Jump to content
Sign in to follow this  
isiswisdom

Lost Desktop - Utility Rundll32.exe

Recommended Posts

2011-04-06 16:11:47 . 2011-04-06 16:11:48 142,970 ----a-w- C:\Qoobox\Quarantine\[4]-Submit_2011-04-06_12.11.43.zip

2011-04-03 06:12:17 . 2011-04-03 06:12:17 596 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-ICQ.reg.dat

2011-03-27 04:33:49 . 2011-03-27 04:33:49 754 ----a-w- C:\Qoobox\Quarantine\Registry_backups\AddRemove-OfferBox Browser.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 676 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-YmEwGJXgpidLPI.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 598 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-VXEG3ZNNE5.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 592 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-uTorrent.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 552 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-tsnp2std.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 634 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-SearchSettings.reg.dat

2011-03-27 04:33:27 . 2011-03-27 04:33:27 598 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-OUU6KC5WPX.reg.dat

2011-03-27 04:33:26 . 2011-03-27 04:33:26 602 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-NtWqIVLZEWZU.reg.dat

2011-03-27 04:33:26 . 2011-03-27 04:33:26 622 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-eFax 4.reg.dat

2011-03-27 04:33:26 . 2011-03-27 04:33:26 628 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-Afuha.reg.dat

2011-03-27 04:33:26 . 2011-03-27 04:33:26 750 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-AdobeCS4ServiceManager.reg.dat

2011-03-27 04:33:10 . 2011-04-03 06:12:03 171 ----a-w- C:\Qoobox\Quarantine\Registry_backups\WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440}.reg.dat

2011-03-26 08:04:24 . 2011-03-26 08:44:06 368 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Guest.ATLANTIS\Application Data\OfferBox\config.xml.vir

2011-03-26 08:04:24 . 2011-03-26 08:04:24 23,269 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Guest.ATLANTIS\Application Data\Dealio\temp\http___www_dealio_com_rss_coupons-deals_top_7days__cnid=[CHANNEL_ID]&ccv=[code_VER]&ISN=[iSN].xml.vir

2011-03-26 07:27:46 . 2011-03-26 06:56:50 162,304 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\Fmacac.exe.vir

2011-03-26 07:23:14 . 2011-03-26 06:58:18 162,304 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\Fmacab.exe.vir

2011-03-26 07:08:16 . 2011-03-26 07:08:17 881 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Start Menu\Programs\Windows Repair\Uninstall Windows Repair.lnk.vir

2011-03-26 07:08:16 . 2011-03-26 07:08:16 809 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Start Menu\Programs\Windows Repair\Windows Repair.lnk.vir

2011-03-26 07:00:47 . 2011-03-26 07:00:47 153,681 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\OfferBox\config.dat.vir

2011-03-26 07:00:02 . 2011-03-26 07:00:02 159,406 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\uninst.exe.vir

2011-03-26 06:59:37 . 2011-03-26 06:59:37 5,954 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Local Settings\Application Data\{1B3EA380-DCBC-4216-B27A-6BC260E0A715}\chrome\content\overlay.xul.vir

2011-03-26 06:59:37 . 2011-03-26 06:59:38 2,122 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Local Settings\Application Data\{1B3EA380-DCBC-4216-B27A-6BC260E0A715}\chrome\content\_cfg.js.vir

2011-03-26 06:59:37 . 2011-03-26 06:59:38 764 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Local Settings\Application Data\{1B3EA380-DCBC-4216-B27A-6BC260E0A715}\install.rdf.vir

2011-03-26 06:59:37 . 2011-03-26 06:59:37 122 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Local Settings\Application Data\{1B3EA380-DCBC-4216-B27A-6BC260E0A715}\chrome.manifest.vir

2011-03-26 06:58:39 . 2011-03-27 04:03:07 1,886 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\OfferBox\config.xml.vir

2011-03-26 06:57:34 . 2011-03-26 06:57:35 149,504 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\smbinstz.dll.vir

2011-03-26 06:57:34 . 2011-03-26 06:57:35 149,504 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\c_10000F.dll.vir

2011-03-26 06:57:18 . 2011-03-26 06:56:46 162,304 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\Fmacaa.exe.vir

2011-03-24 11:31:56 . 2011-03-24 11:31:56 39,224 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\OfferBoxChromeExtension.crx.vir

2011-03-24 11:31:50 . 2011-03-24 11:31:50 135,000 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\OfferBoxBHO.dll.vir

2011-03-24 11:31:46 . 2011-03-24 11:31:46 95,576 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\components\OfferBoxXpCom.dll.vir

2011-03-24 11:31:44 . 2011-03-24 11:31:44 41,029 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\res\language.xml.vir

2011-03-24 11:31:40 . 2011-03-24 11:31:40 1,074,008 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\OfferBoxEngine.dll.vir

2011-03-24 11:31:36 . 2011-03-24 11:31:36 1,966,936 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\OfferBox.exe.vir

2011-03-24 11:31:34 . 2011-03-24 11:31:34 69,976 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\OfferBoxLauncher.exe.vir

2011-03-24 11:30:42 . 2011-03-24 11:30:42 3,233 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\install.rdf.vir

2011-03-24 11:30:18 . 2011-03-24 11:30:18 150 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\components\OfferBoxXpCom.xpt.vir

2011-03-24 11:24:24 . 2011-03-24 11:24:24 212 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\chrome.manifest.vir

2011-03-24 11:24:24 . 2011-03-24 11:24:24 8,560 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\chrome\content\events.js.vir

2011-03-24 11:24:24 . 2011-03-24 11:24:24 252 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\[email protected]\chrome\content\overlay.xul.vir

2011-03-24 11:21:10 . 2011-03-24 11:21:10 2,608 ----a-w- C:\Qoobox\Quarantine\C\Program Files\OfferBox\res\loader.gif.vir

2011-03-20 15:48:54 . 2011-03-20 15:48:54 43,536 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\w.xml.vir

2011-03-04 15:13:55 . 2011-03-13 23:22:02 23,521 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Midori.ATLANTIS\Application Data\Dealio\temp\http___www_dealio_com_rss_coupons-deals_top_7days__cnid=[CHANNEL_ID]&ccv=[code_VER]&ISN=[iSN].xml.vir

2011-01-10 17:53:54 . 2011-03-26 07:06:25 3,400 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\mru.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 23,296 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\1.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 125,672 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\a.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 165,160 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\b.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 172,176 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\c.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 105,704 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\d.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 108,920 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\e.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 60,048 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\f.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 70,624 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\g.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 52,920 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\h.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 48,336 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\i.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 28,000 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\J.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 28,080 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\k.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 69,168 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\l.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 104,888 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\m.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 36,808 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\n.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 41,072 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\o.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 96,480 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\p.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 4,440 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\q.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 36,768 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\r.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 159,760 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\s.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 95,664 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\t.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 20,960 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\u.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 30,528 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\v.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 2,888 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\x.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 10,744 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\y.xml.vir

2011-01-05 11:02:22 . 2011-01-05 11:02:22 11,648 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Compaq_Owner.ATLANTIS.000\Application Data\PriceGong\Data\z.xml.vir

2010-02-18 21:07:35 . 2010-08-23 23:08:57 39,149 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Guest.ATLANTIS\Application Data\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml.vir

2010-02-18 21:07:25 . 2011-03-26 08:04:23 10,494 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Guest.ATLANTIS\Application Data\Dealio\res\widgets.xml.vir

2010-01-01 08:11:13 . 2010-02-27 17:37:11 38,638 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Midori.ATLANTIS\Application Data\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml.vir

2010-01-01 08:10:55 . 2011-03-04 15:13:48 10,494 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Midori.ATLANTIS\Application Data\Dealio\res\widgets.xml.vir

2009-12-19 19:29:20 . 2009-12-19 19:29:20 906 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Start Menu\HP Image Zone .lnk.vir

2009-06-26 00:27:50 . 2004-04-30 10:01:14 53 ----a-w- C:\Qoobox\Quarantine\D\Autorun.inf.vir

2009-06-26 00:27:50 . 2002-09-10 04:14:14 100 ----a-w- C:\Qoobox\Quarantine\D\Desktop.ini.vir

2009-06-26 00:19:19 . 2011-04-06 16:26:09 8,655 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg

2009-06-26 00:09:04 . 2011-04-06 16:10:20 408 ----a-w- C:\Qoobox\Quarantine\catchme.log

2005-05-13 00:32:42 . 2005-05-13 00:32:42 225,280 -c--a-w- C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Documents\setup.exe.vir

Share this post


Link to post
Share on other sites

Hello isiswisdom

 

Your Wordonthestreetsmag folder is still intact - it was the "Windows" folder contained within the Wordonthestreetsmag directory that was deleted. ComboFix deleted several such Windows folders, as can be seen from the log that was created after the most recent ComboFix run.

 

It is those Windows folders that I would like to ask you about. Is there a specific reason why you have all of those Windows folders in such odd locations?

Share this post


Link to post
Share on other sites

Due to lack of response, this topic is now closed.

 

If you are the topic starter and need this topic reopened, please PM a staff member (include the address of this thread in your request).

 

Everyone else please start a new topic.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×
×
  • Create New...