Foro de Spyware - Ver Mensaje Individual - Ayuda creo que tengo virus (Solucionado)

Tema: Ayuda creo que tengo virus (Solucionado)

Ver Mensaje Individual

post #8 (permalink)

23/05/08, 17:21:46

capy

Usuario

Registrado: ene 2007

Ubicación: México

Mensajes: 13

Re: Ayuda creo que tengo virus

HOLA, hice lo que me pediste

, aquí está el reporte:

viernes, 23 de mayo de 2008 15:18:18
Sistema operativo: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.1
Ultima actualización: 23/05/2008
Registros en la base antivirus: 799296

Configuración del análisis
Analizar usando las siguientes bases estendidas
Analizar archivos verdadero
Analizar bases de correo verdadero

Objetivo a analizar Mi PC
C:\
D:\
E:\
F:\

Estadísticas
Número de objeros analizados 117361
Virus encontrados 5
Objetos infectados 10 / 0
Objetos sospechosos 0
Duración del análisis 01:49:59

Bombre del objeto infectado Nombre del virus Última acción
C:\Documents and Settings\All Users\Application Data\Dell\QuickSet\QSLLPSVCShare Object is locked saltado

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\cer t8.db Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\his tory.dat Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\key 3.db Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\par ent.lock Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\sea rch.sqlite Object is locked saltado

C:\Documents and Settings\Hiram\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\url classifier2.sqlite Object is locked saltado

C:\Documents and Settings\Hiram\Cookies\index.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\Logs\Dfsr00005.log Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\pending.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\Working\database_BA4C_802D_4C7F_E295\dfs r.db Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\Working\database_BA4C_802D_4C7F_E295\fsr .log Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\Working\database_BA4C_802D_4C7F_E295\fsr tmp.log Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Messenger\capy86@hotmail.com\Sharin gMetadata\Working\database_BA4C_802D_4C7F_E295\tmp .edb Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Windows Live Contacts\capy86@hotmail.com\real\members.stg Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Microsoft\Windows Live Contacts\capy86@hotmail.com\shadow\members.stg Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\Cac he\_CACHE_001_ Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\Cac he\_CACHE_002_ Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\Cac he\_CACHE_003_ Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Application Data\Mozilla\Firefox\Profiles\l46si0ls.default\Cac he\_CACHE_MAP_ Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\History\History.IE5\index.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\History\History.IE5\MSHist012008052320080 524\index.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\Sin título-1.swf Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFAD.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFBF.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFCEC.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFD38.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFD670.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFD743.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFF9BB.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temp\~DFF9F8.tmp Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked saltado

C:\Documents and Settings\Hiram\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado

C:\Documents and Settings\Hiram\My Documents\Mis historiales de conversación\Mayo 2008\bliss_cat02@hotmail.com.ple Object is locked saltado

C:\Documents and Settings\Hiram\NTUSER.DAT Object is locked saltado

C:\Documents and Settings\Hiram\ntuser.dat.LOG Object is locked saltado

C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado

C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked saltado

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado

C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado

C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado

C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado

C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked saltado

C:\Program Files\Alwil Software\Avast4\DATA\report\Protección residente.txt Object is locked saltado

C:\Program Files\Internet Explorer\IEXPLORE.EXE.log Object is locked saltado

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado

C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado

C:\WINDOWS\SC68EB953.tmp Object is locked saltado

C:\WINDOWS\SchedLgU.Txt Object is locked saltado

C:\WINDOWS\SoftwareDistribution\EventCache\{CD08F5 6F-8FA5-4C73-9899-E763FA5238C3}.bin Object is locked saltado

C:\WINDOWS\SoftwareDistribution\ReportingEvents.lo g Object is locked saltado

C:\WINDOWS\system32\config\Antivirus.Evt Object is locked saltado

C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado

C:\WINDOWS\system32\config\default Object is locked saltado

C:\WINDOWS\system32\config\DEFAULT.LOG Object is locked saltado

C:\WINDOWS\system32\config\Internet.evt Object is locked saltado

C:\WINDOWS\system32\config\ODiag.evt Object is locked saltado

C:\WINDOWS\system32\config\OSession.evt Object is locked saltado

C:\WINDOWS\system32\config\SAM Object is locked saltado

C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado

C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado

C:\WINDOWS\system32\config\SECURITY Object is locked saltado

C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado

C:\WINDOWS\system32\config\software Object is locked saltado

C:\WINDOWS\system32\config\SOFTWARE.LOG Object is locked saltado

C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado

C:\WINDOWS\system32\config\system Object is locked saltado

C:\WINDOWS\system32\config\SYSTEM.LOG Object is locked saltado

C:\WINDOWS\system32\drivers\sptd.sys Object is locked saltado

C:\WINDOWS\system32\h323log.txt Object is locked saltado

C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked saltado

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado

C:\WINDOWS\Temp\Perflib_Perfdata_15c.dat Object is locked saltado

C:\WINDOWS\Temp\Perflib_Perfdata_394.dat Object is locked saltado

C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked saltado

C:\WINDOWS\WindowsUpdate.log Object is locked saltado

C:\winhost.exe Infectados: Trojan.Win32.Pakes.cwk saltado

C:\_OTMoveIt\MovedFiles\05152008_110531\SDFix\back ups\backups.zip/backups/hosts Infectados: Trojan.Win32.Qhost.aei saltado

C:\_OTMoveIt\MovedFiles\05152008_110531\SDFix\back ups\backups.zip/backups/isi32.exe Infectados: Worm.Win32.AutoRun.dmh saltado

C:\_OTMoveIt\MovedFiles\05152008_110531\SDFix\back ups\backups.zip ZIP: infectado - 2 saltado

C:\_OTMoveIt\MovedFiles\05152008_110531\WINDOWS\sy stem32\udls.exe Infectados: Worm.Win32.AutoRun.dmh saltado

C:\_OTMoveIt\MovedFiles\05232008_122028\WINDOWS\sy stem32\dkjbtbzb.exe Infectados: Worm.Win32.AutoRun.dsf saltado

C:\_OTMoveIt\MovedFiles\05232008_122028\WINDOWS\sy stem32\iwtayckc.exe Infectados: Worm.Win32.AutoRun.dsf saltado

C:\_OTMoveIt\MovedFiles\05232008_122028\WINDOWS\sy stem32\yetgpndo.exe Infectados: Worm.Win32.AutoRun.dqq saltado

C:\_OTMoveIt\MovedFiles\05232008_122028\WINDOWS\sy stem32\yfjzypev.exe Infectados: Worm.Win32.AutoRun.dmh saltado

C:\_OTMoveIt\MovedFiles\05232008_122028\WINDOWS\sy stem32\zghnt.exe Infectados: Worm.Win32.AutoRun.dsf saltado

D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado

Análisis completado.

MUCHAS GRACIAS