| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: JS\Hiloti.C.1 und HTML/Rce.GenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
04.04.2012, 17:00
| #11 |
 |  JS\Hiloti.C.1 und HTML/Rce.Gen So: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-04 17:39:29
-----------------------------
17:39:29.254 OS Version: Windows x64 6.1.7601 Service Pack 1
17:39:29.254 Number of processors: 2 586 0x170A
17:39:29.254 ComputerName: ***-PC UserName: ***
17:39:29.581 Initialze error C000010E - driver not loaded
17:39:29.597 write error "aswCmnB.dll". Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
17:39:31.890 AVAST engine defs: 12040400
17:39:50.782 Service scanning
17:40:08.987 Modules scanning
17:40:08.987 Disk 0 trace - called modules:
17:40:08.987
17:40:09.377 AVAST engine scan C:\Windows
17:40:11.639 AVAST engine scan C:\Windows\system32
17:42:29.263 AVAST engine scan C:\Windows\system32\drivers
17:42:39.091 AVAST engine scan C:\Users\***
17:50:57.870 AVAST engine scan C:\ProgramData
17:52:04.872 Scan finished successfully
17:52:35.589 The log file has been saved successfully to "C:\Users\***\Desktop\aswMBR.txt"
(Log aus dem ersten, abgebrochenen Lauf: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-04 17:19:02
-----------------------------
17:19:02.477 OS Version: Windows x64 6.1.7601 Service Pack 1
17:19:02.477 Number of processors: 2 586 0x170A
17:19:02.477 ComputerName: ***-PC UserName: ***
17:19:02.805 Initialize success
17:23:00.694 AVAST engine defs: 12040400
17:23:10.426 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Scsi\mv61xx1Port4Path0Target0Lun0
17:23:10.426 Disk 0 Vendor: SAMSUNG_ Size: 305245MB BusType: 8
17:23:10.442 Disk 0 MBR read successfully
17:23:10.457 Disk 0 MBR scan
17:23:10.457 Disk 0 Windows 7 default MBR code
17:23:10.457 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 150000 MB offset 2048
17:23:10.488 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 155243 MB offset 307202048
17:23:10.535 Disk 0 scanning C:\Windows\system32\drivers
17:24:21.081 Service scanning
17:24:42.234 Modules scanning
17:24:42.234 Disk 0 trace - called modules:
17:24:42.250 ntoskrnl.exe CLASSPNP.SYS disk.sys SCSIPORT.SYS hal.dll mv61xx.sys
17:24:42.250 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049a1060]
17:24:42.266 3 CLASSPNP.SYS[fffff8800161743f] -> nt!IofCallDriver -> \Device\Scsi\mv61xx1Port4Path0Target0Lun0[0xfffffa800447b050]
17:27:42.640 AVAST engine scan C:\Windows
17:27:46.212 AVAST engine scan C:\Windows\system32
17:28:39.912 AVAST engine scan C:\Windows\system32\drivers
17:28:51.166 AVAST engine scan C:\Users\***
17:38:53.735 Disk 0 MBR has been saved successfully to "C:\Users\***\Desktop\MBR.dat"
17:38:53.740 The log file has been saved successfully to "C:\Users\***\Desktop\aswMBR.txt"
Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-04-04 18:57:32
-----------------------------
18:57:32.667 OS Version: Windows x64 6.1.7601 Service Pack 1
18:57:32.667 Number of processors: 2 586 0x170A
18:57:32.667 ComputerName: ***-PC UserName: ***
18:57:33.158 Initialize success
18:57:35.665 AVAST engine defs: 12040400
18:57:41.497 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Scsi\mv61xx1Port4Path0Target0Lun0
18:57:41.499 Disk 0 Vendor: SAMSUNG_ Size: 305245MB BusType: 8
18:57:41.511 Disk 0 MBR read successfully
18:57:41.512 Disk 0 MBR scan
18:57:41.515 Disk 0 Windows 7 default MBR code
18:57:41.526 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 150000 MB offset 2048
18:57:41.545 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 155243 MB offset 307202048
18:57:41.588 Disk 0 scanning C:\Windows\system32\drivers
18:57:53.687 Service scanning
18:58:12.233 Modules scanning
18:58:12.240 Disk 0 trace - called modules:
18:58:12.254 ntoskrnl.exe CLASSPNP.SYS disk.sys SCSIPORT.SYS hal.dll mv61xx.sys
18:58:12.258 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049a1060]
18:58:12.264 3 CLASSPNP.SYS[fffff8800161743f] -> nt!IofCallDriver -> \Device\Scsi\mv61xx1Port4Path0Target0Lun0[0xfffffa800447b050]
18:58:12.543 AVAST engine scan C:\Windows
18:58:17.381 AVAST engine scan C:\Windows\system32
19:01:55.806 AVAST engine scan C:\Windows\system32\drivers
19:02:14.109 AVAST engine scan C:\Users\***
19:16:30.881 AVAST engine scan C:\ProgramData
19:18:02.384 Scan finished successfully
19:18:53.526 Disk 0 MBR has been saved successfully to "C:\Users\***\Desktop\MBR.dat"
19:18:53.529 The log file has been saved successfully to "C:\Users\***\Desktop\aswMBR.txt"
|
| Themen zu JS\Hiloti.C.1 und HTML/Rce.Gen |
| acrobat update, adobe, antivir, asus, avira, bonjour, defender, desktop, device driver, dll, explorer, firefox, flash player, google, google earth, helper, home, internet, mozilla, nvidia, nvidia update, pdf, plug-in, rundll, scan, software, svchost.exe, sweetim, system, vista, windows, windows 7 home, windows 7 home premium |
Baum-Darstellung