| |||||||
| Temas Solucionados Casos de HijackThis y Malwares resueltos. (Solo lectura) |
 |
| | Enviar a: | Herramientas |
 | 
27/03/08, 16:39:49
|  |
| |||
 Ayuda con gusano Bagle, incapaz de eliminarlo (Solucionado) Hola, Buscando en muchos foros ayuda he llegado aqui y he visto que proporcionais mucha ayuda. Bueno mi problema ya lo he identificado, es el gusano Bagle, intente seguir los pasos que pone en otros posts pero no soy capaz de eliminarlo -.-' Los sintomas son: -Me jodio el McAfee, ahora no me deja instalarlo de nuevo, me elimino controladores de targeta de red, el mezclador de sonidos lo mando a la ****** (los controladores los volvi a poner, y el mezclador de sonidos lo arregle, pero al escanear con el malewarebytes lo volvio a joder y por eso pido ayuda). Dejo logs de escaneo por si sirven de algo. Código HTML: Informe Panda Escan Online Incidencia Estado Elemento Virus:W32/Bagle.RP.worm Desinfectado C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\Content.IE5\9CIORIAG\b64_2[1].jpg Virus:W32/Bagle.RP.worm Desinfectado C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\Content.IE5\FQVM1NDT\b64_2[1].jpg Spyware:Cookie/Advertising No desinfectado C:\Documents and Settings\f\Cookies\f@advertising[1].txt Spyware:Cookie/Atlas DMT No desinfectado C:\Documents and Settings\f\Cookies\f@atdmt[2].txt Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\f\Cookies\f@bs.serving-sys[2].txt Spyware:Cookie/Doubleclick No desinfectado C:\Documents and Settings\f\Cookies\f@doubleclick[1].txt Spyware:Cookie/FastClick No desinfectado C:\Documents and Settings\f\Cookies\f@fastclick[2].txt Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\f\Cookies\f@serving-sys[2].txt Spyware:Cookie/Tradedoubler No desinfectado C:\Documents and Settings\f\Cookies\f@tradedoubler[1].txt Spyware:Cookie/Advertising No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.advertising.com/] Spyware:Cookie/Atlas DMT No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Com.com No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.com.com/] Spyware:Cookie/Doubleclick No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/YieldManager No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/fe.lea.lycos No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[fe.lea.lycos.es/] Spyware:Cookie/Weborama No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Tradedoubler No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Adtech No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.adtech.de/] Spyware:Cookie/Mediaplex No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/Statcounter No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.statcounter.com/] Spyware:Cookie/Yadro No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.yadro.ru/] Spyware:Cookie/onestat.com No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[stat.onestat.com/] Spyware:Cookie/Tribalfusion No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.tribalfusion.com/] Spyware:Cookie/FastClick No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.fastclick.net/] Spyware:Cookie/Xiti No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.xiti.com/] Spyware:Cookie/Apmebf No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.apmebf.com/] Spyware:Cookie/adultfriendfinder No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.adultfriendfinder.com/] Spyware:Cookie/Casalemedia No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/myaffiliateprogram No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[www.myaffiliateprogram.com/] Spyware:Cookie/Overture No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.overture.com/] Spyware:Cookie/Adserver No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.adserver.easyad.info/] Spyware:Cookie/Smartadserver No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.smartadserver.com/] Spyware:Cookie/Ccbill No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.ccbill.com/] Spyware:Cookie/SexList No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.sexlist.com/] Spyware:Cookie/Server.iad.Liveperson No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[server.iad.liveperson.net/] Spyware:Cookie/Comclick No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[fl01.ct2.comclick.com/] Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/WebtrendsLive No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[statse.webtrendslive.com/] Spyware:Cookie/Adserver No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[adserver.filefront.com/] Spyware:Cookie/Overture No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.perf.overture.com/] Spyware:Cookie/888 No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.888.com/] Spyware:Cookie/Starware No desinfectado C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cookies.txt[.h.starware.com/] Virus:Trj/Agent.GPP Desinfectado C:\Documents and Settings\f\Mis documentos\ARCHIVOS\Hack_Vision_CSS_Public_v1.2\Hack-Vision CSS Public v1.2.exe Virus:Trj/Agent.GPP Desinfectado C:\Documents and Settings\f\Mis documentos\ARCHIVOS\Hack_Vision_CSS_Public_v1.2.zip[Hack-Vision CSS Public v1.2.exe] Herramienta potencialmente no deseada:Application/FileProtec.A No desinfectado C:\Documents and Settings\f\Mis documentos\ARCHIVOS\issopack-4.2-setup.exe[wfpdisable.exe] Virus:Trj/Agent.GPP Desinfectado C:\Documents and Settings\f\Mis documentos\ARCHIVOS\__proofensXx___\hack.exe Virus:Trj/Agent.GPP No desinfectado C:\Documents and Settings\f\Mis documentos\ARCHIVOS\__proofensXx___.rar[hack.exe] Virus:Bck/IRCBot.BOP Desinfectado C:\WINDOWS\images.zip[IMG34814.pif] Herramienta potencialmente no deseada:Application/FileProtec.A No desinfectado C:\WINDOWS\Resources\ISSO\Tools\wfpdisable.exe Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\102078.exe Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\119859.exe Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\down\123906.exe Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\drivers\srosa.sys Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\mdelk.exe Virus:W32/Bagle.RP.worm Desinfectado C:\WINDOWS\system32\wintems.exe Virus:Bck/IRCBot.BOP Desinfectado Código HTML: Malwarebytes' Anti-Malware 1.09 Versión de la Base de Datos: 556 Tipo de examen : Examen Completo (A:\|C:\|H:\|L:\|) Objetos examinados: 248638 Tiempo transcurrido: 1 hour(s), 7 minute(s), 38 second(s) Procesos en Memoria Infectados: 0 Módulos en Memoria Infectados: 0 Claves del Registro Infectadas: 0 Valores del Registro Infectados: 0 Elementos de Datos del Registro Infectados: 0 Carpetas Infectadas: 1 Ficheros Infectados: 134 Procesos en Memoria Infectados: (No se han detectado elementos maliciosos) Módulos en Memoria Infectados: (No se han detectado elementos maliciosos) Claves del Registro Infectadas: (No se han detectado elementos maliciosos) Valores del Registro Infectados: (No se han detectado elementos maliciosos) Elementos de Datos del Registro Infectados: (No se han detectado elementos maliciosos) Carpetas Infectadas: C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> No action taken. Ficheros Infectados: C:\WINDOWS\system32\drivers\down\104593.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\113015.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\113859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\114187.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\115921.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\118718.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\120859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\120953.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\122906.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\123734.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\124937.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\126859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\128375.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\130421.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\131937.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\132968.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\134531.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\135921.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\139062.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\141796.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\142109.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\143718.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14640734.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14641171.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14645109.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14645875.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14648312.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14652656.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14670968.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14672750.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14678562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14680875.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14686656.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14689093.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14695781.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14702734.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14707187.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14707531.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14710859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14718062.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14751406.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\14756156.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\147968.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\148953.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\151453.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\154671.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\156843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\158906.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\162062.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\164015.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\166562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\166890.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\170046.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\173718.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\173843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\174687.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\174843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\175562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\177859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\178546.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\178843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\179593.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\179906.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\180515.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\182203.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\183265.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\184937.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\185093.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\186812.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\189109.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\190281.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\191171.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\192515.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\194265.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\194812.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\196140.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\204078.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\222015.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\225406.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\225937.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\227187.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\230796.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\231140.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\241953.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\251312.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29168562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29170562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29171859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29174406.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29188046.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29207843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29209734.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29215328.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29217671.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29223875.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29233156.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29266000.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29285453.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29290312.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29293859.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29311515.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29324484.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29353703.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\29359625.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\379359.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\380921.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\382265.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\386953.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\408218.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\410281.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\419406.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\421687.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\429109.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\432375.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\438843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\442296.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\443140.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\443640.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\446265.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\453546.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\87828.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\88531.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\89750.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\91843.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\93671.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\95281.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\97421.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\98921.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\down\99562.exe (Trojan.Downloader) -> No action taken. C:\WINDOWS\system32\drivers\srosa.sys (Rootkit.Bagle) -> No action taken. C:\WINDOWS\system32\mdelk.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\wintems.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\drivers\hldrrr.exe (Rootkit.Agent) -> No action taken. C:\WINDOWS\images.zip (Worm.NetSky) -> No action taken. Despues de escanear se me volvio a joder el sonido... Bueno he procecido a descargarme el DrWeb (en otro pc ya que en este se cortaba la descarga mil veces...) y a ver que puedo hacer... pero necesitaria que alguien me ayudara... porfa!  |
| InfoSpyware | ||
| |
|
27/03/08, 17:20:26
| |
| ||||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Hola te doy la bienvenida a Foro de InfoSpyware. Realiza los siguientes pasos SALTEA LOS QUE NO TE DEJE REALIZARLO:  Descarga las siguientes herramientas: Usa el Ccleaner para limpiar el sistema,primero utilizá la opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad). Ejecuta Dr. Web Cure-IT y elimina todo lo que éste encuentre. Ejecuta el MalwareBytes Anti-Malware y elimina todo lo que te encuentre. (Dejanos el reporte que genere) Realiza un escaneo online con:Kaspersky ---Manual (nos pegas el reporte completo para analizarlo) Regresa y comentanos los resultados que obtuvistes. Saludos y mucha suerte! Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
27/03/08, 17:32:28
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Bueno como puse antes: El scaneo del Malewarebytes esta arriba, en el post original, no tomo ninguna accion, no se porque. No me deja abrir el Ccleaner y cuando intento instalar el DrWeb me sale pantalla azul de error de windows, volcado de datos, etc. y solo puedo reiniciar el pc. Estoy pasando en estos momentos el SUPERAntiSpyweare (el DrWeb he comprobado en otro pc y se instala perfectamente pero al intentarlo en este sale la pantalla azul o se queda bloqueado windows, el Ccleaner, como he dicho antes, simplemente no se abre o se abre y al segundo se cierra sin motivo.... Pase el Panda Activescan online y el BitDefender pero he perdido el log del BitDefender... lo busco a ver si lo encuentro, por lo demas estoy desesperado ayuda!! |
|
27/03/08, 17:35:56
| |
| ||||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Hola cuando escanees con malwarebytes al terminar debes pulsar la opcion, eliminar archivos seleccionados. Lo que encontró el Panda lo elimino. Dejame el reporte del Kaspersky online para poder analizarlo. Saludos! Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
27/03/08, 19:23:14
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Bueno volvi a pasar el Maleware y elimino unas 190 cosas dejo el log: Código HTML: Malwarebytes' Anti-Malware 1.09 Versión de la Base de Datos: 556 Tipo de examen : Examen Completo (C:\|) Objetos examinados: 248771 Tiempo transcurrido: 1 hour(s), 0 minute(s), 36 second(s) Procesos en Memoria Infectados: 0 Módulos en Memoria Infectados: 0 Claves del Registro Infectadas: 0 Valores del Registro Infectados: 0 Elementos de Datos del Registro Infectados: 0 Carpetas Infectadas: 1 Ficheros Infectados: 192 Procesos en Memoria Infectados: (No se han detectado elementos maliciosos) Módulos en Memoria Infectados: (No se han detectado elementos maliciosos) Claves del Registro Infectadas: (No se han detectado elementos maliciosos) Valores del Registro Infectados: (No se han detectado elementos maliciosos) Elementos de Datos del Registro Infectados: (No se han detectado elementos maliciosos) Carpetas Infectadas: C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> Quarantined and deleted successfully. Ficheros Infectados: C:\WINDOWS\system32\drivers\down\104593.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\108078.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\108562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\108906.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\110937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\112234.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\112796.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\113015.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\113859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\114187.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\114703.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\114859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\115921.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\117437.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\118171.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\118718.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\119468.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\120421.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\120859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\120953.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\122906.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\123562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\123734.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\124937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\126859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\128375.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\130421.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\131937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\132968.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\134531.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\135921.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\139062.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\141796.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\142109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\143718.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\144406.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\146281.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14640734.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14641171.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14645109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14645875.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14648312.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14652656.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14670968.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14672750.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14678562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14680875.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14686656.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14689093.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14695781.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14702734.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14707187.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14707531.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14710859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14718062.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14751406.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\14756156.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\147968.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\148671.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\148953.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\150953.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\151453.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\153625.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\154671.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\155828.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\156218.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\156843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\157078.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\158906.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\159703.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\162062.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\162421.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\162812.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\164015.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\165671.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\165843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\166562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\166890.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\170046.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\172859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\173718.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\173843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\174515.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\174687.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\174843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\175562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\177015.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\177859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\178109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\178546.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\178843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\178984.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\179593.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\179906.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\180515.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\182046.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\182203.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\183265.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\183578.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\184234.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\184937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\185093.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\185203.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\185250.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\186812.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\187015.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\189109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\190281.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\191109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\191171.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\192125.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\192515.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\193234.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\194265.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\194812.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\195625.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\196140.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\198093.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\200125.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\200937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\204078.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\207968.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\211734.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\217375.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\218046.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\219843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\222015.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\223125.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\225093.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\225406.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\225937.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\226703.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\227187.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\230796.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\231046.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\231140.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\232062.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\241953.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\251312.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\258656.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\263968.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29168562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29170562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29171859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29174406.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29188046.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29207843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29209734.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29215328.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29217671.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29223875.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29233156.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29266000.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29285453.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29290312.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29293859.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29311515.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29324484.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29353703.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\29359625.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\379359.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\380921.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\382265.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\386953.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\408218.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\410281.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\419406.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\421687.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\429109.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\432375.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\438843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\442296.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\443140.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\443640.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\446265.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\453546.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\87453.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\87828.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\88281.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\88531.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\89750.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\91843.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\93671.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\95281.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\97421.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\98921.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\down\99562.exe (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\drivers\srosa.sys (Rootkit.Bagle) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mdelk.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\wintems.exe (Trojan.Agent) -> Delete on reboot. C:\WINDOWS\system32\drivers\hldrrr.exe (Rootkit.Agent) -> Delete on reboot. C:\WINDOWS\images.zip (Worm.NetSky) -> Quarantined and deleted successfully. Dejare el PC pasando por el Kaspersky online y por la mañana pego report, de momento ya puedo abrir el Ccleaner, pero al intentar instalar el DrWeb me dice que no es una aplicacion valida de win32 (recuerdo que el mismo instalador en otro pc si funciona, y tambien es win xp pro, ahora ha mejorado la cosa un poco, el audio ya fuinciona y el pc va un poco mas rapido) De momento muchas gracias por la ayuda *_* no se como agradeceroslo |
|
28/03/08, 02:10:54
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Despues de pasar el Kaspersky este es el log: Código HTML: iernes, 28 de marzo de 2008 7:00:25
Sistema operativo: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.1
Ultima actualización: 27/03/2008
Registros en la base antivirus: 599445
Configuración del análisis
Analizar usando las siguientes bases standard
Analizar archivos verdadero
Analizar bases de correo verdadero
Objetivo a analizar Mi PC
A:\
C:\
D:\
E:\
F:\
G:\
H:\
L:\
M:\
Estadísticas
Número de objeros analizados 207606
Virus encontrados 3
Objetos infectados 8 / 0
Objetos sospechosos 0
Duración del análisis 02:12:37
Bombre del objeto infectado Nombre del virus Última acción
C:\Archivos de programa\Alcohol Soft\Alcohol 120\StarWind\logs\sw_ae-20080328-001304.log Object is locked saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip/install.exe/irsetup.dat Infectados: P2P-Worm.Win32.P2PAdware.a saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip/install.exe Infectados: P2P-Worm.Win32.P2PAdware.a saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip ZIP: infectado - 2 saltado
C:\Archivos de programa\eMule\Temp\001.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\002.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\003.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\004.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\005.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\006.part Object is locked saltado
C:\Archivos de programa\eMule\Temp\008.part Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chandir.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chandir.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chn.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chn.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\D0000000.FCS Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\inuse.txt Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\L0000004.FCS Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\main.log Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_die.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_die.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_dnd.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_dnd.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_ext.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_ext.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_rcv.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_rcv.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\storydb.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\storydb.idx Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\McAfee\MSC\Logs\Events.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\McAfee\MSC\McUsers.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Feeds Cache\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows Media\11.0\WMSDKNSD.XML Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_001_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_002_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_003_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_MAP_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Historial\History.IE5\MSHist012008032820080329\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Temp\hpodvd09.log Object is locked saltado
C:\Documents and Settings\f\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cert8.db Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\history.dat Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\key3.db Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\parent.lock Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\search.sqlite Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\urlclassifier2.sqlite Object is locked saltado
C:\Documents and Settings\f\Datos de programa\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-3-28-2008( 0-14-51 ).LOG Object is locked saltado
C:\Documents and Settings\f\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\f\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006098.sys Infectados: Trojan-Downloader.Win32.Bagle.mi saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006103.exe Infectados: Email-Worm.Win32.Bagle.of saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006104.exe Infectados: Email-Worm.Win32.Bagle.of saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0007097.sys Infectados: Trojan-Downloader.Win32.Bagle.mi saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0008098.sys Infectados: Trojan-Downloader.Win32.Bagle.mi saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\change.log Object is locked saltado
C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado
C:\WINDOWS\RTacDbg.txt Object is locked saltado
C:\WINDOWS\SchedLgU.Txt Object is locked saltado
C:\WINDOWS\Sti_Trace.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked saltado
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\default Object is locked saltado
C:\WINDOWS\system32\config\default.LOG Object is locked saltado
C:\WINDOWS\system32\config\Internet.evt Object is locked saltado
C:\WINDOWS\system32\config\ODiag.evt Object is locked saltado
C:\WINDOWS\system32\config\OSession.evt Object is locked saltado
C:\WINDOWS\system32\config\SAM Object is locked saltado
C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\SECURITY Object is locked saltado
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado
C:\WINDOWS\system32\config\software Object is locked saltado
C:\WINDOWS\system32\config\software.LOG Object is locked saltado
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\system Object is locked saltado
C:\WINDOWS\system32\config\system.LOG Object is locked saltado
C:\WINDOWS\system32\drivers\sptd.sys Object is locked saltado
C:\WINDOWS\system32\h323log.txt Object is locked saltado
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado
C:\WINDOWS\Temp\sqlite_A3jOADwD1eMrVjA Object is locked saltado
C:\WINDOWS\Temp\sqlite_WEgX12DazQNVJmM Object is locked saltado
C:\WINDOWS\wiadebug.log Object is locked saltado
C:\WINDOWS\wiaservc.log Object is locked saltado
Análisis completado.
|
|
28/03/08, 03:22:17
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Volvi a pasar el Malewarebytes y estaba limpio me ha dejado instalar antivirus, tengo el NOD32, probe a ver si me dejaba entrar en modo seguro, pero no me deja, y sigo con el mismo problema de no poder instalar el DrWeb, aplicacion de Win32 no valida. Pienso que son las secuelas del Bagle, pero no se como arreglarlo U.U  Ahora pasare el NOD32 y luego el Kaspersky de nuevo y pego los logs |
|
28/03/08, 11:38:15
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo He vuelto a pasar el Kaspersky Aqui esta el log: Código HTML: Sistema operativo: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner versión: 5.0.84.1
Ultima actualización: 28/03/2008
Registros en la base antivirus: 600419
-------------------------------------------------------------------------------
Configuración del análisis:
Analizar usando las siguientes bases: standard
Analizar archivos: verdadero
Analizar bases de correo: verdadero
Objetivo a analizar - Mi PC:
A:\
C:\
D:\
E:\
F:\
G:\
H:\
L:\
M:\
Estadísticas:
Número de objeros analizados: 207927
Virus encontrados: 2
Objetos infectados: 5 / 0
Objetos sospechosos: 0
Duración del análisis: 02:17:43
Bombre del objeto infectado / Nombre del virus / Última acción
C:\Archivos de programa\Alcohol Soft\Alcohol 120\StarWind\logs\sw_ae-20080328-081504.log Object is locked saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip/install.exe/irsetup.dat Infectados: P2P-Worm.Win32.P2PAdware.a saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip/install.exe Infectados: P2P-Worm.Win32.P2PAdware.a saltado
C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip ZIP: infectado - 2 saltado
C:\Archivos de programa\Eset\cache\CACHE.NDB Object is locked saltado
C:\Archivos de programa\Eset\logs\virlog.dat Object is locked saltado
C:\Archivos de programa\Eset\logs\warnlog.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chandir.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chandir.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chn.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\chn.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\D0000000.FCS Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\inuse.txt Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\L0000004.FCS Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\main.log Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_die.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_die.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_dnd.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_dnd.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_ext.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_ext.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_rcv.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\prs_rcv.idx Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\storydb.dat Object is locked saltado
C:\Archivos de programa\Logitech\Desktop Messenger\8876480\Users\f\Data\storydb.idx Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\McAfee\MSC\Logs\Events.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\McAfee\MSC\McUsers.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr0.dat Object is locked saltado
C:\Documents and Settings\All Users\Datos de programa\Microsoft\Network\Downloader\qmgr1.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Feeds Cache\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Microsoft\Windows Media\11.0\WMSDKNSD.XML Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_001_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_002_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_003_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\Cache\_CACHE_MAP_ Object is locked saltado
C:\Documents and Settings\f\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Historial\History.IE5\MSHist012008032820080329\index.dat Object is locked saltado
C:\Documents and Settings\f\Configuración local\Temp\hpodvd09.log Object is locked saltado
C:\Documents and Settings\f\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\cert8.db Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\formhistory.dat Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\history.dat Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\key3.db Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\parent.lock Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\search.sqlite Object is locked saltado
C:\Documents and Settings\f\Datos de programa\Mozilla\Firefox\Profiles\h5dj1jzv.default\urlclassifier2.sqlite Object is locked saltado
C:\Documents and Settings\f\Datos de programa\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-3-28-2008( 8-16-34 ).LOG Object is locked saltado
C:\Documents and Settings\f\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\f\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Archivos temporales de Internet\Content.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\LocalService\Configuración local\Historial\History.IE5\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked saltado
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat Object is locked saltado
C:\Documents and Settings\NetworkService\Configuración local\Datos de programa\Microsoft\Windows\UsrClass.dat.LOG Object is locked saltado
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked saltado
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked saltado
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006098.sys Object is locked saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006103.exe Infectados: Email-Worm.Win32.Bagle.of saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0006104.exe Infectados: Email-Worm.Win32.Bagle.of saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0007097.sys Object is locked saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\A0008098.sys Object is locked saltado
C:\System Volume Information\_restore{27D6EBC3-7DB1-4FD2-AF3C-42A15E020AC1}\RP15\change.log Object is locked saltado
C:\WINDOWS\Debug\PASSWD.LOG Object is locked saltado
C:\WINDOWS\RTacDbg.txt Object is locked saltado
C:\WINDOWS\SchedLgU.Txt Object is locked saltado
C:\WINDOWS\Sti_Trace.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked saltado
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked saltado
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\default Object is locked saltado
C:\WINDOWS\system32\config\default.LOG Object is locked saltado
C:\WINDOWS\system32\config\Internet.evt Object is locked saltado
C:\WINDOWS\system32\config\ODiag.evt Object is locked saltado
C:\WINDOWS\system32\config\OSession.evt Object is locked saltado
C:\WINDOWS\system32\config\SAM Object is locked saltado
C:\WINDOWS\system32\config\SAM.LOG Object is locked saltado
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\SECURITY Object is locked saltado
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked saltado
C:\WINDOWS\system32\config\software Object is locked saltado
C:\WINDOWS\system32\config\software.LOG Object is locked saltado
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked saltado
C:\WINDOWS\system32\config\system Object is locked saltado
C:\WINDOWS\system32\config\system.LOG Object is locked saltado
C:\WINDOWS\system32\drivers\sptd.sys Object is locked saltado
C:\WINDOWS\system32\h323log.txt Object is locked saltado
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked saltado
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked saltado
C:\WINDOWS\Temp\sqlite_AhoxabREslkDzk0 Object is locked saltado
C:\WINDOWS\Temp\sqlite_VaODoLq9z5GIaFC Object is locked saltado
C:\WINDOWS\wiadebug.log Object is locked saltado
C:\WINDOWS\wiaservc.log Object is locked saltado
Análisis completado.
Por favor necesito que alguien me responda que casi pasa 1 dia sin que me contesten U.U y no se como seguir.... he estado pasando los antimaleware y antivirus muchas veces pero no se soluciona |
|
28/03/08, 12:41:44
| |
| |||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo He ido leyendo otros posts y probe de entrar en modo seguro pero no me debajaba, me baje un codigo de registro de vuestra pagina para habilitarlo por si el malware lo habia roto y no me acepto el codigo, me salia la lista para elegir programa para abrirlo :~ asi que utilice el SUPERAntispyware (la herramienta que trae) y pude arreglar el modo seguro. Ahora que tengo que hacer...? Estoy perdido y nadie me contesta |
|
28/03/08, 12:41:48
| |
| ||||
| Re: Ayuda con gusano Bagle, incapaz de eliminarlo Hola, 1 dia sin que te contesten? no es nada. Además fueron 13 hs y tanto que me dices te comento en que las gasté: 1 hs Cene 6 hs dormi 5 hs fui al colegio 1 hs almorce. Si queres servicio rápido puedes pagarle a un técnico, yo ayudo sin fines económicos ni nada menos y no pido nada a cambio, solo que tengan pasiencia. Apaga restaurar sistema elimina este archivo: C:\Archivos de programa\eMule\Incoming\[CRACK NOCD] Hour of Victory by Razor1911.zip Si no se dejan eliminar utiliza: KillBox o Fileassassin. Como sigue tu PC? Tienes alguna duda? Saludos! Novedades del Foro | Antivirus Online | Eliminar Malwares | Políticas del Foro | Blog * Ayúdanos haciendo una DONACIÓN para poder seguir Ayudando. * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro. |
|
« Tema Anterior
|
Próximo Tema »
| Herramientas | |
| |
| 
Temas Similares | |
| Tema | Autor | Foro | Respuestas | Último mensaje |
| Problemas Con W32 Lechuck (Solucionado) | chino-hillo | Temas Solucionados | 9 | 28/10/07 19:51:49 |
| configuracion y ayuda con mis programas p2p...(Solucionado) | ignaciuss | Temas Solucionados | 3 | 18/08/07 17:41:56 |
| Ayuda Con Virus (Solucionado) | pinkymalabares | Temas Solucionados | 20 | 13/07/07 14:08:11 |
| ayuda con DIALER MALIGNO (solucionado) | D-terminal | Temas Solucionados | 7 | 21/11/06 13:05:48 |
| Problema con pagina de inicio (About:Blank) (solucionado) | Joselo1984 | Temas Solucionados | 17 | 09/08/05 23:46:54 |
Todas las horas son GMT -4. La hora es 06:53:54.
