ftp://ftp.microworldsystems.com/download/tools/mwav.exe
Link anklicken-> Datei herunterladen und nach Anleitung entpacken. Mehr kann weder ich, noch jemand anders für dich tun!

Die ist entpackt. Es kam ja auch die Meldung das escan jetzt geupdatet ist. Irgendwie reden wir hier aneinander vorbei.

Meine Meinung:
DFTT
cacatoa

was heißt DFTT?

Naja egal, vielleicht bin zu blöd für das Forum hier...

So, ich hab jetzt nochmal gescannt und mir die Viren die er angezeigt hat rasugesucht. Er hatte noch einige Meldungen mit "refers to invalid objects". Waren dann so Dateien wo die Testversion abgelaufen ist und so. Die habe ich jetzt mal nicht alle mit reingesetzt.

Hier der escan log:


Mon Oct 03 16:46:24 2005 => ***** Scanning Registry and File system for Adware/Spyware *****
Mon Oct 03 16:46:24 2005 => Loading Spyware Signatures from new External Database (Size: 144468).

Mon Oct 03 16:46:25 2005 => System found infected with kazaa Spyware/Adware ({66fc8717-efa7-4546-8c4a-e224f3a80c76})! Action taken: No Action Taken.
Mon Oct 03 16:46:25 2005 => System found infected with mybar Spyware/Adware ({014da6c9-189f-421a-88cd-07cfe51cff10})! Action taken: No Action Taken.
Mon Oct 03 16:46:25 2005 => System found infected with mybar Spyware/Adware ({0494d0d9-f8e0-41ad-92a3-14154ece70ac})! Action taken: No Action Taken.
Mon Oct 03 16:46:25 2005 => System found infected with WinAD Spyware/Adware ({53d3c442-8fee-4784-9a21-6297d39613f0})! Action taken: No Action Taken.
Mon Oct 03 16:46:26 2005 => System found infected with MyWay Spyware/Adware ({0494d0d4-f8e0-41ad-92a3-14154ece70ac})! Action taken: No Action Taken.

Mon Oct 03 16:46:27 2005 => Offending Folder found: C:\PROGRA~1\accessdiver
Mon Oct 03 16:46:27 2005 => Object "Access Diver Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:27 2005 => Offending Folder found: C:\PROGRA~1\download coach
Mon Oct 03 16:46:27 2005 => Offending Folder found: C:\DOKUME~1\Olli\STARTM~1\PROGRA~1\download coach
Mon Oct 03 16:46:27 2005 => Object "DownloadCoach Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:28 2005 => Offending Folder found: C:\PROGRA~1\instafink
Mon Oct 03 16:46:28 2005 => Object "InstaFinder Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:28 2005 => Offending value found in HKLM\Software\magnet\handlers\kazaa !!!
Mon Oct 03 16:46:28 2005 => Offending value found in HKLM\Software\kazaa !!!
Mon Oct 03 16:46:28 2005 => Offending Folder found: C:\PROGRA~1\kazaa
Mon Oct 03 16:46:28 2005 => Object "kazaa Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:28 2005 => Offending value found in HKLM\Software\myway !!!
Mon Oct 03 16:46:28 2005 => Object "my way speedbar Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:28 2005 => Offending value found in HKLM\Software\PERFECTNAV !!!
Mon Oct 03 16:46:28 2005 => Object "perfectnav Spyware/Adware" found in File System! Action Taken: No Action Taken.

Mon Oct 03 16:46:35 2005 => Offending file found: C:\WINDOWS\smdat32a.sys
Mon Oct 03 16:46:35 2005 => System found infected with altnet Spyware/Adware (smdat32a.sys)! Action taken: No Action Taken.

Mon Oct 03 16:46:35 2005 => System found infected with altnetbde Spyware/Adware (altnet signing module.exe)! Action taken: No Action Taken.

Mon Oct 03 16:46:35 2005 => Offending file found: C:\WINDOWS\TEMP
Mon Oct 03 16:46:35 2005 => System found infected with altnetbde Spyware/Adware (adm.exe)! Action taken: No Action Taken.

Mon Oct 03 16:46:35 2005 => Offending file found: C:\WINDOWS\TEMP
Mon Oct 03 16:46:35 2005 => System found infected with altnetbde Spyware/Adware (adm25.dll)! Action taken: No Action Taken.

Mon Oct 03 16:47:14 2005 => Offending file found: C:\WINDOWS\iun6002.exe
Mon Oct 03 16:47:14 2005 => System found infected with zipitpro Spyware/Adware (C:\WINDOWS\iun6002.exe)! Action taken: No Action Taken.


Mon Oct 03 19:27:34 2005 => File C:\Dokumente und Einstellungen\Olli\Lokale Einstellungen\Temp\asmfiles.cab tagged as "not-a-virus:AdWare.Win32.Altnet.b". Action Taken: No Action Taken.
Mon Oct 03 19:27:36 2005 => File C:\Dokumente und Einstellungen\Olli\Lokale Einstellungen\Temp\cd_clint.dll tagged as "not-a-virus:AdWare.Win32.Cydoor". Action Taken: No Action Taken.
Mon Oct 03 21:04:52 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\altnetuninstall.exe.bak tagged as "not-a-virus:AdWare.Win32.Altnet.b". Action Taken: No Action Taken.
Mon Oct 03 21:04:53 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\CMESys.exe.bak tagged as "not-a-virus:AdWare.Win32.Gator.6034". Action Taken: No Action Taken.
Mon Oct 03 21:04:53 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\CMEIIAPI.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:53 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\egIEEngine.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\EGIEProcess.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\EGNSEngine.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.5017". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GAppMgr.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GatorRes.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GatorStubSetup.exe.bak tagged as "not-a-virus:AdWare.Win32.Gator.6034". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GController.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GDwldEng.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.3124". Action Taken: No Action Taken.
Mon Oct 03 21:04:54 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GIocl.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:55 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GIoclClient.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:55 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GMT.exe.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:55 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GMTProxy.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:55 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GObjs.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:55 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GStore.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:56 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GStoreServer.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:56 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\Gtools.dll.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:04:56 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\GUninstaller.exe.bak tagged as "not-a-virus:AdWare.Win32.Gator.6041". Action Taken: No Action Taken.
Mon Oct 03 21:05:02 2005 => File C:\Programme\Enigma Software Group\SpyHunter\Backup\sysdetect.dll.bak tagged as "not-a-virus:AdWare.Win32.BrilliantDigital.1007". Action Taken: No Action Taken.
Mon Oct 03 21:12:50 2005 => File C:\Programme\Hijackthisentpackt\backups\backup-20051002-144156-676.dll tagged as "not-a-virus:AdWare.Win32.MyWay.m". Action Taken: No Action Taken.
Mon Oct 03 21:57:12 2005 => File C:\System Volume Information\_restore{9002D673-3B16-4EC3-9883-12A153F171D8}\RP290\A0102921.DLL tagged as "not-a-virus:AdWare.Win32.MyWay.m". Action Taken: No Action Taken.
Mon Oct 03 21:57:15 2005 => File C:\System Volume Information\_restore{9002D673-3B16-4EC3-9883-12A153F171D8}\RP290\A0102989.DLL tagged as "not-a-virus:AdWare.Win32.MyWay.f". Action Taken: No Action Taken.
Mon Oct 03 22:26:20 2005 => File C:\WINDOWS\Temp\Altnet\adm.exe tagged as "not-a-virus:AdWare.Win32.Altnet.a". Action Taken: No Action Taken.
Mon Oct 03 22:26:20 2005 => File C:\WINDOWS\Temp\Altnet\adm25.dll tagged as "not-a-virus:AdWare.Win32.Altnet.a". Action Taken: No Action Taken.
Mon Oct 03 22:26:21 2005 => File C:\WINDOWS\Temp\Altnet\adm4.dll tagged as "not-a-virus:AdWare.Win32.Altnet.a". Action Taken: No Action Taken.
Mon Oct 03 22:26:21 2005 => File C:\WINDOWS\Temp\Altnet\admprog.dll tagged as "not-a-virus:AdWare.Win32.Altnet.a". Action Taken: No Action Taken.
Mon Oct 03 22:26:22 2005 => File C:\WINDOWS\Temp\Altnet\mysearch.cab tagged as "not-a-virus:AdWare.Win32.MyWay.g". Action Taken: No Action Taken.
Mon Oct 03 22:26:22 2005 => File C:\WINDOWS\Temp\Altnet\pmfiles.cab tagged as "not-a-virus:AdWare.Win32.BrilliantDigital.1007". Action Taken: No Action Taken.
Mon Oct 03 22:26:22 2005 => File C:\WINDOWS\Temp\Altnet\Setup.exe tagged as "not-a-virus:AdWare.Win32.Altnet.b". Action Taken: No Action Taken.

So, also:
erst mal clearprog 1.4.1 final runterladen, installieren und auf "alles löschen" clicken.
Dann regseeker runterladen und die Registrierung säubern.
Dann die backups von spyhunter löschen.
Dann sollte alles weg sein.
cacatoa