Hi, during Update of AVPE i get the following warnign by avast on-acces..:
Sign of "Win32:Small-1700" has been found in "C:\Dokumente und Einstellungen\All
Users\Anwendungsdaten\AntiVir PersonalEdition Classic\TEMP\AVUPDATE_44d253fa\engine\avewin32.dll" file.
reproducible with each update (today..) .
false positive, isn't it..? someone else has this..?
*
a short search in avpe/avast-board: zip..
I use avast as On-Access, AVPE only on-Demand (AVPE-Guard service is off)
*
my recent HJT-log (overloaded, I know, but hopefully nothing nasty..?)
haven't had much time recently for IT/security..
Logfile of HijackThis v1.99.1
Scan saved at 22:32:33, on 03.08.2006
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\csrss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Programme\0190Warn\w0svc.exe
C:\Programme\AntiVir\Avast\aswUpdSv.exe
C:\Programme\AntiVir\Avast\ashServ.exe
C:\WINNT\System32\svchost.exe
D:\Programs\KerioFW\persfw.exe
C:\WINNT\system32\HPZipm12.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\Explorer.EXE
D:\Programs\system\MoBo_Monitor\MBM5.EXE
C:\PROGRA~1\AntiVir\Avast\ashDisp.exe
C:\PROGRA~1\0190WARN\WARN0190.EXE
D:\Programs\Spass\Folding\FAH502-Console.exe
D:\Programs\AntiSpam-K9\K9.exe
C:\Programme\Office\Office\1031\msoffice.exe
C:\Programme\SmartSurfer23\SmartSurfer.exe
D:\Programs\Netscape7\Netscp.exe
D:\Programs\Security\Ad-Aware\Ad-Aware.exe
C:\Programme\AntiVir\Avast\ashLogV.exe
C:\Programme\AntiVir\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINNT\system32\NOTEPAD.EXE
C:\PROGRA~1\WINZIP\winzip32.exe
D:\Programs\Security\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://windowsupdate.microsoft.com/O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat7\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre150_06\bin\ssv.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O4 - HKLM\..\Run: [MBM 5] "D:\Programs\system\MoBo_Monitor\MBM5.EXE"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\AntiVir\Avast\ashDisp.exe
O4 - HKLM\..\Run: [0190 Warner] C:\PROGRA~1\0190WARN\WARN0190.EXE
O4 - Startup: Folding@Home.lnk = D:\Programs\Spass\Folding\FAH502-Console.exe
O4 - Startup: Launch K9.lnk = D:\Programs\AntiSpam-K9\K9.exe
O4 - Global Startup: Adobe Reader - Schnellstart.lnk = C:\Programme\Adobe\Acrobat7\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre150_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre150_06\bin\ssv.dll
O15 - Trusted Zone:
http://channel1.aolsvc.deO15 - Trusted Zone:
http://by13fd.bay13.hotmail.msn.comO15 - Trusted Zone:
http://www.pcpitstop.comO16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) -
http://www.pcpitstop.com/pcpitstop/PCPitStop.CABO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://www.kaspersky.com/kos/english/kavwebscan_unicode.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://update.microsoft.com/windowsupdat...b?1122407243313O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.microsoft.com/microsoftupd...b?1130602417183O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) -
http://www.pcpitstop.com/mhLbl.cabO16 - DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} (Java Runtime Environment 1.4.1_07) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{C0E9508C-3004-4807-95C8-0575517A0630}: NameServer = 62.53.222.132 193.189.244.205
O23 - Service: 0190/0900 Warner Überwachungsdienst (0190_0900_Warner_MonitorService) - Mirko Böer - C:\Programme\0190Warn\w0svc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Programme\AntiVir\Avast\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Programme\AntiVir\Avast\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programme\AntiVir\Avast\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programme\AntiVir\Avast\ashWebSv.exe" /service (file missing)
O23 - Service: Verwaltungsdienst für die Verwaltung logischer Datenträger (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - D:\Programs\KerioFW\persfw.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
Thanks for your feedback and help.. :-)