escan resultat!
 

Habe heute escan das erstemal durchlaufen lassen, hat einge sachen gefunden wie muss ich jetzt vorgehen?
was mach ich mit denn dateien?
wie komme ich im "C:\System Volume Information" ordner rein?

log:

Wed Apr 20 23:40:56 2005 => System found infected with BearShare Spyware/Adware ({905d0df2-3a0a-4d94-853c-54a12a745905})! Action taken: No Action Taken.
Wed Apr 20 23:40:56 2005 => File System Found infected by "BearShare Spyware/Adware" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:40:56 2005 => System found infected with BearShare Spyware/Adware ({9f95f736-0f62-4214-a4b4-caa6738d4c07})! Action taken: No Action Taken.
Wed Apr 20 23:40:56 2005 => File System Found infected by "BearShare Spyware/Adware" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:40:56 2005 => System found infected with BearShare Spyware/Adware ({558ec983-bedb-9168-b2de-31dbf0ee543e})! Action taken: No Action Taken.
Wed Apr 20 23:40:56 2005 => File System Found infected by "BearShare Spyware/Adware" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:40:56 2005 => System found infected with BearShare Spyware/Adware ({5f95e1af-2620-4f15-bdf9-7fdce4607e17})! Action taken: No Action Taken.
Wed Apr 20 23:40:56 2005 => File System Found infected by "BearShare Spyware/Adware" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:40:56 2005 => System found infected with bearshare Spyware/Adware! Action taken: No Action Taken.
Wed Apr 20 23:40:56 2005 => File System Found infected by "bearshare Spyware/Adware" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:46:04 2005 => File C:\Programme\BearShare\Installer\BSINSTALLDE.exe infected by "not-a-virus:AdWare.SaveNow.z" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:49:24 2005 => Scanning Folder: C:\Programme\Softwin\BitDefender8\Infected\*.*

Thu Apr 21 00:15:14 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP7\A0004558.exe infected by "not-a-virus:AdWare.SaveNow.z" Virus. Action Taken: No Action Taken.

Thu Apr 21 00:16:31 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP8\A0004817.exe infected by "not-a-virus:AdWare.SaveNow.z" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:59:32 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP10\A0005218.exe tagged as not-a-virus:RiskWare.Tool.RegPatch.a. No Action Taken.

Wed Apr 20 23:59:34 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP11\A0005226.exe tagged as not-a-virus:RiskWare.Tool.RegPatch.a. No Action Taken


ich habe sp2 und alle windows updates drauf (gleich windows install gemacht)
benutze gute firewall/virenprog (bitdefender)

danke schonmal im vorraus, hoffe auf schnelle antwort!

@ville
Dateien im abgesicherten Modus löschen.
Gar nicht ;). Hier klicken
BearShare über Systemsteuerung/Software deinstallieren.

Thu Apr 21 00:15:14 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP7\A0004558.exe infected by "not-a-virus:AdWare.SaveNow.z" Virus. Action Taken: No Action Taken.

Thu Apr 21 00:16:31 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP8\A0004817.exe infected by "not-a-virus:AdWare.SaveNow.z" Virus. Action Taken: No Action Taken.

Wed Apr 20 23:59:32 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP10\A0005218.exe tagged as not-a-virus:RiskWare.Tool.RegPatch.a. No Action Taken.

Wed Apr 20 23:59:34 2005 => File C:\System Volume Information\_restore{E187DAA8-4CB8-43F2-8DDE-A49A88DED6BC}\RP11\A0005226.exe tagged as not-a-virus:RiskWare.Tool.RegPatch.a. No Action Taken



wie kann ich diese dateien löschen wenn ich nicht im "C:\System Volume Information" ordner komme?

danke schonmal!

Systemwiederherstellung deaktivieren neu booten Systemwiederherstellung wieder aktivieren (siehe link von Rene- gad)