Tech Support Forum - View Single Post - Pop-ups, Hijackthis log file

Bobby Smith · 11-08-2007, 08:14 PM

ComboFix log attached and kaspersky scan log attached.
Thanks!

ComboFix 07-11-04.1 - Owner 2007-11-08 18:59:27.4 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.212 [GMT -6:00]
Running from: C:\Documents and Settings\Owner.BOBBY\My Documents\Bobby's Documents\Tech Support Forum\ComboFix.exe
Command switches used :: C:\Documents and Settings\Owner.BOBBY\My Documents\Bobby's Documents\Tech Support Forum\CFScript_used_2007-11-06@19.59.txt
* Created a new restore point

FILE::
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\arr3.jar-44f46a27-40822d38.zip
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-68a78113-30f4dccb.zip
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-540c1c76-4067b059.zip
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-5d29f7ed-52026c20.zip
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv430.jar-61fcb0a5-41babed0.zip
C:\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv557.jar-23cd1d22-30b6c555.zip
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-05@11.28.zip
C:\Documents and Settings\Owner.BOBBY\My Documents\My Music\Bobby Favorites\BSINSTALL.exe
C:\Documents and Settings\Owner.BOBBY\My Documents\My Music\My Downloads\Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR.zip
C:\Downloads\RollerCoasterTycoon2-dm[1].exe
C:\Program Files\Morpheus\morpheustoolbar.exe
C:\Program Files\ProcManager.exe
C:\WINDOWS\system32\ehlzeb.dll
C:\WINDOWS\system32\hrcopul.dll
C:\WINDOWS\system32\kdrix.exe
C:\WINDOWS\system32\qfyqakn.dll
C:\WINDOWS\system32\ztysid.exe
C:\WINDOWS\woinstall.exe
.

((((((((((((((((((((((((( Files Created from 2007-10-09 to 2007-11-09 )))))))))))))))))))))))))))))))
.

2007-11-08 16:45 24,576 --a------ C:\temp\IadHide3.dll
2007-11-06 20:23 <DIR> d-------- C:\Program Files\EsetOnlineScanner
2007-11-05 13:53 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-11-05 13:53 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2007-11-03 15:12 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-10 12:37 <DIR> d-------- C:\Program Files\ASIO4ALL v2
2007-10-09 15:31 584,192 -----c--- C:\WINDOWS\system32\dllcache\rpcrt4.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-08 00:24 --------- d-----w C:\Program Files\Quicken
2007-11-07 02:04 --------- d-----w C:\Program Files\Morpheus
2007-11-03 13:52 --------- d-----w C:\Program Files\LimeWire
2007-10-27 22:37 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2007-10-10 18:37 --------- d-----w C:\Program Files\Image-Line
2007-10-07 19:28 --------- d-----w C:\Program Files\Native Instruments
2007-10-04 21:32 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-09-24 06:36 --------- d-----w C:\Documents and Settings\Owner.BOBBY\Application Data\Juce VST Host
2007-09-22 19:40 --------- d-----w C:\Program Files\Windows Live
2007-09-22 19:22 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2004-10-25 03:43 66 ----a-w C:\Documents and Settings\Owner.BOBBY\Application Data\tvmcwrd.dll
2004-10-24 00:35 226,266 ----a-w C:\Documents and Settings\Owner.BOBBY\Application Data\tvmknwrd.dll
2004-10-21 05:57:15 0 --sha-w C:\WINDOWS\SMINST\HPCD.sys
.

((((((((((((((((((((((((((((( snapshot@2007-11-04_16.22.31.43 )))))))))))))))))))))))))))))))))))))))))
.
- 2007-10-29 23:56:19 136,192 ----a-w C:\WINDOWS\catchme.exe
+ 2007-10-30 00:56:19 136,192 ----a-w C:\WINDOWS\catchme.exe
+ 2005-05-24 18:27:16 213,048 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavss.dll
+ 2007-08-29 21:47:20 94,208 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
+ 2007-08-29 21:49:54 950,272 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll
+ 2007-07-27 21:49:02 196,683 ----a-w C:\WINDOWS\system32\lnod32apiA.dll
+ 2007-07-27 21:49:02 225,355 ----a-w C:\WINDOWS\system32\lnod32apiW.dll
+ 2005-12-06 02:25:22 139,264 ----a-w C:\WINDOWS\system32\lnod32umc.dll
+ 2005-12-05 19:37:10 106,496 ----a-w C:\WINDOWS\system32\lnod32upd.dll
+ 2007-08-03 00:11:28 253,952 ----a-w C:\WINDOWS\system32\OnlineScannerDLLA.dll
+ 2007-08-03 00:11:14 241,664 ----a-w C:\WINDOWS\system32\OnlineScannerDLLW.dll
+ 2007-08-08 22:30:12 19,456 ----a-w C:\WINDOWS\system32\OnlineScannerLang.dll
+ 2007-06-13 17:10:34 77,824 ----a-w C:\WINDOWS\system32\OnlineScannerUninstaller.exe
- 2007-08-17 23:03:19 54,280 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2007-11-04 22:28:18 54,280 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2007-08-17 23:03:19 384,596 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2007-11-04 22:28:18 384,596 ----a-w C:\WINDOWS\system32\perfh009.dat
- 2007-07-22 23:39:27 279,552 ----a-w C:\WINDOWS\system32\swreg.exe
+ 2007-07-23 00:39:27 279,552 ----a-w C:\WINDOWS\system32\swreg.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-12-10 05:06]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-09-17 18:04]
"Lock My PC"="C:\Program Files\LMPC3\lockpc.exe" [2006-05-26 10:25]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PhotoShow Deluxe Media Manager"="C:\PROGRA~1\SIMPLE~1\PHOTOS~1\data\xtras\mssysmgr.exe" [2003-12-03 08:42]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2005-08-18 12:49]

C:\Documents and Settings\Customers\Start Menu\Programs\Startup\
office depot.mpg [2004-01-22 13:14:28]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-24 00:05:26]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2003-09-16 14:19:24]
Kodak EasyShare software.lnk - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe [2003-12-13 14:28:04]
Kodak software updater.lnk - C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\backWeb-7288971.exe [2003-06-08 16:48:18]
PrintKey-Pro.lnk - C:\Program Files\Warecentral\PrintKey-Pro\PKey_Pro.exe [2003-09-19 21:12:40]
Ulead Photo Express 3.0 SE Calendar Checker.lnk - C:\Program Files\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe [2005-10-05 19:31:34]

R1 Cinemsup;Cinemsup;C:\WINDOWS\system32\drivers\Cinemsup.sys
R1 ewido security suite driver;ewido security suite driver;\??\C:\Program Files\ewido\security suite\guard.sys
R3 DLKRTS;D-Link DFE-530TX+ PCI Adapter;C:\WINDOWS\system32\DRIVERS\DLKRTS.SYS
R3 GT680x;GrandTechICNameNT;C:\WINDOWS\system32\Drivers\gt680x.sys
R3 LMPC2;LMPC2;C:\WINDOWS\system32\drivers\LMPC2.sys
S3 ldiskl;ldiskl;\??\C:\DOCUME~1\OWNER~1.BOB\LOCALS~1\Temp\ldiskl.sys
S3 TBU11;Turtle Beach USB MIDI 1x1 Driver;C:\WINDOWS\system32\Drivers\tbu11.sys

.
**************************************************************************

catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-08 19:03:13
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-11-08 19:04:42
C:\ComboFix2.txt ... 2007-11-06 20:11
C:\ComboFix3.txt ... 2007-11-05 11:34
.
--- E O F ---

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Application Data\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\interMute\SpamSubtract\updates\badwords.re Object is locked skipped
C:\Documents and Settings\Owner\Application Data\interMute\SpamSubtract\updates\words.re Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\CLR Security Config\v1.1.4322\security.config Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\CLR Security Config\v1.1.4322\security.config.cch Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO_ZoneDeluxeGamesManager.ico Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO__Collapse_Deluxe.exe Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO__Cubis_Deluxe.exe Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO__Mah_Jong_Tiles_Deluxe.exe Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO__TextTwist_Deluxe.exe Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Installer\{66C018BD-6F16-4B32-B4CD-1DC1B21FBDFF}\ICO__Word_MoJo_Deluxe.exe Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\brndlog.bak Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\brndlog.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Desktop.htt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\RealOne Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Protect\CREDHIST Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\Themes\Custom.theme Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\rnadmin\rnsystem.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sonic\Update Manager\sumdb.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\deployment.properties Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Symantec\Shared\Options.VcPref Object is locked skipped
C:\Documents and Settings\Owner\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Register with Compaq.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Compaq's Internet Service Providers\America Online.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Compaq's Internet Service Providers\CompuServe.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Compaq's Internet Service Providers\Get High-Speed Internet.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\My Yahoo.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Best of the Web.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Briefcase.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Calendar.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Entertainment.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Finance.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Games.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Mail.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Music.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! News.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Personals.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Photos.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Shopping.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Sports.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Travel.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo\Yahoo! Yellow Pages.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN CarPoint.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN Home.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN HomeAdvisor.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN Hotmail.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN Money.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN People & Chat.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN Shopping.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Financial Links\MSN Web Search.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Links\Customize Links.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Links\Free Hotmail.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Links\Windows Media.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Links\Windows.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\MSN.com.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Radio Station Guide.url Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\ApplicationHistory\RegAsm.exe.11f1da13.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\IconCache.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_59R.wmdb Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.DTD Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.XML Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Works\Portfolio\Sample.wsb Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}\1033.MST Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}\Java 2 Runtime Environment, SE v1.4.2_03.msi Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012004012620040127\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012004092720041004\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012004100420041005\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\jusched.log Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\pcf1.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\ml1.srt Object is locked skipped
C:\Documents and Settings\Owner\ml2.srt Object is locked skipped
C:\Documents and Settings\Owner\My Documents\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Get More with Jukebox Plus.mp3 Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Sample Music.lnk Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Pictures\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Pictures\Sample Pictures.lnk Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Videos\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\ntuser.ini Object is locked skipped
C:\Documents and Settings\Owner\Recent\3½ Floppy (A).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\blocks.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Recent\Finis.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\msnfix (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\msnfix.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\msnfixjs (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\msnfixjs.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\NAR2.lnk Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Compressed (zipped) Folder.ZFSendToTarget Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Desktop (create shortcut).DeskLink Object is locked skipped
C:\Documents and Settings\Owner\SendTo\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Mail Recipient.MAPIMail Object is locked skipped
C:\Documents and Settings\Owner\SendTo\MUSICMATCH Burner Plus.lnk Object is locked skipped
C:\Documents and Settings\Owner\SendTo\My Documents.mydocs Object is locked skipped
C:\Documents and Settings\Owner\SendTo\RecordNow!.RecordNowSendToExt Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Magnifier.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Utility Manager.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Address Book.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Command Prompt.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\RealOne Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\Windows Media Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Notepad.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Program Compatibility Wizard.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Synchronize.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Tour Windows XP.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Windows Explorer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Internet Explorer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Online Services\Easy Internet Sign-up.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Outlook Express.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Remote Assistance.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Windows Media Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Play Collapse! Deluxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Play Cubis Deluxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Play Mah Jong Tiles Deluxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Play TextTwist Deluxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Play Word MoJo Deluxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Zone.com Deluxe Games\Visit Zone.com Deluxe Games!.lnk Object is locked skipped
C:\Documents and Settings\Owner\tempdiff.txt Object is locked skipped
C:\Documents and Settings\Owner\Templates\amipro.sam Object is locked skipped
C:\Documents and Settings\Owner\Templates\excel.xls Object is locked skipped
C:\Documents and Settings\Owner\Templates\excel4.xls Object is locked skipped
C:\Documents and Settings\Owner\Templates\lotus.wk4 Object is locked skipped
C:\Documents and Settings\Owner\Templates\powerpnt.ppt Object is locked skipped
C:\Documents and Settings\Owner\Templates\presenta.shw Object is locked skipped
C:\Documents and Settings\Owner\Templates\quattro.wb2 Object is locked skipped
C:\Documents and Settings\Owner\Templates\sndrec.wav Object is locked skipped
C:\Documents and Settings\Owner\Templates\winword.doc Object is locked skipped
C:\Documents and Settings\Owner\Templates\winword2.doc Object is locked skipped
C:\Documents and Settings\Owner\Templates\wordpfct.wpd Object is locked skipped
C:\Documents and Settings\Owner\Templates\wordpfct.wpg Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/0394ccd6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/0b2331d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/0d42b0d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/1bc6f4d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/23a82af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/24833106.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/25f48af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/29be5ab6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/30d261f6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/3f4db1d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/435c95b6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/4bf9a8f6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/4fb79af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/52690ee6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/64a88ce6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/68baaaf6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/698175c6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/84c10ff6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/859c3af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/8d7c66d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/9721abf6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/99ca1af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/a7a70536.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/ae9f9ea6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/b26acbd6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/b4a073d6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/bd879af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/c8c1faf6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/c8d726e6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/d74acaf6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/e2d89356.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/ebf93af6.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip/ef6bd166.exe Infected: Trojan-Downloader.Win32.Obfuscated.n skipped
C:\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-06@19.59.zip ZIP: infected - 33 skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\History\History.IE5\MSHist012007110820071109\index.dat Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Temp\me_gvZ2g2aXjzDrafc Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Temp\me_KOAOzsU6RhHeIK4 Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Temp\me_l3CHIJLpkEY19lk Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Temp\me_tNkCLu05s38wGb7 Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Owner.BOBBY\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Kodak\Kodak EasyShare software\Catalog\EasyShare.me Object is locked skipped
C:\Program Files\Kodak\Kodak EasyShare software\Catalog\EasyShare.mm Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\BWKDLogs\BWTargetInf.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\agent.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\busyprs.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\BWLocalWebListener.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\chandir.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\chandir.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\chn.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\chn.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\D0000000.FCS Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\FileDL.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\inuse.txt Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\L0000011.FCS Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\main.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_die.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_die.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_dnd.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_dnd.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_ext.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_ext.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_rcv.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\prs_rcv.idx Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\report.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\RG.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\scheddbg.log Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\storydb.dat Object is locked skipped
C:\Program Files\Kodak\KODAK Software Updater\7288971\Users\Default\Data\storydb.idx Object is locked skipped
C:\qoobox\Quarantine\C\Deckard\System Scanner\backup\WINDOWS\Downloaded Program Files\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\arr3.jar-44f46a27-40822d38.zip.vir/Counter.class Infected: Trojan.Java.ClassLoader.i skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\arr3.jar-44f46a27-40822d38.zip.vir/VerifierBug.class Infected: Trojan.Java.ClassLoader.k skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\arr3.jar-44f46a27-40822d38.zip.vir/Beyond.class Infected: Trojan.Java.ClassLoader.k skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\arr3.jar-44f46a27-40822d38.zip.vir ZIP: infected - 3 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-68a78113-30f4dccb.zip.vir/BlackBox.class Infected: Exploit.Java.ByteVerify skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-68a78113-30f4dccb.zip.vir/VerifierBug.class Infected: Exploit.Java.ByteVerify skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-68a78113-30f4dccb.zip.vir/Beyond.class Infected: Trojan-Downloader.Java.OpenConnection.aa skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-68a78113-30f4dccb.zip.vir ZIP: infected - 3 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-540c1c76-4067b059.zip.vir/GetAccess.class Infected: Trojan-Downloader.Java.OpenConnection.aj skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-540c1c76-4067b059.zip.vir/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.aj skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-540c1c76-4067b059.zip.vir ZIP: infected - 2 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-5d29f7ed-52026c20.zip.vir/GetAccess.class Infected: Trojan-Downloader.Java.OpenConnection.aj skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-5d29f7ed-52026c20.zip.vir/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.aj skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\java.jar-5d29f7ed-52026c20.zip.vir ZIP: infected - 2 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv430.jar-61fcb0a5-41babed0.zip.vir/Matrix.class Infected: Trojan-Downloader.Java.OpenStream.c skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv430.jar-61fcb0a5-41babed0.zip.vir/Counter.class Infected: Trojan.Java.ClassLoader.h skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv430.jar-61fcb0a5-41babed0.zip.vir/Parser.class Infected: Trojan.Java.ClassLoader.d skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv430.jar-61fcb0a5-41babed0.zip.vir ZIP: infected - 3 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv557.jar-23cd1d22-30b6c555.zip.vir/Matrix.class Infected: Trojan-Downloader.Java.OpenStream.c skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv557.jar-23cd1d22-30b6c555.zip.vir/Counter.class Infected: Trojan.Java.ClassLoader.h skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv557.jar-23cd1d22-30b6c555.zip.vir/Parser.class Infected: Trojan.Java.ClassLoader.d skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv557.jar-23cd1d22-30b6c555.zip.vir ZIP: infected - 3 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Desktop\backups\backup-20050726-184927-316.dll.vir Infected: not-a-virus:AdWare.Win32.Comet.e skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Desktop\backups\backup-20050726-184928-521.dll.vir Infected: not-a-virus:AdWare.Win32.Comet.e skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-05@11.28.zip.vir/nvchost.exe Infected: Packed.Win32.Klone.j skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\Desktop\[4]-Submit_2007-11-05@11.28.zip.vir ZIP: infected - 1 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\Bobby Favorites\BSINSTALL.exe.vir/WISE0026.BIN/clientax.dll Infected: not-a-virus:AdWare.Win32.180Solutions.ao skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\Bobby Favorites\BSINSTALL.exe.vir/WISE0026.BIN Infected: not-a-virus:AdWare.Win32.180Solutions.ao skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\Bobby Favorites\BSINSTALL.exe.vir WiseSFX: infected - 2 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\Bobby Favorites\BSINSTALL.exe.vir WiseSFX Dropper: infected - 2 skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\My Downloads\Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR.zip.vir/Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR/NI_TRAKTOR_DJ_STUDIO_KEYGEN.exe Infected: Trojan-Dropper.Win32.Delf.xo skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\My Downloads\Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR.zip.vir/Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR/setup.exe Infected: Trojan-Dropper.Win32.Delf.xo skipped
C:\qoobox\Quarantine\C\Documents and Settings\Owner.BOBBY\My Documents\My Music\My Downloads\Native.Instruments.Traktor.DJ.Studio.v3.1.3.incl.Keygen-AiR.zip.vir ZIP: infected - 2 skipped
C:\qoobox\Quarantine\C\Downloads\RollerCoasterTycoon2-dm[1].exe.vir Infected: not-a-virus:AdWare.Win32.Trymedia.b skipped
C:\qoobox\Quarantine\C\Program Files\e52wpldb\ujj4trfr.DLL.vir Infected: not-a-virus:AdWare.Win32.ClearSearch.al skipped
C:\qoobox\Quarantine\C\Program Files\MalwareWiped 6.9\MalwareWiped 6.9.exe.vir Infected: not-a-virus:FraudTool.Win32.MalwareWipe.q skipped
C:\qoobox\Quarantine\C\Program Files\Morpheus\morpheustoolbar.exe.vir Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
C:\qoobox\Quarantine\C\Program Files\ProcManager.exe.vir Infected: not-a-virus:RiskTool.Win32.PsKill.a skipped
C:\qoobox\Quarantine\C\WINDOWS\bundles\setup_silent_26221.exe.vir/data0001.bin Infected: not-a-virus:AdWare.Win32.MDH.a skipped
C:\qoobox\Quarantine\C\WINDOWS\bundles\setup_silent_26221.exe.vir AWInstall: infected - 1 skipped
C:\qoobox\Quarantine\C\WINDOWS\bundles\setup_silent_26221.exe.vir UPX: infected - 1 skipped
C:\qoobox\Quarantine\C\WINDOWS\bundles\shopinst.exe.vir Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\qoobox\Quarantine\C\WINDOWS\bundles\traspec7.exe.vir Infected: not-a-virus:AdWare.Win32.BetterInternet.aw skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.1\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.2\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.3\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.4\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.5\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\CONFLICT.6\UWFX5LP_0001_0715NetInstaller.exe.vir Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\qoobox\Quarantine\C\WINDOWS\inst\3p_2.exe.vir/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f skipped
C:\qoobox\Quarantine\C\WINDOWS\inst\3p_2.exe.vir/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f skipped
C:\qoobox\Quarantine\C\WINDOWS\inst\3p_2.exe.vir WiseSFX: infected - 2 skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\b2s-162813-fran.exe.vir/data0003 Infected: not-a-virus:AdWare.Win32.Ilookup.b skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\b2s-162813-fran.exe.vir NSIS: infected - 1 skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\BlazeVCM.exe.vir/data0002 Infected: Trojan-Downloader.Win32.Envolo.b skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\BlazeVCM.exe.vir/data0004 Infected: Trojan-Downloader.Win32.Envolo.c skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\BlazeVCM.exe.vir NSIS: infected - 2 skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\pounder.exe.vir/Stream/data0002 Infected: Backdoor.Win32.VB.aat skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\pounder.exe.vir/Stream Infected: Backdoor.Win32.VB.aat skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\pounder.exe.vir Inno: infected - 2 skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\shopinst.exe.vir Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\Cache\videoinst.exe.vir Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\ehlzeb.dll.vir Infected: Trojan.Win32.Obfuscated.ev skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\hrcopul.dll.vir Infected: Trojan-Downloader.Win32.Busky.s skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\kdrix.exe.vir Infected: Trojan.Win32.DNSChanger.kx skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\onljweo.dll.vir Infected: Trojan-Downloader.Win32.Agent.bkd skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\qfyqakn.dll.vir Infected: Trojan.Win32.Obfuscated.ev skipped
C:\qoobox\Quarantine\C\WINDOWS\system32\ztysid.exe.vir Infected: not-a-virus:AdWare.Win32.Adstart.i skipped
C:\qoobox\Quarantine\C\WINDOWS\woinstall.exe.vir/WISE0001.BIN Infected: not-a-virus:AdWare.Win32.EZula.ak skipped
C:\qoobox\Quarantine\C\WINDOWS\woinstall.exe.vir WiseSFX: infected - 1 skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP789\A0129313.exe Infected: Packed.Win32.Klone.j skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP800\A0129712.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.l skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP800\A0129713.DLL Infected: not-a-virus:AdWare.Win32.MySearch.e skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP800\A0129714.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.o skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP808\A0130929.dll Infected: Trojan-Downloader.Win32.Agent.bkd skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131116.exe Infected: not-a-virus:Downloader.Win32.Agent.e skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131124.dll Infected: not-a-virus:AdWare.Win32.Comet.e skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131126.dll Infected: not-a-virus:AdWare.Win32.Comet.e skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131128.DLL Infected: not-a-virus:AdWare.Win32.ClearSearch.al skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131130.exe Infected: not-a-virus:FraudTool.Win32.MalwareWipe.q skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131144.exe/data0001.bin Infected: not-a-virus:AdWare.Win32.MDH.a skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131144.exe AWInstall: infected - 1 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131144.exe UPX: infected - 1 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131145.exe Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131147.exe Infected: not-a-virus:AdWare.Win32.BetterInternet.aw skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131148.exe/WISE0001.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131148.exe/WISE0007.BIN Infected: Trojan-Downloader.Win32.TSUpdate.f skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131148.exe WiseSFX: infected - 2 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131149.exe/data0003 Infected: not-a-virus:AdWare.Win32.Ilookup.b skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131149.exe NSIS: infected - 1 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131150.exe/data0002 Infected: Trojan-Downloader.Win32.Envolo.b skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131150.exe/data0004 Infected: Trojan-Downloader.Win32.Envolo.c skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131150.exe NSIS: infected - 2 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131151.exe/Stream/data0002 Infected: Backdoor.Win32.VB.aat skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131151.exe/Stream Infected: Backdoor.Win32.VB.aat skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131151.exe Inno: infected - 2 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131152.exe Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131155.exe Infected: Trojan-Downloader.Win32.Small.wj skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131189.exe Infected: not-a-virus:AdWare.Win32.Trymedia.b skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131190.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131191.exe Infected: not-a-virus:RiskTool.Win32.PsKill.a skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131192.dll Infected: Trojan.Win32.Obfuscated.ev skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131193.dll Infected: Trojan-Downloader.Win32.Busky.s skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131194.exe Infected: Trojan.Win32.DNSChanger.kx skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131195.dll Infected: Trojan.Win32.Obfuscated.ev skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131196.exe Infected: not-a-virus:AdWare.Win32.Adstart.i skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131197.exe/WISE0001.BIN Infected: not-a-virus:AdWare.Win32.EZula.ak skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP813\A0131197.exe WiseSFX: infected - 1 skipped
C:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP815\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{3B90E15F-CAE9-4375-A40F-FFD5576AA187}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
D:\System Volume Information\_restore{88A9728D-068D-4BE5-99BD-49CC3FD4BC94}\RP815\change.log Object is locked skipped

Scan process completed.