Tech Support Forum - View Single Post

SKaiser · 12-04-2008, 02:42 PM

My apologies I had to be elsewhere while the computer was performing the scan, when I came back it only showed the above log file I posted so I assumed the information you needed had already been sent.

2007-07-20 18:32:05 A------- 4,232 C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat.vir
2007-07-20 18:32:05 A------- 5,179 C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat.vir
2007-10-31 16:44:14 A------- 8 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Local Settings\Temporary Internet Files\hgstarterjp_verinfo.dat.vir
2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\gizolama.dll.vir
2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\ruvoziyi.dll.vir
2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\vokeloso.dll.vir
2008-09-09 13:39:29 A------- 73 C:\Qoobox\Quarantine\C\WINDOWS\system32\ssprs.dll.vir
2008-09-09 13:39:29 A------- 205 C:\Qoobox\Quarantine\C\WINDOWS\system32\lsprst7.dll.vir
2008-11-24 16:27:14 A------- 369,152 C:\Qoobox\Quarantine\C\WINDOWS\system32\edirhpvlbn.dll.vir
2008-12-02 17:16:15 A------- 35,307 C:\Qoobox\Quarantine\C\WINDOWS\system32\prunnet.exe.vir
2008-12-02 17:16:17 A------- 56,320 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Application Data\gadcom\gadcom.exe.vir
2008-12-02 17:16:28 A------- 34,816 C:\Qoobox\Quarantine\C\WINDOWS\system32\wvUnOHwT.dll.vir
2008-12-02 17:16:37 A------- 65,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\xxywWoND.dll.vir
2008-12-02 17:16:39 A------- 4,095 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Local Settings\Temporary Internet Files\fbk.sts.vir
2008-12-02 17:16:40 A------- 298 C:\Qoobox\Quarantine\C\WINDOWS\Tasks\jdntzijh.job.vir
2008-12-02 17:17:00 A------- 8,192 C:\Qoobox\Quarantine\C\opdwrpjm.exe.vir
2008-12-02 17:17:00 A------- 10,000 C:\Qoobox\Quarantine\C\WINDOWS\system32\gs73gfidgf.dll.vir
2008-12-02 17:17:04 A------- 2 C:\Qoobox\Quarantine\C\1960106143.vir
2008-12-02 17:17:08 A------- 705 C:\Qoobox\Quarantine\C\mguvbfr.exe.vir
2008-12-02 17:17:28 A------- 104,448 C:\Qoobox\Quarantine\C\qthqdso.exe.vir
2008-12-02 17:17:57 A------- 104,448 C:\Qoobox\Quarantine\C\WINDOWS\system32\winhlp.exe.vir
2008-12-02 17:18:02 A------- 60,416 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\TDSSpqlt.sys.vir
2008-12-02 17:18:13 A------- 35,840 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSoiqt.dll.vir
2008-12-02 17:18:19 A------- 22,528 C:\Qoobox\Quarantine\C\WINDOWS\system32\rs32net.exe.vir
2008-12-02 17:18:31 A------- 527 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSmtve.dat.vir
2008-12-02 17:18:37 A------- 29,696 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSarxx.dll.vir
2008-12-02 17:18:42 A------- 31,232 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSvkql.dll.vir
2008-12-02 17:18:44 A------- 174 C:\Qoobox\Quarantine\C\WINDOWS\system32\msnav32.ax.vir
2008-12-02 17:18:45 A------- 1,405 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\readme.txt.vir
2008-12-02 17:18:45 A------- 8,292 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\license.txt.vir
2008-12-02 17:18:45 A------- 73,728 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSScfmm.dll.vir
2008-12-02 17:18:57 A------- 86,272 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\btcusbb.sys.vir
2008-12-02 17:18:59 A------- 2,271 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSlxcp.dll.vir
2008-12-02 17:18:59 A------- 167,976 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\core.cache.dsk.vir
2008-12-02 17:19:03 A------- 648 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Start Menu\Programs\Startup\DW_Start.lnk.vir
2008-12-02 17:19:04 A------- 12,672 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSkkai.log.vir
2008-12-02 17:19:07 A------- 282,629 C:\Qoobox\Quarantine\C\WINDOWS\system32\dwwnw64r.exe.vir
2008-12-02 17:19:10 A------- 47,598 C:\Qoobox\Quarantine\C\WINDOWS\system32\ouvirtkzoay.exe.vir
2008-12-02 17:19:18 A------- 472 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\oA53u3IVtF1ruqUXwZ1DwAo.vbs.vir
2008-12-02 17:19:18 A------- 1,989 C:\Qoobox\Quarantine\C\WINDOWS\uninstall_nmon.vbs.vir
2008-12-02 17:19:18 A------- 94,208 C:\Qoobox\Quarantine\C\Program Files\Network Monitor\netmon.exe.vir
2008-12-02 17:19:18 A------- 187,904 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\asappsrv.dll.vir
2008-12-02 17:19:18 A------- 293,888 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\command.exe.vir
2008-12-02 17:19:26 A------- 210,944 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\SET1D9.tmp.vir
2008-12-02 17:19:28 A------- 48 C:\Qoobox\Quarantine\C\Documents and Settings\LocalService\Application Data\NetMon\domains.txt.vir
2008-12-02 17:19:28 A------- 9,244 C:\Qoobox\Quarantine\C\Documents and Settings\LocalService\Application Data\NetMon\log.txt.vir
2008-12-02 17:35:09 A------- 302,592 C:\Qoobox\Quarantine\C\WINDOWS\system32\fccYoMdD.dll.vir
2008-12-02 17:35:10 A------- 743,931 C:\Qoobox\Quarantine\C\WINDOWS\system32\DdMoYccf.ini2.vir
2008-12-02 17:35:10 A------- 744,033 C:\Qoobox\Quarantine\C\WINDOWS\system32\DdMoYccf.ini.vir
2008-12-02 17:36:07 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\eagdflvs.dll.vir
2008-12-02 17:36:08 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\agucpwos.dll.vir
2008-12-02 17:36:09 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\vfqxut.dll.vir
2008-12-02 17:36:37 A------- 32,768 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\ati2rtxx.sys.vir
2008-12-02 17:37:15 A------- 62,464 C:\Qoobox\Quarantine\C\WINDOWS\system32\~.exe.vir
2008-12-02 17:38:13 A------- 1,377,671 C:\Qoobox\Quarantine\C\WINDOWS\system32\oejvvlxr.ini.vir
2008-12-02 18:52:12 A------- 153,484 C:\Qoobox\Quarantine\C\WINDOWS\system32\g30.exe.vir
2008-12-02 18:52:17 A------- 64,859 C:\Qoobox\Quarantine\C\WINDOWS\system32\tdccmlvugevz.exe.vir
2008-12-02 18:52:22 A------- 21 C:\Qoobox\Quarantine\C\WINDOWS\system32\zxdnt3d.cfg.vir
2008-12-02 18:52:31 A------- 684 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Start Menu\Programs\Startup\Deewoo.lnk.vir
2008-12-02 18:52:33 A------- 859 C:\Qoobox\Quarantine\C\WINDOWS\system32\winpfz33.sys.vir
2008-12-03 17:36:36 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\yckgqhco.dll.vir
2008-12-03 17:36:36 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\najytkxa.dll.vir
2008-12-03 17:36:37 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\vufkso.dll.vir
2008-12-03 17:37:04 A------- 116,224 C:\Qoobox\Quarantine\C\Program Files\Mjcore\Mjcore.dll.vir
2008-12-03 17:39:32 A------- 72,704 C:\Qoobox\Quarantine\C\WINDOWS\system32\lnimkwxr.dll.vir
2008-12-03 17:39:33 A------- 1,410,833 C:\Qoobox\Quarantine\C\WINDOWS\system32\rxwkminl.ini.vir
2008-12-04 14:45:23 A------- 1,229 C:\Qoobox\Quarantine\catchme.log
2008-12-04 15:24:23 A------- 0 C:\Qoobox\Quarantine\C\WINDOWS\Temp\TMP3.tmp.vir
2008-12-04 15:34:07 A------- 1,123 C:\Qoobox\Quarantine\Registry_backups\Service_TDSSSERV.SYS.reg.dat
2008-12-04 15:44:49 A------- 24,027 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\_ati2rtxx_.sys.zip
2008-12-04 15:44:54 A------- 167,461 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\_core.cache_.dsk.zip
2008-12-04 15:47:43 A------- 10,816 C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2008-12-04 15:49:54 A------- 1,122 C:\Qoobox\Quarantine\Registry_backups\Legacy_NETWORK_MONITOR.reg.dat
2008-12-04 15:49:54 A------- 1,276 C:\Qoobox\Quarantine\Registry_backups\Legacy_ATI2RTXX.reg.dat
2008-12-04 15:50:02 A------- 2,078 C:\Qoobox\Quarantine\Registry_backups\Service_ati2rtxx.reg.dat
2008-12-04 15:50:07 A------- 2,210 C:\Qoobox\Quarantine\Registry_backups\Service_restore.reg.dat
2008-12-04 15:50:07 A------- 2,822 C:\Qoobox\Quarantine\Registry_backups\Service_Network Monitor.reg.dat
2008-12-04 16:12:36 A------- 302,592 C:\Qoobox\Quarantine\C\WINDOWS\system32\vtUkhgeB.dll.vir
2008-12-04 16:12:45 A------- 757,826 C:\Qoobox\Quarantine\C\WINDOWS\system32\BeghkUtv.ini.vir
2008-12-04 16:12:46 A------- 757,766 C:\Qoobox\Quarantine\C\WINDOWS\system32\BeghkUtv.ini2.vir
2008-12-04 16:13:47 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\nanloaon.dll.vir
2008-12-04 16:15:46 A------- 72,704 C:\Qoobox\Quarantine\C\WINDOWS\system32\ghuejoqa.dll.vir
2008-12-04 16:15:50 A------- 1,454,990 C:\Qoobox\Quarantine\C\WINDOWS\system32\aqojeuhg.ini.vir
2008-12-04 16:18:46 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\euspldow.dll.vir
2008-12-04 16:18:47 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\mtalbh.dll.vir
2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-CFSServ.exe.reg.dat
2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-NDSTray.exe.reg.dat
2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-TFncKy.reg.dat
2008-12-04 16:21:28 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{5D1AC792-53F5-44A5-8802-D3ACFC1B3C11}.reg.dat
2008-12-04 16:21:28 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{66c005b5-38a5-4a0b-af4b-19815d45a08f}.reg.dat
2008-12-04 16:21:29 A------- 435 C:\Qoobox\Quarantine\Registry_backups\BHO-{f0c9605b-2ddc-0bd1-0e74-b2416fe60202}.reg.dat
2008-12-04 16:21:30 A------- 127 C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-rs32net.reg.dat
2008-12-04 16:21:30 A------- 131 C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-prunnet.reg.dat
2008-12-04 16:21:30 A------- 132 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-prunnet.reg.dat
2008-12-04 16:21:31 A------- 169 C:\Qoobox\Quarantine\Registry_backups\HKU-Default-Run-Nokia.PCSync.reg.dat
2008-12-04 17:35:29 A------- 1,112,712 C:\Qoobox\Quarantine\[4]-Submit_2008-12-04@17.33.zip
2008-12-04 17:45:30 A------- 1,016 C:\Qoobox\Quarantine\Registry_backups\Service_btcusbb.reg.dat
2008-12-04 17:45:30 A------- 1,196 C:\Qoobox\Quarantine\Registry_backups\Legacy_KBEEPM.reg.dat
2008-12-04 17:45:30 A------- 1,262 C:\Qoobox\Quarantine\Registry_backups\Legacy_BTCUSBB.reg.dat
2008-12-04 17:45:31 A------- 2,640 C:\Qoobox\Quarantine\Registry_backups\Service_kbeepm.reg.dat
2008-12-04 18:11:21 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{16F3AE0F-AB16-4B4C-BEC3-9C3B3642F29D}.reg.dat

12-04-2008, 02:42 PM	#11 (permalink)
SKaiser Registered User Join Date: Dec 2008 Posts: 8 OS: XP	Re: Stronger adware then I thought... My apologies I had to be elsewhere while the computer was performing the scan, when I came back it only showed the above log file I posted so I assumed the information you needed had already been sent. 2007-07-20 18:32:05 A------- 4,232 C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat.vir 2007-07-20 18:32:05 A------- 5,179 C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat.vir 2007-10-31 16:44:14 A------- 8 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Local Settings\Temporary Internet Files\hgstarterjp_verinfo.dat.vir 2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\gizolama.dll.vir 2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\ruvoziyi.dll.vir 2008-09-02 17:37:15 A------- 64,512 C:\Qoobox\Quarantine\C\WINDOWS\system32\vokeloso.dll.vir 2008-09-09 13:39:29 A------- 73 C:\Qoobox\Quarantine\C\WINDOWS\system32\ssprs.dll.vir 2008-09-09 13:39:29 A------- 205 C:\Qoobox\Quarantine\C\WINDOWS\system32\lsprst7.dll.vir 2008-11-24 16:27:14 A------- 369,152 C:\Qoobox\Quarantine\C\WINDOWS\system32\edirhpvlbn.dll.vir 2008-12-02 17:16:15 A------- 35,307 C:\Qoobox\Quarantine\C\WINDOWS\system32\prunnet.exe.vir 2008-12-02 17:16:17 A------- 56,320 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Application Data\gadcom\gadcom.exe.vir 2008-12-02 17:16:28 A------- 34,816 C:\Qoobox\Quarantine\C\WINDOWS\system32\wvUnOHwT.dll.vir 2008-12-02 17:16:37 A------- 65,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\xxywWoND.dll.vir 2008-12-02 17:16:39 A------- 4,095 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Local Settings\Temporary Internet Files\fbk.sts.vir 2008-12-02 17:16:40 A------- 298 C:\Qoobox\Quarantine\C\WINDOWS\Tasks\jdntzijh.job.vir 2008-12-02 17:17:00 A------- 8,192 C:\Qoobox\Quarantine\C\opdwrpjm.exe.vir 2008-12-02 17:17:00 A------- 10,000 C:\Qoobox\Quarantine\C\WINDOWS\system32\gs73gfidgf.dll.vir 2008-12-02 17:17:04 A------- 2 C:\Qoobox\Quarantine\C\1960106143.vir 2008-12-02 17:17:08 A------- 705 C:\Qoobox\Quarantine\C\mguvbfr.exe.vir 2008-12-02 17:17:28 A------- 104,448 C:\Qoobox\Quarantine\C\qthqdso.exe.vir 2008-12-02 17:17:57 A------- 104,448 C:\Qoobox\Quarantine\C\WINDOWS\system32\winhlp.exe.vir 2008-12-02 17:18:02 A------- 60,416 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\TDSSpqlt.sys.vir 2008-12-02 17:18:13 A------- 35,840 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSoiqt.dll.vir 2008-12-02 17:18:19 A------- 22,528 C:\Qoobox\Quarantine\C\WINDOWS\system32\rs32net.exe.vir 2008-12-02 17:18:31 A------- 527 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSmtve.dat.vir 2008-12-02 17:18:37 A------- 29,696 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSarxx.dll.vir 2008-12-02 17:18:42 A------- 31,232 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSvkql.dll.vir 2008-12-02 17:18:44 A------- 174 C:\Qoobox\Quarantine\C\WINDOWS\system32\msnav32.ax.vir 2008-12-02 17:18:45 A------- 1,405 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\readme.txt.vir 2008-12-02 17:18:45 A------- 8,292 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\license.txt.vir 2008-12-02 17:18:45 A------- 73,728 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSScfmm.dll.vir 2008-12-02 17:18:57 A------- 86,272 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\btcusbb.sys.vir 2008-12-02 17:18:59 A------- 2,271 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSlxcp.dll.vir 2008-12-02 17:18:59 A------- 167,976 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\core.cache.dsk.vir 2008-12-02 17:19:03 A------- 648 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Start Menu\Programs\Startup\DW_Start.lnk.vir 2008-12-02 17:19:04 A------- 12,672 C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSkkai.log.vir 2008-12-02 17:19:07 A------- 282,629 C:\Qoobox\Quarantine\C\WINDOWS\system32\dwwnw64r.exe.vir 2008-12-02 17:19:10 A------- 47,598 C:\Qoobox\Quarantine\C\WINDOWS\system32\ouvirtkzoay.exe.vir 2008-12-02 17:19:18 A------- 472 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\oA53u3IVtF1ruqUXwZ1DwAo.vbs.vir 2008-12-02 17:19:18 A------- 1,989 C:\Qoobox\Quarantine\C\WINDOWS\uninstall_nmon.vbs.vir 2008-12-02 17:19:18 A------- 94,208 C:\Qoobox\Quarantine\C\Program Files\Network Monitor\netmon.exe.vir 2008-12-02 17:19:18 A------- 187,904 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\asappsrv.dll.vir 2008-12-02 17:19:18 A------- 293,888 C:\Qoobox\Quarantine\C\WINDOWS\UmljaGFyZCBXaWx0c2hpcmU\command.exe.vir 2008-12-02 17:19:26 A------- 210,944 C:\Qoobox\Quarantine\C\Program Files\webHancer\Programs\SET1D9.tmp.vir 2008-12-02 17:19:28 A------- 48 C:\Qoobox\Quarantine\C\Documents and Settings\LocalService\Application Data\NetMon\domains.txt.vir 2008-12-02 17:19:28 A------- 9,244 C:\Qoobox\Quarantine\C\Documents and Settings\LocalService\Application Data\NetMon\log.txt.vir 2008-12-02 17:35:09 A------- 302,592 C:\Qoobox\Quarantine\C\WINDOWS\system32\fccYoMdD.dll.vir 2008-12-02 17:35:10 A------- 743,931 C:\Qoobox\Quarantine\C\WINDOWS\system32\DdMoYccf.ini2.vir 2008-12-02 17:35:10 A------- 744,033 C:\Qoobox\Quarantine\C\WINDOWS\system32\DdMoYccf.ini.vir 2008-12-02 17:36:07 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\eagdflvs.dll.vir 2008-12-02 17:36:08 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\agucpwos.dll.vir 2008-12-02 17:36:09 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\vfqxut.dll.vir 2008-12-02 17:36:37 A------- 32,768 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\ati2rtxx.sys.vir 2008-12-02 17:37:15 A------- 62,464 C:\Qoobox\Quarantine\C\WINDOWS\system32\~.exe.vir 2008-12-02 17:38:13 A------- 1,377,671 C:\Qoobox\Quarantine\C\WINDOWS\system32\oejvvlxr.ini.vir 2008-12-02 18:52:12 A------- 153,484 C:\Qoobox\Quarantine\C\WINDOWS\system32\g30.exe.vir 2008-12-02 18:52:17 A------- 64,859 C:\Qoobox\Quarantine\C\WINDOWS\system32\tdccmlvugevz.exe.vir 2008-12-02 18:52:22 A------- 21 C:\Qoobox\Quarantine\C\WINDOWS\system32\zxdnt3d.cfg.vir 2008-12-02 18:52:31 A------- 684 C:\Qoobox\Quarantine\C\Documents and Settings\Richard\Start Menu\Programs\Startup\Deewoo.lnk.vir 2008-12-02 18:52:33 A------- 859 C:\Qoobox\Quarantine\C\WINDOWS\system32\winpfz33.sys.vir 2008-12-03 17:36:36 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\yckgqhco.dll.vir 2008-12-03 17:36:36 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\najytkxa.dll.vir 2008-12-03 17:36:37 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\vufkso.dll.vir 2008-12-03 17:37:04 A------- 116,224 C:\Qoobox\Quarantine\C\Program Files\Mjcore\Mjcore.dll.vir 2008-12-03 17:39:32 A------- 72,704 C:\Qoobox\Quarantine\C\WINDOWS\system32\lnimkwxr.dll.vir 2008-12-03 17:39:33 A------- 1,410,833 C:\Qoobox\Quarantine\C\WINDOWS\system32\rxwkminl.ini.vir 2008-12-04 14:45:23 A------- 1,229 C:\Qoobox\Quarantine\catchme.log 2008-12-04 15:24:23 A------- 0 C:\Qoobox\Quarantine\C\WINDOWS\Temp\TMP3.tmp.vir 2008-12-04 15:34:07 A------- 1,123 C:\Qoobox\Quarantine\Registry_backups\Service_TDSSSERV.SYS.reg.dat 2008-12-04 15:44:49 A------- 24,027 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\_ati2rtxx_.sys.zip 2008-12-04 15:44:54 A------- 167,461 C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\_core.cache_.dsk.zip 2008-12-04 15:47:43 A------- 10,816 C:\Qoobox\Quarantine\Registry_backups\tcpip.reg 2008-12-04 15:49:54 A------- 1,122 C:\Qoobox\Quarantine\Registry_backups\Legacy_NETWORK_MONITOR.reg.dat 2008-12-04 15:49:54 A------- 1,276 C:\Qoobox\Quarantine\Registry_backups\Legacy_ATI2RTXX.reg.dat 2008-12-04 15:50:02 A------- 2,078 C:\Qoobox\Quarantine\Registry_backups\Service_ati2rtxx.reg.dat 2008-12-04 15:50:07 A------- 2,210 C:\Qoobox\Quarantine\Registry_backups\Service_restore.reg.dat 2008-12-04 15:50:07 A------- 2,822 C:\Qoobox\Quarantine\Registry_backups\Service_Network Monitor.reg.dat 2008-12-04 16:12:36 A------- 302,592 C:\Qoobox\Quarantine\C\WINDOWS\system32\vtUkhgeB.dll.vir 2008-12-04 16:12:45 A------- 757,826 C:\Qoobox\Quarantine\C\WINDOWS\system32\BeghkUtv.ini.vir 2008-12-04 16:12:46 A------- 757,766 C:\Qoobox\Quarantine\C\WINDOWS\system32\BeghkUtv.ini2.vir 2008-12-04 16:13:47 A------- 41,472 C:\Qoobox\Quarantine\C\WINDOWS\system32\nanloaon.dll.vir 2008-12-04 16:15:46 A------- 72,704 C:\Qoobox\Quarantine\C\WINDOWS\system32\ghuejoqa.dll.vir 2008-12-04 16:15:50 A------- 1,454,990 C:\Qoobox\Quarantine\C\WINDOWS\system32\aqojeuhg.ini.vir 2008-12-04 16:18:46 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\euspldow.dll.vir 2008-12-04 16:18:47 A------- 129,024 C:\Qoobox\Quarantine\C\WINDOWS\system32\mtalbh.dll.vir 2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-CFSServ.exe.reg.dat 2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-NDSTray.exe.reg.dat 2008-12-04 16:21:27 A------- 0 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-TFncKy.reg.dat 2008-12-04 16:21:28 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{5D1AC792-53F5-44A5-8802-D3ACFC1B3C11}.reg.dat 2008-12-04 16:21:28 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{66c005b5-38a5-4a0b-af4b-19815d45a08f}.reg.dat 2008-12-04 16:21:29 A------- 435 C:\Qoobox\Quarantine\Registry_backups\BHO-{f0c9605b-2ddc-0bd1-0e74-b2416fe60202}.reg.dat 2008-12-04 16:21:30 A------- 127 C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-rs32net.reg.dat 2008-12-04 16:21:30 A------- 131 C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-prunnet.reg.dat 2008-12-04 16:21:30 A------- 132 C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-prunnet.reg.dat 2008-12-04 16:21:31 A------- 169 C:\Qoobox\Quarantine\Registry_backups\HKU-Default-Run-Nokia.PCSync.reg.dat 2008-12-04 17:35:29 A------- 1,112,712 C:\Qoobox\Quarantine\[4]-Submit_2008-12-04@17.33.zip 2008-12-04 17:45:30 A------- 1,016 C:\Qoobox\Quarantine\Registry_backups\Service_btcusbb.reg.dat 2008-12-04 17:45:30 A------- 1,196 C:\Qoobox\Quarantine\Registry_backups\Legacy_KBEEPM.reg.dat 2008-12-04 17:45:30 A------- 1,262 C:\Qoobox\Quarantine\Registry_backups\Legacy_BTCUSBB.reg.dat 2008-12-04 17:45:31 A------- 2,640 C:\Qoobox\Quarantine\Registry_backups\Service_kbeepm.reg.dat 2008-12-04 18:11:21 A------- 374 C:\Qoobox\Quarantine\Registry_backups\BHO-{16F3AE0F-AB16-4B4C-BEC3-9C3B3642F29D}.reg.dat