|
Mistvieh!! --> Backdoor.W32 Rbot.gen hat meine Datei "taksmgr.exe" befallen Ich bekomm den Backdoor da nicht raus. Das Problem ist das e-sacn den nicht löscht, weil ich das Programm kaufen soll. Ich versteh das nicht. Ich habe mir das Progra,, aus einem Forumlink von hier geholt, da hies es auch es ist kostenlos. Und das hat auch eine Weile funktioniert. Es hat Viren, wenn es welche gefunden hat, gelöscht. Nur jetzt, sobald es einen Virus findet, das ich das Programm kaufen soll (?) und es mir die Viren voher nicht löscht. Egal, aber auch F-Prot und Symantec 2004 professional löscht mir den Backdoor da net raus bzw zeigen es mir garnicht erst an da da ein virus/backdoor drinne ist. Die Sach ist das im abgesicherten Modus gar kein Viren scann mir was anzeigt. Was mach ich denn jetzt? Wie bekomm ich den da raus??? hier mal die log: Tue Nov 23 07:33:09 2004 => ********************************************************** Tue Nov 23 07:33:09 2004 => eScan AntiVirus Toolkit Utility. Tue Nov 23 07:33:09 2004 => Copyright © 2003-2004, MicroWorld Technologies Inc. Tue Nov 23 07:33:09 2004 => ********************************************************** Tue Nov 23 07:33:09 2004 => Version 4.6.7 (C:\bases\mwavscan.com) Tue Nov 23 07:33:09 2004 => Log File: C:\bases\mwav.log Tue Nov 23 07:33:09 2004 => Database Path in KL Key: E:\PROGRA~1\eScan. Tue Nov 23 07:33:11 2004 => Latest Date of files in KL key: 23 Nov 2004 01:01:10. Tue Nov 23 07:33:12 2004 => Latest Date of files inside MWAV: 19 Nov 2004 23:00:55. Tue Nov 23 07:33:13 2004 => eScan Install Directory: E:\PROGRA~1\eScan\ Tue Nov 23 07:33:13 2004 => MailScan Install Directory: E:\PROGRA~1\eScan\ Tue Nov 23 07:33:17 2004 => AV Library Loaded... Tue Nov 23 07:33:17 2004 => Scanning File C:\bases\kavss.exe Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\Getvlist.exe Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\kavss.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\kavssdi.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\kavssi.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\kavvlg.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\msvlclnt.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\ipc.dll Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\main.avi Tue Nov 23 07:33:18 2004 => Scanning File C:\bases\virus.avi Tue Nov 23 07:33:18 2004 => Virus Database Date: 2004/11/23 Tue Nov 23 07:33:18 2004 => Virus Database Count: 104737 Tue Nov 23 07:33:38 2004 => ********************************************************** Tue Nov 23 07:33:38 2004 => eScan AntiVirus Toolkit Utility. Tue Nov 23 07:33:38 2004 => Copyright © 2003-2004, MicroWorld Technologies Inc. Tue Nov 23 07:33:38 2004 => Tue Nov 23 07:33:38 2004 => Support: support@mwti.net Tue Nov 23 07:33:38 2004 => Web: http://www.mwti.net Tue Nov 23 07:33:38 2004 => ********************************************************** Tue Nov 23 07:33:38 2004 => Version 4.6.7 (C:\bases\mwavscan.com) Tue Nov 23 07:33:38 2004 => Log File: C:\bases\mwav.log Tue Nov 23 07:33:38 2004 => Database Path in KL Key: E:\PROGRA~1\eScan. Tue Nov 23 07:33:39 2004 => Latest Date of files in KL key: 23 Nov 2004 01:01:10. Tue Nov 23 07:33:39 2004 => Latest Date of files inside MWAV: 19 Nov 2004 23:00:55. Tue Nov 23 07:33:39 2004 => Options Selected by User: Tue Nov 23 07:33:39 2004 => Memory Check: Enabled Tue Nov 23 07:33:39 2004 => Registry Check: Enabled Tue Nov 23 07:33:39 2004 => StartUp Folder Check: Enabled Tue Nov 23 07:33:39 2004 => System Folder Check: Enabled Tue Nov 23 07:33:39 2004 => System Area Check: Disabled Tue Nov 23 07:33:39 2004 => Services Check: Enabled Tue Nov 23 07:33:39 2004 => Drive Check Option Disabled Tue Nov 23 07:33:39 2004 => Folder Check: Enabled Tue Nov 23 07:33:39 2004 => Folder Selected = C:\WINNT --->> Tue Nov 23 07:33:40 2004 => ***** Scanning Memory Files ***** Fri Dec 10 19:55:44 2004 => Scanning File C:\WINNT\system32\taksmgr.exe Fri Dec 10 19:55:46 2004 => File C:\WINNT\system32\taksmgr.exe infected by "Backdoor.Win32.Rbot.gen" Virus. Action Taken: No Action Taken. Fri Dec 10 19:56:01 2004 => Scanning File C:\WINNT\system32\taksmgr.exe Fri Dec 10 19:56:01 2004 => File C:\WINNT\system32\taksmgr.exe infected by "Backdoor.Win32.Rbot.gen" Virus. Action Taken: No Action Taken. Fri Dec 10 20:00:39 2004 => Scanning File C:\WINNT\? [**] --->> Fri Dec 10 20:00:39 2004 => ***** Checking for specific ITW Viruses ***** Fri Dec 10 20:00:39 2004 => Checking for Welchia Virus... Fri Dec 10 20:00:39 2004 => Checking for LovGate Virus... Fri Dec 10 20:00:39 2004 => Checking for CodeRed Virus... Fri Dec 10 20:00:39 2004 => Checking for OpaServ Virus... Fri Dec 10 20:00:39 2004 => Checking for Sobig.e Virus... Fri Dec 10 20:00:39 2004 => Checking for Winupie Virus... Fri Dec 10 20:00:39 2004 => Checking for Swen Virus... Fri Dec 10 20:00:39 2004 => Checking for JS.Fortnight Virus... Fri Dec 10 20:00:39 2004 => Checking for Novarg Virus... Fri Dec 10 20:00:39 2004 => Checking for Pagabot Virus... Fri Dec 10 20:00:39 2004 => Checking for Parite.b Virus... Fri Dec 10 20:00:39 2004 => Checking for Parite.a Virus... Fri Dec 10 20:00:39 2004 => ***** Scanning complete. ***** Fri Dec 10 20:00:39 2004 => Total Files Scanned: 4718 Fri Dec 10 20:00:39 2004 => Total Virus(es) Found: 7 Fri Dec 10 20:00:39 2004 => Total Disinfected Files: 0 Fri Dec 10 20:00:39 2004 => Total Files Renamed: 0 Fri Dec 10 20:00:39 2004 => Total Deleted Files: 0 Fri Dec 10 20:00:39 2004 => Total Errors: 5 Fri Dec 10 20:00:39 2004 => Time Elapsed: 00:05:20 Fri Dec 10 20:00:39 2004 => Virus Database Date: 2004/12/10 Fri Dec 10 20:00:39 2004 => Virus Database Count: 112179 Fri Dec 10 20:00:39 2004 => Scan Completed. |
Shadowdance hat hier einen schönen Post zum RBot verfasst. Cidre's Rat beachten! mfg Haui PS: du hast längst nicht dein ganzes System gescannt (4718 Files sind viel zu wenig!), also dürfte noch mehr drauf sein!!! |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 06:04 Uhr. |
Copyright ©2000-2024, Trojaner-Board