Habe mir vorhin irgendwie was eingefangen, das ging so schnell...
hier der logfile:

Logfile of HijackThis v1.99.1
Scan saved at 21:40:15, on 16.02.2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\DJSNETCN.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Programme\Synaptics\SynTP\SynTPLpr.exe
C:\Programme\Synaptics\SynTP\SynTPEnh.exe
C:\Programme\Java\j2re1.4.2_06\bin\jusched.exe
C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\LAUNCH~1\QtZiAcer.EXE
C:\WINDOWS\TEMP\activeh.exe
C:\WINDOWS\System32\zdablpu.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
c:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\AdTools Service\AdTools.exe
C:\Program Files\AdTools Service\AdToolsKeep.exe
C:\Program Files\Internet Optimizer\optimize.exe
C:\WINDOWS\System32\ap9h4qmo.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Programme\WinRAR\WinRAR.exe
C:\DOKUME~1\Himby\LOKALE~1\Temp\Rar$EX00.939\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.web--search.com
R3 - URLSearchHook: StartBHO Class - {30192F8D-0958-44E6-B54D-331FD39AC959} - C:\WINDOWS\webdlg32.dll
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: MultiMPPObj Class - {002EB272-2590-4693-B166-FBD5D9B6FEA6} - C:\WINDOWS\multimpp.dll
O2 - BHO: CDownCom Class - {031B6D43-CBC4-46A5-8E46-CF8B407C1A33} - C:\WINDOWS\DOWNLO~1\ipreg32.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: StartBHO Class - {30192F8D-0958-44E6-B54D-331FD39AC959} - C:\WINDOWS\webdlg32.dll
O2 - BHO: Explorer Class - {962F12AE-2773-4BEB-99EA-B5C3AB9A6606} - C:\WINDOWS\System32\DSMANA~1.DLL
O2 - BHO: Pop Class - {A9AEE0DD-89E1-40EE-8749-A18650CC2175} - C:\WINDOWS\winsx.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Search Bar - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - C:\WINDOWS\webdlg32.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Programme\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZiAcer.EXE
O4 - HKLM\..\Run: [iexplore] C:\WINDOWS\TEMP\activeh.exe
O4 - HKLM\..\Run: [restrictanonymous]

O4 - HKLM\..\Run: [lnocdpq] C:\WINDOWS\System32\zdablpu.exe
O4 - HKLM\..\Run: [salm] c:\temp\salm.exe
O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
O4 - HKLM\..\Run: [ifqnstcz] C:\WINDOWS\ifqnstcz.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AdTools Service] C:\Program Files\AdTools Service\AdTools.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [ap9h4qmo] C:\WINDOWS\System32\ap9h4qmo.exe
O4 - HKLM\..\RunServices: [EnableDCOM] N
O4 - HKLM\..\RunServices: [DJSNetCN] C:\Programme\Gemeinsame Dateien\Symantec Shared\DJSNETCN.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msdev] msdev.exe
O4 - HKCU\..\Run: [MSN Messenger] wmxgdtr.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRA~1\YAHOO!\MESSEN~1\ypager.exe -quiet
O4 - HKCU\..\RunServices: [MSN Messenger] wmxgdtr.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Web Rebates - file://C:\Programme\Web_Rebates\Sy1150\Tp1150\scri1150a.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/Do...ridge-c284.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.co...?1099686445677
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O16 - DPF: {B020B534-4AA2-4B99-BD6D-5F6EE286DF5C} (Symantec Download Bridge) - http://www2.service.t-online.de/dyn/...5/2334156.html
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec Licensing Detect Internet Connection (DJSNETCN) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\DJSNETCN.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programme\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe


schonmal danke

@Himby
system und IE updaten

du hast viel im system
lade escan
download
anleitung
überprüfe Deinen Rechner zunächst mit dem eScan: lade den eScan runter, erstelle dafür einen Ordner (=Verzeichnis) c:\bases, update den eScan online und führe ihn offline im abgesicherten Modus aus. Beachte, dass der eScan ab Version 4.5.1 gefundene Malware nicht löscht. Das wird von Hand auf Anweisung durch uns gemacht.

Teile uns dann das Ergebnis des eScan mit: welche Viren wurden auf Deinem Rechner gefunden: "öffne die mwav.log -> Bearbeiten -> Suchen -> infected eingeben -> Weitersuchen -> Treffer markieren/kopieren und ins Forum übertragen." (Zitat Cidre)

chaosman

Hoffe das das jetzt richtig ist was ich hier geposted habe, habe nicht sehr viel ahnung von der sache.

E-scan:

Wed Feb 16 22:30:29 2005 => File C:\WINDOWS\System32\mt-uninstaller.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:30:37 2005 => File C:\WINDOWS\System32\ln_reco.exe infected by "not-a-virus:AdWare.BetterInternet" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:30:39 2005 => File C:\WINDOWS\System32\bln02nqv.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:30:39 2005 => File C:\WINDOWS\System32\2b3fsk0h.dll infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:30:39 2005 => File C:\WINDOWS\System32\dsmanager.dll infected by "not-a-virus:AdWare.ToolBar.BHO.j" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:37:21 2005 => File C:\DOKUME~1\Himby\LOKALE~1\TEMPOR~1\Content.IE5\QDGBE5A5\AdToolsKeep[1].exe infected by "not-a-virus:AdWare.WinAD.k" Virus. Action Taken: No Action Taken.
Wed Feb 16 22:37:21 2005 => File C:\DOKUME~1\Himby\LOKALE~1\TEMPOR~1\Content.IE5\QDGBE5A5\tbd_web[1].htm infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: No Action Taken.

Ich komm einfach nicht weiter, k.a. was ich noch machen soll mit der Mühle.

Hallo Himby,

hast Dich wirklich an die Anweisung gehalten und Dein System von Escan im abgesicherten Modus überprüfen lassen?
Mir sieht es nicht danach aus.

dartus

Habe ich eigentlich gemacht denke ich,
aber ich lasse es gleich nochmal laufen und poste es erneut.

Thu Feb 17 14:02:57 2005 => File C:\WINDOWS\multimpp.dll infected by "not-a-virus:AdWare.BiSpy.s" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:02:57 2005 => File C:\WINDOWS\DOWNLO~1\ipreg32.dll infected by "Trojan-Downloader.Win32.Domcom.b" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:02:58 2005 => File C:\WINDOWS\webdlg32.dll infected by "not-a-virus:AdWare.ToolBar.SBSoft.g" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:02:58 2005 => File C:\WINDOWS\System32\DSMANA~1.DLL infected by "not-a-virus:AdWare.ToolBar.BHO.j" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:02:58 2005 => File C:\WINDOWS\winsx.dll infected by "not-a-virus:AdWare.Puper.c" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:05 2005 => File C:\WINDOWS\TEMP\activeh.exe infected by "Trojan-Clicker.Win32.Agent.ap" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:05 2005 => File C:\WINDOWS\System32\zdablpu.exe infected by "Trojan-Downloader.Win32.Agent.ae" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:05 2005 => File c:\temp\salm.exe infected by "not-a-virus:AdWare.180Solutions" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:06 2005 => File C:\WINDOWS\conscorr.exe infected by "Trojan-Downloader.Win32.Stubby.c" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:06 2005 => File C:\WINDOWS\ifqnstcz.exe infected by "not-a-virus:AdWare.180Solutions" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:06 2005 => File C:\PROGRA~2\INTERN~1\optimize.exe infected by "Trojan-Downloader.Win32.Dyfuca.du" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:06 2005 => File C:\WINDOWS\System32\gah95on6.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:22 2005 => File C:\WINDOWS\preInsln.exe infected by "not-a-virus:AdWare.BiSpy.o" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:22 2005 => File C:\WINDOWS\preInMPP.exe infected by "not-a-virus:AdWare.BiSpy.q" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:03:23 2005 => File C:\WINDOWS\70tovmto.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:04:44 2005 => File C:\WINDOWS\System32\mt-uninstaller.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:04:52 2005 => File C:\WINDOWS\System32\ln_reco.exe infected by "not-a-virus:AdWare.BetterInternet" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:04:53 2005 => File C:\WINDOWS\System32\bln02nqv.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:04:53 2005 => File C:\WINDOWS\System32\2b3fsk0h.dll infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:04:54 2005 => File C:\WINDOWS\System32\dsmanager.dll infected by "not-a-virus:AdWare.ToolBar.BHO.j" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:09:08 2005 => File C:\WINDOWS\system32\mt-uninstaller.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:09:12 2005 => File C:\WINDOWS\system32\ln_reco.exe infected by "not-a-virus:AdWare.BetterInternet" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:09:13 2005 => File C:\WINDOWS\system32\bln02nqv.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:09:13 2005 => File C:\WINDOWS\system32\2b3fsk0h.dll infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:09:13 2005 => File C:\WINDOWS\system32\dsmanager.dll infected by "not-a-virus:AdWare.ToolBar.BHO.j" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:10:14 2005 => File C:\WINDOWS\Temp\installer.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:10:36 2005 => File C:\WINDOWS\Downloaded Program Files\AdToolsX.dll infected by "not-a-virus:AdWare.WinAD.x" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:11:33 2005 => File C:\WINDOWS\preInsln.exe infected by "not-a-virus:AdWare.BiSpy.o" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:11:35 2005 => File C:\WINDOWS\preInMPP.exe infected by "not-a-virus:AdWare.BiSpy.q" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:11:37 2005 => File C:\WINDOWS\70tovmto.exe infected by "not-a-virus:AdWare.Sahat.l" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:52 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\ICD2.tmp\ipreg32.dll infected by "Trojan-Downloader.Win32.Domcom.b" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:55 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\installer.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:55 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\THI733A.tmp\preInsln.exe infected by "not-a-virus:AdWare.BiSpy.o" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:55 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\djtopr1150.exe infected by "not-a-virus:AdWare.WebRebates.g" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:55 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\conscorr.exe infected by "Trojan-Downloader.Win32.Stubby.c" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:56 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\QPFG1SQC\thnall1l[1].exe infected by "not-a-virus:AdWare.BetterInternet" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:58 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\THI6528.tmp\multimpp.dll infected by "not-a-virus:AdWare.BiSpy.s" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:12:58 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temp\THI6528.tmp\preInMPP.exe infected by "not-a-virus:AdWare.BiSpy.q" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:20:06 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temporary Internet Files\Content.IE5\QDGBE5A5\AdToolsKeep[1].exe infected by "not-a-virus:AdWare.WinAD.k" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:20:06 2005 => File C:\Dokumente und Einstellungen\Himby\Lokale Einstellungen\Temporary Internet Files\Content.IE5\QDGBE5A5\tbd_web[1].htm infected by "Exploit.HTML.CodeBaseExec" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:27:18 2005 => File C:\Dokumente und Einstellungen\Himby\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv621.jar-1cad998a-4ea23097.zip infected by "Trojan-Downloader.Java.OpenStream.c" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:27:18 2005 => File C:\Dokumente und Einstellungen\Himby\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv620.jar-1c9f8209-1deb9b35.zip infected by "Trojan-Downloader.Java.OpenStream.c" Virus. Action Taken: No Action Taken.
Thu Feb 17 14:27:29 2005 => File C:\Dokumente und Einstellungen\Himby\mt-uninstaller.exe infected by "not-a-virus:AdWare.PurityScan.u" Virus. Action Taken: No Action Taken.

Blickt in dem Chaos auf meinem Rechner einer durch ???

Hi,

das alles zu bereinigen würde mehr Zeit in Anspruch nehmen als format c: und Neuinstallation.
Halte Dich an folgende Tipps zur Neuinstallation:

http://www.trojaner-board.de/showthread.php?t=12154

Hier noch was zum Thema Datensicherung:

http://www.trojaner-board.de/showpos...8&postcount=11

sry
dartus

Umgehen kann man format c: nicht ohne grossen zeitanspruch ?
Gibt es denn eigentlich nicht eine wirklich gute sicherheitssoftware die einen schützt ? Habe Norton Antivirus 2005 drauf aber fange mir dennoch ständig was ein