 02:48:56 - Windows Update RP25: 09.03.2012 03:00:12 - Windows Update RP26: 13.03.2012 02:37:04 - Windows Update . ==== Installed Programs ====================== . avast! Free Antivirus Camtasia Studio 7 DAEMON Tools Lite Die Sims™ 3 Die Sims™ 3 Einfach tierisch FlashPeak SlimBrowser Google Chrome Grand Theft Auto IV ICQ7.7 IrfanView (remove only) Java Auto Updater Java(TM) 6 Update 31 Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft WSE 3.0 Runtime Mozilla Firefox 10.0.2 (x86 de) NVIDIA PhysX NVIDIA Stereoscopic 3D Driver PhotoScape Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile DEU Language Pack (KB2518870) Skype™ 5.8 SplitCam Spybot - Search & Destroy TRFormersMOD TRFormersMOD - CLOTHES Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Visual C++ 2008 x86 Runtime - (v9.0.30729) Visual C++ 2008 x86 Runtime - v9.0.30729.01 WinRAR 4.11 (32-Bit) . ==== End Of File =========================== Ich hoffe ihr könnt mir helfen! PS. ich habe Avast Vollversion. :-) und spybot search und destroy Mit freundlichen Grüßen Roxii |
Themen zu Ist mein PC Sauber? |
antivirus, asus, avast, cdrom, computer, defender, explorer, firefox, google, helper, home, icq, ics, log, mozilla, nvidia, nvidia update, plug-in, realtek, software, studio, svchost.exe, system, trojaner, usb, usb 3.0, viren, webcam, windows, windows 7 64bit, windows 7 home, windows 7 home premium |