Avira scan, 2 hidden?

View previous topic View next topic Go down

Avira scan, 2 hidden?

Post by Astronix on Fri 03 Dec 2010, 11:00 am

Hello, just wanted to check up on these two hidden items found by Avira today. Should i be concerned with them? Here's the log!

Avira AntiVir Personal
Report file date: Thursday, December 02, 2010 14:36

Scanning for 3110546 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available:

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Service Pack 3) [5.1.2600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : BANAOPOLIS

Version information:
BUILD.DAT : 10.0.0.596 31825 Bytes 11/16/2010 15:57:00
AVSCAN.EXE : 10.0.3.1 434344 Bytes 8/2/2010 21:09:56
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 18:57:04
LUKE.DLL : 10.0.2.3 104296 Bytes 8/2/2010 21:10:00
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 05:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 15:05:36
VBASE001.VDF : 7.10.1.0 1372672 Bytes 11/19/2009 01:27:49
VBASE002.VDF : 7.10.3.1 3143680 Bytes 1/20/2010 23:37:42
VBASE003.VDF : 7.10.3.75 996864 Bytes 1/26/2010 22:37:42
VBASE004.VDF : 7.10.4.203 1579008 Bytes 3/5/2010 17:29:03
VBASE005.VDF : 7.10.6.82 2494464 Bytes 4/15/2010 21:10:03
VBASE006.VDF : 7.10.7.218 2294784 Bytes 6/2/2010 21:10:04
VBASE007.VDF : 7.10.9.165 4840960 Bytes 7/23/2010 21:10:06
VBASE008.VDF : 7.10.11.133 3454464 Bytes 9/13/2010 03:25:59
VBASE009.VDF : 7.10.13.80 2265600 Bytes 11/2/2010 03:26:27
VBASE010.VDF : 7.10.13.81 2048 Bytes 11/2/2010 03:26:27
VBASE011.VDF : 7.10.13.82 2048 Bytes 11/2/2010 03:26:27
VBASE012.VDF : 7.10.13.83 2048 Bytes 11/2/2010 03:26:28
VBASE013.VDF : 7.10.13.116 147968 Bytes 11/4/2010 03:26:29
VBASE014.VDF : 7.10.13.147 146944 Bytes 11/7/2010 03:26:31
VBASE015.VDF : 7.10.13.180 123904 Bytes 11/9/2010 03:26:33
VBASE016.VDF : 7.10.13.211 122368 Bytes 11/11/2010 03:26:34
VBASE017.VDF : 7.10.13.243 147456 Bytes 11/15/2010 22:48:58
VBASE018.VDF : 7.10.14.15 142848 Bytes 11/17/2010 22:46:57
VBASE019.VDF : 7.10.14.41 134144 Bytes 11/19/2010 05:20:52
VBASE020.VDF : 7.10.14.63 128000 Bytes 11/22/2010 05:20:51
VBASE021.VDF : 7.10.14.87 143872 Bytes 11/24/2010 05:20:51
VBASE022.VDF : 7.10.14.116 140800 Bytes 11/26/2010 04:38:21
VBASE023.VDF : 7.10.14.147 150528 Bytes 11/30/2010 20:51:28
VBASE024.VDF : 7.10.14.148 2048 Bytes 11/30/2010 20:51:29
VBASE025.VDF : 7.10.14.149 2048 Bytes 11/30/2010 20:51:29
VBASE026.VDF : 7.10.14.150 2048 Bytes 11/30/2010 20:51:29
VBASE027.VDF : 7.10.14.151 2048 Bytes 11/30/2010 20:51:29
VBASE028.VDF : 7.10.14.152 2048 Bytes 11/30/2010 20:51:30
VBASE029.VDF : 7.10.14.153 2048 Bytes 11/30/2010 20:51:30
VBASE030.VDF : 7.10.14.154 2048 Bytes 11/30/2010 20:51:30
VBASE031.VDF : 7.10.14.164 49152 Bytes 12/1/2010 20:51:31
Engineversion : 8.2.4.114
AEVDF.DLL : 8.1.2.1 106868 Bytes 8/2/2010 21:09:54
AESCRIPT.DLL : 8.1.3.47 1294716 Bytes 11/23/2010 05:21:20
AESCN.DLL : 8.1.7.2 127349 Bytes 11/23/2010 05:21:16
AESBX.DLL : 8.1.3.2 254324 Bytes 11/23/2010 05:21:21
AERDL.DLL : 8.1.9.2 635252 Bytes 11/15/2010 03:27:08
AEPACK.DLL : 8.2.3.11 471416 Bytes 11/15/2010 03:27:04
AEOFFICE.DLL : 8.1.1.10 201084 Bytes 11/23/2010 05:21:15
AEHEUR.DLL : 8.1.2.46 3088759 Bytes 11/29/2010 04:38:40
AEHELP.DLL : 8.1.15.0 246135 Bytes 11/29/2010 04:38:24
AEGEN.DLL : 8.1.4.2 401781 Bytes 11/23/2010 05:20:58
AEEMU.DLL : 8.1.3.0 393589 Bytes 11/23/2010 05:20:56
AECORE.DLL : 8.1.18.1 196984 Bytes 11/23/2010 05:20:55
AEBB.DLL : 8.1.1.0 53618 Bytes 8/2/2010 21:09:48
AVWINLL.DLL : 10.0.0.0 19304 Bytes 8/2/2010 21:09:56
AVPREF.DLL : 10.0.0.0 44904 Bytes 8/2/2010 21:09:55
AVREP.DLL : 10.0.0.8 62209 Bytes 6/17/2010 20:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 8/2/2010 21:09:55
AVSCPLR.DLL : 10.0.3.1 83816 Bytes 8/2/2010 21:09:56
AVARKT.DLL : 10.0.0.14 227176 Bytes 8/2/2010 21:09:54
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 8/2/2010 21:09:55
SQLITE3.DLL : 3.6.19.0 355688 Bytes 6/17/2010 20:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 8/2/2010 21:09:56
NETNT.DLL : 10.0.0.0 11624 Bytes 6/17/2010 20:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 1/28/2010 19:10:20
RCTEXT.DLL : 10.0.58.0 97128 Bytes 8/2/2010 21:10:08

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: Thursday, December 02, 2010 14:36

Starting search for hidden objects.
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NtmsSvc\Config\Standalone\drivelist
[NOTE] The registry entry is invisible.
c:\program files\synaptics\syntp\syntplpr.exe
c:\Program Files\Synaptics\SynTP\SynTPLpr.exe
[NOTE] The process is not visible.

The scan of running processes will be started
Scan process 'rsmsink.exe' - '28' Module(s) have been scanned
Scan process 'plugin-container.exe' - '64' Module(s) have been scanned
Scan process 'firefox.exe' - '81' Module(s) have been scanned
Scan process 'msdtc.exe' - '40' Module(s) have been scanned
Scan process 'dllhost.exe' - '45' Module(s) have been scanned
Scan process 'vssvc.exe' - '48' Module(s) have been scanned
Scan process 'avscan.exe' - '70' Module(s) have been scanned
Scan process 'avcenter.exe' - '63' Module(s) have been scanned
Scan process 'iPodService.exe' - '29' Module(s) have been scanned
Scan process 'GoogleDesktopDisplay.exe' - '28' Module(s) have been scanned
Scan process 'GoogleDesktopIndex.exe' - '22' Module(s) have been scanned
Scan process 'ctfmon.exe' - '26' Module(s) have been scanned
Scan process 'jusched.exe' - '23' Module(s) have been scanned
Scan process 'avgnt.exe' - '51' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '69' Module(s) have been scanned
Scan process 'WLTRAY.exe' - '31' Module(s) have been scanned
Scan process 'SynTPEnh.exe' - '27' Module(s) have been scanned
Scan process 'SynTPLpr.exe' - '20' Module(s) have been scanned
Scan process 'ehmsas.exe' - '20' Module(s) have been scanned
Scan process 'GoogleDesktop.exe' - '24' Module(s) have been scanned
Scan process 'ehtray.exe' - '45' Module(s) have been scanned
Scan process 'Explorer.EXE' - '100' Module(s) have been scanned
Scan process 'Ati2evxx.exe' - '20' Module(s) have been scanned
Scan process 'alg.exe' - '33' Module(s) have been scanned
Scan process 'dllhost.exe' - '61' Module(s) have been scanned
Scan process 'mcrdsvc.exe' - '29' Module(s) have been scanned
Scan process 'YahooAUService.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'PRISMXL.SYS' - '13' Module(s) have been scanned
Scan process 'McciCMService.exe' - '27' Module(s) have been scanned
Scan process 'jqs.exe' - '33' Module(s) have been scanned
Scan process 'avshadow.exe' - '26' Module(s) have been scanned
Scan process 'ehSched.exe' - '39' Module(s) have been scanned
Scan process 'ehRecvr.exe' - '43' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '33' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '33' Module(s) have been scanned
Scan process 'avguard.exe' - '55' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'sched.exe' - '45' Module(s) have been scanned
Scan process 'spoolsv.exe' - '58' Module(s) have been scanned
Scan process 'bcmwltry.exe' - '49' Module(s) have been scanned
Scan process 'wltrysvc.exe' - '13' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '174' Module(s) have been scanned
Scan process 'svchost.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '51' Module(s) have been scanned
Scan process 'Ati2evxx.exe' - '15' Module(s) have been scanned
Scan process 'lsass.exe' - '58' Module(s) have been scanned
Scan process 'services.exe' - '27' Module(s) have been scanned
Scan process 'winlogon.exe' - '75' Module(s) have been scanned
Scan process 'csrss.exe' - '12' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:'
[INFO] No virus was found!
Boot sector 'D:'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '1751' files ).


Starting the file scan:

Begin scan in 'C:'
Begin scan in 'D:' <RECOVERY>


End of the scan: Thursday, December 02, 2010 18:40
Used time: 4:04:08 Hour(s)

The scan has been done completely.

8181 Scanned directories
437458 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
437458 Files not concerned
14270 Archives were scanned
0 Warnings
0 Notes
344831 Objects were scanned with rootkit scan
2 Hidden objects were found


Astronix

Rookie Surfer
Rookie Surfer

Posts : 95
Joined : 2009-05-05
Operating System : Windows XP

View user profile

Back to top Go down

Re: Avira scan, 2 hidden?

Post by Belahzur on Fri 03 Dec 2010, 11:52 am

It's fine, those 2 hidden are legit.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum