virus tr/vundo.gen aiudaa por favoor!

[giam14]

hola! como estaan! weno escribo para contarlees mi problemaa! uso el avira antivir!.... me detecta un virus! aki les paso el report!

AntiVir PersonalEdition Classic

Report file date: Sábado, 28 de Abril de 2007 10:48



Scanning for 758499 virus strains and unwanted programs.



Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Username: Pier

Computer name: USER01



Version information:

BUILD.DAT : 244 14437 Bytes 16/04/2007 16:06:00

AVSCAN.EXE : 7.0.4.15 282664 Bytes 21/04/2007 00:19:58

AVSCAN.DLL : 7.0.4.4 33832 Bytes 20/04/2007 00:18:21

LUKE.DLL : 7.0.4.11 143400 Bytes 20/04/2007 00:18:21

LUKERES.DLL : 7.0.4.0 10280 Bytes 20/04/2007 00:18:21

ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 21:30:06

ANTIVIR1.VDF : 6.37.1.151 4303360 Bytes 23/02/2007 22:12:19

ANTIVIR2.VDF : 6.38.1.56 1022976 Bytes 27/04/2007 13:49:11

ANTIVIR3.VDF : 6.38.1.63 9728 Bytes 28/04/2007 13:49:11

AVEWIN32.DLL : 7.4.0.15 2421248 Bytes 25/04/2007 02:28:20

AVWINLL.DLL : 1.0.0.7 14376 Bytes 20/04/2007 00:18:21

AVPREF.DLL : 7.0.2.1 24616 Bytes 20/04/2007 00:18:21

AVREP.DLL : 7.0.0.1 155688 Bytes 20/04/2007 00:18:21

AVPACK32.DLL : 7.3.0.8 360488 Bytes 02/04/2007 23:33:09

AVREG.DLL : 7.0.1.2 31784 Bytes 20/04/2007 00:18:21

AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 20/04/2007 00:18:19

AVARKT.DLL : 1.0.0.12 274472 Bytes 20/04/2007 00:18:18

NETNT.DLL : 7.0.0.0 7720 Bytes 20/04/2007 00:18:21

RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 20/04/2007 00:18:15

RCTEXT.DLL : 7.0.45.0 86056 Bytes 20/04/2007 00:18:15



Configuration settings for the scan:

Jobname..........................: Local Drives

Configuration file...............: C:\Archivos de programa\AntiVir PersonalEdition Classic\alldrives.avp

Logging..........................: low

Primary action...................: interactive

Secondary action.................: ignore

Scan master boot sector..........: off

Scan boot sector.................: on

Boot sectors.....................: E:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Search for rootkits..............: off

Scan all files...................: Intelligent file selection

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Macro heuristic..................: on

File heuristic...................: medium



Start of the scan: Sábado, 28 de Abril de 2007 10:48



The scan of running processes will be started

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'wscntfy.exe' - '1' Module(s) have been scanned

Scan process 'sidebar.exe' - '1' Module(s) have been scanned

Scan process 'wuauclt.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'alg.exe' - '1' Module(s) have been scanned

Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned

Scan process 'WZQKPICK.EXE' - '1' Module(s) have been scanned

Scan process 'launchpad.exe' - '1' Module(s) have been scanned

Scan process 'reader_sl.exe' - '1' Module(s) have been scanned

Scan process 'GoogleUpdater.exe' - '1' Module(s) have been scanned

Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned

Scan process 'Ares.exe' - '1' Module(s) have been scanned

Scan process 'Blaero Start Orb.exe' - '1' Module(s) have been scanned

Scan process 'ctfmon.exe' - '1' Module(s) have been scanned

Scan process 'VisualToolTip.exe' - '1' Module(s) have been scanned

Scan process 'Styler.exe' - '1' Module(s) have been scanned

Scan process 'MWSOEMON.EXE' - '1' Module(s) have been scanned

Scan process 'M3SRCHMN.EXE' - '1' Module(s) have been scanned

Scan process 'issch.exe' - '1' Module(s) have been scanned

Scan process 'avgnt.exe' - '1' Module(s) have been scanned

Scan process 'MDM.EXE' - '1' Module(s) have been scanned

Scan process 'MsgPlus.exe' - '1' Module(s) have been scanned

Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned

Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned

Scan process 'VTTrayp.exe' - '1' Module(s) have been scanned

Scan process 'avguard.exe' - '1' Module(s) have been scanned

Scan process 'sched.exe' - '1' Module(s) have been scanned

Scan process 'VTTimer.exe' - '1' Module(s) have been scanned

Scan process 'explorer.exe' - '1' Module(s) have been scanned

Scan process 'spoolsv.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'InCDsrv.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'savedump.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

45 processes with 45 modules were scanned



Start scanning boot sectors:

Boot sector 'C:\'

[NOTE] No virus was found!

Boot sector 'D:\'

[NOTE] No virus was found!

Boot sector 'A:\'

[NOTE] In the drive 'A:\' no data medium is inserted!



Starting to scan the registry.

C:\Documents and Settings\TEMP.USER01\Configuración local\Temp\{E04909B8-4583-4A5F-AD69-651D1A7F4C14}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\{E04909B8-4583-4A5F-AD69-651D1A7F4C14}\Temp\L2007tmp\setup.exe

[WARNING] The file could not be opened!

The registry was scanned ( '30' files ).





Starting the file scan:



Begin scan in 'C:\'

C:\pagefile.sys

[WARNING] The file could not be opened!

C:\Documents and Settings\TEMP.USER01\Configuración local\Archivos temporales de Internet\Content.IE5\2LK400D1\lo1[1]

[DETECTION] Is the Trojan horse TR/Vundo.Gen

[INFO] The file was deleted!

C:\WINDOWS\system32\geedc.dll

[DETECTION] Is the Trojan horse TR/Vundo.Gen

[WARNING] The file could not be deleted!

C:\WINDOWS\system32\tuvutuu.dll

[DETECTION] Is the Trojan horse TR/Vundo.Gen

[WARNING] The file could not be deleted!

C:\WINDOWS\system32\vmhrfhpr.dll

[DETECTION] Is the Trojan horse TR/Spy.VBStat.B.1

[INFO] The file was deleted!

Begin scan in 'D:\'

Begin scan in 'A:\'

Search path A:\ could not be opened!

El dispositivo no está listo.



Begin scan in 'E:\'

Search path E:\ could not be opened!

El dispositivo no está listo.







End of the scan: Sábado, 28 de Abril de 2007 11:52

Used time: 1:03:06 min



The scan has been done completely.



6214 Scanning directories

361632 Files were scanned

4 viruses and/or unwanted programs were found

0 classified as suspicious:

2 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

2 Files cannot be scanned

361628 Files not concerned

4920 Archives were scanned

4 Warnings

65 Notes

0 Hidden objects were found



el problema es con el tr/vundo.gen ke le pongo delete i me siguee saliendo i saliendo i ia no se ke haceer! por ke aora no solo slae como infectado un archivoo sino ke ia son doos!

C:\WINDOWS\system32\geedc.dll

C:\WINDOWS\system32\tuvutuu.dll

esoosson los archivos con este virsu! por favoor! esperaree su respuestaa! i les agradezco su atencion a mi prolemaa!

[msc hotline sat]

Prueba el ELISTARA:





ELISTARA:

http://www.zonavirus.com/descargas/elistara.asp



Tras probarlo, reiniciar y postearnos el contenido de C:\infosat.txt para ver el resultado del proceso







saludos



ms, 29-04-2007