1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Vista Random Restarts and BSOD

Discussion in 'Virus & Other Malware Removal' started by Mystic_Meerkatz, Oct 31, 2011.

Thread Status:
Not open for further replies.
Advertisement
  1. Mystic_Meerkatz

    Mystic_Meerkatz Thread Starter

    Joined:
    Oct 30, 2011
    Messages:
    13
    ok. i did as you said, and the computer did not register the fact that it had been plugged in.at first i thought it may have been broken, but a light still shines on the keyboard. here are the logs you requested earlier; the 'add-remove programs' file;


    ActiveCheck component for HP Active Support Library
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
    Adobe Flash Player 10 Plugin
    Adobe Flash Player 11 ActiveX
    Adobe Reader 8.1.2
    Adobe Reader 8.1.2 Security Update 1 (KB403742)
    Adobe Shockwave Player 11.6
    Akamai NetSession Interface
    Any Video Converter 3.2.3
    AppCore
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    AV
    Bing Bar Platform
    BitTorrent
    BT Broadband Desktop Help
    BT Wireless Connection Manager
    BT Yahoo! Applications
    BTHomeHub
    BufferChm
    ccCommon
    D1400
    D1400_Help
    D3DX10
    DeviceDiscovery
    DeviceManagementQFolder
    DivX Setup
    dj_sf_ProductContext
    dj_sf_software
    dj_sf_software_req
    Facebook Video Calling 1.0.0.8714
    Facemoods Toolbar
    Free Audio Converter version 2.3.2.804
    Free RAR Extract Frog
    Game Booster
    GameSpy Arcade
    Google Chrome
    Google Toolbar for Internet Explorer
    Google Update Helper
    GoToAssist Corporate
    Highlight Viewer (Windows Live Toolbar)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Active Support Library
    HP Active Support Library 32 bit components
    HP Customer Feedback
    HP Deskjet Printer Driver Software 9.0
    HP Imaging Device Functions 9.0
    HP On-Screen Cap/Num/Scroll Lock Indicator
    HP Photosmart Essential 2.01
    HP Photosmart Essential2.01
    HP Update
    HPAsset component for HP Active Support Library
    HPSSupply
    HyperCam 3
    Hyperionics DB Toolbar
    Intel(R) Graphics Media Accelerator Driver
    Internet From BT
    IObit Malware Fighter
    IObit Toolbar v4.7
    Java Auto Updater
    Java(TM) 6 Update 26
    Java(TM) SE Runtime Environment 6 Update 1
    Junk Mail filter update
    LightScribe 1.8.15.1
    LiveUpdate Notice (Symantec Corporation)
    Malwarebytes' Anti-Malware version 1.51.2.1300
    Map Button (Windows Live Toolbar)
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Extended
    Microsoft .NET Framework 4 Multi-Targeting Pack
    Microsoft Application Error Reporting
    Microsoft Help Viewer 1.0
    Microsoft Search Enhancement Pack
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft SQL Server 2008
    Microsoft SQL Server 2008 Browser
    Microsoft SQL Server 2008 Common Files
    Microsoft SQL Server 2008 Database Engine Services
    Microsoft SQL Server 2008 Database Engine Shared
    Microsoft SQL Server 2008 Native Client
    Microsoft SQL Server 2008 R2 Management Objects
    Microsoft SQL Server 2008 RsFx Driver
    Microsoft SQL Server 2008 Setup Support Files
    Microsoft SQL Server Compact 3.5 SP2 ENU
    Microsoft SQL Server System CLR Types
    Microsoft SQL Server VSS Writer
    Microsoft Visual C# 2010 Express - ENU
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Microsoft Windows Media Video 9 VCM
    Microsoft Works
    Mozilla Firefox 7.0.1 (x86 en-GB)
    MSRedist
    MSVCRT
    MSVCRT Redists
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB941833)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 4.0 SP2 Parser and SDK
    Norton AntiVirus
    Norton Confidential Browser Component
    Norton Confidential Web Protection Component
    Norton Internet Security
    Norton Internet Security (Symantec Corporation)
    Norton PC Checkup
    Norton Protection Center
    OGA Notifier 2.0.0048.0
    Pando Media Booster
    PanoStandAlone
    PC MightyMax 2011
    PSSWCORE
    Python 2.5
    QuickTime
    Realtek High Definition Audio Driver
    Roxio Activation Module
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft Visual C# 2010 Express - ENU (KB2251489)
    Segoe UI
    Service Pack 1 for SQL Server 2008 (KB968369)
    Smart Menus (Windows Live Toolbar)
    SPBBC 32bit
    Sql Server Customer Experience Improvement Program
    Status
    Steam
    swMSM
    Symantec Real Time Storage Protection Component
    SymNet
    Text-To-Speech-Runtime
    Toolbox
    TrayApp
    UnloadSupport
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    VC80CRTRedist - 8.0.50727.6195
    Vegas Pro 10.0
    VideoToolkit01
    Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
    WebReg
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Family Safety
    Windows Live Favorites for Windows Live Toolbar
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Mail
    Windows Live MIME IFilter
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Sync
    Windows Live Toolbar Extension (Windows Live Toolbar)
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    WinRAR 4.01 (32-bit)
    Youtube Downloader HD v. 2.6





    the other file contained;


    2011-11-02 20:25:45 . 2011-11-02 20:25:45 622 ----a-w- C:\Qoobox\Quarantine\Registry_backups\AddRemove-facemoods.reg.dat
    2011-11-02 20:25:25 . 2011-11-02 20:25:25 856 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-zzzCamInSuiteIII.reg.dat
    2011-11-02 20:25:25 . 2011-11-02 20:25:25 924 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-msnmsgr.reg.dat
    2011-11-02 20:25:25 . 2011-11-02 20:25:25 896 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-iTunesHelper.reg.dat
    2011-11-02 20:25:24 . 2011-11-02 20:25:24 928 ----a-w- C:\Qoobox\Quarantine\Registry_backups\MSConfigStartUp-HPAdvisor.reg.dat
    2011-11-02 20:25:15 . 2011-11-02 20:25:15 166 ----a-w- C:\Qoobox\Quarantine\Registry_backups\HKU-Default-Run-msnmsgr.reg.dat
    2011-11-02 20:25:14 . 2011-11-02 20:25:14 178 ----a-w- C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-facemoods.reg.dat
    2011-11-02 20:25:13 . 2011-11-02 20:25:13 140 ----a-w- C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-0Y4Y3X5Y6DUXWU2WBBXNI.reg.dat
    2011-11-02 20:25:12 . 2011-11-02 20:25:12 171 ----a-w- C:\Qoobox\Quarantine\Registry_backups\WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847}.reg.dat
    2011-11-02 20:25:11 . 2011-11-02 20:25:11 766 ----a-w- C:\Qoobox\Quarantine\Registry_backups\BHO-{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}.reg.dat
    2011-11-02 19:55:01 . 2011-11-02 19:55:01 133,104 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Google\Update\GoogleUpdate.exe.vir
    2011-11-01 18:59:36 . 2011-11-01 18:59:36 125,333 ----a-w- C:\Qoobox\Quarantine\C\Cadat.Bin\_061327E16B1_.exe.zip
    2011-11-01 18:57:42 . 2011-11-02 19:34:10 748 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Service_563b5588.reg.dat
    2011-11-01 18:57:18 . 2011-11-02 19:33:48 9,947 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
    2011-11-01 18:47:08 . 2011-11-02 17:59:05 2,540 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\loader.tlb.vir
    2011-11-01 18:43:21 . 2011-11-01 18:43:21 2,048 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\@.vir
    2011-11-01 18:43:20 . 2011-11-01 18:43:21 35,384 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\L\qnbwvoto.vir
    2011-11-01 18:42:46 . 2011-11-01 18:42:46 0 -c--a-we C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1102664970.vir
    2011-11-01 18:31:26 . 2011-11-02 19:58:10 3,805 ----a-w- C:\Qoobox\Quarantine\catchme.log
    2011-10-31 15:00:37 . 2011-11-01 18:43:37 3,584 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@000000c0.vir
    2011-10-30 21:28:51 . 2011-10-31 15:38:42 14,336 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\563b5588\U\80000000.@.vir
    2011-10-29 23:14:06 . 2011-10-29 23:14:20 191,589 ----a-w- C:\Qoobox\Quarantine\C\Cadat.Bin\9824C362BF0182D.vir
    2011-10-29 22:31:05 . 2011-10-29 22:31:05 144,620 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\uninstall.exe.vir
    2011-10-29 18:57:32 . 2011-10-08 16:34:24 820,568 ----a-w- C:\Qoobox\Quarantine\C\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe.vir
    2011-10-26 10:32:58 . 2011-10-30 17:41:16 16,384 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\563b5588\U\800000cb.@.vir
    2011-10-25 22:15:45 . 2011-10-25 22:15:45 0 -c--a-we C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\2021019617.vir
    2011-10-25 18:03:33 . 2011-11-01 18:43:37 23,552 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@800000cb.vir
    2011-10-22 22:50:54 . 2011-11-01 18:43:37 23,040 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@80000000.vir
    2011-09-30 00:34:34 . 2011-11-01 18:43:37 3,072 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@000000cb.vir
    2011-09-27 19:08:40 . 2011-09-27 19:08:40 745,880 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Application Updater\ApplicationUpdater.exe.vir
    2011-09-16 08:29:44 . 2011-11-01 18:43:37 35,840 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@800000c0.vir
    2011-09-10 14:59:36 . 2011-11-01 18:43:37 45,968 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@00000001.vir
    2011-09-10 13:28:10 . 2011-11-01 18:43:38 27,648 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@800000cf.vir
    2011-09-09 19:03:00 . 2011-11-01 18:43:37 1,536 -c--a-w- C:\Qoobox\Quarantine\C\Windows\$NtUninstallKB64588$\1446729096\U\@000000cf.vir
    2011-09-05 13:47:10 . 2011-09-05 13:47:10 31,873 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoods.crx.vir
    2011-09-05 13:47:04 . 2011-09-05 13:47:04 3,948 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoods.png.vir
    2011-09-05 13:46:52 . 2011-09-05 13:46:52 368,344 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodsApp.dll.vir
    2011-09-05 13:46:52 . 2011-09-05 13:46:52 462,552 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodsEng.dll.vir
    2011-09-05 13:46:52 . 2011-09-05 13:46:52 220,888 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll.vir
    2011-09-05 13:46:52 . 2011-09-05 13:46:52 265,944 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll.vir
    2011-09-05 13:46:50 . 2011-09-05 13:46:50 362,200 ----a-w- C:\Qoobox\Quarantine\C\Program Files\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe.vir
    2011-08-15 11:53:56 . 1979-11-30 00:00:00 2,180 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\icons\icon32.png.vir
    2011-08-15 11:53:56 . 1979-11-30 00:00:00 4,229 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\icons\icon48.png.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 20,320 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\icons\icon128.png.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,220 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\icons\icon19.png.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 967 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\includes\content_userscript.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 29 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\includes\content.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,747 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\includes\content_kango.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 445 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\includes\content_messaging.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 3,085 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\userscript_engine.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 2,381 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\xhr.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 625 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\jsonstorage.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 2,268 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\kango.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,167 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\lang.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 890 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\messaging.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 585 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\io.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,820 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\browser.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 392 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\console.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,024 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\event_listener.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 73 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango\initialize.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 2,261 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango-ui\button.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 17 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\kango-ui\ui.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 3,191 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\minibar\minibar.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,720 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\minibar\actions.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 153 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\minibar\cachedxhr.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 635 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\minibar\config.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 3,680 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\minibar\macros.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 611 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\popup.html.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 3,222 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\popup.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 548 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\tab.html.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,009 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\tab.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 113 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\main.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 909 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\manifest.json.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,768 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\background.html.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 1,416 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\cached_http_request.js.vir
    2011-08-15 11:53:55 . 1979-11-30 00:00:00 142 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome\extension_info.json.vir
    2011-08-15 11:53:55 . 2011-08-15 11:53:55 36,631 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\Uninstall.exe.vir
    2011-06-16 09:52:22 . 2011-06-16 09:52:22 47,416 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\minibar.crx.vir
    2011-05-26 11:03:40 . 2011-05-26 11:03:40 8,095 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\chrome_installer.js.vir
    2011-05-26 11:03:40 . 2011-05-26 11:03:40 6,582 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\common.js.vir
    2011-05-26 11:03:40 . 2011-05-26 11:03:40 1,303 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\install.json.vir
    2011-03-17 12:57:59 . 2011-11-02 15:27:39 419,624 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Steam\SteamService.exe.vir
    2011-02-24 22:44:04 . 2011-02-24 22:44:04 570,583 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Local\Minibar\sqlite3.exe.vir
    2011-02-18 15:37:16 . 2011-02-18 15:37:16 37,664 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe.vir
    2011-02-17 14:01:40 . 2011-11-01 18:59:37 170,496 ------w- C:\Qoobox\Quarantine\C\Cadat.Bin\Cadat.Bin\061327E16B1.exe
    2011-01-14 18:19:59 . 2011-01-14 18:20:00 262,144 ----a-w- C:\Qoobox\Quarantine\C\ProgramData\ntuser.dat.vir
    2010-06-29 17:48:46 . 2011-08-31 08:10:13 116,608 ----a-w- C:\Qoobox\Quarantine\C\Program Files\SUPERAntiSpyware\SASCORE.EXE.vir
    2010-02-02 19:30:05 . 2010-02-02 19:29:10 386,872 ----a-w- C:\Qoobox\Quarantine\C\Windows\System32\jucheck.exe.vir
    2009-05-30 08:49:49 . 2009-05-30 08:49:49 1,251,720 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe.vir
    2008-08-15 15:36:27 . 2008-08-28 23:53:18 303,104 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Motive\McciCMService.exe.vir
    2008-07-10 01:49:44 . 2008-07-10 01:49:44 98,840 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe.vir
    2008-06-12 16:55:16 . 2008-06-12 16:55:20 286 ----a-w- C:\Qoobox\Quarantine\C\Users\andrea\AppData\Roaming\BonsaiErrorLog.txt.vir
    2008-01-08 13:30:50 . 2009-06-22 16:30:20 183,280 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe.vir
    2007-11-07 07:03:18 . 2007-11-07 07:03:18 562,688 ----a-w- C:\Qoobox\Quarantine\C\install.exe.vir
    2007-10-15 14:21:13 . 2010-02-02 19:29:10 149,280 ----a-w- C:\Qoobox\Quarantine\C\Windows\System32\jusched.exe.vir
    2007-07-25 22:50:26 . 2007-07-25 22:50:26 79,136 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\LightScribe\LSSrvc.exe.vir
    2007-06-07 08:57:22 . 2007-06-07 08:57:22 486,373 ----a-w- C:\Qoobox\Quarantine\C\Windows\System32\AutoRun.inf.vir
    2007-05-24 20:13:54 . 2007-05-24 20:13:54 61,440 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe.vir
    2007-04-24 13:11:14 . 2007-04-24 13:11:14 365 ----a-w- C:\Qoobox\Quarantine\C\Windows\Downloaded Program Files\f3initialsetup1.0.1.0.inf.vir
    2007-01-09 22:59:32 . 2007-01-09 22:59:32 108,648 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Symantec Shared\ccSvcHst.exe.vir
    2007-01-05 01:19:28 . 2007-01-05 01:19:28 47,712 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe.vir
     
  2. kevinf80

    kevinf80 Malware Specialist

    Joined:
    Mar 21, 2006
    Messages:
    10,150
    Is your Keyboard working? can yo do the following:

    Step One

    Please download Junction.zip and save it to your desktop.
    Unzip it and extract junction.exe to your C:\ drive so you have C:\Windows\Junction.exe

    Step Two

    Now copy (Ctrl +C) and paste (Ctrl +V) the text inside the code box below into Notepad.

    Code:
    @ECHO OFF
    cd c:\
    junction -s c:\>log.txt
    start log.txt
    del %0
    
    Save it to your desktop as File name: junc.bat
    Save as type: All Files

    Step Three

    Double click junc.bat to run it. A log will be presented. Copy and paste or attach the content of the log in your next reply. Make sure you get the full logÂ…

    Kevin
     
  3. Mystic_Meerkatz

    Mystic_Meerkatz Thread Starter

    Joined:
    Oct 30, 2011
    Messages:
    13
    hi, kevin.

    keyboard still not working. i ran junction, and i keep getting this error;

    'windows cannot find 'log.txt' make sure you typed the name correctly and try again'

    i have tryed 3 times now, and all attempts ended the same

    chris
     
  4. kevinf80

    kevinf80 Malware Specialist

    Joined:
    Mar 21, 2006
    Messages:
    10,150
    Select > start > in the search box copy paste cmd /c junction -s c:\ >log.txt&log.txt& del log.txt a command entry should appear above, double click on that, does it produce a log
     
  5. Mystic_Meerkatz

    Mystic_Meerkatz Thread Starter

    Joined:
    Oct 30, 2011
    Messages:
    13
    Hi kevin,

    I have to go away for the weekend, but as soon as i return on monday i will try what you mentioned in your last post.

    Sorry for the inconvenience

    Chris
     
  6. kevinf80

    kevinf80 Malware Specialist

    Joined:
    Mar 21, 2006
    Messages:
    10,150
    Thanks for the update, also do the following on your return:

    Select start > in the search box type "Device Manager" select that entry above. Device manager should open, expand Keyboard, are there any exclamation or question marks?

    Do you have access to a spare keyboard to try, maybe from a friend or neighbor
     
  7. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1024835