Home » Viren, Trojaner & Malware Forum » Unendlich viele viren.. » Themenansicht

Unendlich viele viren..
#0
30.07.2005, 12:55
milamber
...neu hier

Beiträge: 1
#1 tach zusammen, bin neu hier.
mein scan mit eScan hat folgendes ergeben:


--------------------------------------------------
-------------------- INFECTED --------------------
--------------------------------------------------

1: Sat Jul 30 11:51:06 2005 => File C:\DOKUME~1\PAPAUN~1\LOKALE~1\TEMPOR~1\Content.IE5\ELDERMT0\x[1].chm infected by "Exploit.HTML.CodeBaseExec" Virus! Action Taken: No Action Taken.
2: Sat Jul 30 11:54:09 2005 => File C:\Dokumente und Einstellungen\Inge\Lokale Einstellungen\Temporary Internet Files\Content.IE5\QWORIF2A\countme[1].htm infected by "Exploit.HTML.Mht" Virus! Action Taken: No Action Taken.
3: Sat Jul 30 11:58:15 2005 => File C:\Dokumente und Einstellungen\papaundmama\Lokale Einstellungen\Temporary Internet Files\Content.IE5\ELDERMT0\x[1].chm infected by "Exploit.HTML.CodeBaseExec" Virus! Action Taken: No Action Taken.
4: Sat Jul 30 12:08:22 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004546.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
5: Sat Jul 30 12:08:24 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004560.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
6: Sat Jul 30 12:08:25 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004574.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
7: Sat Jul 30 12:08:32 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004680.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
8: Sat Jul 30 12:08:33 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004693.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
9: Sat Jul 30 12:08:35 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004719.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
10: Sat Jul 30 12:08:35 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004720.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
11: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004721.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
12: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004722.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
13: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004723.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
14: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004724.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
15: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004725.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
16: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004726.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
17: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004727.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
18: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004728.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
19: Sat Jul 30 12:08:36 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004729.exe infected by "Trojan.Win32.Small.fb" Virus! Action Taken: No Action Taken.
20: Sat Jul 30 12:09:25 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005739.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
21: Sat Jul 30 12:09:38 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005943.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
22: Sat Jul 30 12:09:38 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005949.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
23: Sat Jul 30 12:09:38 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005968.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
24: Sat Jul 30 12:09:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005980.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
25: Sat Jul 30 12:09:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005994.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
26: Sat Jul 30 12:09:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0006991.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
27: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003558.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
28: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003562.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
29: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003565.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
30: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003569.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
31: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003576.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
32: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003580.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
33: Sat Jul 30 12:09:40 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003585.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
34: Sat Jul 30 12:09:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003589.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
35: Sat Jul 30 12:09:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003595.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
36: Sat Jul 30 12:09:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003599.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
37: Sat Jul 30 12:09:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003637.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
38: Sat Jul 30 12:09:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003646.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
39: Sat Jul 30 12:09:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003650.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
40: Sat Jul 30 12:09:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003653.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
41: Sat Jul 30 12:09:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003655.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
42: Sat Jul 30 12:09:44 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003668.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
43: Sat Jul 30 12:09:44 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003672.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
44: Sat Jul 30 12:09:44 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003673.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
45: Sat Jul 30 12:09:49 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003725.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
46: Sat Jul 30 12:09:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003733.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
47: Sat Jul 30 12:09:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003734.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
48: Sat Jul 30 12:09:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003741.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
49: Sat Jul 30 12:09:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003745.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
50: Sat Jul 30 12:09:55 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003791.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
51: Sat Jul 30 12:10:15 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003942.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
52: Sat Jul 30 12:10:15 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003946.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
53: Sat Jul 30 12:10:16 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003948.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
54: Sat Jul 30 12:10:16 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003952.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
55: Sat Jul 30 12:10:16 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003954.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
56: Sat Jul 30 12:10:16 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003955.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
57: Sat Jul 30 12:10:16 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003959.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
58: Sat Jul 30 12:11:37 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004340.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
59: Sat Jul 30 12:11:37 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004344.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
60: Sat Jul 30 12:11:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004349.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
61: Sat Jul 30 12:11:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004364.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
62: Sat Jul 30 12:11:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004368.exe infected by "Trojan.Win32.DNSChanger.q" Virus! Action Taken: No Action Taken.
63: Sat Jul 30 12:11:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004374.dll infected by "Trojan-PSW.Win32.Agent.am" Virus! Action Taken: No Action Taken.
64: Sat Jul 30 12:11:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004382.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
65: Sat Jul 30 12:11:45 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004392.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
66: Sat Jul 30 12:11:45 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004395.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
67: Sat Jul 30 12:11:47 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004407.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
68: Sat Jul 30 12:11:48 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004415.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
69: Sat Jul 30 12:11:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004428.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
70: Sat Jul 30 12:11:53 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004451.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
71: Sat Jul 30 12:11:54 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004471.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
72: Sat Jul 30 12:11:56 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004491.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.
73: Sat Jul 30 12:11:59 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP9\A0004503.exe infected by "Trojan-Dropper.Win32.Vidro.p" Virus! Action Taken: No Action Taken.

--------------------------------------------------
--------------------- TAGGED ---------------------
--------------------------------------------------

1: Sat Jul 30 12:08:23 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004554.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
2: Sat Jul 30 12:08:24 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004555.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
3: Sat Jul 30 12:08:25 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004568.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
4: Sat Jul 30 12:08:25 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004569.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
5: Sat Jul 30 12:08:27 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004582.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
6: Sat Jul 30 12:08:28 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004583.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
7: Sat Jul 30 12:08:34 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004698.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
8: Sat Jul 30 12:08:34 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004699.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
9: Sat Jul 30 12:09:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005985.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
10: Sat Jul 30 12:09:39 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005986.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
11: Sat Jul 30 12:09:41 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003638.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
12: Sat Jul 30 12:09:42 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003639.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
13: Sat Jul 30 12:11:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004379.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
14: Sat Jul 30 12:11:43 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004380.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
15: Sat Jul 30 12:11:46 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004403.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
16: Sat Jul 30 12:11:47 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004404.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
17: Sat Jul 30 12:11:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004423.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
18: Sat Jul 30 12:11:50 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004424.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
19: Sat Jul 30 12:11:52 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004439.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
20: Sat Jul 30 12:11:52 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004440.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
21: Sat Jul 30 12:12:00 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP9\A0004511.exe tagged as "not-a-virus:AdWare.FindSpy.a". Action Taken: No Action Taken.
22: Sat Jul 30 12:12:00 2005 => File C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP9\A0004512.exe tagged as "not-a-virus:AdWare.Msnagent.b". Action Taken: No Action Taken.
23: Sat Jul 30 12:28:43 2005 => File D:\SicherC\Rest\Spiele\AGSetup0608.exe tagged as "not-a-virus:AdWare.Gator.1050". Action Taken: No Action Taken.
24: Sat Jul 30 12:30:26 2005 => File D:\SicherC\Verknüpfungen\Dieter\CNET-audiogalaxy0605.exe tagged as "not-a-virus:AdWare.Gator.1050". Action Taken: No Action Taken.

--------------------------------------------------
--------------------- ERRORS ---------------------
--------------------------------------------------

1: Sat Jul 30 11:46:45 2005 => ERROR!!! Invalid Entry xsetup = msag.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
2: Sat Jul 30 11:46:45 2005 => ERROR!!! Invalid Entry vxdman = forces_elite.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
3: Sat Jul 30 11:46:45 2005 => ERROR!!! Invalid Entry corrida = ParisM.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
4: Sat Jul 30 11:46:45 2005 => ERROR!!! Invalid Entry driver64 = UserSp1.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
5: Sat Jul 30 11:46:46 2005 => ERROR!!! Invalid Entry WareOut = "C:\Programme\WareOut\WareOut.exe" (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
6: Sat Jul 30 11:46:46 2005 => ERROR!!! Invalid Entry corrida = ATLIEHELPER.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
7: Sat Jul 30 11:46:46 2005 => ERROR!!! Invalid Entry DTOURS = SAPSTR.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
8: Sat Jul 30 11:46:46 2005 => ERROR!!! Invalid Entry ParisM = TRPT.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
9: Sat Jul 30 11:47:03 2005 => ERROR!!! Invalid Entry \??\C:\PROGRA~1\GEMEIN~1\SYMANT~1\SymcData\IDS-DI~1\20050610.011\symidsco.sys in SYSTEM\CurrentControlSet\Services\SYMIDSCO...
10: Sat Jul 30 11:47:34 2005 => Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" refers to invalid object "C:\DOKUME~1\PAPAUN~1\LOKALE~1\Temp\_ISTMP1.DIR\_ISTMP0.DIR\FTPInstUtils.dll". Action Taken: No Action Taken.
11: Sat Jul 30 11:47:34 2005 => Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" refers to invalid object "C:\DOKUME~1\PAPAUN~1\LOKALE~1\Temp\_ISTMP1.DIR\_ISTMP0.DIR\dummy.txt". Action Taken: No Action Taken.
12: Sat Jul 30 11:47:38 2005 => Entry "HKCR\CLSID\{2B7E6AA9-C4FA-4951-815B-4AFE39D81453}" refers to invalid object "C:\Programme\Messenger\msgsc.dll". Action Taken: No Action Taken.
13: Sat Jul 30 11:47:40 2005 => Entry "HKCR\CLSID\{743DFC10-5096-11d3-B338-0050047402CB}" refers to invalid object "WocShell.dll". Action Taken: No Action Taken.
14: Sat Jul 30 11:47:41 2005 => Entry "HKCR\CLSID\{808EFE2A-4653-350A-DD41-F5CEE3BD3755}" refers to invalid object "killall.dll". Action Taken: No Action Taken.
15: Sat Jul 30 11:47:41 2005 => Entry "HKCR\CLSID\{87237560-4332-11d3-B319-0050047402CB}" refers to invalid object "WocShell.dll". Action Taken: No Action Taken.
16: Sat Jul 30 11:47:42 2005 => Entry "HKCR\CLSID\{99180163-DA16-101A-935C-444553540000}" refers to invalid object "recncl.dll". Action Taken: No Action Taken.
17: Sat Jul 30 11:47:46 2005 => Entry "HKCR\CLSID\{FEEE3B2E-4FBF-53F7-B58B-7356CB9AA1E6}" refers to invalid object "SYSTRAV.dll". Action Taken: No Action Taken.
18: Sat Jul 30 11:47:48 2005 => Entry "HKCR\ActMsg.Session" refers to invalid object "{3FA7DEB3-6438-101B-ACC1-00AA00423326}". Action Taken: No Action Taken.
19: Sat Jul 30 11:47:52 2005 => Entry "HKCR\MailFileAtt" refers to invalid object "{00020D05-0000-0000-C000-000000000046}". Action Taken: No Action Taken.
20: Sat Jul 30 11:47:52 2005 => Entry "HKCR\mapifvbx.object" refers to invalid object "{41116C00-8B90-101B-96CD-00AA003B14FC}". Action Taken: No Action Taken.
21: Sat Jul 30 11:47:52 2005 => Entry "HKCR\mapifvbx.object.1" refers to invalid object "{41116C00-8B90-101B-96CD-00AA003B14FC}". Action Taken: No Action Taken.
22: Sat Jul 30 11:56:23 2005 => Result: ERROR!!! File C:\Dokumente und Einstellungen\papaundmama\Eigene Dateien\Dieter\downloads\winzip80.exe is Not Scanned
23: Sat Jul 30 12:26:33 2005 => Result: ERROR!!! File D:\SicherC\Eigene Dateien\Dieter\downloads\winzip80.exe is Not Scanned
24: Sat Jul 30 12:38:11 2005 => Result: ERROR!!! File D:\Festplattensicherung\Dieter\downloads\winzip80.exe is Not Scanned
25: Sat Jul 30 12:42:35 2005 => Result: ERROR!!! File D:\Festplattensicherung\KMNRW\ASD\SICHERN\MANUELL\STA04.ZIP is Not Scanned
26: Sat Jul 30 12:42:35 2005 => Result: ERROR!!! File D:\Festplattensicherung\KMNRW\ASD\SICHERN\MANUELL\STATISTI.ZIP is Not Scanned

--------------------------------------------------
-------- DATEIEN ZUM LÖSCHEN HINZUGEFÜGT ---------
--------------------------------------------------

1: C:\DOKUME~1\PAPAUN~1\LOKALE~1\TEMPOR~1\Content.IE5\ELDERMT0\x[1].chm => Exploit.HTML.CodeBaseExec
2: C:\Dokumente und Einstellungen\Inge\Lokale Einstellungen\Temporary Internet Files\Content.IE5\QWORIF2A\countme[1].htm => Exploit.HTML.Mht
3: C:\Dokumente und Einstellungen\papaundmama\Lokale Einstellungen\Temporary Internet Files\Content.IE5\ELDERMT0\x[1].chm => Exploit.HTML.CodeBaseExec
4: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004546.exe => Trojan-Dropper.Win32.Vidro.p
5: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004560.exe => Trojan-Dropper.Win32.Vidro.p
6: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004574.exe => Trojan-Dropper.Win32.Vidro.p
7: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004680.exe => Trojan-Dropper.Win32.Vidro.p
8: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004693.exe => Trojan-Dropper.Win32.Vidro.p
9: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004719.exe => Trojan.Win32.Small.fb
10: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004720.exe => Trojan.Win32.Small.fb
11: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004721.exe => Trojan.Win32.Small.fb
12: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004722.exe => Trojan.Win32.Small.fb
13: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004723.exe => Trojan.Win32.Small.fb
14: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004724.exe => Trojan.Win32.Small.fb
15: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004725.exe => Trojan.Win32.Small.fb
16: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004726.exe => Trojan.Win32.Small.fb
17: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004727.exe => Trojan.Win32.Small.fb
18: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004728.exe => Trojan.Win32.Small.fb
19: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0004729.exe => Trojan.Win32.Small.fb
20: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005739.exe => Trojan-Dropper.Win32.Vidro.p
21: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005943.exe => Trojan-Dropper.Win32.Vidro.p
22: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005949.exe => Trojan-Dropper.Win32.Vidro.p
23: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005968.exe => Trojan-Dropper.Win32.Vidro.p
24: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005980.exe => Trojan-Dropper.Win32.Vidro.p
25: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0005994.exe => Trojan-Dropper.Win32.Vidro.p
26: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP10\A0006991.exe => Trojan-Dropper.Win32.Vidro.p
27: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003558.exe => Trojan-Dropper.Win32.Vidro.p
28: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003562.exe => Trojan.Win32.DNSChanger.q
29: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003565.exe => Trojan-Dropper.Win32.Vidro.p
30: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003569.exe => Trojan.Win32.DNSChanger.q
31: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003576.exe => Trojan-Dropper.Win32.Vidro.p
32: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003580.exe => Trojan.Win32.DNSChanger.q
33: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003585.exe => Trojan-Dropper.Win32.Vidro.p
34: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003589.exe => Trojan.Win32.DNSChanger.q
35: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003595.exe => Trojan-Dropper.Win32.Vidro.p
36: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003599.exe => Trojan.Win32.DNSChanger.q
37: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003637.dll => Trojan-PSW.Win32.Agent.am
38: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003646.exe => Trojan-Dropper.Win32.Vidro.p
39: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003650.exe => Trojan.Win32.DNSChanger.q
40: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003653.exe => Trojan-Dropper.Win32.Vidro.p
41: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003655.dll => Trojan-PSW.Win32.Agent.am
42: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003668.exe => Trojan-Dropper.Win32.Vidro.p
43: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003672.exe => Trojan.Win32.DNSChanger.q
44: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003673.dll => Trojan-PSW.Win32.Agent.am
45: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003725.exe => Trojan-Dropper.Win32.Vidro.p
46: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003733.exe => Trojan.Win32.DNSChanger.q
47: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003734.dll => Trojan-PSW.Win32.Agent.am
48: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003741.exe => Trojan-Dropper.Win32.Vidro.p
49: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003745.exe => Trojan.Win32.DNSChanger.q
50: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003791.dll => Trojan-PSW.Win32.Agent.am
51: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003942.exe => Trojan-Dropper.Win32.Vidro.p
52: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003946.exe => Trojan.Win32.DNSChanger.q
53: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003948.exe => Trojan-Dropper.Win32.Vidro.p
54: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003952.exe => Trojan.Win32.DNSChanger.q
55: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003954.exe => Trojan-Dropper.Win32.Vidro.p
56: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003955.exe => Trojan-Dropper.Win32.Vidro.p
57: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0003959.exe => Trojan.Win32.DNSChanger.q
58: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004340.exe => Trojan-Dropper.Win32.Vidro.p
59: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004344.exe => Trojan.Win32.DNSChanger.q
60: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004349.dll => Trojan-PSW.Win32.Agent.am
61: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004364.exe => Trojan-Dropper.Win32.Vidro.p
62: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004368.exe => Trojan.Win32.DNSChanger.q
63: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004374.dll => Trojan-PSW.Win32.Agent.am
64: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004382.exe => Trojan-Dropper.Win32.Vidro.p
65: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004392.exe => Trojan-Dropper.Win32.Vidro.p
66: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004395.exe => Trojan-Dropper.Win32.Vidro.p
67: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004407.exe => Trojan-Dropper.Win32.Vidro.p
68: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004415.exe => Trojan-Dropper.Win32.Vidro.p
69: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004428.exe => Trojan-Dropper.Win32.Vidro.p
70: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004451.exe => Trojan-Dropper.Win32.Vidro.p
71: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004471.exe => Trojan-Dropper.Win32.Vidro.p
72: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP8\A0004491.exe => Trojan-Dropper.Win32.Vidro.p
73: C:\System Volume Information\_restore{DB663499-46C7-44CA-B072-1B2629C85005}\RP9\A0004503.exe => Trojan-Dropper.Win32.Vidro.p

--------------------------------------------------
-------------------- Statistik -------------------
--------------------------------------------------

Sat Jul 30 12:44:34 2005 => Total Objects Scanned: 65410
Sat Jul 30 12:44:34 2005 => Total Virus(es) Found: 98
Sat Jul 30 12:44:34 2005 => Total Errors: 26
Sat Jul 30 12:44:34 2005 => Virus Database Date: 2005/07/29
Sat Jul 30 12:44:34 2005 => Virus Database Count: 140525






mit den empfohlenen programmen adaware und spybot-search and distroy konnte ich die viren nie ganz entfernen, sie kamen immer wieder.

ich bin kurz davor aufzugeben und zu formatieren.. oder kann mir doch noch jemand hier helfen?
Seitenanfang Seitenende
30.07.2005, 13:10
MerlinX
zu Gast
#2 Hi milamber
Vor dem Posten bitte Boardsuche !! Und gründlich lesen>
http://board.protecus.de/t13019.htm
http://board.protecus.de/t12578.htm

Ich denke mal keiner hat Lust die Ellenlangen Posts Auszuwerten. Da es jeden Tag zu viele davon gibt.Daher selbst
Diaknose>Hier hin Posten > http://www.hijackthis.de/
Gruß Merlinx ;)
Dieser Beitrag wurde am 30.07.2005 um 13:53 Uhr von Merlinx editiert.
Seitenanfang Seitenende
30.07.2005, 15:46
Gool
Member
Avatar Gool

Beiträge: 4730
#3 hm? Na ja, ich würde erstmal die Systemwiederherstellung deaktivieren und die Temporären Internetdateien löschen. Danach dann nochmal mit eScan scannen und natürlich einen HJT-Log posten ;)
__________
Dies ist eine Signatur! Persönlicher Service: Du kommst aus Berlin? Dann melde Dich per PN bei mir, evtl. können wir einen Termin vereinbaren.
Der Grabsteinschubser
Seitenanfang Seitenende
30.07.2005, 16:30
MerlinX
zu Gast
#4 Bitte HJT hier hin Posten.
http://www.hijackthis.de/
So könnt ihr uns mal ein bisschen entlasten.
Gruß Merlinx ;)
Seitenanfang Seitenende
30.07.2005, 21:52
Gool
Member
Avatar Gool

Beiträge: 4730
#5 Wobei dazu gesagt werden muss, dass hijackthis.de leider nicht alles erkennt, was evtl. wichtig wäre. Besonders, wenn Viren die Dateinamen anderer Programme verwenden, ist hijackthis.de nicht sehr zuverlässig - wie auch?
__________
Dies ist eine Signatur! Persönlicher Service: Du kommst aus Berlin? Dann melde Dich per PN bei mir, evtl. können wir einen Termin vereinbaren.
Der Grabsteinschubser
Seitenanfang Seitenende
30.07.2005, 23:16
Yourhighness
Member
Avatar Yourhighness

Beiträge: 279
#6 Hi!

m.E. sollte man sowieso etwas vorsichtig mit HJT sein, wenn man nicht genau weiss was man machen soll. Man kann sich ja nun auch das System zerhauen.

Was den Escan angeht, mache das mit der Systemwiederherstellung deaktivieren und Temp Dateien löschen, z.B. mit dem CCleaner. Dann sollte eigentlich alles oder fast alles weg sein.

MfG,
__________
Yourhighness
Yourhighness' Seite / Mein Blog (Englisch)
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1