Blog Registrarse Temas de Hoy AntiSpywares AntiVirus Glosario

Regresar   Foro de Spyware » Spyware - Adware - Hijackers - Malwares » Temas Solucionados
Actualizar Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm (Solucionado)
         
Para evitar Virus, Spyware y ventanas emergentes, en InfoSpyware recomendamos navegar con: FIREFOX

Temas Solucionados Casos de HijackThis y Malwares resueltos.
(Solo lectura)

Respuesta
Página 1 de 2 1 2 >
 
Herramientas
  post #1 (permalink)  
Antiguo 23/03/08, 12:48:41
Usuario
  
Registrado: mar 2008
Ubicación: Sevilla
Mensajes: 10
Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm (Solucionado)
Saludos al foro, expongo brevemente mi problema:


Hace unos días estaba en el pc y empezé a notar derepente cosas muy raras, por ejemplo Internet Explorer me dejó de funcionar de repente durante un rato (pero en cambio tenia conexión a Internet), no recibía audio de ningun tipo por los altavoces, no podia abrir algunos programas... y descubrí que mi antivirus (Kaspersky) estaba cerrado. Intenté abrirlo pero no me dejaba, no recuerdo exactamente qué me decía pero era imposible abrirlo. Reinicié el ordenador y el Kaspersky no se me inició sólo como hacía normalmente, y seguía sin poder abrirlo. Intenté reinstalarlo pero me salía este mensaje de error:

"Error 1304. Error al escribir en el archivo C:\WINDOWS\system32\drivers\klif.sys. Compruebe que dispone de acceso a ese directorio."


Copié ese archivo (klif.sys) del pc de mi hermano (que tiene el mismo antivirus) y me lo intenté copiar en mi pc pero automáticamente se borra solo y no hay forma de copiarlo (lo intenté por CD y por tarjeta SD, pero de ninguna forma se podía).

Eliminé los restos del Kaspersky para poder instalar otro antivirus, el NOD32. Supuestamente se instala correctamente pero cuando reinicio e intento abrirlo para escanear el pc me dice que no es una aplicación Win32 valida.

He intentado un par de antivirus más (de los gratuitos) y no me deja instalarlos. No puedo instalar nada, siempre me da algun tipo de mensaje de error.


Analicé mi pc con Active Scan a través de internet, y tras el análisis me indicaba el siguiente informe:

------------------------
Incidencia / Estado / Elemento


Dialer:dialer.su No desinfectado hkey_local_machine\software\microsoft\windows\curr entversion\uninstall\Switch

Spyware:spyware/searchcentrix No desinfectado Registro de Windows

Virus:Generic Trojan Desinfectado C:\Archivos de programa\QuickTime\QTSystem\quicktime.pro.7.1.x-patch.exe

Virus:Generic Trojan Desinfectado C:\Archivos de programa\Sony\Sound Forge 9.0\PACH.exE

Virus:W32/Bagle.QV.worm Desinfectado C:\Documents and Settings\ANDRES\Configuración local\Archivos temporales de Internet\Content.IE5\1WGVLTWL\b64_2[1].jpg

Virus:W32/Bagle.RP.worm Desinfectado C:\Documents and Settings\ANDRES\Configuración local\Archivos temporales de Internet\Content.IE5\GHERW9U7\b64_31[1].jpg

Virus:W32/Bagle.RP.worm Desinfectado C:\Documents and Settings\ANDRES\Configuración local\Archivos temporales de Internet\Content.IE5\SDEJSXUZ\b64_31[1].jpg

Spyware:Cookie/YieldManager No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@ad.yieldmanager[2].txt

Spyware:Cookie/Adtech No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@adtech[1].txt

Spyware:Cookie/Advertising No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@advertising[1].txt

Spyware:Cookie/Atlas DMT No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@atdmt[2].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@bs.serving-sys[1].txt

Spyware:Cookie/Doubleclick No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@doubleclick[1].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Configuración local\Temp\Cookies\andres@serving-sys[1].txt

Spyware:Cookie/YieldManager No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@ad.yieldmanager[1].txt

Spyware:Cookie/Adtech No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@adtech[1].txt

Spyware:Cookie/Advertising No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@advertising[2].txt

Spyware:Cookie/Atlas DMT No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@atdmt[1].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@bs.serving-sys[2].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@bs.serving-sys[3].txt

Spyware:Cookie/Doubleclick No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@doubleclick[1].txt

Spyware:Cookie/Doubleclick No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@doubleclick[2].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@serving-sys[1].txt

Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@serving-sys[2].txt

Spyware:Cookie/Tradedoubler No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@tradedoubler[2].txt

Spyware:Cookie/Xiti No desinfectado C:\Documents and Settings\ANDRES\Cookies\andres@xiti[1].txt

Posible Virus. No desinfectado C:\Documents and Settings\ANDRES\Escritorio\OTROS\PROGRAMAS\Express Rip Plus v1.41.zip[keygen.exe]

Virus:Generic Trojan Desinfectado C:\Documents and Settings\ANDRES\Escritorio\OTROS\PROGRAMAS\Quickti me 7.1.3.100 + Serial + Crack\quicktime.pro.7.1.x-patch.exe

Virus:Trj/Mitglieder.TA Desinfectado C:\RECYCLER\S-1-5-21-725345543-606747145-839522115-1003\Dc152.zip[Rubies of Eventide 0.95.exe]

Posible Virus. No desinfectado C:\WINDOWS\system32\1.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\132640.exe

Virus:W32/Bagle.QV.worm Desinfectado C:\WINDOWS\system32\drivers\down\14611359.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\14620250.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\29162281.exe

Posible Virus. No desinfectado C:\WINDOWS\system32\drivers\down\4819562.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\61828.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\65359.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\66406.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\68421.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\73500.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\74453.exe

Posible Virus. No desinfectado C:\WINDOWS\system32\drivers\down\76687.exe

Posible Virus. No desinfectado C:\WINDOWS\system32\drivers\down\85750.exe

Posible Virus. No desinfectado C:\WINDOWS\system32\drivers\down\94953.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\srosa.sys

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\mdelk.exe

Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\wintems.exe
--------------------------

En el informe del Active scan me dice que me ha desinfectado los virus que me ha encontrado, pero me indica "Posibles virus" que no me desinfecta. He eliminado manualmente los archivos que me indica como "Spyware" y como "Posibles virus", excepto los que pertenecen a la carpeta System32 por si las moscas.



He probado a instalar el Panda y tampoco me lo acepta, me da mensaje de error:

"Error de CRC: El archivo C:\Archivos de programa\Panda Security\Panda Internet Security 2008\AVENGINE.EXE no coincide con el archivo .cab del programa de instalación. Es posible que el medio desde el que se esta ejecutando el programa de instalación esté dañado; pongase en contacto con el proveedor de software"

Le doy a reintentar y no me deja, le doy a Omitir y me dice:

"Error de Transferencia de componente
Componente: NT
Grupo de archivos: ResidenteFicherosNTPAV
Archivo: C:\WINDOWS\system32\PAV\
Error: Acceso denegado"



Estoy atascado porque ya no se me ocurre nada sobre qué puedo hacer, ¿alguien me echa un cable por favor?

Gracias de antemano
Última edición por yozoy fecha: 23/03/08 a las 12:52:05.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #2 (permalink)  
Antiguo 23/03/08, 12:50:43
Avatar de Residentevil
Usuario Habitual
  
Registrado: nov 2007
Ubicación: Corporation Umbrella
Mensajes: 1.504
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
Descarga Drwebcureit (actualizalo) siguiendo su manual


Descarga Malwarebytes Antimalware (actualizalo)

Ejecuta Drwebcureit

Ejecuta Malwarebytes Antimalware

:5 Utiliza el programa ccleaner. pasando por su opcion limpiador para eliminar archivos obsoletos.pasa luego por su opcion del registro (haciendo copia de seguridad)

:6 Haz un scan con kaspersky para detectar infecciones y pegas el log aqui con el del malwarwbyte drwebcureit.

salu2.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #3 (permalink)  
Antiguo 24/03/08, 09:53:24
Usuario
  
Registrado: mar 2008
Ubicación: Sevilla
Mensajes: 10
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
Muchas gracias por contestar Residentevil , te explico lo que he hecho por pasos:

- El Drwebcureit lo ejecuto pero no puedo abrirlo, en cuanto me sale la ventana de inicio del programa para comenzar el escaneo se me cierra, lo he intentado muchas veces pero no hay manera, los virus no me lo aceptan.

- He escaneado el pc con Malwarebytes Antimalware, dejo aqui el informe:

Malwarebytes' Anti-Malware 1.09
Versión de la Base de Datos: 526

Tipo de examen : Examen Completo (C:\|)
Objetos examinados: 191949
Tiempo transcurrido: 2 hour(s), 11 minute(s), 10 second(s)

Procesos en Memoria Infectados: 0
Módulos en Memoria Infectados: 0
Claves del Registro Infectadas: 0
Valores del Registro Infectados: 0
Elementos de Datos del Registro Infectados: 0
Carpetas Infectadas: 1
Ficheros Infectados: 441

Procesos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Módulos en Memoria Infectados:
(No se han detectado elementos maliciosos)

Claves del Registro Infectadas:
(No se han detectado elementos maliciosos)

Valores del Registro Infectados:
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Infectados:
(No se han detectado elementos maliciosos)

Carpetas Infectadas:
C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> No action taken.

Ficheros Infectados:
C:\System Volume Information\_restore{D8C755B3-92FC-4E85-9F64-1F7B7017962E}\RP272\A0054461.exe (Trojan.Spammer) -> No action taken.
C:\System Volume Information\_restore{D8C755B3-92FC-4E85-9F64-1F7B7017962E}\RP272\A0054462.exe (Trojan.Spammer) -> No action taken.
C:\System Volume Information\_restore{D8C755B3-92FC-4E85-9F64-1F7B7017962E}\RP282\A0054976.exe (Trojan.Spammer) -> No action taken.
C:\WINDOWS\system32\drivers\down\100750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\101171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\102875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\107500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\107531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\107734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\107843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\108375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\109875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\110781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\110906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\111546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\112312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\113125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\113734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\114281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\115750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\116390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\117421.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\117437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\118265.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\118515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\118531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\119578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\119968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\120484.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\120734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\120984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\121203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\121390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\122062.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\122906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\123765.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\124046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\124265.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\124812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\125125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\125609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\125703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\125921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\126234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\126578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\126750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\127156.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\127781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\127859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128890.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\128921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\129218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\129437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\129781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\129859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\129875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\130031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\130531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\130656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\130890.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\130906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\131437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132328.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132562.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\132609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\133328.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\133500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\133750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\133906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\133921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\134078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\134656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\134734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\135156.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\135171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\135718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\135953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\136265.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\136671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\136718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\137437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\137515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\137968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\138015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\138046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\138078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\138187.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\138687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\139140.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\140515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\140640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\140718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\140859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\141656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\141828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\141843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\142203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\142234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\142656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\142906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\143343.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\143687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\143718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\144031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\144234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\144812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\144828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\145234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\145609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14598125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14598906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14604218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14607218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14610546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14615109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14615640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14616031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14617546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14617734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14619031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14621515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14622312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14623656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14623875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14625015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\146406.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14642937.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14648578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14651750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14654531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14654968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14658468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14659218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14659750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14659875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14661671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14662500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14664312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14665765.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14666734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\146671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14667390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14668187.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14670140.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14671296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14673406.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14674718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14674843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14675796.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14679625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14680218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14685843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14686828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14687578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\146890.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14692703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14700484.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14701484.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14702640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14706593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14720921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14728703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14732687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14740593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14749375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\14756843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\147843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\147890.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\148531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\149234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\149296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\149390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\149437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\150109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\150593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\150687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\150828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\151453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\151562.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\152109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\152453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\152515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\154015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\154296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\155218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\155953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\155968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\156890.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\157218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\157640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\158625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\159390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\161031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\161875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\162250.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\163171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\165531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\165812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\166578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\166843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\173343.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\173781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\174218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\175453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\176125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\177468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\177562.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\179359.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\181546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\181625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\184546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\185640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\189156.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\189171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\191640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\192593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\192812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\193062.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\193437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\193453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\193718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\198390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\198671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\199406.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\199843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\200875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\201656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\201750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\201953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\202031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\202078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\202250.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\203171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\203718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\204953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\205031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\205578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\208781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\209468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\210046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\212015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\212687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\216234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\217640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\219375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\220046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\222640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\223953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\230578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\243703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\251625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\252281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\254359.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\257312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\260343.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\263500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\264390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\264515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\271812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\272750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\278125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\280140.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\283984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\288437.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29154812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29156312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29160703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29164937.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\291671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29168046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29169046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29169359.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29169750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29179234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29179390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29181000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29183046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29209546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29211796.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29216828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29217640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29219781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29220140.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29223015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29232203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29235000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29235578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29235828.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29237031.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29242468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29245843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29247781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29249843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29251718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29253500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29254515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29257000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29258937.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29266390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29296843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29304375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29309468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\29317500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\293281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\295734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\299250.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\328812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\336656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\359375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\367203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43717984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43719265.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43723062.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43726843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43730812.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43732109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43775609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43785218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43789671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43794375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43798843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43800453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43812703.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43820250.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43823500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43824984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43831750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43875781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\43883906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4780296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4781390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4817468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4819562.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4822359.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4827843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4859296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4864625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4867359.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4870796.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4875625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4876781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4883421.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4887953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4889515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4893906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4899046.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4939640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\4947671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\50656.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\51859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\55859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\56156.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\56843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\57078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\57203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\57906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\58125.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\58484.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\59609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\59921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\59968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\60093.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\60781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\61203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\61312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\61375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\62859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\63640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\63671.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\64000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\64281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\64625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65015.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65796.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65968.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\65984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\66281.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\66546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\67109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\67546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\68531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\69234.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\69593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\69640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\69843.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\70078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\70578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\71078.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\71609.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\72000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\72171.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\72531.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\72796.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\73515.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\73734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\74640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\74906.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\74984.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\76203.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\76578.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\76687.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\76921.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\77296.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\77468.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\77484.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\77640.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\77734.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\78218.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\78453.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\78718.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\79000.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\79593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\80500.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\81328.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\81390.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\82546.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\82593.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\84312.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\84375.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\85328.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\85750.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\87859.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\88781.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\88875.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\91625.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\94109.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\down\94953.exe (Trojan.Downloader) -> No action taken.
C:\WINDOWS\system32\drivers\srosa.sys (Rootkit.Bagle) -> No action taken.
C:\WINDOWS\system32\mdelk.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\wintems.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\drivers\hldrrr.exe (Rootkit.Agent) -> No action taken.


Tras esto, he eliminado todos esos archivos peligrosos que me ha detectado el programa. Destaco que tras esto, he recuperado EL AUDIO, es decir, ya me funciona la tarjeta y puedo escuchar audio de cualquier web o reproductor. Tambien destaco que ahora puedo abrir musica en winamp, antes no me dejaba tampoco desde que se me infectó el pc.


(SIGUE EN EL SIGUIENTE MENSAJE)
Última edición por yozoy fecha: 24/03/08 a las 10:02:49.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #4 (permalink)  
Antiguo 24/03/08, 09:53:59
Usuario
  
Registrado: mar 2008
Ubicación: Sevilla
Mensajes: 10
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
- Después he intentado ejecutar el ccleaner pero no me deja, me pasa lo mismo que con el drwebcureit, se me cierra nada mas abrir el programa, por lo tanto no he podido realizar la correspondiente limpieza de archivos.


- Y por último he realizado un escaneo on line con Kaspersky y el informe es el siguiente:

-------------------------------------------------------------------------------


kaspersky online scanner report
monday, march 24, 2008 9:22:58 am
operating system: microsoft windows xp professional, service pack 2 (build 2600)
kaspersky online scanner version: 5.0.98.0
kaspersky anti-virus database last update: 24/03/2008
kaspersky anti-virus database records: 656986
-------------------------------------------------------------------------------

scan settings:
scan using the following antivirus database: extended
scan archives: true
scan mail bases: true

scan target - my computer:
a:\
c:\
d:\
e:\
f:\
g:\
h:\
i:\

scan statistics:
total number of scanned objects: 131618
number of viruses found: 8
number of infected objects: 80
number of suspicious objects: 0
duration of the scan process: 03:57:38


infected object name / virus name / last action

c:\archivos de programa\emule\incoming\milenio 3 cd11 [emisiones 506 - 540] por juanfran.rar/setup.exe infected: p2p-worm.win32.kapucen.b skipped

c:\archivos de programa\emule\incoming\milenio 3 cd11 [emisiones 506 - 540] por juanfran.rar rar: infected - 1 skipped

c:\archivos de programa\emule\temp\001.part object is locked skipped

c:\archivos de programa\emule\temp\003.part object is locked skipped

c:\archivos de programa\emule\temp\004.part object is locked skipped

c:\archivos de programa\emule\temp\006.part object is locked skipped

c:\archivos de programa\emule\temp\007.part object is locked skipped

c:\archivos de programa\emule\temp\008.part object is locked skipped

c:\archivos de programa\emule\temp\009.part object is locked skipped

c:\archivos de programa\emule\temp\012.part object is locked skipped

c:\archivos de programa\emule\temp\081.part object is locked skipped

c:\archivos de programa\emule\temp\083.part object is locked skipped

c:\archivos de programa\emule\temp\094.part object is locked skipped

c:\archivos de programa\emule\temp\200.part object is locked skipped

c:\archivos de programa\myspace\im\myspaceim.exe infected: trojan-downloader.win32.bagle.ma skipped

c:\documents and settings\all users\datos de programa\microsoft\network\downloader\qmgr0.dat object is locked skipped

c:\documents and settings\all users\datos de programa\microsoft\network\downloader\qmgr1.dat object is locked skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\0hefctur\userstatuschange[2].html object is locked skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\0yscrjg5\b64_1[1].jpg infected: trojan.win32.pakes.ciw skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\29fwp8z6\b64_31[1].jpg infected: email-worm.win32.bagle.of skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\gl6rctur\b64_1[1].jpg infected: trojan.win32.pakes.ciw skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\i3gr25mn\b64_31[1].jpg infected: email-worm.win32.bagle.of skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\index.dat object is locked skipped

c:\documents and settings\andres\configuración local\archivos temporales de internet\content.ie5\up8fi7e7\b64_31[1].jpg infected: email-worm.win32.bagle.of skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\logs\dfsr00005.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\pending.dat object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\working\database_4234_d53c _34d5_339f\dfsr.db object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\working\database_4234_d53c _34d5_339f\fsr.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\working\database_4234_d53c _34d5_339f\fsrtmp.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\andres_milenario@hotm ail.com\sharingmetadata\working\database_4234_d53c _34d5_339f\tmp.edb object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\logs\dfsr00005.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\pending.dat object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\working\database_4234_d53c_34d5 _339f\dfsr.db object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\working\database_4234_d53c_34d5 _339f\fsr.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\working\database_4234_d53c_34d5 _339f\fsrtmp.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\entrecables@hotmail.c om\sharingmetadata\working\database_4234_d53c_34d5 _339f\tmp.edb object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\logs\dfsr00005.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\pending.dat object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\working\database_4234_d53c_34d5_3 39f\dfsr.db object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\working\database_4234_d53c_34d5_3 39f\fsr.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\working\database_4234_d53c_34d5_3 39f\fsrtmp.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\messenger\retroh_mc@hotmail.com \sharingmetadata\working\database_4234_d53c_34d5_3 39f\tmp.edb object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows\usrclass.dat object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows\usrclass.dat.log object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\andres_milenario@hotmail.com\real\members .stg object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\andres_milenario@hotmail.com\shadow\membe rs.stg object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\entrecables@hotmail.com\real\members.stg object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\entrecables@hotmail.com\shadow\members.st g object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\retroh_mc@hotmail.com\real\members.stg object is locked skipped

c:\documents and settings\andres\configuración local\datos de programa\microsoft\windows live contacts\retroh_mc@hotmail.com\shadow\members.stg object is locked skipped

c:\documents and settings\andres\configuración local\historial\history.ie5\index.dat object is locked skipped

c:\documents and settings\andres\configuración local\historial\history.ie5\mshist0120080324200803 25\index.dat object is locked skipped

c:\documents and settings\andres\configuración local\temp\fla119.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~df38c4.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~df38da.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~df9d84.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~df9df5.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfbadc.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfbaee.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfc573.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfc591.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfce2.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfd4a.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfee02.tmp object is locked skipped

c:\documents and settings\andres\configuración local\temp\~dfee15.tmp object is locked skipped

c:\documents and settings\andres\cookies\index.dat object is locked skipped

c:\documents and settings\andres\escritorio\otros\programas\freerip mp3 (conversor cd,mp3,wav y ogg)\freeripmp3.exe/file27 infected: not-a-virus:adtool.win32.mywebsearch.br skipped

c:\documents and settings\andres\escritorio\otros\programas\freerip mp3 (conversor cd,mp3,wav y ogg)\freeripmp3.exe inno: infected - 1 skipped

c:\documents and settings\andres\ntuser.dat object is locked skipped

c:\documents and settings\andres\ntuser.dat.log object is locked skipped

c:\documents and settings\localservice\configuración local\archivos temporales de internet\content.ie5\index.dat object is locked skipped

c:\documents and settings\localservice\configuración local\datos de programa\microsoft\windows\usrclass.dat object is locked skipped

c:\documents and settings\localservice\configuración local\datos de programa\microsoft\windows\usrclass.dat.log object is locked skipped

c:\documents and settings\localservice\configuración local\historial\history.ie5\index.dat object is locked skipped

c:\documents and settings\localservice\cookies\index.dat object is locked skipped

c:\documents and settings\localservice\ntuser.dat object is locked skipped

c:\documents and settings\localservice\ntuser.dat.log object is locked skipped

c:\documents and settings\networkservice\configuración local\datos de programa\microsoft\windows\usrclass.dat object is locked skipped

c:\documents and settings\networkservice\configuración local\datos de programa\microsoft\windows\usrclass.dat.log object is locked skipped

c:\documents and settings\networkservice\ntuser.dat object is locked skipped

c:\documents and settings\networkservice\ntuser.dat.log object is locked skipped

c:\system volume information\mountpointmanagerremotedatabase object is locked skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp220\a0045705.exe/file27 infected: not-a-virus:adtool.win32.mywebsearch.br skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp220\a0045705.exe inno: infected - 1 skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp270\a0053268.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp270\a0053292.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp271\a0053464.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp272\a0054460.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp274\a0054481.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054501.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054502.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054503.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054746.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054747.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054748.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054757.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054758.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054759.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054769.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054770.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp276\a0054771.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054780.exe infected: trojan.win32.pakes.bwy skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054788.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054790.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054791.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054799.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp277\a0054801.exe infected: trojan.win32.pakes.bwy skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054835.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054838.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054839.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054906.exe/data.rar/officekey.exe infected: not-a-virus:pswtool.win32.ras.a skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054906.exe/data.rar infected: not-a-virus:pswtool.win32.ras.a skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp279\a0054906.exe rarsfx: infected - 2 skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp281\a0054941.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp281\a0054942.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp281\a0054943.exe infected: email-worm.win32.bagle.sz skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp281\a0054944.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054970.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054971.exe infected: trojan.win32.pakes.bwy skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054972.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054973.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054974.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054975.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054977.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054978.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054979.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054980.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054981.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054982.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0054994.exe infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0055583.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp282\a0055584.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp283\a0055621.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp283\a0055622.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp283\a0055623.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp284\a0055656.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp284\a0055657.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp284\a0055658.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp284\a0055730.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp285\a0055747.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp285\a0055748.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp285\a0055749.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp286\a0056235.sys infected: trojan-downloader.win32.bagle.ma skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp286\a0056237.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp286\a0056238.exe infected: email-worm.win32.bagle.of skipped

c:\system volume information\_restore {d8c755b3-92fc-4e85-9f64-1f7b7017962e} \rp286\change.log object is locked skipped

c:\windows\$hf_mig$\kb890859\sp2qfe\ntkrnlpa.exe object is locked skipped

c:\windows\$ntuninstallkb890859$\ntkrnlpa.exe object is locked skipped

c:\windows\debug\passwd.log object is locked skipped

c:\windows\driver cache\i386\ntkrnlpa.exe object is locked skipped

c:\windows\schedlgu.txt object is locked skipped

c:\windows\softwaredistribution\download\284f71d15 0d9ba948fe1779a09c3b30a\sp2gdr\ntkrnlpa.exe object is locked skipped

c:\windows\softwaredistribution\download\284f71d15 0d9ba948fe1779a09c3b30a\sp2qfe\ntkrnlpa.exe object is locked skipped

c:\windows\sti_trace.log object is locked skipped

c:\windows\system32\1.exe infected: email-worm.win32.bagle.of skipped

c:\windows\system32\catroot2\edb.log object is locked skipped

c:\windows\system32\catroot2\tmp.edb object is locked skipped

c:\windows\system32\config\aceevent.evt object is locked skipped

c:\windows\system32\config\appevent.evt object is locked skipped

c:\windows\system32\config\default object is locked skipped

c:\windows\system32\config\default.log object is locked skipped

c:\windows\system32\config\sam object is locked skipped

c:\windows\system32\config\sam.log object is locked skipped

c:\windows\system32\config\secevent.evt object is locked skipped

c:\windows\system32\config\security object is locked skipped

c:\windows\system32\config\security.log object is locked skipped

c:\windows\system32\config\software object is locked skipped

c:\windows\system32\config\software.log object is locked skipped

c:\windows\system32\config\sysevent.evt object is locked skipped

c:\windows\system32\config\system object is locked skipped

c:\windows\system32\config\system.log object is locked skipped

c:\windows\system32\mdelk.exe infected: email-worm.win32.bagle.of skipped

c:\windows\system32\wbem\repository\fs\index.btr object is locked skipped

c:\windows\system32\wbem\repository\fs\index.map object is locked skipped

c:\windows\system32\wbem\repository\fs\mapping.ver object is locked skipped

c:\windows\system32\wbem\repository\fs\mapping1.ma p object is locked skipped

c:\windows\system32\wbem\repository\fs\mapping2.ma p object is locked skipped

c:\windows\system32\wbem\repository\fs\objects.dat a object is locked skipped

c:\windows\system32\wbem\repository\fs\objects.map object is locked skipped

c:\windows\temp\asheuristic\1_exe.vir infected: email-worm.win32.bagle.of skipped

c:\windows\temp\asheuristic\4819562_exe.vir infected: email-worm.win32.bagle.of skipped

c:\windows\temp\asheuristic\76687_exe.vir infected: email-worm.win32.bagle.of skipped

c:\windows\temp\asheuristic\85750_exe.vir infected: email-worm.win32.bagle.of skipped

c:\windows\temp\asheuristic\94953_exe.vir infected: email-worm.win32.bagle.of skipped

c:\windows\tempfile object is locked skipped

c:\windows\wiadebug.log object is locked skipped

c:\windows\wiaservc.log object is locked skipped


scan process completed.

Tras todo esto he intentado reinstalar el Kaspersky de nuevo pero sigue sin dejarme, ¿Qué puedo hacer ahora? Muchas gracias por la ayuda
Última edición por yozoy fecha: 24/03/08 a las 10:01:06.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #5 (permalink)  
Antiguo 24/03/08, 16:27:36
Usuario
  
Registrado: mar 2008
Ubicación: Sevilla
Mensajes: 10
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
Ayuda por favor, ¿qué puedo hacer ahora?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #6 (permalink)  
Antiguo 24/03/08, 19:06:38
Avatar de Residentevil
Usuario Habitual
  
Registrado: nov 2007
Ubicación: Corporation Umbrella
Mensajes: 1.504
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
hola actualizastes el Malwarebytes antimalware ? esos archivos que detectop debes eliminarlos.

haz un scan con ewido al final dale remove infection.

haces un nuevo scan con kaspersky y pegas el nuevo reporte con el nuevo de malwarebytes.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiMeneame
Responder Con Cita
  post #7 (permalink)  
Antiguo 26/03/08, 01:52:36
Usuario
  
Registrado: mar 2008
Ubicación: Sevilla
Mensajes: 10
Re: Problema con archivo "Klif.sys" de Kaspersky y Virus W32/Bagle.RP.worm
Hola Residentevil gracias por tu ayuda, hice todo lo que me dijiste:

- He escaneado con Malwarebytes (actualizado) y pasé los archivos infectados a cuarentena y después