Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: JAVA/Small N / Y Viren und Trojan/Gen

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.01.2011, 12:05   #1
Taurinus
 
JAVA/Small N / Y Viren und Trojan/Gen - Standard

JAVA/Small N / Y Viren und Trojan/Gen



Hallo zusammen

Heute hat ein Standartscan den ich alle paar Wochen durchführe etwas ergeben
und zwar hat Avira Java Viren gefunden.

Dazu hänge ich den Log weiter unten an

Daraufhin habe ich noch einmal mit Symantec Anitvirus gescannt und damit einen Trojan/Gen gefunden, leider finde ich dazu keinen Log.

Die Programme haben die Viren nach eigenen angaben "beseitigt"

Erneute Scans haben nichts ergeben.

Trotzdem wollte ich das vorhandene Restrisiko beseitigen

Malewarebytes wurde gerade Installiert und scannt während ich jetzt wieder weiter Arbeite.

gruß Mario

Zitat:

Avira AntiVir Personal
Report file date: Dienstag, 11. Januar 2011 00:33

Scanning for 2344348 virus strains and unwanted programs.

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (Service Pack 2) [6.0.6002]
Boot mode : Normally booted
Username : SYSTEM
Computer name : TAURINUS

Version information:
BUILD.DAT : 9.0.0.429 21701 Bytes 06.10.2010 10:04:00
AVSCAN.EXE : 9.0.3.10 466689 Bytes 21.11.2009 00:04:07
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27.02.2009 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20.02.2009 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27.02.2009 09:58:52
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06.11.2009 00:04:03
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14.12.2010 21:06:37
VBASE002.VDF : 7.11.0.1 2048 Bytes 14.12.2010 21:06:37
VBASE003.VDF : 7.11.0.2 2048 Bytes 14.12.2010 21:06:38
VBASE004.VDF : 7.11.0.3 2048 Bytes 14.12.2010 21:06:38
VBASE005.VDF : 7.11.0.4 2048 Bytes 14.12.2010 21:06:39
VBASE006.VDF : 7.11.0.5 2048 Bytes 14.12.2010 21:06:39
VBASE007.VDF : 7.11.0.6 2048 Bytes 14.12.2010 21:06:40
VBASE008.VDF : 7.11.0.7 2048 Bytes 14.12.2010 21:06:40
VBASE009.VDF : 7.11.0.8 2048 Bytes 14.12.2010 21:06:41
VBASE010.VDF : 7.11.0.9 2048 Bytes 14.12.2010 21:06:42
VBASE011.VDF : 7.11.0.10 2048 Bytes 14.12.2010 21:06:42
VBASE012.VDF : 7.11.0.11 2048 Bytes 14.12.2010 21:06:43
VBASE013.VDF : 7.11.0.52 128000 Bytes 16.12.2010 20:22:35
VBASE014.VDF : 7.11.0.91 226816 Bytes 20.12.2010 22:54:00
VBASE015.VDF : 7.11.0.122 136192 Bytes 21.12.2010 22:53:46
VBASE016.VDF : 7.11.0.156 122880 Bytes 24.12.2010 20:00:47
VBASE017.VDF : 7.11.0.185 146944 Bytes 27.12.2010 20:00:47
VBASE018.VDF : 7.11.0.228 132608 Bytes 30.12.2010 13:10:40
VBASE019.VDF : 7.11.1.5 148480 Bytes 03.01.2011 13:10:41
VBASE020.VDF : 7.11.1.37 156672 Bytes 07.01.2011 21:57:16
VBASE021.VDF : 7.11.1.65 140800 Bytes 10.01.2011 21:57:37
VBASE022.VDF : 7.11.1.66 2048 Bytes 10.01.2011 21:57:40
VBASE023.VDF : 7.11.1.67 2048 Bytes 10.01.2011 21:57:43
VBASE024.VDF : 7.11.1.68 2048 Bytes 10.01.2011 21:57:45
VBASE025.VDF : 7.11.1.69 2048 Bytes 10.01.2011 21:57:47
VBASE026.VDF : 7.11.1.70 2048 Bytes 10.01.2011 21:57:49
VBASE027.VDF : 7.11.1.71 2048 Bytes 10.01.2011 21:57:51
VBASE028.VDF : 7.11.1.72 2048 Bytes 10.01.2011 21:57:53
VBASE029.VDF : 7.11.1.73 2048 Bytes 10.01.2011 21:57:56
VBASE030.VDF : 7.11.1.74 2048 Bytes 10.01.2011 21:57:59
VBASE031.VDF : 7.11.1.80 37888 Bytes 10.01.2011 21:58:10
Engineversion : 8.2.4.140
AEVDF.DLL : 8.1.2.1 106868 Bytes 30.07.2010 08:21:35
AESCRIPT.DLL : 8.1.3.52 1282426 Bytes 10.01.2011 22:04:43
AESCN.DLL : 8.1.7.2 127349 Bytes 22.11.2010 22:49:12
AESBX.DLL : 8.1.3.2 254324 Bytes 22.11.2010 22:49:17
AERDL.DLL : 8.1.9.2 635252 Bytes 22.09.2010 09:25:43
AEPACK.DLL : 8.2.4.7 512375 Bytes 04.01.2011 13:10:47
AEOFFICE.DLL : 8.1.1.10 201084 Bytes 22.11.2010 22:49:11
AEHEUR.DLL : 8.1.2.64 3154294 Bytes 10.01.2011 22:03:48
AEHELP.DLL : 8.1.16.0 246136 Bytes 02.12.2010 23:37:13
AEGEN.DLL : 8.1.5.1 397683 Bytes 10.01.2011 21:58:55
AEEMU.DLL : 8.1.3.0 393589 Bytes 22.11.2010 22:48:50
AECORE.DLL : 8.1.19.0 196984 Bytes 02.12.2010 23:37:11
AEBB.DLL : 8.1.1.0 53618 Bytes 27.04.2010 04:38:52
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12.12.2008 07:47:59
AVPREF.DLL : 9.0.3.0 44289 Bytes 09.09.2009 16:57:25
AVREP.DLL : 8.0.0.7 159784 Bytes 18.02.2010 06:08:23
AVREG.DLL : 9.0.0.0 36609 Bytes 05.12.2008 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 24.03.2009 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30.01.2009 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28.01.2009 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02.02.2009 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05.12.2008 09:32:10
RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 09.06.2009 17:20:54
RCTEXT.DLL : 9.0.73.0 86785 Bytes 21.11.2009 00:04:01

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: delete
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: Dienstag, 11. Januar 2011 00:33

Starting search for hidden objects.
'121045' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'calc.exe' - '1' Module(s) have been scanned
Scan process 'ICQ.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'wecker220.exe' - '1' Module(s) have been scanned
Scan process 'plugin-container.exe' - '1' Module(s) have been scanned
Scan process 'CMUpdater.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'skypePM.exe' - '1' Module(s) have been scanned
Scan process 'UIMain.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'Skype.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'UIExec.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'VPTray.exe' - '1' Module(s) have been scanned
Scan process 'ccApp.exe' - '1' Module(s) have been scanned
Scan process 'sm56hlpr.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned
Scan process 'ehsched.exe' - '1' Module(s) have been scanned
Scan process 'Rtvscan.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'SDWinSec.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'AssistantServices.exe' - '1' Module(s) have been scanned
Scan process 'TomTomHOMEService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nlsvc.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'DefWatch.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'bmwebcfg.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD.exe' - '1' Module(s) have been scanned
Scan process 'ACEngSvr.exe' - '1' Module(s) have been scanned
Scan process 'ACMON.exe' - '1' Module(s) have been scanned
Scan process 'BatteryLife.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'wcourier.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD2.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'HControl.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'ASLDRSrv.exe' - '1' Module(s) have been scanned
Scan process 'ccSvcHst.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
77 processes with 77 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[INFO] Please restart the search with Administrator rights

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '48' files ).


Starting the file scan:

Begin scan in 'C:\' <Windoof>
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\51062591-155c239d
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d5ba48e.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\42d0a6ad-1d7ee34c
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d8fa4b1.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\154fcf31-645cafea
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d5fa4b8.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Windows\System32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <WoW>
D:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.


End of the scan: Dienstag, 11. Januar 2011 02:50
Used time: 2:16:57 Hour(s)

The scan has been done completely.

26592 Scanned directories
410911 Files were scanned
6 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
3 files were deleted
0 Viruses and unwanted programs were repaired
3 Files were moved to quarantine
0 Files were renamed
3 Files cannot be scanned
410902 Files not concerned
2071 Archives were scanned
3 Warnings
5 Notes
121045 Objects were scanned with rootkit scan
0 Hidden objects were found

Alt 11.01.2011, 12:07   #2
Taurinus
 
JAVA/Small N / Y Viren und Trojan/Gen - Standard

JAVA/Small N / Y Viren und Trojan/Gen



Hier der weitere Scan der nichtsmehr ergeben hat

Zitat:

Avira AntiVir Personal
Report file date: Dienstag, 11. Januar 2011 05:31

Scanning for 2344348 virus strains and unwanted programs.

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (Service Pack 2) [6.0.6002]
Boot mode : Normally booted
Username : SYSTEM
Computer name : TAURINUS

Version information:
BUILD.DAT : 9.0.0.429 21701 Bytes 06.10.2010 10:04:00
AVSCAN.EXE : 9.0.3.10 466689 Bytes 21.11.2009 00:04:07
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27.02.2009 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20.02.2009 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27.02.2009 09:58:52
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06.11.2009 00:04:03
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14.12.2010 21:06:37
VBASE002.VDF : 7.11.0.1 2048 Bytes 14.12.2010 21:06:37
VBASE003.VDF : 7.11.0.2 2048 Bytes 14.12.2010 21:06:38
VBASE004.VDF : 7.11.0.3 2048 Bytes 14.12.2010 21:06:38
VBASE005.VDF : 7.11.0.4 2048 Bytes 14.12.2010 21:06:39
VBASE006.VDF : 7.11.0.5 2048 Bytes 14.12.2010 21:06:39
VBASE007.VDF : 7.11.0.6 2048 Bytes 14.12.2010 21:06:40
VBASE008.VDF : 7.11.0.7 2048 Bytes 14.12.2010 21:06:40
VBASE009.VDF : 7.11.0.8 2048 Bytes 14.12.2010 21:06:41
VBASE010.VDF : 7.11.0.9 2048 Bytes 14.12.2010 21:06:42
VBASE011.VDF : 7.11.0.10 2048 Bytes 14.12.2010 21:06:42
VBASE012.VDF : 7.11.0.11 2048 Bytes 14.12.2010 21:06:43
VBASE013.VDF : 7.11.0.52 128000 Bytes 16.12.2010 20:22:35
VBASE014.VDF : 7.11.0.91 226816 Bytes 20.12.2010 22:54:00
VBASE015.VDF : 7.11.0.122 136192 Bytes 21.12.2010 22:53:46
VBASE016.VDF : 7.11.0.156 122880 Bytes 24.12.2010 20:00:47
VBASE017.VDF : 7.11.0.185 146944 Bytes 27.12.2010 20:00:47
VBASE018.VDF : 7.11.0.228 132608 Bytes 30.12.2010 13:10:40
VBASE019.VDF : 7.11.1.5 148480 Bytes 03.01.2011 13:10:41
VBASE020.VDF : 7.11.1.37 156672 Bytes 07.01.2011 21:57:16
VBASE021.VDF : 7.11.1.65 140800 Bytes 10.01.2011 21:57:37
VBASE022.VDF : 7.11.1.66 2048 Bytes 10.01.2011 21:57:40
VBASE023.VDF : 7.11.1.67 2048 Bytes 10.01.2011 21:57:43
VBASE024.VDF : 7.11.1.68 2048 Bytes 10.01.2011 21:57:45
VBASE025.VDF : 7.11.1.69 2048 Bytes 10.01.2011 21:57:47
VBASE026.VDF : 7.11.1.70 2048 Bytes 10.01.2011 21:57:49
VBASE027.VDF : 7.11.1.71 2048 Bytes 10.01.2011 21:57:51
VBASE028.VDF : 7.11.1.72 2048 Bytes 10.01.2011 21:57:53
VBASE029.VDF : 7.11.1.73 2048 Bytes 10.01.2011 21:57:56
VBASE030.VDF : 7.11.1.74 2048 Bytes 10.01.2011 21:57:59
VBASE031.VDF : 7.11.1.80 37888 Bytes 10.01.2011 21:58:10
Engineversion : 8.2.4.140
AEVDF.DLL : 8.1.2.1 106868 Bytes 30.07.2010 08:21:35
AESCRIPT.DLL : 8.1.3.52 1282426 Bytes 10.01.2011 22:04:43
AESCN.DLL : 8.1.7.2 127349 Bytes 22.11.2010 22:49:12
AESBX.DLL : 8.1.3.2 254324 Bytes 22.11.2010 22:49:17
AERDL.DLL : 8.1.9.2 635252 Bytes 22.09.2010 09:25:43
AEPACK.DLL : 8.2.4.7 512375 Bytes 04.01.2011 13:10:47
AEOFFICE.DLL : 8.1.1.10 201084 Bytes 22.11.2010 22:49:11
AEHEUR.DLL : 8.1.2.64 3154294 Bytes 10.01.2011 22:03:48
AEHELP.DLL : 8.1.16.0 246136 Bytes 02.12.2010 23:37:13
AEGEN.DLL : 8.1.5.1 397683 Bytes 10.01.2011 21:58:55
AEEMU.DLL : 8.1.3.0 393589 Bytes 22.11.2010 22:48:50
AECORE.DLL : 8.1.19.0 196984 Bytes 02.12.2010 23:37:11
AEBB.DLL : 8.1.1.0 53618 Bytes 27.04.2010 04:38:52
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12.12.2008 07:47:59
AVPREF.DLL : 9.0.3.0 44289 Bytes 09.09.2009 16:57:25
AVREP.DLL : 8.0.0.7 159784 Bytes 18.02.2010 06:08:23
AVREG.DLL : 9.0.0.0 36609 Bytes 05.12.2008 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 24.03.2009 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30.01.2009 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28.01.2009 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02.02.2009 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05.12.2008 09:32:10
RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 09.06.2009 17:20:54
RCTEXT.DLL : 9.0.73.0 86785 Bytes 21.11.2009 00:04:01

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: delete
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: Dienstag, 11. Januar 2011 05:31

Starting search for hidden objects.
'120954' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'LUALL.EXE' - '1' Module(s) have been scanned
Scan process 'LUCOMS~1.EXE' - '1' Module(s) have been scanned
Scan process 'VPDN_LU.exe' - '1' Module(s) have been scanned
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'VPC32.exe' - '1' Module(s) have been scanned
Scan process 'ICQ.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'wecker220.exe' - '1' Module(s) have been scanned
Scan process 'plugin-container.exe' - '1' Module(s) have been scanned
Scan process 'CMUpdater.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'skypePM.exe' - '1' Module(s) have been scanned
Scan process 'UIMain.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'Skype.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'UIExec.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'VPTray.exe' - '1' Module(s) have been scanned
Scan process 'ccApp.exe' - '1' Module(s) have been scanned
Scan process 'sm56hlpr.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned
Scan process 'ehsched.exe' - '1' Module(s) have been scanned
Scan process 'Rtvscan.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'SDWinSec.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'AssistantServices.exe' - '1' Module(s) have been scanned
Scan process 'TomTomHOMEService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nlsvc.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'DefWatch.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'bmwebcfg.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD.exe' - '1' Module(s) have been scanned
Scan process 'ACEngSvr.exe' - '1' Module(s) have been scanned
Scan process 'ACMON.exe' - '1' Module(s) have been scanned
Scan process 'BatteryLife.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'wcourier.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD2.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'HControl.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'ASLDRSrv.exe' - '1' Module(s) have been scanned
Scan process 'ccSvcHst.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
80 processes with 80 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[INFO] Please restart the search with Administrator rights

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '48' files ).


Starting the file scan:

Begin scan in 'C:\' <Windoof>
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Windows\System32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <WoW>
D:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.


End of the scan: Dienstag, 11. Januar 2011 07:52
Used time: 2:21:17 Hour(s)

The scan has been done completely.

26596 Scanned directories
410774 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
3 Files cannot be scanned
410771 Files not concerned
2032 Archives were scanned
3 Warnings
2 Notes
120954 Objects were scanned with rootkit scan
0 Hidden objects were found
__________________


Alt 11.01.2011, 17:06   #3
Taurinus
 
JAVA/Small N / Y Viren und Trojan/Gen - Standard

JAVA/Small N / Y Viren und Trojan/Gen



PHP-Code:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 5502

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18865

11.01.2011 17:55:58
mbam-log-2011-01-11 (17-55-58).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|)
Durchsuchte Objekte: 289353
Laufzeit: 2 Stunde(n), 34 Minute(n), 13 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden) 
__________________

Alt 12.01.2011, 05:28   #4
Taurinus
 
JAVA/Small N / Y Viren und Trojan/Gen - Standard

JAVA/Small N / Y Viren und Trojan/Gen



Gerade hab ich mit einem weiteren Symantec scan wieder den Trojan/Gen gefunden.

es handelt sich um die datein vmain.class

Antwort

Themen zu JAVA/Small N / Y Viren und Trojan/Gen
.dll, administrator, antivir, audiodg.exe, avg, avira, calc.exe, desktop, dwm.exe, explorer.exe, file, firefox.exe, google, log, lsass.exe, mdm.exe, moved, nt.dll, programme, rundll, scan, services.exe, skype.exe, svchost.exe, symantec, system32, uiexec.exe, viren, virus, warning, windows, windows system, winlogon.exe, wmp



Ähnliche Themen: JAVA/Small N / Y Viren und Trojan/Gen


  1. Avira meldet JAVA/Agent-Viren sowie EXP/Dldr.Java.O und EXP/2012-4681.AD
    Plagegeister aller Art und deren Bekämpfung - 11.06.2013 (8)
  2. Ransom.Win32.Foreign / Trojan-Downloader.Java / Exploit.Java (Bildschirm weiß)
    Log-Analyse und Auswertung - 19.05.2013 (6)
  3. Java Viren seit Java Deinstallation
    Plagegeister aller Art und deren Bekämpfung - 14.02.2013 (32)
  4. Funde von Avira & Malwarebytes A-M: Java-Virus JAVA/Rilly.CL & Trojan.Zbot.EPSF
    Plagegeister aller Art und deren Bekämpfung - 16.01.2013 (17)
  5. Viren/Trojanerfund Trojan.0Access und JAVA/Treams.IX & Consorten
    Plagegeister aller Art und deren Bekämpfung - 08.01.2013 (12)
  6. AVSCAN hat mehrere Java-Viren JAVA/Agent.M* und Exploits EXP/CVE-2011-3544 gefunden
    Log-Analyse und Auswertung - 15.10.2012 (24)
  7. trojan.win32.small.bmrh, Trojan.win32.small.Zapchast.acjy
    Plagegeister aller Art und deren Bekämpfung - 09.08.2012 (22)
  8. Mehrere Funde! EXP/JAVA.Ternub.Gen - JAVA/Dldr.Small.CI - JAVA/Dldr.OpenC.A - EXP/08-5353.AI.5.A
    Plagegeister aller Art und deren Bekämpfung - 08.08.2012 (29)
  9. Spam mails vom computer? Trojan.sirefef, Trojan.dropper, trojan.small, etc.etc.
    Plagegeister aller Art und deren Bekämpfung - 03.07.2012 (13)
  10. Hilfe! Trojan.Small; Trojan.Sirefef; Rootkit.0Access; Trojan.Atraps.Gen2 auf meinem Rechner.
    Plagegeister aller Art und deren Bekämpfung - 29.06.2012 (11)
  11. Probleme mit Trojan.Small, Trojan.Sirefef.AG.35, Rootkid.0Access,TR/ATRAPS.Gen2
    Log-Analyse und Auswertung - 28.06.2012 (23)
  12. ikarus virus utilities meldet Trojan.Win64 und Trojan.Win32.Small
    Plagegeister aller Art und deren Bekämpfung - 20.06.2012 (11)
  13. viren "Trojan:Win32/Bumat!rts" und "Exploit Java/CVE-2010-0840.ew" auf Laptop
    Plagegeister aller Art und deren Bekämpfung - 05.10.2011 (8)
  14. tr/trash.gen, JAVA/small.AF und JAVA/Decouvert.AS
    Log-Analyse und Auswertung - 30.04.2011 (1)
  15. Java Viren, Trojan.Agent,... + Vista Uhrzeit Problem
    Plagegeister aller Art und deren Bekämpfung - 27.09.2010 (17)
  16. kaspersky findet angeblich viren ind java dateien - sind es wirklich viren ?
    Plagegeister aller Art und deren Bekämpfung - 22.08.2005 (6)
  17. Java-Scriptvirus JS/Small.AF und TR/StartPage.UO
    Plagegeister aller Art und deren Bekämpfung - 21.02.2005 (1)

Zum Thema JAVA/Small N / Y Viren und Trojan/Gen - Hallo zusammen Heute hat ein Standartscan den ich alle paar Wochen durchführe etwas ergeben und zwar hat Avira Java Viren gefunden. Dazu hänge ich den Log weiter unten an Daraufhin - JAVA/Small N / Y Viren und Trojan/Gen...
Archiv
Du betrachtest: JAVA/Small N / Y Viren und Trojan/Gen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.