haposai
22/01/07, 14:22:48
un amigo me paso un virus por el mesenger, lo intente quitar con el ewido, me detecto 4 virus y los elimino . Despues pase el kaspersky y me detecto 6 virus. Deshabilite restaurar sistema, reinicie, (siguiendo consejos de un amigo) y esto me elimino 3 virus mas, pero aun tengo tres, aqui os pongo el resumen del kaspersky. Como podria eliminar estos virus?
lunes, 22 de enero de 2007 8:41:34
Sistema operativo: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.0
Ultima actualización: 22/01/2007
Registros en la base antivirus: 260641
Configuración del análisis
Analizar usando las siguientes bases estendidas
Analizar archivos verdadero
Analizar bases de correo verdadero
Objetivo a analizar Mi PC
C:\
D:\
Estadísticas
Número de objeros analizados 132867
Virus encontrados 3
Objetos infectados 7 / 0
Objetos sospechosos 0
Duración del análisis 02:25:10
Bombre del objeto infectado Nombre del virus Última acción
C:\Documents and Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.log Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/BlackBox.class Infectados: Exploit.Java.ByteVerify saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/VerifierBug.class Infectados: Exploit.Java.ByteVerify saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/Beyond.class Infectados: Trojan-Downloader.Java.OpenConnection.aa saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip ZIP: infectado - 3 saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip CryptFF: infectado - 3 saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\media\db4\scMe diaDB.data Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\media\db4\scMe diaDB.script Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\simplecenter.0 .log Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\simplecenter.0 .log.lck Object is locked saltado
C:\Documents and Settings\cesc\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\History\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\googlewebaccclient.exe.log Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAccelerator.pac Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAcceleratorCache Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAccWarden.exe.log Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\hsperfdata_cesc\3628 Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\cesc\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\cesc\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado
C:\Program Files\eMule\Incoming\Pro Evolution Soccer 6 Crack.zip/Pro Evolution Soccer 6 Crack.exe Infectados: Trojan.Win32.Delf.xx saltado
C:\Program Files\eMule\Incoming\Pro Evolution Soccer 6 Crack.zip ZIP: infectado - 1 saltado
C:\Program Files\eMule\Temp\002.part Object is locked saltado
C:\Program Files\eMule\Temp\003.part Object is locked saltado
C:\Program Files\eMule\Temp\004.part Object is locked saltado
C:\Program Files\eMule\Temp\006.part Object is locked saltado
C:\Program Files\eMule\Temp\008.part Object is locked saltado
C:\Program Files\eMule\Temp\009.part Object is locked saltado
C:\Program Files\eMule\Temp\010.part Object is locked saltado
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado
C:\System Volume Information\_restore{5EF61E35-F473-47F0-AB71-E40210802868}\RP1\change.log Object is locked saltado
C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado
C:\WINDOWS\ModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt Object is locked saltado
C:\WINDOWS\Registration\{02D4B3F1-FD88-11D1-960D-00805FC79235}.{4637B038-00F3-441C-916F-2C9A88E5A8F6}.crmlog Object is locked saltado
C:\WINDOWS\SchedLgU.Txt Object is locked saltado
C:\WINDOWS\SoftwareDistribution\EventCache\{EEF2EE FC-8E62-4EA9-AB1D-2428963D0253}.bin Object is locked saltado
C:\WINDOWS\SoftwareDistribution\ReportingEvents.lo g Object is locked saltado
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\default Object is locked saltado
C:\WINDOWS\system32\config\default.LOG Object is locked saltado
C:\WINDOWS\system32\config\Media Ce.evt Object is locked saltado
C:\WINDOWS\system32\config\SAM Object is locked saltado
C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\SECURITY Object is locked saltado
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado
C:\WINDOWS\system32\config\software Object is locked saltado
C:\WINDOWS\system32\config\software.LOG Object is locked saltado
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\system Object is locked saltado
C:\WINDOWS\system32\config\system.LOG Object is locked saltado
C:\WINDOWS\system32\h323log.txt Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado
C:\WINDOWS\WindowsUpdate.log Object is locked saltado
Análisis completado.
lunes, 22 de enero de 2007 8:41:34
Sistema operativo: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.0
Ultima actualización: 22/01/2007
Registros en la base antivirus: 260641
Configuración del análisis
Analizar usando las siguientes bases estendidas
Analizar archivos verdadero
Analizar bases de correo verdadero
Objetivo a analizar Mi PC
C:\
D:\
Estadísticas
Número de objeros analizados 132867
Virus encontrados 3
Objetos infectados 7 / 0
Objetos sospechosos 0
Duración del análisis 02:25:10
Bombre del objeto infectado Nombre del virus Última acción
C:\Documents and Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.log Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/BlackBox.class Infectados: Exploit.Java.ByteVerify saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/VerifierBug.class Infectados: Exploit.Java.ByteVerify saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip/Beyond.class Infectados: Trojan-Downloader.Java.OpenConnection.aa saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip ZIP: infectado - 3 saltado
C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3F3C2F2E.zip CryptFF: infectado - 3 saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\media\db4\scMe diaDB.data Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\media\db4\scMe diaDB.script Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\simplecenter.0 .log Object is locked saltado
C:\Documents and Settings\cesc\.Philips\MediaManager\simplecenter.0 .log.lck Object is locked saltado
C:\Documents and Settings\cesc\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\History\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\googlewebaccclient.exe.log Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAccelerator.pac Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAcceleratorCache Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\GoogleWebAccWarden.exe.log Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temp\hsperfdata_cesc\3628 Object is locked saltado
C:\Documents and Settings\cesc\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\cesc\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\cesc\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado
C:\Program Files\eMule\Incoming\Pro Evolution Soccer 6 Crack.zip/Pro Evolution Soccer 6 Crack.exe Infectados: Trojan.Win32.Delf.xx saltado
C:\Program Files\eMule\Incoming\Pro Evolution Soccer 6 Crack.zip ZIP: infectado - 1 saltado
C:\Program Files\eMule\Temp\002.part Object is locked saltado
C:\Program Files\eMule\Temp\003.part Object is locked saltado
C:\Program Files\eMule\Temp\004.part Object is locked saltado
C:\Program Files\eMule\Temp\006.part Object is locked saltado
C:\Program Files\eMule\Temp\008.part Object is locked saltado
C:\Program Files\eMule\Temp\009.part Object is locked saltado
C:\Program Files\eMule\Temp\010.part Object is locked saltado
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado
C:\System Volume Information\_restore{5EF61E35-F473-47F0-AB71-E40210802868}\RP1\change.log Object is locked saltado
C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado
C:\WINDOWS\ModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt Object is locked saltado
C:\WINDOWS\Registration\{02D4B3F1-FD88-11D1-960D-00805FC79235}.{4637B038-00F3-441C-916F-2C9A88E5A8F6}.crmlog Object is locked saltado
C:\WINDOWS\SchedLgU.Txt Object is locked saltado
C:\WINDOWS\SoftwareDistribution\EventCache\{EEF2EE FC-8E62-4EA9-AB1D-2428963D0253}.bin Object is locked saltado
C:\WINDOWS\SoftwareDistribution\ReportingEvents.lo g Object is locked saltado
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\default Object is locked saltado
C:\WINDOWS\system32\config\default.LOG Object is locked saltado
C:\WINDOWS\system32\config\Media Ce.evt Object is locked saltado
C:\WINDOWS\system32\config\SAM Object is locked saltado
C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\SECURITY Object is locked saltado
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado
C:\WINDOWS\system32\config\software Object is locked saltado
C:\WINDOWS\system32\config\software.LOG Object is locked saltado
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\system Object is locked saltado
C:\WINDOWS\system32\config\system.LOG Object is locked saltado
C:\WINDOWS\system32\h323log.txt Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado
C:\WINDOWS\WindowsUpdate.log Object is locked saltado
Análisis completado.