Hallo zusammen
Heute hat ein Standartscan den ich alle paar Wochen durchführe etwas ergeben
und zwar hat Avira Java Viren gefunden.
Dazu hänge ich den Log weiter unten an
Daraufhin habe ich noch einmal mit Symantec Anitvirus gescannt und damit einen Trojan/Gen gefunden, leider finde ich dazu keinen Log.
Die Programme haben die Viren nach eigenen angaben "beseitigt"
Erneute Scans haben nichts ergeben.
Trotzdem wollte ich das vorhandene Restrisiko beseitigen
Malewarebytes wurde gerade Installiert und scannt während ich jetzt wieder weiter Arbeite.
gruß Mario
Zitat:
Avira AntiVir Personal
Report file date: Dienstag, 11. Januar 2011 00:33
Scanning for 2344348 virus strains and unwanted programs.
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows Vista
Windows version : (Service Pack 2) [6.0.6002]
Boot mode : Normally booted
Username : SYSTEM
Computer name : TAURINUS
Version information:
BUILD.DAT : 9.0.0.429 21701 Bytes 06.10.2010 10:04:00
AVSCAN.EXE : 9.0.3.10 466689 Bytes 21.11.2009 00:04:07
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27.02.2009 09:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20.02.2009 10:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27.02.2009 09:58:52
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06.11.2009 00:04:03
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14.12.2010 21:06:37
VBASE002.VDF : 7.11.0.1 2048 Bytes 14.12.2010 21:06:37
VBASE003.VDF : 7.11.0.2 2048 Bytes 14.12.2010 21:06:38
VBASE004.VDF : 7.11.0.3 2048 Bytes 14.12.2010 21:06:38
VBASE005.VDF : 7.11.0.4 2048 Bytes 14.12.2010 21:06:39
VBASE006.VDF : 7.11.0.5 2048 Bytes 14.12.2010 21:06:39
VBASE007.VDF : 7.11.0.6 2048 Bytes 14.12.2010 21:06:40
VBASE008.VDF : 7.11.0.7 2048 Bytes 14.12.2010 21:06:40
VBASE009.VDF : 7.11.0.8 2048 Bytes 14.12.2010 21:06:41
VBASE010.VDF : 7.11.0.9 2048 Bytes 14.12.2010 21:06:42
VBASE011.VDF : 7.11.0.10 2048 Bytes 14.12.2010 21:06:42
VBASE012.VDF : 7.11.0.11 2048 Bytes 14.12.2010 21:06:43
VBASE013.VDF : 7.11.0.52 128000 Bytes 16.12.2010 20:22:35
VBASE014.VDF : 7.11.0.91 226816 Bytes 20.12.2010 22:54:00
VBASE015.VDF : 7.11.0.122 136192 Bytes 21.12.2010 22:53:46
VBASE016.VDF : 7.11.0.156 122880 Bytes 24.12.2010 20:00:47
VBASE017.VDF : 7.11.0.185 146944 Bytes 27.12.2010 20:00:47
VBASE018.VDF : 7.11.0.228 132608 Bytes 30.12.2010 13:10:40
VBASE019.VDF : 7.11.1.5 148480 Bytes 03.01.2011 13:10:41
VBASE020.VDF : 7.11.1.37 156672 Bytes 07.01.2011 21:57:16
VBASE021.VDF : 7.11.1.65 140800 Bytes 10.01.2011 21:57:37
VBASE022.VDF : 7.11.1.66 2048 Bytes 10.01.2011 21:57:40
VBASE023.VDF : 7.11.1.67 2048 Bytes 10.01.2011 21:57:43
VBASE024.VDF : 7.11.1.68 2048 Bytes 10.01.2011 21:57:45
VBASE025.VDF : 7.11.1.69 2048 Bytes 10.01.2011 21:57:47
VBASE026.VDF : 7.11.1.70 2048 Bytes 10.01.2011 21:57:49
VBASE027.VDF : 7.11.1.71 2048 Bytes 10.01.2011 21:57:51
VBASE028.VDF : 7.11.1.72 2048 Bytes 10.01.2011 21:57:53
VBASE029.VDF : 7.11.1.73 2048 Bytes 10.01.2011 21:57:56
VBASE030.VDF : 7.11.1.74 2048 Bytes 10.01.2011 21:57:59
VBASE031.VDF : 7.11.1.80 37888 Bytes 10.01.2011 21:58:10
Engineversion : 8.2.4.140
AEVDF.DLL : 8.1.2.1 106868 Bytes 30.07.2010 08:21:35
AESCRIPT.DLL : 8.1.3.52 1282426 Bytes 10.01.2011 22:04:43
AESCN.DLL : 8.1.7.2 127349 Bytes 22.11.2010 22:49:12
AESBX.DLL : 8.1.3.2 254324 Bytes 22.11.2010 22:49:17
AERDL.DLL : 8.1.9.2 635252 Bytes 22.09.2010 09:25:43
AEPACK.DLL : 8.2.4.7 512375 Bytes 04.01.2011 13:10:47
AEOFFICE.DLL : 8.1.1.10 201084 Bytes 22.11.2010 22:49:11
AEHEUR.DLL : 8.1.2.64 3154294 Bytes 10.01.2011 22:03:48
AEHELP.DLL : 8.1.16.0 246136 Bytes 02.12.2010 23:37:13
AEGEN.DLL : 8.1.5.1 397683 Bytes 10.01.2011 21:58:55
AEEMU.DLL : 8.1.3.0 393589 Bytes 22.11.2010 22:48:50
AECORE.DLL : 8.1.19.0 196984 Bytes 02.12.2010 23:37:11
AEBB.DLL : 8.1.1.0 53618 Bytes 27.04.2010 04:38:52
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12.12.2008 07:47:59
AVPREF.DLL : 9.0.3.0 44289 Bytes 09.09.2009 16:57:25
AVREP.DLL : 8.0.0.7 159784 Bytes 18.02.2010 06:08:23
AVREG.DLL : 9.0.0.0 36609 Bytes 05.12.2008 09:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 24.03.2009 14:05:41
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30.01.2009 09:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28.01.2009 14:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02.02.2009 07:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05.12.2008 09:32:10
RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 09.06.2009 17:20:54
RCTEXT.DLL : 9.0.73.0 86785 Bytes 21.11.2009 00:04:01
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: delete
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+SPR,
Start of the scan: Dienstag, 11. Januar 2011 00:33
Starting search for hidden objects.
'121045' objects were checked, '0' hidden objects were found.
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'calc.exe' - '1' Module(s) have been scanned
Scan process 'ICQ.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'wecker220.exe' - '1' Module(s) have been scanned
Scan process 'plugin-container.exe' - '1' Module(s) have been scanned
Scan process 'CMUpdater.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'skypePM.exe' - '1' Module(s) have been scanned
Scan process 'UIMain.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'Skype.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'UIExec.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'VPTray.exe' - '1' Module(s) have been scanned
Scan process 'ccApp.exe' - '1' Module(s) have been scanned
Scan process 'sm56hlpr.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned
Scan process 'ehsched.exe' - '1' Module(s) have been scanned
Scan process 'Rtvscan.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'SDWinSec.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'AssistantServices.exe' - '1' Module(s) have been scanned
Scan process 'TomTomHOMEService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nlsvc.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'DefWatch.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'bmwebcfg.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD.exe' - '1' Module(s) have been scanned
Scan process 'ACEngSvr.exe' - '1' Module(s) have been scanned
Scan process 'ACMON.exe' - '1' Module(s) have been scanned
Scan process 'BatteryLife.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'wcourier.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'ATKOSD2.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'HControl.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'ASLDRSrv.exe' - '1' Module(s) have been scanned
Scan process 'ccSvcHst.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
77 processes with 77 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '48' files ).
Starting the file scan:
Begin scan in 'C:\' <Windoof>
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\51062591-155c239d
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d5ba48e.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\42d0a6ad-1d7ee34c
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d8fa4b1.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Users\BBB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\154fcf31-645cafea
[0] Archive type: ZIP
--> game/ballgames.class
[DETECTION] Contains recognition pattern of the JAVA/Small.N Java virus
--> game/game39fdbb1a.class
[DETECTION] Contains recognition pattern of the JAVA/Small.Y Java virus
[NOTE] A backup was created as '4d5fa4b8.qua' ( QUARANTINE )
[NOTE] The file was deleted!
C:\Windows\System32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <WoW>
D:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
End of the scan: Dienstag, 11. Januar 2011 02:50
Used time: 2:16:57 Hour(s)
The scan has been done completely.
26592 Scanned directories
410911 Files were scanned
6 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
3 files were deleted
0 Viruses and unwanted programs were repaired
3 Files were moved to quarantine
0 Files were renamed
3 Files cannot be scanned
410902 Files not concerned
2071 Archives were scanned
3 Warnings
5 Notes
121045 Objects were scanned with rootkit scan
0 Hidden objects were found
|
11.01.2011, 13:05
Linear-Darstellung
