Premium Security Suite
Report file date: 16/رجب/1431 03:47
Scanning for 2271274 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : ************
Serial number : 2208837812-ISECE-0000001
Platform : Windows Vista
Windows version : (plain) [6.0.6000]
Boot mode : Normally booted
Username : SYSTEM
Computer name : DELL-LAPTOP
Version information:
BUILD.DAT : 10.0.0.542 43194 Bytes 05/05/31 15:06:00
AVSCAN.EXE : 10.0.3.0 433832 Bytes 16/04/31 10:37:02
AVSCAN.DLL : 10.0.3.0 46440 Bytes 16/04/31 10:57:02
LUKE.DLL : 10.0.2.3 104296 Bytes 21/03/31 16:32:09
LUKERES.DLL : 10.0.0.1 12648 Bytes 26/02/31 21:40:44
VBASE000.VDF : 7.10.0.0 19875328 Bytes 18/11/30 07:05:36
VBASE001.VDF : 7.10.1.0 1372672 Bytes 02/12/30 17:27:49
VBASE002.VDF : 7.10.3.1 3143680 Bytes 05/02/31 15:37:42
VBASE003.VDF : 7.10.3.75 996864 Bytes 11/02/31 14:37:42
VBASE004.VDF : 7.10.4.203 1579008 Bytes 19/03/31 09:29:03
VBASE005.VDF : 7.10.6.82 2494464 Bytes 01/05/31 00:43:20
VBASE006.VDF : 7.10.7.218 2294784 Bytes 19/06/31 00:43:42
VBASE007.VDF : 7.10.7.219 2048 Bytes 19/06/31 00:43:42
VBASE008.VDF : 7.10.7.220 2048 Bytes 19/06/31 00:43:42
VBASE009.VDF : 7.10.7.221 2048 Bytes 19/06/31 00:43:42
VBASE010.VDF : 7.10.7.222 2048 Bytes 19/06/31 00:43:42
VBASE011.VDF : 7.10.7.223 2048 Bytes 19/06/31 00:43:43
VBASE012.VDF : 7.10.7.224 2048 Bytes 19/06/31 00:43:43
VBASE013.VDF : 7.10.8.37 270336 Bytes 27/06/31 00:43:46
VBASE014.VDF : 7.10.8.69 138752 Bytes 02/07/31 00:43:47
VBASE015.VDF : 7.10.8.102 130560 Bytes 04/07/31 00:43:48
VBASE016.VDF : 7.10.8.135 152064 Bytes 09/07/31 00:43:50
VBASE017.VDF : 7.10.8.163 432128 Bytes 11/07/31 00:43:54
VBASE018.VDF : 7.10.8.164 2048 Bytes 11/07/31 00:43:55
VBASE019.VDF : 7.10.8.165 2048 Bytes 11/07/31 00:43:55
VBASE020.VDF : 7.10.8.166 2048 Bytes 11/07/31 00:43:55
VBASE021.VDF : 7.10.8.167 2048 Bytes 11/07/31 00:43:55
VBASE022.VDF : 7.10.8.168 2048 Bytes 11/07/31 00:43:55
VBASE023.VDF : 7.10.8.169 2048 Bytes 11/07/31 00:43:56
VBASE024.VDF : 7.10.8.170 2048 Bytes 11/07/31 00:43:56
VBASE025.VDF : 7.10.8.171 2048 Bytes 11/07/31 00:43:56
VBASE026.VDF : 7.10.8.172 2048 Bytes 11/07/31 00:43:56
VBASE027.VDF : 7.10.8.173 2048 Bytes 11/07/31 00:43:57
VBASE028.VDF : 7.10.8.174 2048 Bytes 11/07/31 00:43:57
VBASE029.VDF : 7.10.8.175 2048 Bytes 11/07/31 00:43:57
VBASE030.VDF : 7.10.8.176 2048 Bytes 11/07/31 00:43:57
VBASE031.VDF : 7.10.8.191 133632 Bytes 15/07/31 00:43:59
Engineversion : 8.2.4.2
AEVDF.DLL : 8.1.2.0 106868 Bytes 16/07/31 00:44:33
AESCRIPT.DLL : 8.1.3.33 1356155 Bytes 16/07/31 00:44:32
AESCN.DLL : 8.1.6.1 127347 Bytes 16/07/31 00:44:28
AESBX.DLL : 8.1.3.1 254324 Bytes 16/07/31 00:44:34
AERDL.DLL : 8.1.4.6 541043 Bytes 16/07/31 00:44:27
AEPACK.DLL : 8.2.2.5 430453 Bytes 16/07/31 00:44:24
AEOFFICE.DLL : 8.1.1.0 201081 Bytes 16/07/31 00:44:22
AEHEUR.DLL : 8.1.1.38 2724214 Bytes 16/07/31 00:44:20
AEHELP.DLL : 8.1.11.6 242038 Bytes 16/07/31 00:44:08
AEGEN.DLL : 8.1.3.12 377204 Bytes 16/07/31 00:44:06
AEEMU.DLL : 8.1.2.0 393588 Bytes 16/07/31 00:44:04
AECORE.DLL : 8.1.15.3 192886 Bytes 16/07/31 00:44:03
AEBB.DLL : 8.1.1.0 53618 Bytes 16/07/31 00:44:02
AVWINLL.DLL : 10.0.0.0 19304 Bytes 28/01/31 10:02:28
AVPREF.DLL : 10.0.0.0 44904 Bytes 28/01/31 10:02:23
AVREP.DLL : 10.0.0.8 62209 Bytes 04/03/31 14:47:40
AVREG.DLL : 10.0.3.0 53096 Bytes 16/04/31 10:35:28
AVSCPLR.DLL : 10.0.3.0 83816 Bytes 16/04/31 10:39:33
AVARKT.DLL : 10.0.0.14 227176 Bytes 16/04/31 10:21:44
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 11/02/31 07:52:23
SQLITE3.DLL : 3.6.19.0 355688 Bytes 13/02/31 10:57:05
AVSMTP.DLL : 10.0.0.17 63848 Bytes 30/03/31 13:38:38
NETNT.DLL : 10.0.0.0 11624 Bytes 05/03/31 12:40:04
RCIMAGE.DLL : 10.0.0.32 2899304 Bytes 16/04/31 10:57:19
RCTEXT.DLL : 10.0.53.0 97128 Bytes 24/04/31 12:14:22
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Start of the scan: 16/رجب/1431 03:47
Starting search for hidden objects.
The scan of running processes will be started
Scan process 'taskeng.exe' - '24' Module(s) have been scanned
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'vssvc.exe' - '48' Module(s) have been scanned
Scan process 'avscan.exe' - '78' Module(s) have been scanned
Scan process 'avmailc.exe' - '57' Module(s) have been scanned
Scan process 'unsecapp.exe' - '29' Module(s) have been scanned
Scan process 'wlcomm.exe' - '88' Module(s) have been scanned
Scan process 'avcenter.exe' - '102' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '34' Module(s) have been scanned
Scan process 'taskeng.exe' - '47' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '73' Module(s) have been scanned
Scan process 'AVWEBGRD.EXE' - '47' Module(s) have been scanned
Scan process 'xaudio.exe' - '14' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '55' Module(s) have been scanned
Scan process 'svchost.exe' - '7' Module(s) have been scanned
Scan process 'svchost.exe' - '63' Module(s) have been scanned
Scan process 'STacSV.exe' - '31' Module(s) have been scanned
Scan process 'svchost.exe' - '46' Module(s) have been scanned
Scan process 'svchost.exe' - '22' Module(s) have been scanned
Scan process 'avshadow.exe' - '33' Module(s) have been scanned
Scan process 'svchost.exe' - '22' Module(s) have been scanned
Scan process 'mdm.exe' - '20' Module(s) have been scanned
Scan process 'McciCMService.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '37' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '44' Module(s) have been scanned
Scan process 'avguard.exe' - '87' Module(s) have been scanned
Scan process 'avfwsvc.exe' - '56' Module(s) have been scanned
Scan process 'aestsrv.exe' - '5' Module(s) have been scanned
Scan process 'Apntex.exe' - '20' Module(s) have been scanned
Scan process 'HidFind.exe' - '23' Module(s) have been scanned
Scan process 'quickset.exe' - '77' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '29' Module(s) have been scanned
Scan process 'GoogleUpdate.exe' - '48' Module(s) have been scanned
Scan process 'RKLauncher.exe' - '45' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '186' Module(s) have been scanned
Scan process 'sidebar.exe' - '77' Module(s) have been scanned
Scan process 'avgnt.exe' - '74' Module(s) have been scanned
Scan process 'ApMsgFwd.exe' - '16' Module(s) have been scanned
Scan process 'jusched.exe' - '22' Module(s) have been scanned
Scan process 'wpcumi.exe' - '42' Module(s) have been scanned
Scan process 'WLTRAY.EXE' - '62' Module(s) have been scanned
Scan process 'Apoint.exe' - '31' Module(s) have been scanned
Scan process 'taskeng.exe' - '83' Module(s) have been scanned
Scan process 'Explorer.EXE' - '124' Module(s) have been scanned
Scan process 'Dwm.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '60' Module(s) have been scanned
Scan process 'WLANExt.exe' - '37' Module(s) have been scanned
Scan process 'sched.exe' - '58' Module(s) have been scanned
Scan process 'spoolsv.exe' - '89' Module(s) have been scanned
Scan process 'bcmwltry.exe' - '67' Module(s) have been scanned
Scan process 'WLTRYSVC.EXE' - '15' Module(s) have been scanned
Scan process 'svchost.exe' - '91' Module(s) have been scanned
Scan process 'svchost.exe' - '81' Module(s) have been scanned
Scan process 'SLsvc.exe' - '26' Module(s) have been scanned
Scan process 'svchost.exe' - '153' Module(s) have been scanned
Scan process 'svchost.exe' - '120' Module(s) have been scanned
Scan process 'svchost.exe' - '78' Module(s) have been scanned
Scan process 'svchost.exe' - '45' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'winlogon.exe' - '32' Module(s) have been scanned
Scan process 'lsm.exe' - '32' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '46' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Starting to scan executable files (registry).
The registry was scanned ( '1735' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\Users\User\AppData\Local\Microsoft\Messenger\*****_*****@hotmail.com\ObjectStore\CustomEmoticons\PoGUUsQmhB7e7oggDBudvrVTWyg=.dt2
[DETECTION] Contains recognition pattern of the HTML/PicFrame.Gen HTML script virus
C:\Users\User\Desktop\********.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[0] Archive type: RAR SFX (self extracting)
--> 32788R22FWJFW\hidec.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
--> 32788R22FWJFW\iexplore.exe
[DETECTION] Is the TR/Crypt.ZPACK.Gen2 Trojan
--> 32788R22FWJFW\swreg.exe
[DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
--> 32788R22FWJFW\dumphive.cfxxe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
--> 32788R22FWJFW\ERUNT.cfxxe
[DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
--> 32788R22FWJFW\NirCmd.cfxxe
[DETECTION] Is the TR/Crypt.ZPACK.Gen2 Trojan
--> 32788R22FWJFW\NirCmdC.cfxxe
[DETECTION] Is the TR/Crypt.ZPACK.Gen2 Trojan
--> 32788R22FWJFW\swsc.cfxxe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
--> 32788R22FWJFW\ERDNT.e_e
[DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
--> 32788R22FWJFW\n.pif
[DETECTION] Is the TR/Crypt.ZPACK.Gen2 Trojan
Begin scan in 'D:\'
Beginning disinfection:
C:\Users\User\Desktop\********.exe
[DETECTION] Is the TR/Crypt.ZPACK.Gen2 Trojan
[NOTE] The file was moved to the quarantine directory under the name '4f10adef.qua'.
C:\Users\User\AppData\Local\Microsoft\Messenger\****_*****@hotmail.com\ObjectStore\CustomEmoticons\PoGUUsQmhB7e7oggDBudvrVTWyg=.dt2
[DETECTION] Contains recognition pattern of the HTML/PicFrame.Gen HTML script virus
[NOTE] The file was moved to the quarantine directory under the name '577d8249.qua'.
End of the scan: 16/رجب/1431 05:29
Used time: 1:39:01 Hour(s)
The scan has been done completely.
14482 Scanned directories
411710 Files were scanned
11 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
2 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
411699 Files not concerned
2085 Archives were scanned
0 Warnings
2 Notes
573787 Objects were scanned with rootkit scan
0 Hidden objects were found
