Diverse Trojaner: eScan- & HJT-Logs posted

joyful

Hallo Zusammen
1. toller Service, welcher hier geboten wird :aplaus:

2. absolut neu hier - allfällige Regelverstösse sind auf Unwissen zurückzuführen

3. meine Probleme: Trojan Dropper Win32.Vidro.u und Vidro.x sowie Win32.qhost.df

4. mein escan log

infected
Mon Oct 03 16:47:55 2005 => System found infected with adware.toolbar.sbsoft.h Spyware/Adware ({08bec6aa-49fc-4379-3587-4b21e286c19e})! Action taken: No Action Taken.
Mon Oct 03 16:47:55 2005 => System found infected with adware.toolbar.sbsoft.h Spyware/Adware ({08bec6aa-49fc-4379-3587-4b21e286c19e})! Action taken: No Action Taken.
Mon Oct 03 16:47:55 2005 => System found infected with adware.toolbar.sbsoft.h Spyware/Adware ({08bec6aa-49fc-4379-3587-4b21e286c19e})! Action taken: No Action Taken.
Mon Oct 03 16:47:55 2005 => System found infected with alexa Spyware/Adware ({c95fe080-8f5d-11d2-a20b-00aa003c157a})! Action taken: No Action Taken.
Mon Oct 03 16:47:58 2005 => Offending file found: C:\WINDOWS\system32\libeay32_1-1-0_ddr.dll
Mon Oct 03 16:47:58 2005 => System found infected with cydoor Spyware/Adware (libeay32_1-1-0_ddr.dll)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\WINDOWS\system32\ssleay32_1-1-0_ddr.dll
Mon Oct 03 16:47:58 2005 => System found infected with cydoor Spyware/Adware (ssleay32_1-1-0_ddr.dll)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\WINDOWS\system32\stlport_4_0_0_ddr.dll
Mon Oct 03 16:47:58 2005 => System found infected with cydoor Spyware/Adware (stlport_4_0_0_ddr.dll)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\WINDOWS\system32\xerces-c_1_40_0_ddr.dll
Mon Oct 03 16:47:58 2005 => System found infected with cydoor Spyware/Adware (xerces-c_1_40_0_ddr.dll)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temporary internet files\content.ie5\etulq96n\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temporary internet files\content.ie5\j3lxj3py\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temporary internet files\content.ie5\p45olmph\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\temporary internet files\content.ie5\qdxncb4s\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\content.ie5\etulq96n\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\content.ie5\j3lxj3py\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\content.ie5\p45olmph\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:47:58 2005 => Offending file found: C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\content.ie5\qdxncb4s\common[1].js
Mon Oct 03 16:47:58 2005 => System found infected with whenu.savenow Spyware/Adware (common[1].js)! Action taken: No Action Taken.

Mon Oct 03 16:48:02 2005 => System found infected with cydoor Spyware/Adware (cfd.exe)! Action taken: No Action Taken.

Mon Oct 03 16:48:02 2005 => System found infected with cydoor Spyware/Adware (cfd.exe)! Action taken: No Action Taken.
--------------------------------
tagged
Mon Oct 03 16:47:23 2005 => File C:\WINDOWS\System32\ycnvi.dll tagged as "not-a-virus:AdWare.Win32.SBSoft.h". Action Taken: No Action Taken.
Mon Oct 03 16:49:52 2005 => File C:\WINDOWS\system32\ntfsnlpa.exe tagged as "not-a-virus:AdWare.Win32.Msnagent.b". Action Taken: No Action Taken.
Mon Oct 03 16:50:10 2005 => File C:\WINDOWS\system32\rdsndin.exe tagged as "not-a-virus:AdWare.Win32.FindSpy.a". Action Taken: No Action Taken.
Mon Oct 03 17:51:38 2005 => File C:\WINDOWS\SYSTEM32\ntfsnlpa.exe tagged as "not-a-virus:AdWare.Win32.Msnagent.b". Action Taken: No Action Taken.
Mon Oct 03 17:52:11 2005 => File C:\WINDOWS\SYSTEM32\rdsndin.exe tagged as "not-a-virus:AdWare.Win32.FindSpy.a". Action Taken: No Action Taken.
--------------------------------
summary
Mon Oct 03 17:53:31 2005 => ***** Scanning complete. *****

Mon Oct 03 17:53:31 2005 => Total Objects Scanned: 70176
Mon Oct 03 17:53:31 2005 => Total Virus(es) Found: 29
Mon Oct 03 17:53:31 2005 => Total Disinfected Files: 0
Mon Oct 03 17:53:31 2005 => Total Files Renamed: 0
Mon Oct 03 17:53:31 2005 => Total Deleted Objects: 0
Mon Oct 03 17:53:31 2005 => Total Errors: 226
Mon Oct 03 17:53:31 2005 => Time Elapsed: 01:06:29
Mon Oct 03 17:53:31 2005 => Virus Database Date: 2005/09/27
Mon Oct 03 17:53:31 2005 => Virus Database Count: 151405

Mon Oct 03 17:53:31 2005 => Scan Completed.
--------------------------------------------------------------------------