Jump to content

Recommended Posts

I started having a problem when I would do a google search and it would kick me to another site(63.209.69.107). Went to run Malwarebytes, after downloading the updates the program shut down within a few seconds of starting a quick scan. I've done alittle research and notice that others have had the same problem. Looking for some help. Thanks

DDS.txt

Attach.txt

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Don't attach logs unless otherwise specified.

  • Download the file TDSSKiller.zip and extract it into a folder on the infected PC.
  • Execute the file TDSSKiller.exe by double-clicking on it.
  • Wait for the scan and disinfection process to be over.
  • When its work is over, the utility prompts for a reboot to complete the disinfection.

By default, the utility outputs runtime log into the system disk root directory (the disk where the operating system is installed, C:\ as a rule).

The log is like UtilityName.Version_Date_Time_log.txt.

for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt.

Please post that log here.

Please update MBAM, run a Quick Scan, and post its log.

Next, please visit this webpage for instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

-screen317

Link to post
Share on other sites

  • Staff

Hi,

As I said above, please do not attach logs. Use multiple posts if necessary to copy and paste them.

Delete your copy of ComboFix. Grab a fresh copy and save it to your Desktop, but do not run it yet. Before you download it, rename it to sega.com

Please reboot to Safe Mode (tap the F8 key just before Windows starts to load and select the Safe Mode option from the menu).

Click Start --> Run, and enter this command exactly as shown:

"%userprofile%\desktop\sega.com" /killall

Link to post
Share on other sites

ComboFix 11-11-04.04 - Lefty 11/04/2011 16:13:07.4.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.1021.509 [GMT -4:00]

Running from: c:\users\Lefty\Desktop\sega.com

Command switches used :: /killall

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

---- Previous Run -------

.

c:\users\Lefty\AppData\Local\36e868d6\@

c:\users\Lefty\AppData\Local\36e868d6\U\80000000.@

c:\users\Lefty\AppData\Local\36e868d6\U\800000cb.@

c:\users\Lefty\AppData\Local\36e868d6\X

c:\windows\$NtUninstallKB41409$\1773410119

c:\windows\$NtUninstallKB41409$\921200854\@

c:\windows\$NtUninstallKB41409$\921200854\L\qnbwvoto

c:\windows\$NtUninstallKB41409$\921200854\loader.tlb

c:\windows\$NtUninstallKB41409$\921200854\U\@00000001

c:\windows\$NtUninstallKB41409$\921200854\U\@000000c0

c:\windows\$NtUninstallKB41409$\921200854\U\@000000cb

c:\windows\$NtUninstallKB41409$\921200854\U\@000000cf

c:\windows\$NtUninstallKB41409$\921200854\U\@80000000

c:\windows\$NtUninstallKB41409$\921200854\U\@800000c0

c:\windows\$NtUninstallKB41409$\921200854\U\@800000cb

c:\windows\$NtUninstallKB41409$\921200854\U\@800000cf

c:\windows\{2521BB91-29B1-4d7e-9137-AC9875D77735}

c:\windows\AAfkAdC.dll

c:\windows\AFvpmyKOr.dll

c:\windows\AFwurfMy.dll

c:\windows\aHSEbhqbF.exe

c:\windows\AkFlMLi.exe

c:\windows\aOBPon.exe

c:\windows\aoeMINkdK.dll

c:\windows\assembly\GAC_MSIL\desktop.ini

c:\windows\avaQCJ.exe

c:\windows\aVRYBgxFp.dll

c:\windows\aYDDI.dll

c:\windows\bBWvpvqv.exe

c:\windows\bfQPdhQGv.exe

c:\windows\bILejLa.dll

c:\windows\bjrXvSan.dll

c:\windows\bnJujiUpV.dll

c:\windows\bprlPWN.dll

c:\windows\CdfiVN.dll

c:\windows\chdYSB.dll

c:\windows\chtEJj.dll

c:\windows\cKbrPaM.dll

c:\windows\CScMJChsH.dll

c:\windows\cvmyc.dll

c:\windows\CwOxRFl.exe

c:\windows\DbwNACP.dll

c:\windows\dccFXy.dll

c:\windows\DDrgEt.dll

c:\windows\DePRtCd.dll

c:\windows\DfOobq.dll

c:\windows\DidKtVgwn.exe

c:\windows\djQBHKkr.dll

c:\windows\dQAjDx.dll

c:\windows\dsKSNiFU.exe

c:\windows\dtlRrN.dll

c:\windows\dYIqPg.dll

c:\windows\eALPMwAm.exe

c:\windows\efIqA.exe

c:\windows\EgSAm.dll

c:\windows\EjpGXv.dll

c:\windows\EKPCR.dll

c:\windows\enBygyJ.dll

c:\windows\eNKkPah.dll

c:\windows\eQPvPjQ.dll

c:\windows\EsvQWi.dll

c:\windows\eTjGVDN.dll

c:\windows\eVQUhqhnG.dll

c:\windows\EWtiMQqVn.dll

c:\windows\EYPfPu.exe

c:\windows\FBSJajxd.dll

c:\windows\FGaYMiS.exe

c:\windows\FiBPGUN.exe

c:\windows\fRxlDNQNN.dll

c:\windows\FVhAUpS.dll

c:\windows\fVUINiAJH.exe

c:\windows\GAlEdBj.exe

c:\windows\gaNgbyfh.exe

c:\windows\gDAwNs.dll

c:\windows\gGuDFeF.dll

c:\windows\gHvwpxuP.dll

c:\windows\gHWKXSx.exe

c:\windows\gpgtrWaF.dll

c:\windows\gPHLHcm.exe

c:\windows\gQadGTQ.dll

c:\windows\GQcyAkcA.exe

c:\windows\gRQRisXH.exe

c:\windows\gVlNbn.exe

c:\windows\gXegKKDKj.exe

c:\windows\GyqVAiPP.dll

c:\windows\gyuMNYj.dll

c:\windows\haFUXQauE.dll

c:\windows\hIwvJNgUx.exe

c:\windows\HNaGqqmNH.exe

c:\windows\hNBEPhgE.exe

c:\windows\HpBHVmP.dll

c:\windows\hPjmDl.exe

c:\windows\HrsaguiGJ.exe

c:\windows\hRXWPHew.exe

c:\windows\hUHCpB.exe

c:\windows\hvDIT.dll

c:\windows\HxbtG.dll

c:\windows\ikLpblwBW.dll

c:\windows\ikWHII.exe

c:\windows\iLpBa.dll

c:\windows\IrqgmMq.dll

c:\windows\ISniO.exe

c:\windows\IUPNww.dll

c:\windows\JAoIjj.dll

c:\windows\JaojjhIOu.exe

c:\windows\JBwkoin.dll

c:\windows\JFWgGqF.exe

c:\windows\jhBNIL.exe

c:\windows\jhDjpqn.exe

c:\windows\jkMBohdfI.exe

c:\windows\jLHthDXj.dll

c:\windows\jmHCJCMS.dll

c:\windows\JWhpucwbx.dll

c:\windows\JwIAbFjY.dll

c:\windows\kDBMiUX.dll

c:\windows\kHAMjxQ.dll

c:\windows\kNEYdGw.dll

c:\windows\kqeHQxs.dll

c:\windows\KrFodac.exe

c:\windows\KRsFTCyd.dll

c:\windows\kWfVIjmSB.exe

c:\windows\kxDlHfjKk.dll

c:\windows\KyhXqRF.dll

c:\windows\lcEkDJ.exe

c:\windows\LhfbyG.exe

c:\windows\LJLJum.dll

c:\windows\LjlKRBye.dll

c:\windows\LMLbsFac.dll

c:\windows\LQMQK.dll

c:\windows\LTosfafe.exe

c:\windows\lWPAJ.exe

c:\windows\lxBWcuVNG.exe

c:\windows\mdBnnph.dll

c:\windows\MEmGcC.exe

c:\windows\MfTOKM.exe

c:\windows\mJNto.exe

c:\windows\mKVFX.dll

c:\windows\MOPFDPMG.exe

c:\windows\MsAAhq.exe

c:\windows\mSraDcc.exe

c:\windows\MxygoR.exe

c:\windows\nCQcPT.dll

c:\windows\ndpuH.exe

c:\windows\NgAtAjaMG.dll

c:\windows\NhrVjRH.exe

c:\windows\NjmqTNLo.exe

c:\windows\nOUlw.exe

c:\windows\NPkhG.exe

c:\windows\NPnFJBrTh.exe

c:\windows\nPUPv.dll

c:\windows\nTqaU.dll

c:\windows\ntVvG.dll

c:\windows\nwUUM.exe

c:\windows\NxUIPSigq.exe

c:\windows\OckyTKuN.dll

c:\windows\OCpjK.exe

c:\windows\OdUYUCN.exe

c:\windows\OehOg.dll

c:\windows\oFfPnJ.dll

c:\windows\ojBySDyRg.dll

c:\windows\OmIgPtUyQ.dll

c:\windows\oqsvWSbT.exe

c:\windows\OviaOK.dll

c:\windows\pdmwWY.exe

c:\windows\PECHiC.exe

c:\windows\PjCTFrR.exe

c:\windows\PJnkubHXK.exe

c:\windows\pKEPv.dll

c:\windows\pnynBljX.dll

c:\windows\PsHxxxons.dll

c:\windows\pVxVGDn.exe

c:\windows\PWpvGNuP.exe

c:\windows\PXjwevf.exe

c:\windows\PyfGhVqic.dll

c:\windows\PYuWAPr.exe

c:\windows\QDjDcvM.exe

c:\windows\QkTYRPxSV.exe

c:\windows\QQLsKvNde.exe

c:\windows\QXNxXbPh.exe

c:\windows\RaGUeiV.exe

c:\windows\rBDDSEcX.dll

c:\windows\RBsCi.dll

c:\windows\RbTXLE.exe

c:\windows\RFlpACmoc.dll

c:\windows\rhiuLQv.dll

c:\windows\RLpCkD.exe

c:\windows\rngAJiW.dll

c:\windows\RrfbP.dll

c:\windows\rRStw.exe

c:\windows\RvPONBSq.dll

c:\windows\RXcvAlr.dll

c:\windows\sjwAP.exe

c:\windows\SkhAoNlyR.dll

c:\windows\SmTFHk.dll

c:\windows\SvhYsO.exe

c:\windows\system32\

c:\windows\system32\aaDPOPVKT.exe

c:\windows\system32\aBCrMmM.exe

c:\windows\system32\aDCqPerIC.dll

c:\windows\system32\ADwxq.exe

c:\windows\system32\aFgPpvIST.dll

c:\windows\system32\ASePNJ.dll

c:\windows\system32\BAJQd.dll

c:\windows\system32\BAsgYYlW.dll

c:\windows\system32\BeUvNCN.dll

c:\windows\system32\BfJty.exe

c:\windows\system32\bsIMuNV.exe

c:\windows\system32\bUWANej.exe

c:\windows\system32\BvtNdeQ.exe

c:\windows\system32\BxaTvIKF.exe

c:\windows\system32\bYaaOk.exe

c:\windows\system32\CDIfkar.dll

c:\windows\system32\cDRhaPe.exe

c:\windows\system32\cewJN.exe

c:\windows\system32\ClbFpGun.dll

c:\windows\system32\ctlLR.dll

c:\windows\system32\CXMaHCXb.dll

c:\windows\system32\DBoiN.dll

c:\windows\system32\DbWylH.exe

c:\windows\system32\dDryMR.exe

c:\windows\system32\DHepGGaV.dll

c:\windows\system32\DpnAh.dll

c:\windows\system32\dqKSXao.dll

c:\windows\system32\DRBHBbin.exe

c:\windows\system32\drivers\aAocdlIR.exe

c:\windows\system32\drivers\AatYuvh.dll

c:\windows\system32\drivers\abvhoORxI.dll

c:\windows\system32\drivers\adJud.exe

c:\windows\system32\drivers\aDnBwJ.exe

c:\windows\system32\drivers\aeKOKv.dll

c:\windows\system32\drivers\AhElaq.exe

c:\windows\system32\drivers\AhrXpSV.exe

c:\windows\system32\drivers\AiOsI.exe

c:\windows\system32\drivers\aJiuV.dll

c:\windows\system32\drivers\AleCguRT.exe

c:\windows\system32\drivers\AMPrJgw.dll

c:\windows\system32\drivers\AnmYS.dll

c:\windows\system32\drivers\AUxuueDUK.dll

c:\windows\system32\drivers\avMEQ.exe

c:\windows\system32\drivers\bcXdkCRxp.exe

c:\windows\system32\drivers\bdpGAw.exe

c:\windows\system32\drivers\bEdKug.dll

c:\windows\system32\drivers\BGnvhXXKn.dll

c:\windows\system32\drivers\BHtqLX.dll

c:\windows\system32\drivers\BJgHE.exe

c:\windows\system32\drivers\bkwDNDyXm.dll

c:\windows\system32\drivers\bLGEmuQv.exe

c:\windows\system32\drivers\BlJraO.exe

c:\windows\system32\drivers\bnblUTiPU.dll

c:\windows\system32\drivers\bsxkWIVd.dll

c:\windows\system32\drivers\BukATKU.exe

c:\windows\system32\drivers\bvsbJv.exe

c:\windows\system32\drivers\cEVVovxFP.exe

c:\windows\system32\drivers\ciEYjJsN.dll

c:\windows\system32\drivers\ciPbUF.exe

c:\windows\system32\drivers\CjXkwv.exe

c:\windows\system32\drivers\cWVUww.dll

c:\windows\system32\drivers\DaKmTS.exe

c:\windows\system32\drivers\dBGtDu.dll

c:\windows\system32\drivers\DdpQq.dll

c:\windows\system32\drivers\dfdpSEh.dll

c:\windows\system32\drivers\DGlptuRep.dll

c:\windows\system32\drivers\dgwonR.dll

c:\windows\system32\drivers\dhNwbK.exe

c:\windows\system32\drivers\djwkR.dll

c:\windows\system32\drivers\DKFNDdDKr.exe

c:\windows\system32\drivers\DnilvA.dll

c:\windows\system32\drivers\DpWTIOuL.exe

c:\windows\system32\drivers\DwkqWV.exe

c:\windows\system32\drivers\dXSoXYx.exe

c:\windows\system32\drivers\EagNmGE.exe

c:\windows\system32\drivers\ECJFDSD.exe

c:\windows\system32\drivers\EeEqCkY.dll

c:\windows\system32\drivers\eFqoo.dll

c:\windows\system32\drivers\eMGqwBBEu.exe

c:\windows\system32\drivers\EnaJenDWW.exe

c:\windows\system32\drivers\EpTou.dll

c:\windows\system32\drivers\ePXhF.exe

c:\windows\system32\drivers\eUDvsQA.dll

c:\windows\system32\drivers\fdgXILJb.dll

c:\windows\system32\drivers\fGaTOVK.exe

c:\windows\system32\drivers\FkACLAR.dll

c:\windows\system32\drivers\fKmRSd.exe

c:\windows\system32\drivers\fSvStHw.dll

c:\windows\system32\drivers\fTihgJSlB.dll

c:\windows\system32\drivers\FTMvtBfN.dll

c:\windows\system32\drivers\FYewKj.dll

c:\windows\system32\drivers\GaPvhki.dll

c:\windows\system32\drivers\GARBLkHjC.dll

c:\windows\system32\drivers\GdtJX.dll

c:\windows\system32\drivers\gFjmBliG.dll

c:\windows\system32\drivers\gMunpgcnu.exe

c:\windows\system32\drivers\GsTVQRi.dll

c:\windows\system32\drivers\gWPLt.exe

c:\windows\system32\drivers\GxNrP.exe

c:\windows\system32\drivers\GyswpjPcX.dll

c:\windows\system32\drivers\HawEUmELp.dll

c:\windows\system32\drivers\HCoMiSYM.exe

c:\windows\system32\drivers\hjefvx.exe

c:\windows\system32\drivers\hjYjcaU.dll

c:\windows\system32\drivers\hNheV.exe

c:\windows\system32\drivers\HnuAmCPm.exe

c:\windows\system32\drivers\HpiaHfI.exe

c:\windows\system32\drivers\HpYopgNw.exe

c:\windows\system32\drivers\hRgFI.exe

c:\windows\system32\drivers\HUoubJVij.dll

c:\windows\system32\drivers\HvLNAWgjq.exe

c:\windows\system32\drivers\IaAQSg.dll

c:\windows\system32\drivers\IcAbjK.dll

c:\windows\system32\drivers\ICyKaQSp.exe

c:\windows\system32\drivers\IkFCbAK.exe

c:\windows\system32\drivers\iPciA.exe

c:\windows\system32\drivers\iusCESYd.dll

c:\windows\system32\drivers\IvbRnYsbr.dll

c:\windows\system32\drivers\iXhTcoEM.exe

c:\windows\system32\drivers\jcrwD.exe

c:\windows\system32\drivers\jGpHx.dll

c:\windows\system32\drivers\JGPQrAOUx.exe

c:\windows\system32\drivers\jGYpT.dll

c:\windows\system32\drivers\jhUvJHAgT.dll

c:\windows\system32\drivers\JIYyrLe.dll

c:\windows\system32\drivers\JsIdQrecE.dll

c:\windows\system32\drivers\JuoSeG.exe

c:\windows\system32\drivers\jYIQc.exe

c:\windows\system32\drivers\jyNhSE.exe

c:\windows\system32\drivers\kIWWKP.exe

c:\windows\system32\drivers\KLQwiuK.exe

c:\windows\system32\drivers\KQkwQ.dll

c:\windows\system32\drivers\krCTN.exe

c:\windows\system32\drivers\KUJxEXfbB.dll

c:\windows\system32\drivers\kwMxms.exe

c:\windows\system32\drivers\laPgBM.exe

c:\windows\system32\drivers\lbAMg.exe

c:\windows\system32\drivers\LBXGXGwTU.dll

c:\windows\system32\drivers\lFADSP.exe

c:\windows\system32\drivers\LItHe.exe

c:\windows\system32\drivers\lIvIWeHmN.dll

c:\windows\system32\drivers\LLHBpc.dll

c:\windows\system32\drivers\lnIKRicO.dll

c:\windows\system32\drivers\lsEgBUoJ.dll

c:\windows\system32\drivers\lTARLF.exe

c:\windows\system32\drivers\LthiNRSC.dll

c:\windows\system32\drivers\LUShua.exe

c:\windows\system32\drivers\lVIEHVtl.exe

c:\windows\system32\drivers\LVyOTYsV.dll

c:\windows\system32\drivers\lYQXemEY.dll

c:\windows\system32\drivers\mBAvnSdhN.dll

c:\windows\system32\drivers\McNvItAX.exe

c:\windows\system32\drivers\MhkLB.exe

c:\windows\system32\drivers\MRcCiwS.exe

c:\windows\system32\drivers\msqSLhYFu.dll

c:\windows\system32\drivers\mUtnUcvM.dll

c:\windows\system32\drivers\MwFhdAk.exe

c:\windows\system32\drivers\NbWialvuA.exe

c:\windows\system32\drivers\Ncuhc.dll

c:\windows\system32\drivers\NgsQrLvk.exe

c:\windows\system32\drivers\NhCiJaJRT.dll

c:\windows\system32\drivers\nsoKyA.exe

c:\windows\system32\drivers\nurgHmkW.dll

c:\windows\system32\drivers\nWaEkwrOC.dll

c:\windows\system32\drivers\nxgcw.dll

c:\windows\system32\drivers\OesWnX.dll

c:\windows\system32\drivers\OfdOQsOH.exe

c:\windows\system32\drivers\OgUcjago.dll

c:\windows\system32\drivers\oPEgMtxU.exe

c:\windows\system32\drivers\ORCNfk.exe

c:\windows\system32\drivers\PAtFbRDCU.dll

c:\windows\system32\drivers\pBIDpM.exe

c:\windows\system32\drivers\PDPBfvDYC.exe

c:\windows\system32\drivers\pFOtvonL.dll

c:\windows\system32\drivers\phNkGS.exe

c:\windows\system32\drivers\PjjVQR.dll

c:\windows\system32\drivers\pLvEDgllF.exe

c:\windows\system32\drivers\PVoHAV.dll

c:\windows\system32\drivers\pWpnfE.dll

c:\windows\system32\drivers\pyoGyNbh.exe

c:\windows\system32\drivers\qGgvX.dll

c:\windows\system32\drivers\QkalLqkFq.dll

c:\windows\system32\drivers\qMhNma.dll

c:\windows\system32\drivers\qvKvXE.dll

c:\windows\system32\drivers\RbwBkSVc.exe

c:\windows\system32\drivers\rexLFDM.dll

c:\windows\system32\drivers\rhwVuNUNX.exe

c:\windows\system32\drivers\rKavgiysK.exe

c:\windows\system32\drivers\RNXRA.dll

c:\windows\system32\drivers\Rownh.exe

c:\windows\system32\drivers\rpOvb.dll

c:\windows\system32\drivers\RPugJnmU.dll

c:\windows\system32\drivers\ruUSCoijT.exe

c:\windows\system32\drivers\RWGiq.exe

c:\windows\system32\drivers\RWuTcIwAc.exe

c:\windows\system32\drivers\sDwULKwte.dll

c:\windows\system32\drivers\SIOeSw.exe

c:\windows\system32\drivers\SJiYQYEjJ.exe

c:\windows\system32\drivers\SJJvB.dll

c:\windows\system32\drivers\SKEqwaB.dll

c:\windows\system32\drivers\sMCDlFmY.exe

c:\windows\system32\drivers\SPBqTEpeS.dll

c:\windows\system32\drivers\sXPQA.dll

c:\windows\system32\drivers\SyrPhc.exe

c:\windows\system32\drivers\TAALbGMko.exe

c:\windows\system32\drivers\TctNXvg.dll

c:\windows\system32\drivers\tdDKX.exe

c:\windows\system32\drivers\tEwQNDk.dll

c:\windows\system32\drivers\TFiLrT.exe

c:\windows\system32\drivers\TGBSBc.dll

c:\windows\system32\drivers\TICnH.dll

c:\windows\system32\drivers\TJJIRStXc.exe

c:\windows\system32\drivers\TMAVXE.dll

c:\windows\system32\drivers\tqPQP.dll

c:\windows\system32\drivers\TsMlslACl.dll

c:\windows\system32\drivers\tvhltuL.exe

c:\windows\system32\drivers\uBnbpSL.exe

c:\windows\system32\drivers\UDmLw.dll

c:\windows\system32\drivers\uDQstDYP.exe

c:\windows\system32\drivers\uGUCK.dll

c:\windows\system32\drivers\UioTRui.dll

c:\windows\system32\drivers\uqmRjo.dll

c:\windows\system32\drivers\uuCbChoe.dll

c:\windows\system32\drivers\uUEKeK.exe

c:\windows\system32\drivers\uXHpojn.dll

c:\windows\system32\drivers\uxqxaAHP.exe

c:\windows\system32\drivers\VDaCtu.dll

c:\windows\system32\drivers\vEFmXvLq.dll

c:\windows\system32\drivers\vekCDr.exe

c:\windows\system32\drivers\vIAFmAUc.dll

c:\windows\system32\drivers\vjtTUChJc.exe

c:\windows\system32\drivers\VKJxnj.exe

c:\windows\system32\drivers\VkmrIQGDD.dll

c:\windows\system32\drivers\VNrCfdlnd.exe

c:\windows\system32\drivers\vPBvhhgHU.dll

c:\windows\system32\drivers\VytIjFo.exe

c:\windows\system32\drivers\whgPeW.exe

c:\windows\system32\drivers\WkTEu.dll

c:\windows\system32\drivers\wMEKcafi.exe

c:\windows\system32\drivers\wRJGyg.exe

c:\windows\system32\drivers\WtesAfje.exe

c:\windows\system32\drivers\wVDKQulHa.dll

c:\windows\system32\drivers\XAYOnqUd.dll

c:\windows\system32\drivers\xBqoumX.dll

c:\windows\system32\drivers\XeLNQ.exe

c:\windows\system32\drivers\XerNNvt.dll

c:\windows\system32\drivers\xgEaJX.exe

c:\windows\system32\drivers\XgkmRWQ.exe

c:\windows\system32\drivers\XGnfTfUT.exe

c:\windows\system32\drivers\XHaVUUy.exe

c:\windows\system32\drivers\XqaQoXYK.dll

c:\windows\system32\drivers\XRRbKfE.exe

c:\windows\system32\drivers\yAjGq.dll

c:\windows\system32\drivers\YcAhsDh.dll

c:\windows\system32\drivers\ycBdXWh.dll

c:\windows\system32\drivers\YCDrC.exe

c:\windows\system32\drivers\yePXRkW.exe

c:\windows\system32\drivers\YJsUtEydS.dll

c:\windows\system32\drivers\YkEXKJdD.exe

c:\windows\system32\drivers\YlnGydF.exe

c:\windows\system32\drivers\ypDCDiW.dll

c:\windows\system32\drivers\YQGveX.dll

c:\windows\system32\drivers\yRbyHkjRQ.exe

c:\windows\system32\drivers\yVkmEc.dll

c:\windows\system32\drivers\ywbqyT.dll

c:\windows\system32\drivers\ywNVB.exe

c:\windows\system32\drivers\YXNISf.exe

c:\windows\system32\drivers\yydwIUx.dll

c:\windows\system32\dTwhfy.exe

c:\windows\system32\DvSlykN.exe

c:\windows\system32\DWUypI.exe

c:\windows\system32\etIJLSB.dll

c:\windows\system32\euYWYe.exe

c:\windows\system32\fAoRN.exe

c:\windows\system32\FBulCu.exe

c:\windows\system32\FEPYdc.exe

c:\windows\system32\FLcHq.dll

c:\windows\system32\fMdMSjLD.exe

c:\windows\system32\fNjhLoOS.exe

c:\windows\system32\fNykoo.exe

c:\windows\system32\fqhHFWR.exe

c:\windows\system32\FrPFflu.dll

c:\windows\system32\FsfbrkRl.dll

c:\windows\system32\fSnrcfy.dll

c:\windows\system32\FyRcCLDci.exe

c:\windows\system32\GAtWdEKn.dll

c:\windows\system32\GbnFyw.dll

c:\windows\system32\gBSMo.exe

c:\windows\system32\gDSoxI.exe

c:\windows\system32\gDwghMMvo.dll

c:\windows\system32\GEARk.dll

c:\windows\system32\GegeNOgE.exe

c:\windows\system32\gGiBT.exe

c:\windows\system32\GGqRpnA.exe

c:\windows\system32\GpUtmKd.dll

c:\windows\system32\GqeAoO.dll

c:\windows\system32\GQpnVbaxS.dll

c:\windows\system32\GstBgarUG.dll

c:\windows\system32\gukWJE.dll

c:\windows\system32\hCPqAY.exe

c:\windows\system32\hechVwVgm.exe

c:\windows\system32\HgWSRl.exe

c:\windows\system32\HHGYbQGsk.exe

c:\windows\system32\HIAIB.dll

c:\windows\system32\HOFQfs.dll

c:\windows\system32\HStsN.dll

c:\windows\system32\HYeQpdT.dll

c:\windows\system32\hYqGuhJ.exe

c:\windows\system32\IcLpbsCF.dll

c:\windows\system32\ifHyLpfhW.exe

c:\windows\system32\iJgCXlX.exe

c:\windows\system32\IpymI.exe

c:\windows\system32\IqGXEk.exe

c:\windows\system32\iRDRHFgl.dll

c:\windows\system32\iRnEF.dll

c:\windows\system32\iVxsjYnC.dll

c:\windows\system32\JEbJVAR.dll

c:\windows\system32\jHyBi.dll

c:\windows\system32\jiQehm.exe

c:\windows\system32\JkOEVG.dll

c:\windows\system32\JMkKHxH.exe

c:\windows\system32\JMruhW.dll

c:\windows\system32\jOQodMCSh.exe

c:\windows\system32\JpSkrGCWJ.exe

c:\windows\system32\jRprMAD.dll

c:\windows\system32\jrVcC.dll

c:\windows\system32\jsgshLMRA.dll

c:\windows\system32\juUmKJM.dll

c:\windows\system32\jVKtg.exe

c:\windows\system32\jXYSx.exe

c:\windows\system32\JyrCNRup.dll

c:\windows\system32\KaePVfbkj.dll

c:\windows\system32\kaOqEJcpx.dll

c:\windows\system32\kcqpK.dll

c:\windows\system32\KfmCLs.exe

c:\windows\system32\kGeomSP.exe

c:\windows\system32\KhfFkwCo.dll

c:\windows\system32\KKoBgE.exe

c:\windows\system32\KkqSwc.dll

c:\windows\system32\kLcvdu.exe

c:\windows\system32\KQPYOQdj.exe

c:\windows\system32\KRdyw.exe

c:\windows\system32\kUSUT.exe

c:\windows\system32\kwhuF.exe

c:\windows\system32\LAatsu.exe

c:\windows\system32\LarKP.dll

c:\windows\system32\LAuKbwd.exe

c:\windows\system32\laVuCr.dll

c:\windows\system32\lbQtAkw.dll

c:\windows\system32\lfpLnhxJH.dll

c:\windows\system32\LGVyPerQ.exe

c:\windows\system32\LhycbFyW.exe

c:\windows\system32\LmgmkdcU.exe

c:\windows\system32\LqSYtWgsI.dll

c:\windows\system32\LSHqwcNYF.exe

c:\windows\system32\LTFVChOD.dll

c:\windows\system32\MacjTyP.exe

c:\windows\system32\MBgLvQI.exe

c:\windows\system32\MCskp.dll

c:\windows\system32\mdiYgygDC.dll

c:\windows\system32\mDWMLOB.exe

c:\windows\system32\meWQY.exe

c:\windows\system32\MhibP.exe

c:\windows\system32\mOCPB.dll

c:\windows\system32\mPnMfxxY.dll

c:\windows\system32\mpscfKrt.exe

c:\windows\system32\MptOrrV.dll

c:\windows\system32\MsKWUeYeN.dll

c:\windows\system32\mtBlfhqxX.exe

c:\windows\system32\mtoXq.dll

c:\windows\system32\MuKqaHIXL.exe

c:\windows\system32\nAhON.dll

c:\windows\system32\NBIsvPS.dll

c:\windows\system32\NBwxHYr.dll

c:\windows\system32\NHAQuKn.exe

c:\windows\system32\nHlpIfIxd.dll

c:\windows\system32\nhpaFIqo.dll

c:\windows\system32\NIEWFJ.exe

c:\windows\system32\NiGpRmW.dll

c:\windows\system32\NJGYlqvnh.exe

c:\windows\system32\NKVRu.dll

c:\windows\system32\nMBjMjPgp.exe

c:\windows\system32\NsldvUYR.exe

c:\windows\system32\NtgyKp.dll

c:\windows\system32\NYUABJWKt.dll

c:\windows\system32\ODpEOKtWN.exe

c:\windows\system32\OjjIxRx.exe

c:\windows\system32\okEpvuwO.dll

c:\windows\system32\oLphuXQ.dll

c:\windows\system32\OmBQV.dll

c:\windows\system32\oQQvxLW.exe

c:\windows\system32\OuRgcSIH.dll

c:\windows\system32\ovfGkjx.exe

c:\windows\system32\pGcHYoCJI.exe

c:\windows\system32\pOkQRON.dll

c:\windows\system32\PyGLsqQE.dll

c:\windows\system32\qcecPmyg.dll

c:\windows\system32\qDJegWbLJ.exe

c:\windows\system32\QhLBYlaM.dll

c:\windows\system32\qMTsxdy.dll

c:\windows\system32\qPaaOtQ.exe

c:\windows\system32\qpRiIv.dll

c:\windows\system32\qSyuV.dll

c:\windows\system32\QTadimVD.exe

c:\windows\system32\qvFuiHa.dll

c:\windows\system32\raXoBohw.dll

c:\windows\system32\RbWOmioC.dll

c:\windows\system32\RiTWD.exe

c:\windows\system32\rtGEq.exe

c:\windows\system32\Rushbk.exe

c:\windows\system32\ryVvfMaAy.dll

c:\windows\system32\Saoxvvak.exe

c:\windows\system32\sAycYgLNO.exe

c:\windows\system32\siemc.dll

c:\windows\system32\SlUPrNi.dll

c:\windows\system32\SnDHTJ.exe

c:\windows\system32\spshtfR.dll

c:\windows\system32\sRPPIH.dll

c:\windows\system32\sYQuAmW.exe

c:\windows\system32\taAxYg.dll

c:\windows\system32\TBtvSeQbm.exe

c:\windows\system32\tCIXc.dll

c:\windows\system32\tGGbinoDv.dll

c:\windows\system32\THAfeatHV.dll

c:\windows\system32\tNohhhFQ.dll

c:\windows\system32\TWIdx.dll

c:\windows\system32\uaJRYJi.dll

c:\windows\system32\uayNo.dll

c:\windows\system32\ubBePI.exe

c:\windows\system32\UfxXsnIv.exe

c:\windows\system32\UgksJEdTF.dll

c:\windows\system32\UjdwLM.exe

c:\windows\system32\ukPhtDx.exe

c:\windows\system32\UmbGyRYh.exe

c:\windows\system32\UqMKlxEHO.exe

c:\windows\system32\uSUwfyDPP.dll

c:\windows\system32\UUFwnUwWe.exe

c:\windows\system32\uVVIuF.dll

c:\windows\system32\UWuxHgqQ.dll

c:\windows\system32\vDftVcEJ.exe

c:\windows\system32\vfxBCtdc.exe

c:\windows\system32\vkYoxPC.exe

c:\windows\system32\VOcNCWnXe.exe

c:\windows\system32\vPVWJaI.dll

c:\windows\system32\VQywoYL.exe

c:\windows\system32\VTwvLgH.dll

c:\windows\system32\vUioxLkMA.dll

c:\windows\system32\VuWWdN.dll

c:\windows\system32\vwgpjt.dll

c:\windows\system32\vwIOe.dll

c:\windows\system32\VWKtqx.exe

c:\windows\system32\VynPqvIGQ.exe

c:\windows\system32\wCmhmD.exe

c:\windows\system32\WdTggAXeh.dll

c:\windows\system32\wGkrXURYS.exe

c:\windows\system32\whQTOje.exe

c:\windows\system32\WijAA.dll

c:\windows\system32\wimNbi.dll

c:\windows\system32\WkgMe.exe

c:\windows\system32\wUOkh.exe

c:\windows\system32\WyirJtPu.exe

c:\windows\system32\xcOWpW.exe

c:\windows\system32\xExbjWFnD.exe

c:\windows\system32\XhoGfjERb.exe

c:\windows\system32\XMxsOCS.dll

c:\windows\system32\XrGOwupr.dll

c:\windows\system32\XvaFRW.exe

c:\windows\system32\YArLGGvyO.dll

c:\windows\system32\YBjMsI.exe

c:\windows\system32\YdxouHW.exe

c:\windows\system32\yfaTjJIk.dll

c:\windows\system32\YhsrKNqDe.exe

c:\windows\system32\YhXBg.dll

c:\windows\system32\YjkhppItp.dll

c:\windows\system32\YjOUpBQbt.dll

c:\windows\system32\YKJSSKk.exe

c:\windows\system32\yLkJxR.dll

c:\windows\system32\yLONFp.dll

c:\windows\system32\yPHOi.dll

c:\windows\taHluhYBF.dll

c:\windows\TcSkbjgA.exe

c:\windows\TKHKKJAd.dll

c:\windows\TnEHlt.exe

c:\windows\tUHja.exe

c:\windows\uBmriO.dll

c:\windows\ugXRTnbu.exe

c:\windows\UibAtsLCj.exe

c:\windows\uIvKwBS.dll

c:\windows\uJlvRChIn.exe

c:\windows\uOWrkeWHY.exe

c:\windows\uQmmXVRwt.exe

c:\windows\UqRBK.dll

c:\windows\uVmgWV.dll

c:\windows\uvvSelOw.dll

c:\windows\UxQpUT.dll

c:\windows\vCbrAyhgH.dll

c:\windows\VFvXIFDN.exe

c:\windows\vNLduCt.dll

c:\windows\VqTtdes.exe

c:\windows\VVqSqYDJ.exe

c:\windows\VyqVvRAUK.exe

c:\windows\wAvqT.exe

c:\windows\Wckwr.exe

c:\windows\WDJmjUGhD.exe

c:\windows\WikjfVl.exe

c:\windows\wodTWmn.exe

c:\windows\wwFTRu.dll

c:\windows\wYoIo.exe

c:\windows\XAbkgCp.exe

c:\windows\xAoGm.dll

c:\windows\XdbwpbjIA.exe

c:\windows\xHOswpjsR.dll

c:\windows\xJlUI.exe

c:\windows\xkcdSb.exe

c:\windows\xPsXx.exe

c:\windows\XRCtBa.dll

c:\windows\xtQmfHyG.exe

c:\windows\xuoDdBA.dll

c:\windows\YayCPd.dll

c:\windows\ydvPK.exe

c:\windows\YlPDtrFM.exe

c:\windows\YyjXGYV.exe

c:\windows\yYQtVuK.dll

.

-- Previous Run --

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE was found and disinfected

Restored copy from - c:\program files\Common Files\microsoft shared\VS7DEBUG\

.

\Program Files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE was found and disinfected

Restored copy from - c:\program files\Common Files\microsoft shared\VS7DEBUG\

.

c:\windows\system32\nvvsvc.exe . . . is infected!!

c:\windows\system32\nvvsvc.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE was found and disinfected

Restored copy from - c:\program files\Common Files\microsoft shared\VS7DEBUG\

.

c:\windows\system32\nvvsvc.exe . . . is infected!!

c:\windows\system32\nvvsvc.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE was found and disinfected

Restored copy from - c:\program files\Common Files\microsoft shared\VS7DEBUG\

.

c:\windows\system32\nvvsvc.exe . . . is infected!!

c:\windows\system32\nvvsvc.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\

.

c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe . . . is infected!!

c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Apple\Mobile Device Support\

.

Infected copy of c:\program files\Bonjour\mDNSResponder.exe was found and disinfected

Restored copy from - c:\program files\Bonjour\

.

Infected copy of c:\program files\Dokan\DokanLibrary\mounter.exe was found and disinfected

Restored copy from - c:\program files\Dokan\DokanLibrary\

.

Infected copy of c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\

.

Infected copy of c:\program files\Google\Update\GoogleUpdate.exe was found and disinfected

Restored copy from - c:\program files\Google\Update\

.

Infected copy of c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe was found and disinfected

Restored copy from - c:\program files\Google\Common\Google Updater\

.

Infected copy of c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe was found and disinfected

Restored copy from - c:\program files\Intel\Intel Matrix Storage Manager\

.

Infected copy of c:\program files\iPod\bin\iPodService.exe was found and disinfected

Restored copy from - c:\program files\iPod\bin\

.

c:\windows\system32\lxblcoms.exe . . . is infected!!

c:\windows\system32\lxblcoms.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Motive\McciCMService.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Motive\

.

Infected copy of c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE was found and disinfected

Restored copy from - c:\program files\Common Files\microsoft shared\VS7DEBUG\

.

c:\windows\system32\nvvsvc.exe . . . is infected!!

c:\windows\system32\nvvsvc.exe . . . was deleted!! You should re-install the program it pertains to

.

Infected copy of c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe was found and disinfected

Restored copy from - c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\

.

c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe . . . is infected!!

c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe . . . was deleted!! You should re-install the program it pertains to

.

c:\users\Lefty\AppData\Local\TVersity\Media Server\MediaServer.exe . . . is infected!!

c:\users\Lefty\AppData\Local\TVersity\Media Server\MediaServer.exe . . . was deleted!! You should re-install the program it pertains to

.

--------

.

c:\windows\system32\nvvsvc.exe . . . is infected!!

c:\windows\system32\nvvsvc.exe . . . was deleted!! You should re-install the program it pertains to

.

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

-------\Service_36e868d6

.

.

((((((((((((((((((((((((( Files Created from 2011-10-04 to 2011-11-04 )))))))))))))))))))))))))))))))

.

.

2011-11-04 20:27 . 2011-11-04 20:29 -------- d-----w- c:\users\Lefty\AppData\Local\temp

2011-11-04 20:27 . 2011-11-04 20:27 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp

2011-11-04 20:27 . 2011-11-04 20:27 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-10-30 14:04 . 2011-10-30 14:04 -------- d-----w- C:\found.008

2011-10-30 12:48 . 2011-10-30 12:49 -------- d-----w- C:\sega

2011-10-24 12:39 . 2011-10-30 12:48 -------- d-----w- C:\ComboFix

2011-10-24 12:22 . 2011-10-24 12:22 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2011-10-24 12:10 . 2011-10-24 13:09 48016 --sha-w- c:\windows\system32\c_64710.nl_

2011-10-18 13:54 . 2011-10-18 13:54 -------- d-sh--w- c:\windows\system32\%APPDATA%

2011-10-16 12:09 . 2011-10-16 12:11 -------- d-----w- c:\program files\iTunes

2011-10-16 12:02 . 2011-10-30 13:28 -------- d-----w- c:\program files\Bonjour

2011-10-13 15:52 . 2011-07-29 16:01 293376 ----a-w- c:\windows\system32\psisdecd.dll

2011-10-13 15:52 . 2011-07-29 16:01 217088 ----a-w- c:\windows\system32\psisrndr.ax

2011-10-13 15:52 . 2011-07-29 16:00 57856 ----a-w- c:\windows\system32\MSDvbNP.ax

2011-10-13 15:52 . 2011-07-29 16:00 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax

2011-10-13 15:52 . 2011-09-06 13:30 2043392 ----a-w- c:\windows\system32\win32k.sys

2011-10-13 15:52 . 2011-09-14 10:51 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat

2011-10-13 15:52 . 2011-08-25 16:15 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll

2011-10-13 15:52 . 2011-08-25 16:14 563712 ----a-w- c:\windows\system32\oleaut32.dll

2011-10-13 15:52 . 2011-08-25 16:14 238080 ----a-w- c:\windows\system32\oleacc.dll

2011-10-13 15:52 . 2011-08-25 13:31 4096 ----a-w- c:\windows\system32\oleaccrc.dll

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-10-24 17:02 . 2010-04-22 22:01 35328 ----a-w- c:\windows\system32\drivers\npfs.sys

2011-10-24 12:10 . 2010-04-22 22:00 185856 ----a-w- c:\windows\system32\drivers\netbt.sys

2011-10-18 18:35 . 2011-06-16 03:23 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-09-27 12:11 . 2011-09-27 12:11 749832 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2011-08-31 21:00 . 2010-10-26 21:35 22216 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-08-31 03:05 . 2011-08-31 03:05 83816 ----a-w- c:\windows\system32\dns-sd.exe

2011-08-31 03:05 . 2011-08-31 03:05 73064 ----a-w- c:\windows\system32\dnssd.dll

2011-08-23 21:30 . 2009-08-18 15:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-10-21 14:12 . 2011-09-14 22:37 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{7b13ec3e-999a-4b70-b9cb-2617b8323822}"= "c:\program files\Zynga\prxtbZyn2.dll" [2011-03-28 176936]

.

[HKEY_CLASSES_ROOT\clsid\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

2011-03-28 16:22 176936 ----a-w- c:\program files\Zynga\prxtbZyn2.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{6CBDD622-ED9D-4D27-ADE4-5D26B7EAE3C1}"= "c:\programdata\UploadingCom\Uploading.com Toolbar\tbcore3.dll" [2009-03-12 2614272]

"{7b13ec3e-999a-4b70-b9cb-2617b8323822}"= "c:\program files\Zynga\prxtbZyn2.dll" [2011-03-28 176936]

.

[HKEY_CLASSES_ROOT\clsid\{6cbdd622-ed9d-4d27-ade4-5d26b7eae3c1}]

[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808.3]

[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]

[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808]

.

[HKEY_CLASSES_ROOT\clsid\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{6CBDD622-ED9D-4D27-ADE4-5D26B7EAE3C1}"= "c:\programdata\UploadingCom\Uploading.com Toolbar\tbcore3.dll" [2009-03-12 2614272]

"{7B13EC3E-999A-4B70-B9CB-2617B8323822}"= "c:\program files\Zynga\prxtbZyn2.dll" [2011-03-28 176936]

.

[HKEY_CLASSES_ROOT\clsid\{6cbdd622-ed9d-4d27-ade4-5d26b7eae3c1}]

[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808.3]

[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]

[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808]

.

[HKEY_CLASSES_ROOT\clsid\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2011-05-13 4283256]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

"UniblueRegistryBooster"="c:\program files\Uniblue\RegistryBooster\launcher.exe" [bU]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-12 68856]

"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]

"Remote Mouse"="c:\program files\Remote Mouse\RemoteMouse.exe" [2011-05-10 872448]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-09-22 47904]

"SigmatelSysTrayApp"="sttray.exe" [2006-11-22 303104]

"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdcBase.exe" [2007-05-31 648072]

"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-05 421888]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-10-09 421736]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"MySpaceIM"="c:\program files\MySpace\IM\MySpaceIM.exe" [2009-09-29 9347072]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"mixer"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

2011-10-09 22:06 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"AntiVirusOverride"=dword:00000001

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 gupdate1c9d5b182c472d0;Google Update Service (gupdate1c9d5b182c472d0);c:\program files\Google\Update\GoogleUpdate.exe [x]

R2 lxbl_device;lxbl_device;c:\windows\system32\lxblcoms.exe [x]

R3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2008-12-17 29744]

R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]

R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys [2010-07-05 84992]

S2 DokanMounter;DokanMounter;c:\program files\Dokan\DokanLibrary\mounter.exe [2011-10-30 11776]

S2 DQLWinService;DQLWinService;c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2011-10-30 208896]

S2 nmsgopro;GoProto Protocol Driver for NMS;c:\windows\system32\DRIVERS\nmsgopro.sys [2006-09-27 28672]

S2 nmsunidr;UniDriver for NMS;c:\windows\system32\DRIVERS\nmsunidr.sys [2006-10-19 7424]

S3 IntelDH;IntelDH Driver;c:\windows\system32\Drivers\IntelDH.sys [2007-01-31 5504]

S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-04-25 47360]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

WindowsMobile REG_MULTI_SZ wcescomm rapimgr

LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

.

Contents of the 'Scheduled Tasks' folder

.

2011-11-04 c:\windows\Tasks\Google Software Updater.job

- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-07-12 13:29]

.

2011-11-04 c:\windows\Tasks\RegClean Pro_DEFAULT.job

- c:\program files\RegClean Pro\RegCleanPro.exe [2011-05-04 17:17]

.

2011-11-02 c:\windows\Tasks\RegClean Pro_UPDATES.job

- c:\program files\RegClean Pro\RegCleanPro.exe [2011-05-04 17:17]

.

2011-11-04 c:\windows\Tasks\SDMsgUpdate (TE).job

- c:\progra~1\SMARTD~1\Messages\SDNotify.exe [2010-06-24 17:29]

.

.

------- Supplementary Scan -------

.

uStart Page = hxxp://www.cnn.com/

uInternet Settings,ProxyServer = http=127.0.0.1:33440

uInternet Settings,ProxyOverride = <local>;*.local

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

Trusted Zone: google.com\www

TCP: DhcpNameServer = 192.168.254.254

DPF: {1E4FF862-57ED-4E5C-9C57-3ECB8DC17827} - hxxp://70.158.141.209/ePlusDVR.cab

DPF: {46D8BEE7-0B27-4466-ABA2-A5F1E157971C} - hxxp://66.119.96.211:100/RemoteWeb.cab

DPF: {542CB1D4-810D-4864-8F91-D530B50E89AE} - hxxp://66.119.96.211:100/Components.cab

DPF: {5FFDFC21-AE40-4C7C-955C-415A1ACE01C8} - hxxp://66.119.96.211:100/VideoViewer.cab

DPF: {7B43048F-DA7A-458F-AF35-D825BDBB6816} - hxxp://66.119.109.102/codebase/NetVideoOCX.cab

FF - ProfilePath - c:\users\Lefty\AppData\Roaming\Mozilla\Firefox\Profiles\u02wavlr.default\

FF - prefs.js: browser.search.selectedEngine - Bing

.

- - - - ORPHANS REMOVED - - - -

.

URLSearchHooks-{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)

.

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2011-11-04 16:29

Windows 6.0.6002 Service Pack 2 NTFS

.

scanning hidden processes ...

.

scanning hidden autostart entries ...

.

scanning hidden files ...

.

scan completed successfully

hidden files: 0

.

**************************************************************************

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]

@Denied: (2) (LocalSystem)

"{EF99BD32-C1FB-11D2-892F-0090271D4F88}"=hex:51,66,7a,6c,4c,1d,38,12,5c,be,8a,

eb,c9,8f,bc,54,f6,39,43,d0,22,43,0b,9c

"{6CBDD622-ED9D-4D27-ADE4-5D26B7EAE3C1}"=hex:51,66,7a,6c,4c,1d,38,12,4c,d5,ae,

68,af,a3,49,08,d2,f2,1e,66,b2,b4,a7,d5

"{7B13EC3E-999A-4B70-B9CB-2617B8323822}"=hex:51,66,7a,6c,4c,1d,38,12,50,ef,00,

7f,a8,d7,1e,0e,c6,dd,65,57,bd,6c,7c,36

"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"=hex:51,66,7a,6c,4c,1d,38,12,df,c1,0b,

27,57,07,ba,54,e4,0e,43,d0,22,fb,89,5b

"{02478D38-C3F9-4EFB-9B51-7695ECA05670}"=hex:51,66,7a,6c,4c,1d,38,12,56,8e,54,

06,cb,8d,95,0b,e4,47,35,d5,e9,fe,12,64

"{326E768D-4182-46FD-9C16-1449A49795F4}"=hex:51,66,7a,6c,4c,1d,38,12,e3,75,7d,

36,b0,0f,93,03,e3,00,57,09,a1,c9,d1,e0

"{5A263CF7-56A6-4D68-A8CF-345BE45BC911}"=hex:51,66,7a,6c,4c,1d,38,12,99,3f,35,

5e,94,18,06,08,d7,d9,77,1b,e1,05,8d,05

"{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}"=hex:51,66,7a,6c,4c,1d,38,12,35,48,b8,

5f,8e,26,6c,0e,eb,c0,6c,80,db,14,3c,83

"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,

72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57

"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,

94,30,02,d1,0f,f1,da,12,24,73,56,27,d2

"{9FDDE16B-836F-4806-AB1F-1455CBEFF289}"=hex:51,66,7a,6c,4c,1d,38,12,05,e2,ce,

9b,5d,cd,68,0d,d4,09,57,15,ce,b1,b6,9d

"{AA58ED58-01DD-4D91-8333-CF10577473F7}"=hex:51,66,7a,6c,4c,1d,38,12,36,ee,4b,

ae,ef,4f,ff,08,fc,25,8c,50,52,2a,37,e3

"{CA6319C0-31B7-401E-A518-A07C3DB8F777}"=hex:51,66,7a,6c,4c,1d,38,12,ae,1a,70,

ce,85,7f,70,05,da,0e,e3,3c,38,e6,b3,63

"{FCBCCB87-9224-4B8D-B117-F56D924BEB18}"=hex:51,66,7a,6c,4c,1d,38,12,e9,c8,af,

f8,16,dc,e3,0e,ce,01,b6,2d,97,15,af,0c

"{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}"=hex:51,66,7a,6c,4c,1d,38,12,cf,4e,be,

f9,90,2f,b6,0a,e3,01,c5,b7,a9,7a,14,95

"{32004B8A-44A9-43E7-84E9-808838809519}"=hex:51,66,7a,6c,4c,1d,38,12,e4,48,13,

36,9b,0a,89,06,fb,ff,c3,c8,3d,de,d1,0d

"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,

fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17

"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,

b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b

.

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]

@Denied: (2) (LocalSystem)

"Timestamp"=hex:86,0d,97,fd,14,8e,cc,01

.

--------------------- DLLs Loaded Under Running Processes ---------------------

.

- - - - - - - > 'Explorer.exe'(1972)

c:\program files\Roxio\Drag-to-Disc\Shellex.dll

c:\windows\system32\DLAAPI_W.DLL

c:\program files\Roxio\Drag-to-Disc\ShellRes.dll

c:\program files\WinRAR\rarext.dll

.

------------------------ Other Running Processes ------------------------

.

c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\program files\Bonjour\mDNSResponder.exe

c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

c:\windows\sttray.exe

c:\program files\Common Files\Motive\McciCMService.exe

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

c:\windows\ehome\ehmsas.exe

c:\program files\Windows Live\Contacts\wlcomm.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\program files\iPod\bin\iPodService.exe

c:\windows\system32\wbem\unsecapp.exe

c:\windows\system32\RacAgent.exe

c:\windows\servicing\TrustedInstaller.exe

.

**************************************************************************

.

Completion time: 2011-11-04 16:48:48 - machine was rebooted

ComboFix-quarantined-files.txt 2011-11-04 20:47

.

Pre-Run: 91,785,457,664 bytes free

Post-Run: 91,739,267,072 bytes free

.

- - End Of File - - 8AFC8188E958D4790755997508EB74FB

Link to post
Share on other sites

  • Staff

Hi,

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.

Link to post
Share on other sites

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

# version=7

# iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)

# OnlineScanner.ocx=1.0.0.6583

# api_version=3.0.2

# EOSSerial=0ddd0cbcd2626742983ca84ec73678af

# end=finished

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2011-11-10 01:20:31

# local_time=2011-11-10 08:20:31 (-0500, Eastern Standard Time)

# country="United States"

# lang=9

# osver=6.0.6002 NT Service Pack 2

# compatibility_mode=5892 16776574 100 100 48862248 157532076 0 0

# compatibility_mode=8192 67108863 100 0 0 0 0 0

# scanned=288554

# found=678

# cleaned=675

# scan_time=6678

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe Win32/Patched.HN trojan (error while cleaning) 00000000000000000000000000000000 I

C:\ProgramData\bugubado\odabugub.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\garokeha\ahekorag.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\henupowe\ewopuneh.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\husosaza\azasosuh.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\jalomomo\omomolaj.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\kavinepe\epenivak.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\kifezamo\omazefik.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\kimapuge\egupamik.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\latavaku\ukavatal.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\lavodoze\ezodoval.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\lifuremi\imerufil.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\lulilupa\apulilul.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\moyebari\irabeyom.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\rejanote\etonajer.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\revubiti\itibuver.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\samabiro\oribamas.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\sijatamu\umatajis.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\suzisuha\ahusizus.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\woleyuda\aduyelow.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\yanohide\edihonay.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\yezumoyu\uyomuzey.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\yubosuku\ukusobuy.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\yudovehe\ehevoduy.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\zelosubo\obusolez.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\ProgramData\zemavuda\aduvamez.ini Win32/Adware.Virtumonde.NEO application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Bonjour\mDNSResponder.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\Motive\McciCMService.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Dokan\DokanLibrary\mounter.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Program Files\iPod\bin\iPodService.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Users\Lefty\AppData\Local\36e868d6\X.vir Win32/Sirefef.DD trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Users\Lefty\AppData\Local\36e868d6\U\800000cb.@.vir Win32/Agent.TEO trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Users\Lefty\AppData\Local\TVersity\Media Server\MediaServer.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\AFvpmyKOr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\AFwurfMy.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\aHSEbhqbF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\AkFlMLi.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\aOBPon.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\avaQCJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\aYDDI.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bBWvpvqv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bfQPdhQGv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bILejLa.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bjrXvSan.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bnJujiUpV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\bprlPWN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\chdYSB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\chtEJj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\cKbrPaM.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\CScMJChsH.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\cvmyc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\CwOxRFl.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\DbwNACP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\dccFXy.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\DDrgEt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\DePRtCd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\DfOobq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\DidKtVgwn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\djQBHKkr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\dQAjDx.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\dsKSNiFU.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\dtlRrN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\dYIqPg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\eALPMwAm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\efIqA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\EgSAm.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\EjpGXv.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\EKPCR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\enBygyJ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\eNKkPah.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\eQPvPjQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\EsvQWi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\eTjGVDN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\eVQUhqhnG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\EWtiMQqVn.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\FBSJajxd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\FGaYMiS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\FiBPGUN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\fRxlDNQNN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\FVhAUpS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\fVUINiAJH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\GAlEdBj.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gDAwNs.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gHvwpxuP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gHWKXSx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gpgtrWaF.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gPHLHcm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gQadGTQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\GQcyAkcA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gRQRisXH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gVlNbn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gXegKKDKj.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\GyqVAiPP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\gyuMNYj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\haFUXQauE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\hIwvJNgUx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\HNaGqqmNH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\hPjmDl.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\HrsaguiGJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\hRXWPHew.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\hUHCpB.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\hvDIT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ikWHII.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\iLpBa.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\IrqgmMq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ISniO.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\IUPNww.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JAoIjj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JaojjhIOu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JBwkoin.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JFWgGqF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\jhBNIL.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\jhDjpqn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\jkMBohdfI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\jLHthDXj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\jmHCJCMS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JWhpucwbx.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\JwIAbFjY.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kDBMiUX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kHAMjxQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kNEYdGw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kqeHQxs.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\KrFodac.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\KRsFTCyd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kWfVIjmSB.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\kxDlHfjKk.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\KyhXqRF.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\lcEkDJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LhfbyG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LJLJum.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LjlKRBye.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LMLbsFac.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LQMQK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\LTosfafe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\lWPAJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\lxBWcuVNG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\mdBnnph.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\MEmGcC.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\MfTOKM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\mJNto.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\mKVFX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\MOPFDPMG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\MsAAhq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\mSraDcc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\MxygoR.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\nCQcPT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ndpuH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NgAtAjaMG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NhrVjRH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NjmqTNLo.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\nOUlw.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NPkhG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NPnFJBrTh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\nTqaU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ntVvG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\nwUUM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\NxUIPSigq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OckyTKuN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OCpjK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OdUYUCN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OehOg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\oFfPnJ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ojBySDyRg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OmIgPtUyQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\oqsvWSbT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\OviaOK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PjCTFrR.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PJnkubHXK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\pKEPv.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\pnynBljX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PsHxxxons.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\pVxVGDn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PXjwevf.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PyfGhVqic.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\PYuWAPr.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\QkTYRPxSV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\QQLsKvNde.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\QXNxXbPh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RaGUeiV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\rBDDSEcX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RBsCi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RbTXLE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RFlpACmoc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\rhiuLQv.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RLpCkD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\rngAJiW.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RrfbP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\rRStw.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RvPONBSq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\RXcvAlr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\sjwAP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\SkhAoNlyR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\SmTFHk.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\taHluhYBF.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\TcSkbjgA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\TKHKKJAd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\TnEHlt.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\tUHja.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uBmriO.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\ugXRTnbu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\UibAtsLCj.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uIvKwBS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uJlvRChIn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uOWrkeWHY.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uQmmXVRwt.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\UqRBK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uVmgWV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\uvvSelOw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\UxQpUT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\vCbrAyhgH.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\VFvXIFDN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\vNLduCt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\VqTtdes.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\VVqSqYDJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\VyqVvRAUK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\wAvqT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\Wckwr.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\WDJmjUGhD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\WikjfVl.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\wwFTRu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\wYoIo.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\XdbwpbjIA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\xHOswpjsR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\xJlUI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\XRCtBa.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\xtQmfHyG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\xuoDdBA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\YayCPd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\YlPDtrFM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\YyjXGYV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\yYQtVuK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\aaDPOPVKT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\aDCqPerIC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ADwxq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\aFgPpvIST.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ASePNJ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\BAJQd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\BeUvNCN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\BfJty.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\bsIMuNV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\bUWANej.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\BvtNdeQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\BxaTvIKF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\bYaaOk.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\CDIfkar.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\cDRhaPe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\cewJN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ClbFpGun.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ctlLR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\CXMaHCXb.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DBoiN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DbWylH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\dDryMR.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DHepGGaV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DpnAh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DRBHBbin.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\dTwhfy.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DvSlykN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\DWUypI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\etIJLSB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\euYWYe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\fAoRN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FBulCu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FEPYdc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FLcHq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\fMdMSjLD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\fNjhLoOS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\fNykoo.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FrPFflu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FsfbrkRl.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\FyRcCLDci.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GAtWdEKn.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\gBSMo.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\gDSoxI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\gDwghMMvo.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GEARk.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GegeNOgE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\gGiBT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GGqRpnA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GpUtmKd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GqeAoO.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GQpnVbaxS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\GstBgarUG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\gukWJE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\hCPqAY.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\hechVwVgm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\HgWSRl.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\HIAIB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\HOFQfs.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\HStsN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\HYeQpdT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\hYqGuhJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ifHyLpfhW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\iJgCXlX.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\IpymI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\IqGXEk.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\iRDRHFgl.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\iRnEF.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\iVxsjYnC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JEbJVAR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jHyBi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jiQehm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JkOEVG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JMkKHxH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JMruhW.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jOQodMCSh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JpSkrGCWJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jRprMAD.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jrVcC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jsgshLMRA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\juUmKJM.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jVKtg.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\jXYSx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\JyrCNRup.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\KaePVfbkj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kaOqEJcpx.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kcqpK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kGeomSP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\KKoBgE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\KkqSwc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kLcvdu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\KQPYOQdj.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kUSUT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\kwhuF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LAatsu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LarKP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LAuKbwd.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\laVuCr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\lbQtAkw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\lfpLnhxJH.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LGVyPerQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined)

Link to post
Share on other sites

00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LhycbFyW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LmgmkdcU.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LqSYtWgsI.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LSHqwcNYF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\LTFVChOD.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\lxblcoms.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MacjTyP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MBgLvQI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MCskp.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\mdiYgygDC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\mDWMLOB.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\meWQY.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MhibP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\mpscfKrt.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MptOrrV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MsKWUeYeN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\mtBlfhqxX.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\mtoXq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\MuKqaHIXL.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NBIsvPS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NHAQuKn.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\nHlpIfIxd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\nhpaFIqo.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NiGpRmW.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NJGYlqvnh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NKVRu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\nMBjMjPgp.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NsldvUYR.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NtgyKp.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\nvvsvc.exe.vir Win32/Patched.HN trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\NYUABJWKt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ODpEOKtWN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\OjjIxRx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\okEpvuwO.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\OmBQV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\oQQvxLW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ovfGkjx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\pGcHYoCJI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\pOkQRON.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\PyGLsqQE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qcecPmyg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qDJegWbLJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\QhLBYlaM.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qMTsxdy.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qPaaOtQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qpRiIv.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\qSyuV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\QTadimVD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\RbWOmioC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\RiTWD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\Rushbk.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\Saoxvvak.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\siemc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\SlUPrNi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\SnDHTJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\spshtfR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\sRPPIH.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\sYQuAmW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\taAxYg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\TBtvSeQbm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\tCIXc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\tGGbinoDv.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\THAfeatHV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\tNohhhFQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\TWIdx.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\uaJRYJi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\uayNo.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ubBePI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UfxXsnIv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UjdwLM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\ukPhtDx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UmbGyRYh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UqMKlxEHO.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\uSUwfyDPP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UUFwnUwWe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\uVVIuF.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\UWuxHgqQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vDftVcEJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vfxBCtdc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vkYoxPC.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VOcNCWnXe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vPVWJaI.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VQywoYL.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VTwvLgH.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vUioxLkMA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VuWWdN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vwgpjt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\vwIOe.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VWKtqx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\VynPqvIGQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\wCmhmD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\WdTggAXeh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\wGkrXURYS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\whQTOje.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\wimNbi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\WkgMe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\wUOkh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\WyirJtPu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\xcOWpW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\xExbjWFnD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\XMxsOCS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\XrGOwupr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\XvaFRW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\YArLGGvyO.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\YjkhppItp.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\YjOUpBQbt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\yLkJxR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\yLONFp.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\yPHOi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\aAocdlIR.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AatYuvh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\abvhoORxI.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\adJud.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\aDnBwJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AhElaq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AiOsI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\aJiuV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AleCguRT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AMPrJgw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AnmYS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\AUxuueDUK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\avMEQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bcXdkCRxp.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bdpGAw.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\BGnvhXXKn.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\BHtqLX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\BJgHE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bLGEmuQv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\BlJraO.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bnblUTiPU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bsxkWIVd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\BukATKU.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\bvsbJv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\cEVVovxFP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ciEYjJsN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\CjXkwv.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\cWVUww.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DaKmTS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\dBGtDu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DdpQq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\dfdpSEh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DGlptuRep.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\dgwonR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\dhNwbK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\djwkR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DKFNDdDKr.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DnilvA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\DwkqWV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\dXSoXYx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\EagNmGE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ECJFDSD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\EeEqCkY.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\eFqoo.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\eMGqwBBEu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\EnaJenDWW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\EpTou.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ePXhF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\eUDvsQA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\fdgXILJb.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\fGaTOVK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\FkACLAR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\fKmRSd.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\fSvStHw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\fTihgJSlB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\FTMvtBfN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\FYewKj.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GaPvhki.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GARBLkHjC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GdtJX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\gFjmBliG.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\gMunpgcnu.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GsTVQRi.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\gWPLt.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GxNrP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\GyswpjPcX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HCoMiSYM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\hjefvx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\hjYjcaU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\hNheV.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HnuAmCPm.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HpiaHfI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HpYopgNw.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\hRgFI.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HUoubJVij.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\HvLNAWgjq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\IaAQSg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\IcAbjK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\IkFCbAK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\iPciA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\iusCESYd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\IvbRnYsbr.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\iXhTcoEM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\jcrwD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\JGPQrAOUx.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\jGYpT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\jhUvJHAgT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\JIYyrLe.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\JsIdQrecE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\JuoSeG.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\jYIQc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\jyNhSE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\kIWWKP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\KLQwiuK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\KQkwQ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\krCTN.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\KUJxEXfbB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\kwMxms.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\laPgBM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lbAMg.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LBXGXGwTU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lFADSP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LItHe.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lIvIWeHmN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LLHBpc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lnIKRicO.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lsEgBUoJ.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lTARLF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LthiNRSC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LUShua.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lVIEHVtl.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\LVyOTYsV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\lYQXemEY.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\mBAvnSdhN.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\McNvItAX.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\MhkLB.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\MRcCiwS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\msqSLhYFu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\mUtnUcvM.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\MwFhdAk.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\NbWialvuA.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\Ncuhc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\NgsQrLvk.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\NhCiJaJRT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\nurgHmkW.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\nWaEkwrOC.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\nxgcw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\OesWnX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\OfdOQsOH.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\OgUcjago.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\oPEgMtxU.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\PAtFbRDCU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\pBIDpM.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\PDPBfvDYC.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\pFOtvonL.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\phNkGS.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\PjjVQR.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\pLvEDgllF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\PVoHAV.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\pWpnfE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\pyoGyNbh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\qGgvX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\QkalLqkFq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\qMhNma.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\qvKvXE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\RbwBkSVc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\rhwVuNUNX.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\rKavgiysK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\RNXRA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\Rownh.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\rpOvb.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\RPugJnmU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\RWGiq.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\RWuTcIwAc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\sDwULKwte.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SIOeSw.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SJiYQYEjJ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SJJvB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SKEqwaB.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\sMCDlFmY.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SPBqTEpeS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\sXPQA.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\SyrPhc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TAALbGMko.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TctNXvg.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\tEwQNDk.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TFiLrT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TGBSBc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TJJIRStXc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TMAVXE.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\tqPQP.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\TsMlslACl.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\tvhltuL.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uBnbpSL.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\UDmLw.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uDQstDYP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uGUCK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uqmRjo.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uUEKeK.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uXHpojn.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\uxqxaAHP.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\VDaCtu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\vEFmXvLq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\vekCDr.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\vIAFmAUc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\vjtTUChJc.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\VKJxnj.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\VkmrIQGDD.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\vPBvhhgHU.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\VytIjFo.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\whgPeW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\WkTEu.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\wMEKcafi.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\wRJGyg.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\WtesAfje.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\wVDKQulHa.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XAYOnqUd.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\xBqoumX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XeLNQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XerNNvt.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\xgEaJX.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XgkmRWQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XGnfTfUT.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XHaVUUy.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XqaQoXYK.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\XRRbKfE.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\yAjGq.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YcAhsDh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ycBdXWh.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YCDrC.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\yePXRkW.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YJsUtEydS.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YkEXKJdD.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YlnGydF.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ypDCDiW.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YQGveX.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\yRbyHkjRQ.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\yVkmEc.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\ywbqyT.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\YXNISf.exe.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Qoobox\Quarantine\C\Windows\System32\drivers\yydwIUx.dll.vir Win32/Patched.EH trojan (cleaned - quarantined) 00000000000000000000000000000000 C

C:\Users\Lefty\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\4761a01c-644f442a Win32/Sirefef.DD trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Lefty\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7d3deceb-73412b1c Java/TrojanDownloader.OpenStream.NAC trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Windows\System32\AscConTest.dll Win32/Adware.Ascentive application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Windows\System32\c_64710.nl_ a variant of Win32/Sirefef.CR trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Windows\System32\drivers\netbios.sys a variant of Win32/Rootkit.Kryptik.DM trojan (unable to clean) 00000000000000000000000000000000 I

C:\Windows\winsxs\x86_microsoft-windows-netbios_31bf3856ad364e35_6.0.6001.18000_none_59e1b82a6b1f4ec0\netbios.sys a variant of Win32/Rootkit.Kryptik.DM trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

F:\Old Hard Drive Stuff\Drive 1\Download\kmd2.exe probably a variant of Win32/Agent.BDPRBBQ trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

F:\Old Hard Drive Stuff\Drive 1\Download\kmd3.exe probably a variant of Win32/TrojanDownloader.Agent.HFIHOOI trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

F:\Old Hard Drive Stuff\Drive 1\Download\Open.exe Win32/TrojanDropper.Small.FB trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

${Memory} Win32/Patched.HN trojan 00000000000000000000000000000000 I

Results of screen317's Security Check version 0.99.24

Windows Vista Service Pack 2 x86 (UAC is disabled!)

Internet Explorer 9

``````````````````````````````

Antivirus/Firewall Check:

Windows Firewall Enabled!

ESET Online Scanner v3

McAfee Security Scan Plus

WMI entry may not exist for antivirus; attempting automatic update.

```````````````````````````````

Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware

CCleaner (remove only)

Java SE Runtime Environment 6

Adobe Flash Player ( 10.3.183.7) Flash Player Out of Date!

Mozilla Firefox (x86 en-US..)

````````````````````````````````

Process Check:

objlist.exe by Laurent

``````````End of Log````````````

The only problem that I'm seeing now is when I go to open up Internet Explorer, a pop up window comes up and says "Google Toolbar Broker has stopped working" It gives me one option which is to close the program and when I do it just pops up again.

Link to post
Share on other sites

  • Staff

Hi,

My apologies for the extended delay.

I'm afraid I have bad news.

Your logs reveal a backdoor trojan. A backdoor severely compromises system integrity.

A compromised system may allow illicit network connections, disabling of security software, modifying critical system files and collection and transmiission of personal identifiable information without your consent.

I recommend that you disconnect this PC from the Internet immediately, and only reconnect to download any tools that are required. If you do any banking or other financial transactions on the PC or it if it contains any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the Trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of Trojan, the best course of action would be a reformat and reinstall of the OS. If it were on my PC I would not hesitate for a moment to do so. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

When Should I Format, How Should I Reinstall

Should you decide not to follow that advice, we will of course do our best to clean the computer of any infections that we can see but, as I already stated, we can in no way guarantee it to be trustworthy.

Should you have any questions, please feel free to ask.

Let me know what you decide.

Link to post
Share on other sites

  • 3 weeks later...
  • 2 weeks later...
  • 1 month later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.