Startseite www.searchqu.com/406

mina_v

Hallo,

ich habe den Virus www.searchqu.com/406 von Bandoo, weiss aber nicht woher. Ich habe die Anleitung von cosinus gefolgt, aber jetzt brauche ich einen Fachmann. Mein Virenscanner läuft gerade durch, hat bis jetzt aber nichts gefunden. Davor habe ich ESET laufen lassen und folgende logs erhalten:

ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=ff1f79a98994dd42b30b02970fe14b74
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-11-21 10:13:31
# local_time=2011-11-21 11:13:31 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 701 73535940 0 0
# compatibility_mode=8192 67108863 100 0 73 73 0 0
# scanned=301489
# found=28
# cleaned=0
# scan_time=7520
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarApp.dll a variant of Win32/Toolbar.Babylon application (unable to clean) 00000000000000000000000000000000 I
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarsrv.exe probably a variant of Win32/Toolbar.Babylon application (unable to clean) 00000000000000000000000000000000 I
C:\Program Files (x86)\FoxTabMusicConverter\AudioConverter.exe a variant of Win32/InstallCore.A application (unable to clean) 00000000000000000000000000000000 I
C:\Program Files (x86)\FoxTabMusicConverter\Uninstall\Uninstall.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
C:\Program Files (x86)\FoxTabPDFConverter\Uninstall\Uninstall.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\AppData\Local\Temp\6427A6BF-BAB0-7891-8FCE-55F0DF22D32C\MyBabylonTB.exe a variant of Win32/Toolbar.Babylon application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\AppData\Local\Temp\ICReinstall\MusicConverterSetup.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\AppData\Local\Temp\ICReinstall\PDFConverterSetup.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\AppData\Local\Temp\is1438683437\FoxTabTB.dll a variant of Win32/InstallCore.C application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\33a23d96-642ba048 Java/Exploit.Agent.NAO trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\Downloads\MusicConverterSetup.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Shara\Downloads\PDFConverterSetup.exe Win32/InstallCore application (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\0\4d43e080-174dd5d4 Java/Exploit.CVE-2009-3867.AL trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\33\30feb821-3125b77e multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\33\6eee3aa1-60ded21f a variant of Java/Agent.BR trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\34\5fc5a262-2a0189d2 a variant of Java/Agent.BR trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\36\1ffc5a4-234efeb2 probably a variant of Java/Agent.BR trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\44\1db6eec-52a84a86 multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\47\3e36666f-24bfe692 Java/Exploit.CVE-2009-3867.AL trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\52\31bba1f4-7c651ec3 probably a variant of Win32/Agent.DYXWUMY trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\52\e649f74-4ac802e5 multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\57\10fa0cb9-58357810 probably a variant of Java/Agent.BR trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\58\fa8f07a-3b19695d probably a variant of Win32/Agent.DYXWUMY trojan (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Eigene Dateien\makro.zip Win32/Induc virus (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Lokale Einstellungen\Temp\jar_cache4642499498789903522.tmp multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Lokale Einstellungen\Temp\jar_cache6971197644677320783.tmp multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Dokumente und Einstellungen\SharaII\Lokale Einstellungen\Temporary Internet Files\Content.IE5\NU2R3GQ3\how-to-talk-dirty-to-women-how-to-make-her-scream-tonight[1].htm HTML/Iframe.B.Gen virus (unable to clean) 00000000000000000000000000000000 I
D:\WINDOWS\Temp\~TM16.tmp a variant of Win32/Kryptik.CNQ trojan (unable to clean) 00000000000000000000000000000000 I

Was soll ich als nächstes tun?

Vielen Dank