Win32:Evo-gen [Susp]

porsche123 · 22.07.2014, 13:35

Win32:Evo-gen [Susp]

Habe bei einer Überprüfunf mit aswMBR folgendes Log erhalten:

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-07-22 13:22:32
-----------------------------
13:22:32.038 OS Version: Windows 5.1.2600 Service Pack 3
13:22:32.038 Number of processors: 2 586 0x409
13:22:32.038 ComputerName: PC UserName:
13:22:32.616 Initialize success
13:22:36.929 AVAST engine defs: 14072101
13:22:40.163 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e
13:22:40.179 Disk 0 Vendor: WDC_WD5000AADS-00S9B0 01.00A01 Size: 476940MB BusType: 3
13:22:40.273 Disk 0 MBR read successfully
13:22:40.273 Disk 0 MBR scan
13:22:40.491 Disk 0 Windows XP default MBR code
13:22:40.491 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 204805 MB offset 63
13:22:40.554 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 272132 MB offset 419441085
13:22:40.554 Disk 0 scanning sectors +976768065
13:22:40.663 Disk 0 scanning C:\WINDOWS\system32\drivers
13:22:48.241 Service scanning
13:22:59.319 Modules scanning
13:23:03.007 Disk 0 trace - called modules:
13:23:03.023 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
13:23:03.023 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a1eeab8]
13:23:03.023 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\0000006a[0x8a1919e8]
13:23:03.023 5 ACPI.sys[f75ad620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-e[0x8a162940]
13:23:03.585 AVAST engine scan C:\WINDOWS
13:23:06.288 AVAST engine scan C:\WINDOWS\system32
13:25:06.163 AVAST engine scan C:\WINDOWS\system32\drivers
13:25:19.788 AVAST engine scan C:\Dokumente und Einstellungen\MundK
13:26:45.976 AVAST engine scan C:\Dokumente und Einstellungen\All Users
13:28:40.773 File: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SFirm\tmp\PL39x\6\p\d\SfImpAkk.dll **INFECTED** Win32:Evo-gen [Susp]
13:28:51.116 File: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SFirm\tmp\PL39x\95\p\d\SfImpAkk.dll **INFECTED** Win32:Evo-gen [Susp]
13:29:56.351 File: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SFirm\versionsupdate\setup\program files\sfirm\sfimpakk.dll **INFECTED** Win32:Evo-gen [Susp]
13:30:18.304 Scan finished successfully
14:02:09.241 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\MundK\Desktop\Sicherheit\MBR.dat"
14:02:09.256 The log file has been saved successfully to "C:\Dokumente und Einstellungen\MundK\Desktop\Sicherheit\kaspersky.txt"
14:03:28.100 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\MundK\Desktop\MBR.dat"
14:03:28.100 The log file has been saved successfully to "C:\Dokumente und Einstellungen\MundK\Desktop\aswMBR.txt"

Habe ich in Sfirm einen Virus?

Win32:Evo-gen [Susp]

Log-Analyse und Auswertung: Win32:Evo-gen [Susp]

Win32:Evo-gen [Susp]

Ähnliche Themen: Win32:Evo-gen [Susp]