Inactive Windows Explorer running abnormally slow...

CMeyers3 · Sep 17, 2012

ADwCleaner:

# AdwCleaner v2.002 - Logfile created 09/16/2012 at 23:00:23
# Updated 16/09/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3, v.3264 (32 bits)
# User : Erik - ERIKS-DESKTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Erik\Desktop\adwcleaner.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\Software\MetaStream
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Found : HKLM\Software\Viewpoint

***** [Internet Browsers] *****

-\\ Internet Explorer v7.0.5730.13

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\prefs.js

Found : user_pref("gm-notifier.ui.counter.showInbox", true);

Profile name : default
File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Erik\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2279 octets] - [16/09/2012 23:00:23]

########## EOF - C:\AdwCleaner[R1].txt - [2339 octets] ##########

CMeyers3 · Sep 17, 2012

ESETScan:

C:\Documents and Settings\Erik\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\daddpldfnomkdojcblmdcdahahojhgmo\contentscript.js Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{033a26c4-4582-483d-8a69-e2a02beb161c}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{033a26c4-4582-483d-8a69-e2a02beb161c}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{0454e100-1007-4777-a6e6-06370e59e89a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{0454e100-1007-4777-a6e6-06370e59e89a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{0a88162a-646f-4d3a-9f3f-8d2a80969d8b}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{0a88162a-646f-4d3a-9f3f-8d2a80969d8b}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{1d2a4547-4578-451a-835f-02e3b3a66f0a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{1d2a4547-4578-451a-835f-02e3b3a66f0a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{2c608d33-94e1-4ae9-9699-1b7373958133}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{2c608d33-94e1-4ae9-9699-1b7373958133}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{300e1e12-830f-4370-ad61-e454d7552bbe}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{300e1e12-830f-4370-ad61-e454d7552bbe}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{334a6b63-3d36-4026-a0e4-6448632992fe}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{334a6b63-3d36-4026-a0e4-6448632992fe}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{45c6b7d4-2a66-4cbe-8d33-a986524a5091}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{45c6b7d4-2a66-4cbe-8d33-a986524a5091}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{47dacefc-91f8-4fc5-b745-ce4e7e9b2f31}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{47dacefc-91f8-4fc5-b745-ce4e7e9b2f31}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{48f92fac-75b3-4701-adfe-debb1f4ef472}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{48f92fac-75b3-4701-adfe-debb1f4ef472}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{4ac0393b-4e79-47c4-9450-7a7452a5644f}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{4ac0393b-4e79-47c4-9450-7a7452a5644f}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{6c4908b0-aeaa-4d7c-8c5c-465a6811a9bf}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{6c4908b0-aeaa-4d7c-8c5c-465a6811a9bf}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{7bdbcaf8-d604-4c5b-aa8c-a6dc5339a4c0}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{7bdbcaf8-d604-4c5b-aa8c-a6dc5339a4c0}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{7d20ebcc-bc48-4181-86b3-3f172f8f3203}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{7d20ebcc-bc48-4181-86b3-3f172f8f3203}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{80e3c6d2-bfeb-40b4-bf7c-d82a41942662}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{80e3c6d2-bfeb-40b4-bf7c-d82a41942662}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{831253ce-a72b-4123-b46a-e576d6af11f2}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{831253ce-a72b-4123-b46a-e576d6af11f2}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{910f4d7c-3014-4a6d-b770-e25a1085259a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{910f4d7c-3014-4a6d-b770-e25a1085259a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{913b5d7e-379b-4030-9f6b-188bdb393c69}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{913b5d7e-379b-4030-9f6b-188bdb393c69}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{a5d0b7ca-9f7c-4509-91e3-f049c608462a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{a5d0b7ca-9f7c-4509-91e3-f049c608462a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{a9767307-fb00-40e4-833f-6b21eeed2171}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{a9767307-fb00-40e4-833f-6b21eeed2171}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{b0d3ba19-9b6b-4275-9792-9159878c543f}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{b0d3ba19-9b6b-4275-9792-9159878c543f}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{bad4a92b-1160-4377-b7fe-0ade0cf54ac9}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{bad4a92b-1160-4377-b7fe-0ade0cf54ac9}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{cb776730-5e23-46bc-b4d4-55044f593284}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{cb776730-5e23-46bc-b4d4-55044f593284}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{ce433c8e-d95e-454b-bedb-3633633dd3f7}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{ce433c8e-d95e-454b-bedb-3633633dd3f7}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{d61d7a2b-0e2c-4de4-9a39-2571a918da6d}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{d61d7a2b-0e2c-4de4-9a39-2571a918da6d}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{d645492c-d1b4-4d3b-966f-35a7e1597e4e}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{d645492c-d1b4-4d3b-966f-35a7e1597e4e}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{de0e8fa5-1fd3-47ef-b5d2-2923c4bd6a64}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{de0e8fa5-1fd3-47ef-b5d2-2923c4bd6a64}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{e20f2657-af5a-46d1-85c4-00bcffe6ec75}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{e20f2657-af5a-46d1-85c4-00bcffe6ec75}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{ebd24d3d-93f9-4979-8bf0-9a33b9292025}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{ebd24d3d-93f9-4979-8bf0-9a33b9292025}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{fe7a3642-b064-475c-98ed-361d39a02d5b}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\extensions\{fe7a3642-b064-475c-98ed-361d39a02d5b}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{033a26c4-4582-483d-8a69-e2a02beb161c}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{033a26c4-4582-483d-8a69-e2a02beb161c}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{0454e100-1007-4777-a6e6-06370e59e89a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{0454e100-1007-4777-a6e6-06370e59e89a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{0a88162a-646f-4d3a-9f3f-8d2a80969d8b}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{0a88162a-646f-4d3a-9f3f-8d2a80969d8b}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{1d2a4547-4578-451a-835f-02e3b3a66f0a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{1d2a4547-4578-451a-835f-02e3b3a66f0a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{2c608d33-94e1-4ae9-9699-1b7373958133}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{2c608d33-94e1-4ae9-9699-1b7373958133}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{300e1e12-830f-4370-ad61-e454d7552bbe}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{300e1e12-830f-4370-ad61-e454d7552bbe}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{334a6b63-3d36-4026-a0e4-6448632992fe}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{334a6b63-3d36-4026-a0e4-6448632992fe}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{45c6b7d4-2a66-4cbe-8d33-a986524a5091}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{45c6b7d4-2a66-4cbe-8d33-a986524a5091}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{47dacefc-91f8-4fc5-b745-ce4e7e9b2f31}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{47dacefc-91f8-4fc5-b745-ce4e7e9b2f31}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{48f92fac-75b3-4701-adfe-debb1f4ef472}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{48f92fac-75b3-4701-adfe-debb1f4ef472}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{4ac0393b-4e79-47c4-9450-7a7452a5644f}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{4ac0393b-4e79-47c4-9450-7a7452a5644f}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{6c4908b0-aeaa-4d7c-8c5c-465a6811a9bf}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{6c4908b0-aeaa-4d7c-8c5c-465a6811a9bf}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{7bdbcaf8-d604-4c5b-aa8c-a6dc5339a4c0}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{7bdbcaf8-d604-4c5b-aa8c-a6dc5339a4c0}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{7d20ebcc-bc48-4181-86b3-3f172f8f3203}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{7d20ebcc-bc48-4181-86b3-3f172f8f3203}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{80e3c6d2-bfeb-40b4-bf7c-d82a41942662}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{80e3c6d2-bfeb-40b4-bf7c-d82a41942662}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{831253ce-a72b-4123-b46a-e576d6af11f2}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{831253ce-a72b-4123-b46a-e576d6af11f2}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{910f4d7c-3014-4a6d-b770-e25a1085259a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{910f4d7c-3014-4a6d-b770-e25a1085259a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{913b5d7e-379b-4030-9f6b-188bdb393c69}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{913b5d7e-379b-4030-9f6b-188bdb393c69}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{a5d0b7ca-9f7c-4509-91e3-f049c608462a}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{a5d0b7ca-9f7c-4509-91e3-f049c608462a}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{a9767307-fb00-40e4-833f-6b21eeed2171}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{a9767307-fb00-40e4-833f-6b21eeed2171}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{b0d3ba19-9b6b-4275-9792-9159878c543f}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{b0d3ba19-9b6b-4275-9792-9159878c543f}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{bad4a92b-1160-4377-b7fe-0ade0cf54ac9}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{bad4a92b-1160-4377-b7fe-0ade0cf54ac9}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{cb776730-5e23-46bc-b4d4-55044f593284}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{cb776730-5e23-46bc-b4d4-55044f593284}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{ce433c8e-d95e-454b-bedb-3633633dd3f7}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{ce433c8e-d95e-454b-bedb-3633633dd3f7}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{d61d7a2b-0e2c-4de4-9a39-2571a918da6d}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{d61d7a2b-0e2c-4de4-9a39-2571a918da6d}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{d645492c-d1b4-4d3b-966f-35a7e1597e4e}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{d645492c-d1b4-4d3b-966f-35a7e1597e4e}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{de0e8fa5-1fd3-47ef-b5d2-2923c4bd6a64}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{de0e8fa5-1fd3-47ef-b5d2-2923c4bd6a64}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{e20f2657-af5a-46d1-85c4-00bcffe6ec75}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{e20f2657-af5a-46d1-85c4-00bcffe6ec75}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{ebd24d3d-93f9-4979-8bf0-9a33b9292025}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{ebd24d3d-93f9-4979-8bf0-9a33b9292025}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{fe7a3642-b064-475c-98ed-361d39a02d5b}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\extensions\{fe7a3642-b064-475c-98ed-361d39a02d5b}\chrome\xulcache.jar.vir JS/Agent.NDJ trojan deleted - quarantined
C:\Qoobox\Quarantine\C\WINDOWS\system32\ATIDEMGX32.dll.vir a variant of Win32/Kryptik.RSL trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP118\A0028572.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP118\A0028573.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP125\A0032783.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP125\A0034785.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP129\A0036438.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP129\A0036439.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0036603.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0036604.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037817.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037818.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037819.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037820.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037821.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037822.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037823.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037824.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037825.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037826.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037827.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037828.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037829.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037830.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037831.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037832.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037833.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037834.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037835.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037836.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037837.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037838.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037839.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037840.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037841.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037842.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037843.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037844.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037845.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037846.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037847.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0037848.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0039607.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP132\A0039608.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP133\A0039628.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP133\A0039629.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP134\A0039773.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP134\A0039774.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP134\A0039775.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP134\A0039776.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{039C2D67-D014-43D4-93ED-ABC48248FA19}\RP134\A0039865.dll a variant of Win32/Kryptik.RSL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.09.2012_15.26.24\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.09.2012_15.26.24\mbr0000\tdlfs0000\tsk0005.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.09.2012_15.26.24\mbr0000\tdlfs0000\tsk0006.dta a variant of Win32/Olmarik.AWX trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.09.2012_15.26.24\mbr0000\tdlfs0000\tsk0007.dta probably a variant of Win32/Agent.LNPYLAJ trojan cleaned by deleting - quarantined
E:\External HD Copy\Uniblue PowerSuite 2011 3.0.3.11 + SERIAL KEY [Multilingual]\powersuite.exe multiple threats cleaned by deleting - quarantined

Broni · Sep 17, 2012

Update Adobe Reader

You can download it from https://www.techspot.com/downloads/2083-adobe-reader-dc.html
After installing the latest Adobe Reader, uninstall all previous versions (if present).
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB), download and install Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or any other garbage.

==================================

Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

Next...

Double click on adwcleaner.exe to run the tool.
Click on Uninstall.
Confirm with yes.

=====================================

Your computer is clean

1. We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s). We'll create fresh, clean restore point, using following OTL script:

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following:

Code:

:OTL
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[emptyjava]
[CLEARALLRESTOREPOINTS]
[Reboot]

Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Post resulting log.

2. Now, we'll remove all tools, we used during our cleaning process

Clean up with OTL:

Double-click OTL.exe to start the program.
Close all other programs apart from OTL as this step will require a reboot
On the OTL main screen, press the CLEANUP button
Say Yes to the prompt and then allow the program to reboot your computer.

If you still have any tools or logs leftover on your computer you can go ahead and delete those off of your computer now.

3. Make sure, Windows Updates are current.

4. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC) weekly.

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. (Windows XP only) Run defrag at your convenience.

11. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

12. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

13. Please, let me know, how your computer is doing.

CMeyers3 · Sep 17, 2012

The system hung when I tried to install Adobe Reader so I am moving along with the cleaning process.

ADWCleaner:

# AdwCleaner v2.002 - Logfile created 09/17/2012 at 17:38:52
# Updated 16/09/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3, v.3264 (32 bits)
# User : Erik - ERIKS-DESKTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Erik\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\Software\Viewpoint

***** [Internet Browsers] *****

-\\ Internet Explorer v7.0.5730.13

Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-21-1957994488-115176313-725345543-1005\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\prefs.js

C:\Documents and Settings\Erik\Application Data\Mozilla\Firefox\Profiles\6oumi61i.default\user.js ... Deleted !

Deleted : user_pref("gm-notifier.ui.counter.showInbox", true);

Profile name : default
File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\m5lwm18u.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Erik\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [2408 octets] - [16/09/2012 23:00:23]
AdwCleaner[S1].txt - [2947 octets] - [17/09/2012 17:38:52]

########## EOF - C:\AdwCleaner[S1].txt - [3007 octets] ##########

CMeyers3 · Sep 17, 2012

OTL:

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Erik
->Temp folder emptied: 1951846 bytes
->Temporary Internet Files folder emptied: 33175 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 68652020 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1601 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 67.00 mb

[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Erik
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: NetworkService
->Flash cache emptied: 0 bytes

User: UpdatusUser
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

[EMPTYJAVA]

User: Administrator

User: All Users

User: Default User

User: Erik
->Java cache emptied: 0 bytes

User: LocalService
->Java cache emptied: 0 bytes

User: NetworkService
->Java cache emptied: 0 bytes

User: UpdatusUser

Total Java Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.56.0 log created on 09172012_174501

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

CMeyers3 · Sep 17, 2012

My PC fan is constantly running and my CPU usage fluctuates between 15-30% when I have no applications running.

Still getting hung up when I try and open my computer but when I bring up My Documents and pull up the C: drive by typing C:\ into the address bar I navigate my files without issue.

Wondering if it could be an issue with the hardware, but running at 15-30% CPU usage with nothing active and no background processes active other than services.exe leaves me a bit concerned.

Thoughts?

EDIT: Windows Explorer just hung when I right clicked the FileHippo icon in the task bar. Secunia seems to have hung as well, it's been running for approximately 10-15 minutes.

I have a Master and Slave HDD, should I pull the Slave drive and repeat the entire process from start to finish while disconnected from the web?

Broni · Sep 17, 2012

Download Process Explorer: http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
Unzip ProcessExplorer.zip, and double click on procexp.exe to run the program.
Click on View > Select Colunms.
In addition to already pre-selected options, make sure, the Command Line is selected, and press OK.
Go File>Save As, and save the report as Procexp.txt.
Attach the file to your next reply.

CMeyers3 · Sep 17, 2012

File is attached.

Broni · Sep 17, 2012

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

Go to Step 4 and under "System Restore" click on Create button:

Go to Start Repairs tab and click Start button.

Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

Click on box next to the Restart System when Finished. Then click on Start.

CMeyers3 · Sep 17, 2012

I don't have my Windows XP CD in order to complete Step 3.

Broni · Sep 17, 2012

Ask around. Borrowed one will do.

CMeyers3 · Sep 20, 2012

I was able to track down an XP disc and ran the Windows Repair. It hung up on step 6 of 12, repairing Internet Explorer at the regwicz.dll command line.

I let it run for 7 hours while I slept and it made no further progress. When I closed the command prompt it continued through the remaining steps very quickly and rebooted the machine.

Still having the same issues:

-Explorer locks up when right clicking in blank area of desktop
-Very very slow response (if at all) when accessing My Computer
-Can't install/run certain programs (I.e. UpdateChecker from File Hippo)
-No sound

I pulled my GPU card and extra HDD out last night as well and have them sitting off to the side.

Broni · Sep 20, 2012

At this point...

In this forum, we make sure, your computer is free of malware and your computer is clean

Because the access to malware forum is very limited, your best option is to create new topic about your current issue, at Windows section.
You'll get more attention.

CMeyers3 · Sep 20, 2012

I've been putting off transferring my hardware to a new pc case until I fixed this but I think I'm going to go ahead with transferring components and just get this PC setup with Ubuntu.

Thanks so much for all of your help Broni. If nothing else, I know my machine is free and clear of any harmful programs. Sent a donation your way.

Broni · Sep 20, 2012

Thank you and good luck

Inactive Windows Explorer running abnormally slow...

CMeyers3

Posts: 27 +0

CMeyers3

Posts: 27 +0

Broni

Posts: 56,041 +516

CMeyers3

Posts: 27 +0

CMeyers3

Posts: 27 +0

CMeyers3

Posts: 27 +0

Broni

Posts: 56,041 +516

CMeyers3

Posts: 27 +0

Attachments

Broni

Posts: 56,041 +516

CMeyers3

Posts: 27 +0

Broni

Posts: 56,041 +516

CMeyers3

Posts: 27 +0

Broni

Posts: 56,041 +516

CMeyers3

Posts: 27 +0

Broni

Posts: 56,041 +516

Similar threads

Latest posts