|
bitte um hilfe! hallo zusammen, bin neu hier und bräuchte hilfe! hab offensichtlich einen trojaner eingefangen, da sich der i-explorer blitzplötzlich immer mit "http://search.naupoint.com/" öffnet. spybot und norton schweigen dazu. nun, da ich mich in diesen dingen nicht auskenn, hab ich mich hier ein wenig umgesehen, ein HiJack-log erstellt und mir escan besorgt, das ja im abgesicherten modus gestartet werden soll. und dann? welche einstellungen verlangt escan nach dem scan? weil sich die „naupoint“- daten nach dem fixen + neustart sogleich wieder herstellen und mir das ganze zu heiss ist, frag ich lieber erstmal nach….. ein großes DANKESCHÖN im vorhinein! hier das HiJack-log: Logfile of HijackThis v1.98.2 Scan saved at 13:30:30, on 07.11.2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe C:\WINDOWS\SOUNDMAN.EXE C:\Programme\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe C:\Programme\Norton SystemWorks\Password Manager\AcctMgr.exe C:\Programme\Java\j2re1.4.2_01\bin\jusched.exe C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\System32\drivers\CDAC11BA.EXE C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe C:\PROGRA~1\NORTON~2\NORTON~3\GHOSTS~2.EXE C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe C:\Programme\Adobe\Acrobat 6.0\Distillr\acrotray.exe C:\Programme\InterVideo\WinDVD4PR\WinScheduler.exe C:\Programme\Norton AntiVirus\navapsvc.exe C:\Programme\Norton AntiVirus\SAVScan.exe C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE C:\WINDOWS\System32\svchost.exe C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Center\SymWSC.exe C:\Programme\Messenger\msmsgs.exe C:\DOKUME~1\beate\LOKALE~1\Temp\Rar$EX00.532\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.naupoint.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.naupo R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.naupo R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.naupoint.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = search.naupoint.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.orf.at/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = search.naupoint.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: 1096964763 - {262277EC-5BB5-4849-8BF2-1824330C9CAC} - (no file) O2 - BHO: (no name) - {2E9CAFF6-30C7-4208-8807-E79D4EC6F806} - C:\Program Files\Submit\submithook.dll O2 - BHO: No description - {44FD0AF8-9D30-4E96-8ECE-306446B5E0D3} - C:\WINDOWS\DOWNLO~1\iEBINST2.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: No description - {60261C06-81B0-4DE0-9313-E5BA203A64E9} - C:\WINDOWS\DOWNLO~1\pdfmgr.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [GhostStartTrayApp] C:\Programme\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe O4 - HKLM\..\Run: [AcctMgr] C:\Programme\Norton SystemWorks\Password Manager\AcctMgr.exe /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\j2re1.4.2_01\bin\jusched.exe O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Programme\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QD FastAndSafe] C:\Programme\Norton SystemWorks\Norton CleanSweep\QDCSFS.exe /scheduler O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Startup: PowerReg Scheduler V3.exe O4 - Global Startup: Acrobat Assistant.lnk = C:\Programme\Adobe\Acrobat 6.0\Distillr\acrotray.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Programme\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Programme\InterVideo\WinDVD4PR\WinScheduler.exe O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab O16 - DPF: {44FD0AF8-9D30-4E96-8ECE-306446B5E0D3} (No description) - http://naupoint.com/toolbar/installer/iEBINST2.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.co...?1093027137464 O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/SSC/Sha.../bin/cabsa.cab O21 - SSODL: eplrr9 - {8511C543-1E07-4778-9300-D70C78AB73FF} - C:\WINDOWS\system32\eplrr9.dll |
Schau mal hier: eScan Nach dem scan: Öffne die mwav.log -> Bearbeiten -> Suchen -> infected eingeben -> Weitersuchen -> Treffer markieren/kopieren und ins Forum übertragen |
zudem solltest du noch diese einträge fixen. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.naupoint.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.naupo R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.naupo R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.naupoint.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = search.naupoint.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = search.naupoint.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = search.naupoint.com O2 - BHO: (no name) - {2E9CAFF6-30C7-4208-8807-E79D4EC6F806} - C:\Program Files\Submit\submithook.dll O2 - BHO: No description - {44FD0AF8-9D30-4E96-8ECE-306446B5E0D3} - C:\WINDOWS\DOWNLO~1\iEBINST2.dll O2 - BHO: No description - {60261C06-81B0-4DE0-9313-E5BA203A64E9} - C:\WINDOWS\DOWNLO~1\pdfmgr.dll O16 - DPF: {44FD0AF8-9D30-4E96-8ECE-306446B5E0D3} (No description) - http://naupoint.com/toolbar/installer/iEBINST2.cab |
hei und danke erstmal für Eure schnellen antworten! steveman, die einträge, die "naupoint" enthalten hab ich bereits gefixt, waren hinterher allesamt wieder da. ich werd's noch mal probieren, mit den weiteren, die Du da angibst. Lidius, ich bin schockiert: --> escan hat sage und schreibe 60 infected viruses entdeckt! wobei ich nicht weiß, wie es mit den von norton unter quarantäne gestellten steht. hier das ergebnis: Sun Nov 07 17:20:56 2004 => File C:\WINDOWS\system32\eplrr9.dll infected by "Trojan.Win32.StartPage.ox" Virus. Action Taken: No Action Taken. Sun Nov 07 17:22:28 2004 => File C:\WINDOWS\system32\eplrr9.dll infected by "Trojan.Win32.StartPage.ox" Virus. Action Taken: No Action Taken. Sun Nov 07 17:30:52 2004 => File C:\Dokumente und Einstellungen\beate\Lokale Einstellungen\Temp\tempchngr.exe infected by "TrojanDropper.Win32.Small.mi" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:28 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1BD3219C.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:28 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1D0A2E8E.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:28 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1D410009.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:28 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1EFD4E20.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:29 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1F765F9B.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:29 2004 => File C:\Programme\Norton AntiVirus\Quarantine\1FF21B13.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:29 2004 => File C:\Programme\Norton AntiVirus\Quarantine\20515CAB.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:29 2004 => File C:\Programme\Norton AntiVirus\Quarantine\2F2D6E50.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:30 2004 => File C:\Programme\Norton AntiVirus\Quarantine\30CC4288.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:30 2004 => File C:\Programme\Norton AntiVirus\Quarantine\31063647.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:30 2004 => File C:\Programme\Norton AntiVirus\Quarantine\3E4473B5.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:30 2004 => File C:\Programme\Norton AntiVirus\Quarantine\3E6F1586.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:31 2004 => File C:\Programme\Norton AntiVirus\Quarantine\45EE2976 infected by "TrojanDownloader.Win32.IstBar.s" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:31 2004 => File C:\Programme\Norton AntiVirus\Quarantine\471A7041.part infected by "Worm.P2P.Backterra.a" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:31 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4B6E3538.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:31 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4C493247.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:31 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4C8A79FF.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:32 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4CA873DF.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:32 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4CC56DBF.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:32 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4D0D0970.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:33 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4F5C38E5.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:33 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4F8330BA.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:33 2004 => File C:\Programme\Norton AntiVirus\Quarantine\4FA12A9A.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:33 2004 => File C:\Programme\Norton AntiVirus\Quarantine\75D23493.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:33 2004 => File C:\Programme\Norton AntiVirus\Quarantine\75E5307D.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:34 2004 => File C:\Programme\Norton AntiVirus\Quarantine\75F92C67.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:34 2004 => File C:\Programme\Norton AntiVirus\Quarantine\7610524E.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:34 2004 => File C:\Programme\Norton AntiVirus\Quarantine\763E1E1C.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:34 2004 => File C:\Programme\Norton AntiVirus\Quarantine\765E41F8.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:35 2004 => File C:\Programme\Norton AntiVirus\Quarantine\767811DB.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:35 2004 => File C:\Programme\Norton AntiVirus\Quarantine\768C0DC6.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:35 2004 => File C:\Programme\Norton AntiVirus\Quarantine\76A333AD.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:35 2004 => File C:\Programme\Norton AntiVirus\Quarantine\76BD0390.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:35 2004 => File C:\Programme\Norton AntiVirus\Quarantine\7725431D.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:36 2004 => File C:\Programme\Norton AntiVirus\Quarantine\774F0C14.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:36 2004 => File C:\Programme\Norton AntiVirus\Quarantine\775C3405.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:36 2004 => File C:\Programme\Norton AntiVirus\Quarantine\779627C5.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:36 2004 => File C:\Programme\Norton AntiVirus\Quarantine\77C47392.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:36 2004 => File C:\Programme\Norton AntiVirus\Quarantine\77DE4376.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:37 2004 => File C:\Programme\Norton AntiVirus\Quarantine\77EB6B67.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:37 2004 => File C:\Programme\Norton AntiVirus\Quarantine\781C6131.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:37 2004 => File C:\Programme\Norton AntiVirus\Quarantine\78305D1C.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:37 2004 => File C:\Programme\Norton AntiVirus\Quarantine\78470303.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:38 2004 => File C:\Programme\Norton AntiVirus\Quarantine\788B74B7.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:38 2004 => File C:\Programme\Norton AntiVirus\Quarantine\79220012.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:38 2004 => File C:\Programme\Norton AntiVirus\Quarantine\7AA10948.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:38 2004 => File C:\Programme\Norton AntiVirus\Quarantine\7C917726.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 18:13:38 2004 => File C:\Programme\Norton AntiVirus\Quarantine\7CA24914.exe infected by "Backdoor.Agobot.gen" Virus. Action Taken: No Action Taken. Sun Nov 07 19:01:57 2004 => File C:\WINDOWS\system32\eplrr9.dll infected by "Trojan.Win32.StartPage.ox" Virus. Action Taken: No Action Taken. Sun Nov 07 19:15:32 2004 => Total Disinfected Files: 0 Sun Nov 07 19:15:32 2004 => Total Virus(es) Found: 60 lieben gruß mit dank von soleluna |
ich glaube bei deinem system hilft nur das. Zitat:
|
echt? ojemine.... wo ich letztes mal doch extra so viel virenschutzprogramme draufgespielt hab...... keine chance auf alternativen? übrigens: als ich eben wieder den IE geöffnet hab, ließ sich die naupoint-site nimmer öffnen! |
@soleluna kuckst du hier http://www.trendmicro.com/vinfo/viru...OT.GEN&VSect=T neu aufsetzen ist wirklich besser. chaosman |
hm. grml. wozu hat man eigtl. dieses ganze virenschutzzeugs? |
Zitat:
Pflichtlektüre: http://www.mathematik.uni-marburg.de...ompromise.html |
haui, werd ich mir beizeiten mal zu gemüte führen. heut mag ich nimmer. und aus. *zwinker* lieben gruß, soleluna |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 07:12 Uhr. |
Copyright ©2000-2025, Trojaner-Board