Incident Status Location Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\ComboFix(2)\nircmd.cfexe Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\ComboFix(2)\nircmd.com Virus:Trj/Agent.HYR Disinfected C:\Documents and Settings\Kimberly\Application Data\Microsoft\Windows\flhhg.exe Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.statcounter.com/] Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.apmebf.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.atwola.com/] Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.adrevolver.com/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.zedo.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[server.iad.liveperson.net/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[server.iad.liveperson.net/hc/4871802] Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.did-it.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.com.com/] Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.enhance.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[server.iad.liveperson.net/hc/773362] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[server.iad.liveperson.net/hc/91459286] Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Kimberly\Application Data\Mozilla\Firefox\Profiles\o4ygo02z.default\cookies.txt[.burstnet.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@ad.yieldmanager[1].txt Spyware:Cookie/Adserver Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@adserver.easyad[1].txt Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@azjmp[2].txt Spyware:Cookie/nCase Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@banners.searchingbooth[1].txt Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@enhance[1].txt Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@searchportal.information[1].txt Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Kimberly\Cookies\kimberly@www.burstbeacon[1].txt Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Kimberly\Desktop\ComboFix.exe Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.apmebf.com/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.enhance.com/] Spyware:Cookie/Findwhat Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\i85wttkz.default\cookies.txt[.findwhat.com/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.advertising.com/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.apmebf.com/] Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Ron\Application Data\Mozilla\Firefox\Profiles\rb479ct5.default\cookies.txt[.questionmarket.com/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Ron\Cookies\ron@atdmt[1].txt Adware:Adware/TTC Not disinfected C:\Program Files\MSN\horyhyt77798.exe Possible Virus. Not disinfected C:\QooBox\Quarantine\C\Documents and Settings\Kimberly\Application Data\WinTouch\WinTouch.exe.vir Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\Activate.exe.vir Potentially unwanted tool:Application/Winantivirus2006 Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\Engines\plugins\SCANKRNL.DLL.vir Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\Engines\plugins\UNADBX.DLL.vir Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\Engines\plugins\unamscan.dll.vir Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\pgs.exe.vir Potentially unwanted tool:Application/TheSpyGuard Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\reload.exe.vir Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\scnkrnl.dll.vir Potentially unwanted tool:Application/TheSpyGuard Not disinfected C:\QooBox\Quarantine\C\Program Files\AVSystemCare\Up\gup.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\fqrk\fqrka.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\fqrk\fqrkd\fqrkc.dll.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\fqrk\fqrkl.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\fqrk\fqrkm.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\fqrk\fqrkp.exe.vir Adware:Adware/Yazzle Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\Yazzle1281OinAdmin.exe.vir Adware:Adware/DnsInsider Not disinfected C:\QooBox\Quarantine\C\Program Files\Common Files\Yazzle1281OinUninstaller.exe.vir Virus:Generic Malware Disinfected C:\QooBox\Quarantine\C\Program Files\InetGet2\emg.exe.vir Possible Virus. Not disinfected C:\QooBox\Quarantine\C\Program Files\InetGet2\Installeur.exe.vir Adware:Adware/ISearch Not disinfected C:\QooBox\Quarantine\C\Program Files\InetGet2\MTE3MTk6ODoxNg.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\Program Files\InetGet2\stub109_4_0_4_0.exe.vir Virus:Generic Malware Disinfected C:\QooBox\Quarantine\C\Program Files\MSN Gaming Zone\lavul.dll.vir Virus:Generic Malware Disinfected C:\QooBox\Quarantine\C\Program Files\MSN Gaming Zone\lavul200.dll.vir Virus:Generic Malware Disinfected C:\QooBox\Quarantine\C\Program Files\MSN Gaming Zone\lavul766.dll.vir Adware:Adware/Zenosearch Not disinfected C:\QooBox\Quarantine\C\Program Files\Outerinfo\FF\components\FF.dll.vir Virus:Trj/Agent.IBD Disinfected C:\QooBox\Quarantine\C\Program Files\Temporary\InsiDERIns.exe.vir Virus:Generic Malware Disinfected C:\QooBox\Quarantine\C\WINDOWS\b103.exe.vir Virus:Generic Trojan Disinfected C:\QooBox\Quarantine\C\WINDOWS\b104.exe.vir Virus:Trj/Agent.GXF Disinfected C:\QooBox\Quarantine\C\WINDOWS\b111.exe.vir Virus:Trj/Downloader.SLD Disinfected C:\QooBox\Quarantine\C\WINDOWS\b116.exe.vir Virus:Trj/Downloader.PLQ Disinfected C:\QooBox\Quarantine\C\WINDOWS\b138.exe.vir Virus:Trj/Dropper.ABG Disinfected C:\QooBox\Quarantine\C\WINDOWS\b152.exe.vir Adware:Adware/PurityScan Not disinfected C:\QooBox\Quarantine\C\WINDOWS\DOBE~1\rundll.exe.vir Potentially unwanted tool:Application/AVSystemCare Not disinfected C:\QooBox\Quarantine\C\WINDOWS\Downloaded Program Files\UGA6P_0001_N122M0611NetInstaller.exe.vir Adware:Adware/DollarRevenue Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\atmtd.dll.vir Adware:Adware/DollarRevenue Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\atmtd.dll._.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\bnnruvcl.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\bpbeueyk.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\fqopemkh.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\hjchsyvm.dll.vir Virus:Trj/Horst.CQ Disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\ieupdates.exe.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\ndohvvjq.dll.vir Virus:Trj/Horst.CQ Disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\ntload.sys.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\pansqjqm.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\pkpgbdyy.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\qihxvnln.dll.vir Adware:Adware/BraveSentry Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\qvbb.dll.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\rthpupmd.dll.vir Adware:Adware/ActiveXCodec2008 Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\svcd\svchost.exe.vir Adware:Adware/ActiveXCodec2008 Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\TmpX.exe.vir Adware:Adware/Sqwire Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\tsuninst.exe.vir Virus:Trj/Horst.CQ Disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\update32.exe.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\vtuvwtq.dll.vir Virus:Trj/ZapChast.DO Disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\windows.vir Adware:Adware/ActiveXCodec2008 Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\winupdate.exe.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\C\WINDOWS\system32\xakxmusi.dll.vir Adware:Adware/TTC Not disinfected C:\QooBox\Quarantine\C\WINDOWS\tk58.exe.vir Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\catchme2008-02-10_163959.32.zip[ndohvvjq.dll] Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\catchme2008-02-10_163959.32.zip[yayvsrs.dll] Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\catchme2008-02-28_133850.13.zip[ljjkjii.dll] Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\catchme2008-02-28_133850.13.zip[ursqr.dll] Spyware:Spyware/Virtumonde Not disinfected C:\QooBox\Quarantine\catchme2008-02-28_133850.13.zip[yommmuct.dll] Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\WINDOWS\Nircmd.exe Adware:Adware/ISearch Not disinfected C:\WINDOWS\system32\ax3\dincomsdll3.exe Potentially unwanted tool:Application/BarreraIntegral Not disinfected C:\WINDOWS\system32\drivers\dhlp.sys Virus:Trj/Downloader.PLF Disinfected C:\WINDOWS\system32\iDlo01\iDlo011065.exe Adware:Adware/ActiveXCodec2008 Not disinfected C:\wintlsu.exe