virusdemie
01/04/06, 01:21:29
Hola amigos, sorry por molestar, pero ya estoy que me pego un tiro con esto:
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.ah skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364 ZIP: infected - 1 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364 CryptFF.b: infected - 1 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/BlackBox.class Infected: Trojan.Java.ClassLoader.ak skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/VB.class Infected: Trojan.Java.ClassLoader.ak skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.ah skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928 ZIP: infected - 3 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928 CryptFF.b: infected - 3 skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0215126.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216126.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216135.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216144.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0217144.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0217213.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0218203.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0219203.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219233.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219243.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219297.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0232377.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0234852.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235937.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235948.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235949.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235964.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240619.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240621.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240623.exe Infected: Trojan-Downloader.Win32.Bagle.aj skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240629.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240630.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240631.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240632.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240748.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240750.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240849.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240850.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240851.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241848.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241850.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241868.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241870.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241891.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241892.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241911.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241913.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241932.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241934.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241951.dll Infected: Trojan-Downloader.Win32.Bagle.af skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241957.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241966.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242040.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242049.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242067.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
Me Kgó toda la seguridad y la conexión compartida a internet.
Bueno, la cosa es que seguí la ruta típica con que he eliminado virus hasta hoy y "aparentemente" logré quitar todo, porque pasé panda, kaspersky, trend m y norton y no han encontrado nada. Sin embargo, pese a que he configurado hasta el cansancio (desde ejecutar: services.msc) el "centro de seguridad" de winXP sp2 que tengo instalado, no logro que inicie normalmente en el inicio de windows, cada vez que inicio el PC, la configuración cambia. Tampoco logro activar la "conexión compartida a internet (ICS)" corro el asistente de configuración y me configura la red (de 2 PC's host+cliente) de maravillas, pero sin internet para el PC "cliente". Voy a windows update y me hace error al tratar de instalar cualquier actualización o parche, incluso borrando desde cmd el historial de actualizaciones. Ya no se me ocurre qué entrada de registro revisar en busca de algo "raro"
Por favor, se me acaban las ideas, acepto y agradezco hasta el infinito cualquier sugerencia.
De antemano, 1000000 de gracias.
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.ah skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364 ZIP: infected - 1 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00364 CryptFF.b: infected - 1 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/BlackBox.class Infected: Trojan.Java.ClassLoader.ak skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/VB.class Infected: Trojan.Java.ClassLoader.ak skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.ah skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928 ZIP: infected - 3 skipped
D:\Documents and Settings\Pochitols.POCHOL\.housecall\Quarantine\ar chive1213.jar-17ab944c-17aa6b61.zip.bac_a00928 CryptFF.b: infected - 3 skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0215126.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216126.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216135.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0216144.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0217144.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0217213.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0218203.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP338\A0219203.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219233.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219243.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0219297.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0232377.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0234852.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235937.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235948.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235949.exe Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP339\A0235964.dll Infected: Trojan-Proxy.Win32.Horst.u skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240619.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240621.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240623.exe Infected: Trojan-Downloader.Win32.Bagle.aj skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240629.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240630.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240631.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240632.exe Infected: Packed.Win32.Bagle skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240748.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240750.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240849.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240850.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0240851.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241848.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241850.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241868.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP351\A0241870.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241891.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241892.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241911.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241913.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241932.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241934.exe Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241951.dll Infected: Trojan-Downloader.Win32.Bagle.af skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241957.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP352\A0241966.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242040.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242049.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
D:\System Volume Information\_restore{D3454831-A335-4AC0-9B5D-6DB4348A11E9}\RP353\A0242067.sys Infected: Trojan-Proxy.Win32.Mitglieder.ea skipped
Me Kgó toda la seguridad y la conexión compartida a internet.
Bueno, la cosa es que seguí la ruta típica con que he eliminado virus hasta hoy y "aparentemente" logré quitar todo, porque pasé panda, kaspersky, trend m y norton y no han encontrado nada. Sin embargo, pese a que he configurado hasta el cansancio (desde ejecutar: services.msc) el "centro de seguridad" de winXP sp2 que tengo instalado, no logro que inicie normalmente en el inicio de windows, cada vez que inicio el PC, la configuración cambia. Tampoco logro activar la "conexión compartida a internet (ICS)" corro el asistente de configuración y me configura la red (de 2 PC's host+cliente) de maravillas, pero sin internet para el PC "cliente". Voy a windows update y me hace error al tratar de instalar cualquier actualización o parche, incluso borrando desde cmd el historial de actualizaciones. Ya no se me ocurre qué entrada de registro revisar en busca de algo "raro"
Por favor, se me acaban las ideas, acepto y agradezco hasta el infinito cualquier sugerencia.
De antemano, 1000000 de gracias.