ძიება მხარდაჭერაში

ნუ გაებმებით თაღლითების მახეში მხარდაჭერის საიტზე. აქ არასდროს მოგთხოვენ სატელეფონო ნომერზე დარეკვას, შეტყობინების გამოგზავნას ან პირადი მონაცემების გაზიარებას. გთხოვთ, გვაცნობოთ რამე საეჭვოს შემჩნევისას „დარღვევაზე მოხსენების“ მეშვეობით.

ვრცლად

Need help with this crash Crash ID: bp-cc38dc87-9e6e-4192-9cfb-4a2822130215

  • 2 პასუხი
  • 1 მომხმარებელი წააწყდა მსგავს სიძნელეს
  • 9 ნახვა
  • ბოლოს გამოეხმაურა KCK33317

Infected with the happili virus. That has been removed, Microsoft Security Essentials up to date. Can not start FF in regular or safe mode. Have now totally removed FF including profiles etc.

I can remove FF12, install an old FF5 and get FF to run. FF12 started when it took the update, but crashed when I tried to install NoScript. Removed everything again. Installed FF5 and then updated but it just continues to give the crash report in regular or safe mode.

This is what Malware Bytes found:

Files Detected: 15
C:\RECYCLER\S-1-5-21-1935655697-963894560-839522115-1003\$b95a34accb4a7cf8daa12f26ea1b33bf\n (Trojan.0Access) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\54\4cf71bb6-57c80260 (Trojan.Tracur.ED) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\62\301b59be-42dbd3d5 (Trojan.Tracur.ED) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Temp\0.09140391732120223 (Trojan.Happili) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Temp\0.4473181650383736 (Trojan.Tracur.ED) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Temp\0.9406242064014955 (Trojan.Happili) -> No action taken.
C:\Documents and Settings\Karen\Local Settings\Temp\sizazmezc\sizazmezc.dll (Trojan.Tracur) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\n (Trojan.0Access) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\00000004.@ (Trojan.0Access) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\00000008.@ (Trojan.Dropper.BCMiner) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\000000cb.@ (Trojan.0Access) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\80000000.@ (Trojan.0Access) -> No action taken.
C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\80000032.@ (Trojan.0Access) -> No action taken.
C:\System Volume Information\_restore{23183C86-14F7-4879-81A2-DE8A9ACC283A}\RP917\A0038637.exe (Trojan.Tracur.ED) -> No action taken.
C:\System Volume Information\_restore{23183C86-14F7-4879-81A2-DE8A9ACC283A}\RP928\A0039981.ini (Trojan.0access) -> No action taken.
Infected with the happili virus. That has been removed, Microsoft Security Essentials up to date. Can not start FF in regular or safe mode. Have now totally removed FF including profiles etc. I can remove FF12, install an old FF5 and get FF to run. FF12 started when it took the update, but crashed when I tried to install NoScript. Removed everything again. Installed FF5 and then updated but it just continues to give the crash report in regular or safe mode. This is what Malware Bytes found: <pre><nowiki>Files Detected: 15 C:\RECYCLER\S-1-5-21-1935655697-963894560-839522115-1003\$b95a34accb4a7cf8daa12f26ea1b33bf\n (Trojan.0Access) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\54\4cf71bb6-57c80260 (Trojan.Tracur.ED) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\62\301b59be-42dbd3d5 (Trojan.Tracur.ED) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Temp\0.09140391732120223 (Trojan.Happili) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Temp\0.4473181650383736 (Trojan.Tracur.ED) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Temp\0.9406242064014955 (Trojan.Happili) -> No action taken. C:\Documents and Settings\Karen\Local Settings\Temp\sizazmezc\sizazmezc.dll (Trojan.Tracur) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\n (Trojan.0Access) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\00000004.@ (Trojan.0Access) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\00000008.@ (Trojan.Dropper.BCMiner) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\000000cb.@ (Trojan.0Access) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\80000000.@ (Trojan.0Access) -> No action taken. C:\RECYCLER\S-1-5-18\$b95a34accb4a7cf8daa12f26ea1b33bf\U\80000032.@ (Trojan.0Access) -> No action taken. C:\System Volume Information\_restore{23183C86-14F7-4879-81A2-DE8A9ACC283A}\RP917\A0038637.exe (Trojan.Tracur.ED) -> No action taken. C:\System Volume Information\_restore{23183C86-14F7-4879-81A2-DE8A9ACC283A}\RP928\A0039981.ini (Trojan.0access) -> No action taken.</nowiki></pre>

ჩასწორების თარიღი: , ავტორი: cor-el

ყველა პასუხი (2)

This crash is usually caused by malware and the involved, randomly named, file in your case is svoosihp.dll as can be seen in the Modules list of the crash report.

Try to use MSConfig and disable that file to prevent it from getting started.

Try to boot the computer in Windows Safe mode with network support (press F8 on the boot screen) to see if that allows to locate and remove the file either manually or with a malware scanner.

You will have to search the Windows registry (Ctrl+F) for references to that file and export and remove involved keys to avoid startup issues with missing files or alternatively use a registry cleaner like CCleaner.
If you are not comfortable with editing the registry then it is best to skip this step.


Do a malware check with some malware scanning programs on the Windows computer.
You need to scan with all programs because each program detects different malware.

Make sure that you update each program to get the latest version of their databases before doing a scan.

You can also do a check for a rootkit infection with TDSSKiller.

See also:

Thank you, I removed all instances I could find and FF is working.