safari510

Member
  • Content Count

    2
  • Joined

  • Last visited

Community Reputation

0 Neutral

About safari510

  • Rank
    New Member
  1. Hallo, danke für die Hinweise - hier der aswMBR.,txt aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software Run date: 2013-01-05 20:28:58 ----------------------------- 20:28:58.015 OS Version: Windows 5.1.2600 Service Pack 3 20:28:58.015 Number of processors: 1 586 0x170A 20:28:58.015 ComputerName: HOME0208 UserName: HOME 20:29:02.750 Initialize success 20:36:42.000 AVAST engine defs: 13010500 20:37:17.515 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 20:37:17.531 Disk 0 Vendor: ST250LM004_HN-M250MBB 2AR10001 Size: 238475MB BusType: 3 20:37:17.546 Disk 0 MBR read successfully 20:37:17.546 Disk 0 MBR scan 20:37:17.687 Disk 0 Windows XP default MBR code 20:37:17.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 131061 MB offset 63 20:37:17.718 Disk 0 scanning sectors +268414020 20:37:18.140 Disk 0 scanning C:\WINDOWS\system32\drivers 20:37:51.468 Service scanning 20:38:49.890 Service rwinstad C:\WINDOWS\system32\wiadegui.exe **INFECTED** Win32:Agent-AQRH [Trj] 20:39:01.921 Modules scanning 20:39:32.984 Disk 0 trace - called modules: 20:39:33.015 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys 20:39:33.656 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8571fab8] 20:39:33.656 3 CLASSPNP.SYS[f74e6fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x85771b00] 20:39:38.562 AVAST engine scan C:\WINDOWS 20:39:57.750 AVAST engine scan C:\WINDOWS\system32 20:45:30.921 File: C:\WINDOWS\system32\wiadegui.exe **INFECTED** Win32:Agent-AQRH [Trj] 20:49:03.531 AVAST engine scan C:\WINDOWS\system32\drivers 20:49:49.765 AVAST engine scan C:\Dokumente und Einstellungen\HOME 21:13:11.953 AVAST engine scan C:\Dokumente und Einstellungen\All Users 21:14:13.843 Scan finished successfully 22:00:48.906 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\HOME\Eigene Dateien\Downloads\MBR.dat" 22:00:48.906 The log file has been saved successfully to "C:\Dokumente und Einstellungen\HOME\Eigene Dateien\Downloads\aswMBR.txt" aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software Run date: 2013-01-05 20:28:58 ----------------------------- 20:28:58.015 OS Version: Windows 5.1.2600 Service Pack 3 20:28:58.015 Number of processors: 1 586 0x170A 20:28:58.015 ComputerName: HOME0208 UserName: HOME 20:29:02.750 Initialize success 20:36:42.000 AVAST engine defs: 13010500 20:37:17.515 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 20:37:17.531 Disk 0 Vendor: ST250LM004_HN-M250MBB 2AR10001 Size: 238475MB BusType: 3 20:37:17.546 Disk 0 MBR read successfully 20:37:17.546 Disk 0 MBR scan 20:37:17.687 Disk 0 Windows XP default MBR code 20:37:17.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 131061 MB offset 63 20:37:17.718 Disk 0 scanning sectors +268414020 20:37:18.140 Disk 0 scanning C:\WINDOWS\system32\drivers 20:37:51.468 Service scanning 20:38:49.890 Service rwinstad C:\WINDOWS\system32\wiadegui.exe **INFECTED** Win32:Agent-AQRH [Trj] 20:39:01.921 Modules scanning 20:39:32.984 Disk 0 trace - called modules: 20:39:33.015 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys 20:39:33.656 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8571fab8] 20:39:33.656 3 CLASSPNP.SYS[f74e6fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x85771b00] 20:39:38.562 AVAST engine scan C:\WINDOWS 20:39:57.750 AVAST engine scan C:\WINDOWS\system32 20:45:30.921 File: C:\WINDOWS\system32\wiadegui.exe **INFECTED** Win32:Agent-AQRH [Trj] 20:49:03.531 AVAST engine scan C:\WINDOWS\system32\drivers 20:49:49.765 AVAST engine scan C:\Dokumente und Einstellungen\HOME 21:13:11.953 AVAST engine scan C:\Dokumente und Einstellungen\All Users 21:14:13.843 Scan finished successfully 22:00:48.906 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\HOME\Eigene Dateien\Downloads\MBR.dat" 22:00:48.906 The log file has been saved successfully to "C:\Dokumente und Einstellungen\HOME\Eigene Dateien\Downloads\aswMBR.txt"
  2. Guten Tag, nach dem Scan zeigt mir der Anti-Malware Alarm folgendes an: Dieses kann nicht manuell gelöscht werden. \WINDOWS\system32\wiadegui.exe Wie muss ich weiter vorgehen. Danke für Ihre Hilfe.