Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Firefox, IE won't load certain websites. Time Out Error [Closed]

Started by Bullet90 , May 02 2010 06:25 AM

  • This topic is locked This topic is locked

#16
Essexboy
Posted 03 May 2010 - 09:04 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Nothing apparent in any of the scans run so far - so lets try a Russian AV :)

Download Dr.Web CureIt to the desktop.
  • Doubleclick the drweb-cureit.exe file, then on Start and allow to run the express scan
  • This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
  • Once the short scan has finished, chose the Complete Scan.
  • Select all drives. A red dot shows which drives have been chosen.
  • Click the green arrow Posted Image at the right, and the scan will start.
  • Click 'Yes to all' if it asks if you want to cure/move the file.
  • When the scan has finished, look and see if you can click the following icon next to the files found:
    Posted Image
  • If so, click it and then click the next icon right below and select Move incurable as you'll see in next image:
    Posted Image
  • This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured. (this in case if we need samples)
  • After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list
  • Save the report to your desktop. The report will be called DrWeb.csv
  • Close Dr.Web Cureit.
  • Reboot your computer to allow files that were in use to be moved/deleted during reboot.
  • After reboot, post the contents of the log from Dr.Web you saved previously in your next reply along with a new OTL log.
NOTE: During the scan, a pop-up window will open asking for full version purchase. Simply close the window by clicking on X in upper right corner.
  • 0

Advertisements

#17
Bullet90
Posted 03 May 2010 - 10:43 AM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
OK, Dr Web has completed express scan and is now working on Complete Scan. It has found 2 infections so far but this is going to take awhile. Bear with me.
  • 0

#18
Essexboy
Posted 03 May 2010 - 10:44 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
No problem I am here on and off all day today
  • 0

#19
Bullet90
Posted 03 May 2010 - 02:31 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
Well, after a few hours of scanning, the PC crashed and I can't find the log. Last I checked, there were several viruses detected, 5 of which were either deleted or moved to vault. Now, it won't let me scan again unless I upgrade. I do remember a lot of the detections were concerning a program I have called Paragon Drive Backup which was referred to me through an online forum. Can I recover the logfile or delete, download and run again?
  • 0

#20
Essexboy
Posted 03 May 2010 - 02:37 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Delete it and try this one instead

Save these instructions so you can have access to them while in Safe Mode.

Please click here to download AVP Tool by Kaspersky.
  • Save it to your desktop.
  • Reboot your computer into SafeMode.

    You can do this by restarting your computer and continually tapping the F8 key until a menu appears.
    Use your up arrow key to highlight SafeMode then hit enter    .

  • Double click the setup file to run it.
  • Click Next to continue.
  • Accept the Licence agreement and click on next
  • It will by default install it to your desktop folder.Click Next.
  • It will then open a box There will be a tab that says Automatic scan.
  • Under Automatic scan make sure these are checked.

  • Hidden Startup Objects
  • System Memory
  • Disk Boot Sectors.
  • My Computer.
  • Also any other drives (Removable that you may have)


Leave the rest of the settings as they appear as default.

  • Then click on Scan at the to right hand Corner.
  • It will automatically Neutralize any objects found.
  • If some objects are left un-neutralized then click the button that says Neutralize all
  • If it says it cannot be Neutralized then chooose The delete option when prompted.
  • After that is done click on the reports button at the bottom and save it to file name it Kas.
  • Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.

    Note: This tool will self uninstall when you close it so please save the log before closing it.


  • 0

#21
Bullet90
Posted 03 May 2010 - 04:48 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
OK, Here is the KASP Log

Autoscan: completed 10 minutes ago (events: 12, objects: 280214, time: 01:27:27)
5/3/2010 6:25:02 PM Deleted Trojans Exploit.Java.CVE-2009-3867.c High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\25eb9c86-544f4b80/Uutecwv.class
5/3/2010 6:24:57 PM Deleted Trojans Trojan-Downloader.Java.Agent.ch High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\748dfd1-74d847bb/myf/y/LoaderX.class
5/3/2010 6:24:52 PM Detected Trojans Exploit.Java.CVE-2009-3867.c High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\25eb9c86-544f4b80/Uutecwv.class
5/3/2010 6:24:52 PM Deleted Trojans Exploit.Java.Agent.a High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\25eb9c86-544f4b80/Keyworq.class
5/3/2010 6:24:44 PM Deleted Trojans Exploit.OSX.Smid.d High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\654181e6-70f368c7/AppletX.class
5/3/2010 6:24:44 PM Detected Trojans Trojan-Downloader.Java.Agent.ch High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\748dfd1-74d847bb/myf/y/LoaderX.class
5/3/2010 6:24:44 PM Deleted Trojans Trojan-Downloader.Java.OpenStream.am High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\748dfd1-74d847bb/myf/y/AppletX.class
5/3/2010 6:01:40 PM Detected Trojans Exploit.Java.Agent.a High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\25eb9c86-544f4b80/Keyworq.class
5/3/2010 6:00:50 PM Detected Trojans Exploit.OSX.Smid.d High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\654181e6-70f368c7/AppletX.class
5/3/2010 5:59:51 PM Detected Trojans Trojan-Downloader.Java.OpenStream.am High Exact C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\748dfd1-74d847bb/myf/y/AppletX.class
5/3/2010 5:01:53 PM Task started
5/3/2010 6:29:20 PM Task completed
  • 0

#22
Essexboy
Posted 04 May 2010 - 11:46 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK it is not malware so we will need to look at your security programmes blocking you

Disable each of your security programmes one at a time and then attempt to get to one of the sites - see if that will allow you to access it, if you can let me know which programme is blocking
  • 0

#23
Bullet90
Posted 04 May 2010 - 02:36 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
OK, I disabled all antivirus/malware software. I uninstalled AVG 9.0 Free Edition and still won't load pages. I found that 3 processes are still running, avgnt.exe, avshadow.exe and avguard.exe, and cannot be terminated. The following error appears: The operation could not be completed, access denied. I think this is where my problem is. I need a good process terminator, I think.
  • 0

#24
Essexboy
Posted 04 May 2010 - 02:44 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
There is an AVG removal tool here Be very careful without an AV or you could download Avast or Avira as a replacement whilst we are testing
  • 0

#25
Bullet90
Posted 04 May 2010 - 03:28 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
No Go, 3 processes are still running. Here is the log:

2010-05-04 21:18:54,711 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2010-05-04 21:18:54,883 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2010-05-04 21:18:54,883 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2010-05-04 21:18:54,884 WARN AvgDir param empty.
2010-05-04 21:18:54,884 WARN AvgDataDir param empty.
2010-05-04 21:19:02,029 INFO AvgRemover runs in attempt number 1
2010-05-04 21:19:02,031 INFO ***** Services *****
2010-05-04 21:19:02,031 INFO Processing service avg8emc
2010-05-04 21:19:02,032 INFO Service avg8emc is not installed
2010-05-04 21:19:02,032 DEBUG Service avg8emc RegCleanup
2010-05-04 21:19:02,032 DEBUG Registry keys for service avg8emc are not present
2010-05-04 21:19:02,032 INFO Processing service avgfws8
2010-05-04 21:19:02,033 INFO Service avgfws8 is not installed
2010-05-04 21:19:02,033 DEBUG Service avgfws8 RegCleanup
2010-05-04 21:19:02,033 DEBUG Registry keys for service avgfws8 are not present
2010-05-04 21:19:02,033 INFO Processing service avg8wd
2010-05-04 21:19:02,034 INFO Service avg8wd is not installed
2010-05-04 21:19:02,034 DEBUG Service avg8wd RegCleanup
2010-05-04 21:19:02,034 DEBUG Registry keys for service avg8wd are not present
2010-05-04 21:19:02,034 INFO Processing service AvgWFPx
2010-05-04 21:19:02,036 INFO Service AvgWFPx is not installed
2010-05-04 21:19:02,036 DEBUG Service AvgWFPx RegCleanup
2010-05-04 21:19:02,036 DEBUG Registry keys for service AvgWFPx are not present
2010-05-04 21:19:02,037 INFO Processing service AvgWFPa
2010-05-04 21:19:02,037 INFO Service AvgWFPa is not installed
2010-05-04 21:19:02,037 DEBUG Service AvgWFPa RegCleanup
2010-05-04 21:19:02,038 DEBUG Registry keys for service AvgWFPa are not present
2010-05-04 21:19:02,038 INFO Processing service AvgMfx86
2010-05-04 21:19:02,038 INFO Service AvgMfx86 is not installed
2010-05-04 21:19:02,039 DEBUG Service AvgMfx86 RegCleanup
2010-05-04 21:19:02,041 DEBUG Registry keys for service AvgMfx86 are not present
2010-05-04 21:19:02,041 INFO Processing service AvgMfx64
2010-05-04 21:19:02,042 INFO Service AvgMfx64 is not installed
2010-05-04 21:19:02,042 DEBUG Service AvgMfx64 RegCleanup
2010-05-04 21:19:02,042 DEBUG Registry keys for service AvgMfx64 are not present
2010-05-04 21:19:02,042 INFO Processing service AvgLdx86
2010-05-04 21:19:02,043 INFO Service AvgLdx86 is not installed
2010-05-04 21:19:02,043 DEBUG Service AvgLdx86 RegCleanup
2010-05-04 21:19:02,043 DEBUG Registry keys for service AvgLdx86 are not present
2010-05-04 21:19:02,043 INFO Processing service AvgLdx64
2010-05-04 21:19:02,044 INFO Service AvgLdx64 is not installed
2010-05-04 21:19:02,044 DEBUG Service AvgLdx64 RegCleanup
2010-05-04 21:19:02,044 DEBUG Registry keys for service AvgLdx64 are not present
2010-05-04 21:19:02,044 INFO Processing service AvgTdiX
2010-05-04 21:19:02,048 INFO Service AvgTdiX is not installed
2010-05-04 21:19:02,048 DEBUG Service AvgTdiX RegCleanup
2010-05-04 21:19:02,048 DEBUG Registry keys for service AvgTdiX are not present
2010-05-04 21:19:02,048 INFO Processing service AvgTdiA
2010-05-04 21:19:02,049 INFO Service AvgTdiA is not installed
2010-05-04 21:19:02,049 DEBUG Service AvgTdiA RegCleanup
2010-05-04 21:19:02,051 DEBUG Registry keys for service AvgTdiA are not present
2010-05-04 21:19:02,051 INFO Processing service AvgRkx86
2010-05-04 21:19:02,052 INFO Service AvgRkx86 is not installed
2010-05-04 21:19:02,052 DEBUG Service AvgRkx86 RegCleanup
2010-05-04 21:19:02,052 DEBUG Registry keys for service AvgRkx86 are not present
2010-05-04 21:19:02,052 INFO Processing service AvgRkx64
2010-05-04 21:19:02,053 INFO Service AvgRkx64 is not installed
2010-05-04 21:19:02,057 DEBUG Service AvgRkx64 RegCleanup
2010-05-04 21:19:02,057 DEBUG Registry keys for service AvgRkx64 are not present
2010-05-04 21:19:02,057 INFO Processing service avg9emc
2010-05-04 21:19:02,058 INFO Service avg9emc is not installed
2010-05-04 21:19:02,059 DEBUG Service avg9emc RegCleanup
2010-05-04 21:19:02,061 DEBUG Registry keys for service avg9emc are not present
2010-05-04 21:19:02,061 INFO Processing service avgfws9
2010-05-04 21:19:02,061 INFO Service avgfws9 is not installed
2010-05-04 21:19:02,062 DEBUG Service avgfws9 RegCleanup
2010-05-04 21:19:02,062 DEBUG Registry keys for service avgfws9 are not present
2010-05-04 21:19:02,062 INFO Processing service avg9wd
2010-05-04 21:19:02,063 INFO Service avg9wd is not installed
2010-05-04 21:19:02,063 DEBUG Service avg9wd RegCleanup
2010-05-04 21:19:02,063 DEBUG Registry keys for service avg9wd are not present
2010-05-04 21:19:02,063 INFO Processing service AVGIDSAgent
2010-05-04 21:19:02,064 INFO Service AVGIDSAgent is not installed
2010-05-04 21:19:02,066 DEBUG Service AVGIDSAgent RegCleanup
2010-05-04 21:19:02,066 DEBUG Registry keys for service AVGIDSAgent are not present
2010-05-04 21:19:02,066 INFO Processing service AVGIDSShimxpx
2010-05-04 21:19:02,067 INFO Service AVGIDSShimxpx is not installed
2010-05-04 21:19:02,068 DEBUG Service AVGIDSShimxpx RegCleanup
2010-05-04 21:19:02,068 DEBUG Registry keys for service AVGIDSShimxpx are not present
2010-05-04 21:19:02,068 INFO Processing service AVGIDSFilterxpx
2010-05-04 21:19:02,069 INFO Service AVGIDSFilterxpx is not installed
2010-05-04 21:19:02,069 DEBUG Service AVGIDSFilterxpx RegCleanup
2010-05-04 21:19:02,069 DEBUG Registry keys for service AVGIDSFilterxpx are not present
2010-05-04 21:19:02,069 INFO Processing service AVGIDSDriverxpx
2010-05-04 21:19:02,072 INFO Service AVGIDSDriverxpx is not installed
2010-05-04 21:19:02,073 DEBUG Service AVGIDSDriverxpx RegCleanup
2010-05-04 21:19:02,074 DEBUG Registry keys for service AVGIDSDriverxpx are not present
2010-05-04 21:19:02,074 INFO Processing service AVGIDSShimvtx
2010-05-04 21:19:02,074 INFO Service AVGIDSShimvtx is not installed
2010-05-04 21:19:02,076 DEBUG Service AVGIDSShimvtx RegCleanup
2010-05-04 21:19:02,076 DEBUG Registry keys for service AVGIDSShimvtx are not present
2010-05-04 21:19:02,076 INFO Processing service AVGIDSFiltervtx
2010-05-04 21:19:02,077 INFO Service AVGIDSFiltervtx is not installed
2010-05-04 21:19:02,077 DEBUG Service AVGIDSFiltervtx RegCleanup
2010-05-04 21:19:02,077 DEBUG Registry keys for service AVGIDSFiltervtx are not present
2010-05-04 21:19:02,077 INFO Processing service AVGIDSDrivervtx
2010-05-04 21:19:02,078 INFO Service AVGIDSDrivervtx is not installed
2010-05-04 21:19:02,079 DEBUG Service AVGIDSDrivervtx RegCleanup
2010-05-04 21:19:02,079 DEBUG Registry keys for service AVGIDSDrivervtx are not present
2010-05-04 21:19:02,079 INFO Processing service AVGIDSFiltervta
2010-05-04 21:19:02,081 INFO Service AVGIDSFiltervta is not installed
2010-05-04 21:19:02,082 DEBUG Service AVGIDSFiltervta RegCleanup
2010-05-04 21:19:02,082 DEBUG Registry keys for service AVGIDSFiltervta are not present
2010-05-04 21:19:02,082 INFO Processing service AVGIDSDrivervta
2010-05-04 21:19:02,083 INFO Service AVGIDSDrivervta is not installed
2010-05-04 21:19:02,083 DEBUG Service AVGIDSDrivervta RegCleanup
2010-05-04 21:19:02,083 DEBUG Registry keys for service AVGIDSDrivervta are not present
2010-05-04 21:19:02,083 INFO Processing service AVGIDSShimw7x
2010-05-04 21:19:02,084 INFO Service AVGIDSShimw7x is not installed
2010-05-04 21:19:02,086 DEBUG Service AVGIDSShimw7x RegCleanup
2010-05-04 21:19:02,086 DEBUG Registry keys for service AVGIDSShimw7x are not present
2010-05-04 21:19:02,086 INFO Processing service AVGIDSFilterw7x
2010-05-04 21:19:02,086 INFO Service AVGIDSFilterw7x is not installed
2010-05-04 21:19:02,087 DEBUG Service AVGIDSFilterw7x RegCleanup
2010-05-04 21:19:02,087 DEBUG Registry keys for service AVGIDSFilterw7x are not present
2010-05-04 21:19:02,087 INFO Processing service AVGIDSDriverw7x
2010-05-04 21:19:02,088 INFO Service AVGIDSDriverw7x is not installed
2010-05-04 21:19:02,089 DEBUG Service AVGIDSDriverw7x RegCleanup
2010-05-04 21:19:02,089 DEBUG Registry keys for service AVGIDSDriverw7x are not present
2010-05-04 21:19:02,089 INFO Processing service AVGIDSFilterw7a
2010-05-04 21:19:02,091 INFO Service AVGIDSFilterw7a is not installed
2010-05-04 21:19:02,091 DEBUG Service AVGIDSFilterw7a RegCleanup
2010-05-04 21:19:02,091 DEBUG Registry keys for service AVGIDSFilterw7a are not present
2010-05-04 21:19:02,091 INFO Processing service AVGIDSDriverw7a
2010-05-04 21:19:02,092 INFO Service AVGIDSDriverw7a is not installed
2010-05-04 21:19:02,093 DEBUG Service AVGIDSDriverw7a RegCleanup
2010-05-04 21:19:02,093 DEBUG Registry keys for service AVGIDSDriverw7a are not present
2010-05-04 21:19:02,093 INFO Processing service AVGIDSErHrxpx
2010-05-04 21:19:02,094 INFO Service AVGIDSErHrxpx is not installed
2010-05-04 21:19:02,094 DEBUG Service AVGIDSErHrxpx RegCleanup
2010-05-04 21:19:02,094 DEBUG Registry keys for service AVGIDSErHrxpx are not present
2010-05-04 21:19:02,096 INFO Processing service AVGIDSErHrvtx
2010-05-04 21:19:02,097 INFO Service AVGIDSErHrvtx is not installed
2010-05-04 21:19:02,097 DEBUG Service AVGIDSErHrvtx RegCleanup
2010-05-04 21:19:02,097 DEBUG Registry keys for service AVGIDSErHrvtx are not present
2010-05-04 21:19:02,097 INFO Processing service AVGIDSErHrvta
2010-05-04 21:19:02,098 INFO Service AVGIDSErHrvta is not installed
2010-05-04 21:19:02,098 DEBUG Service AVGIDSErHrvta RegCleanup
2010-05-04 21:19:02,099 DEBUG Registry keys for service AVGIDSErHrvta are not present
2010-05-04 21:19:02,099 INFO Processing service AVGIDSErHrw7x
2010-05-04 21:19:02,101 INFO Service AVGIDSErHrw7x is not installed
2010-05-04 21:19:02,101 DEBUG Service AVGIDSErHrw7x RegCleanup
2010-05-04 21:19:02,101 DEBUG Registry keys for service AVGIDSErHrw7x are not present
2010-05-04 21:19:02,101 INFO Processing service AVGIDSErHrw7a
2010-05-04 21:19:02,102 INFO Service AVGIDSErHrw7a is not installed
2010-05-04 21:19:02,102 DEBUG Service AVGIDSErHrw7a RegCleanup
2010-05-04 21:19:02,103 DEBUG Registry keys for service AVGIDSErHrw7a are not present
2010-05-04 21:19:02,103 INFO ***** Registry keys and values *****
2010-05-04 21:19:02,103 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-05-04 21:19:02,104 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2010-05-04 21:19:02,104 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present
2010-05-04 21:19:02,107 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-05-04 21:19:02,108 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2010-05-04 21:19:02,108 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present
2010-05-04 21:19:02,109 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2010-05-04 21:19:02,109 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2010-05-04 21:19:02,109 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2010-05-04 21:19:02,109 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt
2010-05-04 21:19:02,111 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove
2010-05-04 21:19:02,111 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found
2010-05-04 21:19:02,111 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2010-05-04 21:19:02,112 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2010-05-04 21:19:02,112 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2010-05-04 21:19:02,112 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-05-04 21:19:02,113 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-05-04 21:19:02,113 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-05-04 21:19:02,113 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-05-04 21:19:02,114 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-05-04 21:19:02,114 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-05-04 21:19:02,114 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2010-05-04 21:19:02,116 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2010-05-04 21:19:02,116 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2010-05-04 21:19:02,116 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,116 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,117 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,117 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar
2010-05-04 21:19:02,118 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-05-04 21:19:02,118 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-05-04 21:19:02,118 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,119 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,119 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,119 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-05-04 21:19:02,121 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2010-05-04 21:19:02,121 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension is not present
2010-05-04 21:19:02,122 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-05-04 21:19:02,123 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2010-05-04 21:19:02,123 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present
2010-05-04 21:19:02,124 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2010-05-04 21:19:02,124 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2010-05-04 21:19:02,124 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2010-05-04 21:19:02,124 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-05-04 21:19:02,126 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-05-04 21:19:02,126 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-05-04 21:19:02,127 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-05-04 21:19:02,127 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-05-04 21:19:02,128 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-05-04 21:19:02,128 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-05-04 21:19:02,129 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-05-04 21:19:02,129 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-05-04 21:19:02,131 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-05-04 21:19:02,132 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-05-04 21:19:02,132 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-05-04 21:19:02,132 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-05-04 21:19:02,133 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2010-05-04 21:19:02,133 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2010-05-04 21:19:02,134 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-05-04 21:19:02,136 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove
2010-05-04 21:19:02,136 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present
2010-05-04 21:19:02,137 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2010-05-04 21:19:02,139 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2010-05-04 21:19:02,139 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2010-05-04 21:19:02,139 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall
2010-05-04 21:19:02,141 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove
2010-05-04 21:19:02,141 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found
2010-05-04 21:19:02,141 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
2010-05-04 21:19:02,142 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove
2010-05-04 21:19:02,142 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found
2010-05-04 21:19:02,142 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-05-04 21:19:02,142 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-05-04 21:19:02,143 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-05-04 21:19:02,143 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-05-04 21:19:02,143 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-05-04 21:19:02,143 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-05-04 21:19:02,143 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-05-04 21:19:02,144 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-05-04 21:19:02,144 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-05-04 21:19:02,144 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-05-04 21:19:02,146 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-05-04 21:19:02,146 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-05-04 21:19:02,146 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-05-04 21:19:02,147 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-05-04 21:19:02,147 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-05-04 21:19:02,147 INFO Processing registry SOFTWARE\Classes\.avgdi
2010-05-04 21:19:02,147 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2010-05-04 21:19:02,147 DEBUG Key SOFTWARE\Classes\.avgdi not found
2010-05-04 21:19:02,148 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-05-04 21:19:02,148 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-05-04 21:19:02,148 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-05-04 21:19:02,148 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-05-04 21:19:02,149 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-05-04 21:19:02,149 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-05-04 21:19:02,149 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-05-04 21:19:02,151 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-05-04 21:19:02,151 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-05-04 21:19:02,151 INFO Processing registry SOFTWARE\AVG\Clients
2010-05-04 21:19:02,152 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2010-05-04 21:19:02,152 DEBUG Key SOFTWARE\AVG\Clients not found
2010-05-04 21:19:02,152 INFO Processing registry SOFTWARE\AVG\AVG8
2010-05-04 21:19:02,152 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-05-04 21:19:02,152 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-05-04 21:19:02,152 INFO Processing registry SOFTWARE\AVG\AVG9
2010-05-04 21:19:02,153 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-05-04 21:19:02,154 INFO Processing registry SOFTWARE\AVG\AVG IDS
2010-05-04 21:19:02,156 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2010-05-04 21:19:02,156 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2010-05-04 21:19:02,156 INFO Processing registry SOFTWARE\AVG
2010-05-04 21:19:02,157 DEBUG Value SOFTWARE\AVG:DumpType Remove
2010-05-04 21:19:02,157 INFO Value SOFTWARE\AVG:DumpType is not present
2010-05-04 21:19:02,158 INFO Processing registry SOFTWARE\AVG
2010-05-04 21:19:02,158 DEBUG Key SOFTWARE\AVG Remove
2010-05-04 21:19:02,159 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-05-04 21:19:02,159 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-05-04 21:19:02,159 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-05-04 21:19:02,159 INFO Processing registry SOFTWARE\AVG\AVG8
2010-05-04 21:19:02,161 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-05-04 21:19:02,161 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-05-04 21:19:02,161 INFO Processing registry SOFTWARE\AVG\AVG9
2010-05-04 21:19:02,162 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-05-04 21:19:02,162 INFO Processing registry SOFTWARE\AVG
2010-05-04 21:19:02,163 DEBUG Key SOFTWARE\AVG Remove
2010-05-04 21:19:02,163 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-05-04 21:19:02,164 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-05-04 21:19:02,164 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-05-04 21:19:02,164 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks
2010-05-04 21:19:02,164 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove
2010-05-04 21:19:02,164 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present
2010-05-04 21:19:02,166 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,167 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,167 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,167 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser
2010-05-04 21:19:02,168 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-05-04 21:19:02,168 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-05-04 21:19:02,169 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,171 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,171 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,171 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-05-04 21:19:02,173 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-05-04 21:19:02,173 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-05-04 21:19:02,173 INFO Processing registry aAvgAPI.AvgBro
2010-05-04 21:19:02,174 DEBUG Key aAvgAPI.AvgBro ForceRemove
2010-05-04 21:19:02,174 DEBUG Key aAvgAPI.AvgBro not found
2010-05-04 21:19:02,174 INFO Processing registry AVG.Office
2010-05-04 21:19:02,174 DEBUG Key AVG.Office ForceRemove
2010-05-04 21:19:02,176 DEBUG Key AVG.Office not found
2010-05-04 21:19:02,176 INFO Processing registry AVG.Office.8
2010-05-04 21:19:02,176 DEBUG Key AVG.Office.8 ForceRemove
2010-05-04 21:19:02,176 DEBUG Key AVG.Office.8 not found
2010-05-04 21:19:02,176 INFO Processing registry avgtoolbar.AVGTOOLBAR
2010-05-04 21:19:02,177 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2010-05-04 21:19:02,177 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2010-05-04 21:19:02,177 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2010-05-04 21:19:02,178 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2010-05-04 21:19:02,178 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2010-05-04 21:19:02,178 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2010-05-04 21:19:02,179 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2010-05-04 21:19:02,179 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2010-05-04 21:19:02,179 INFO Processing registry LinkScannerIE.NavFilter
2010-05-04 21:19:02,179 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2010-05-04 21:19:02,181 INFO Processing registry LinkScannerIE.NavFilter.1
2010-05-04 21:19:02,181 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2010-05-04 21:19:02,182 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2010-05-04 21:19:02,182 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2010-05-04 21:19:02,183 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2010-05-04 21:19:02,183 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2010-05-04 21:19:02,183 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2010-05-04 21:19:02,183 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2010-05-04 21:19:02,183 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2010-05-04 21:19:02,184 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2010-05-04 21:19:02,186 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-05-04 21:19:02,186 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-05-04 21:19:02,186 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-05-04 21:19:02,186 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-05-04 21:19:02,187 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-05-04 21:19:02,187 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-05-04 21:19:02,187 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2010-05-04 21:19:02,187 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2010-05-04 21:19:02,188 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2010-05-04 21:19:02,188 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2010-05-04 21:19:02,191 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2010-05-04 21:19:02,191 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2010-05-04 21:19:02,191 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2010-05-04 21:19:02,192 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2010-05-04 21:19:02,192 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2010-05-04 21:19:02,192 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2010-05-04 21:19:02,193 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2010-05-04 21:19:02,193 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2010-05-04 21:19:02,193 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7}
2010-05-04 21:19:02,194 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove
2010-05-04 21:19:02,194 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found
2010-05-04 21:19:02,194 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-05-04 21:19:02,196 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-05-04 21:19:02,196 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-05-04 21:19:02,196 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,196 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,197 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,197 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2010-05-04 21:19:02,197 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2010-05-04 21:19:02,197 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2010-05-04 21:19:02,197 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2010-05-04 21:19:02,198 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2010-05-04 21:19:02,198 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2010-05-04 21:19:02,198 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC}
2010-05-04 21:19:02,199 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove
2010-05-04 21:19:02,199 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found
2010-05-04 21:19:02,199 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2010-05-04 21:19:02,201 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2010-05-04 21:19:02,201 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2010-05-04 21:19:02,201 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2010-05-04 21:19:02,202 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2010-05-04 21:19:02,202 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2010-05-04 21:19:02,203 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2010-05-04 21:19:02,203 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2010-05-04 21:19:02,203 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-05-04 21:19:02,203 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-05-04 21:19:02,204 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-05-04 21:19:02,204 INFO ***** Files and folders *****
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 0
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 1
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 2
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 3
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 4
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 5
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 6
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 7
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 8
2010-05-04 21:19:02,206 DEBUG Missing ParentDir path for fileItem number 9
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 10
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 11
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 12
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 13
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 14
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 15
2010-05-04 21:19:02,207 DEBUG Missing ParentDir path for fileItem number 16
2010-05-04 21:19:02,207 DEBUG Processing item C:\Users\Paul\AppData\Roaming\AVGTOOLBAR
2010-05-04 21:19:02,207 INFO Directory C:\Users\Paul\AppData\Roaming\AVGTOOLBAR not found
2010-05-04 21:19:02,208 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,208 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0
2010-05-04 21:19:02,209 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0 not found
2010-05-04 21:19:02,209 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0
2010-05-04 21:19:02,209 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0 not found
2010-05-04 21:19:02,211 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.5
2010-05-04 21:19:02,211 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.5 not found
2010-05-04 21:19:02,212 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.5
2010-05-04 21:19:02,212 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.5 not found
2010-05-04 21:19:02,212 DEBUG Processing item C:\Users\Public\Desktop\avg 8.0.lnk
2010-05-04 21:19:02,212 INFO File C:\Users\Public\Desktop\avg 8.0.lnk not found
2010-05-04 21:19:02,213 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.0.lnk
2010-05-04 21:19:02,213 INFO File C:\Users\Public\Desktop\avg free 8.0.lnk not found
2010-05-04 21:19:02,214 DEBUG Processing item C:\Users\Public\Desktop\avg 8.5.lnk
2010-05-04 21:19:02,214 INFO File C:\Users\Public\Desktop\avg 8.5.lnk not found
2010-05-04 21:19:02,216 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.5.lnk
2010-05-04 21:19:02,216 INFO File C:\Users\Public\Desktop\avg free 8.5.lnk not found
2010-05-04 21:19:02,216 DEBUG Missing ParentDir path for fileItem number 27
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 28
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 29
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 30
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 31
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 32
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 33
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 34
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 35
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 36
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 37
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 38
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 39
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 40
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 41
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 42
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 43
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 44
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 45
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 46
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 47
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 48
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 49
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 50
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 51
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 52
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 53
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 54
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 55
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 56
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 57
2010-05-04 21:19:02,217 DEBUG Missing ParentDir path for fileItem number 58
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 59
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 60
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 61
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 62
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 63
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 64
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 65
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 66
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 67
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 68
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 69
2010-05-04 21:19:02,218 DEBUG Missing ParentDir path for fileItem number 70
2010-05-04 21:19:02,218 DEBUG Processing item C:\ProgramData\AVG Security Toolbar\Languages
2010-05-04 21:19:02,218 INFO Directory C:\ProgramData\AVG Security Toolbar\Languages not found
2010-05-04 21:19:02,218 DEBUG Processing item C:\ProgramData\AVG Security Toolbar
2010-05-04 21:19:02,218 INFO Directory C:\ProgramData\AVG Security Toolbar not found
2010-05-04 21:19:02,219 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,219 DEBUG Processing item C:\Users\Public\Desktop\avg 9.0.lnk
2010-05-04 21:19:02,219 INFO File C:\Users\Public\Desktop\avg 9.0.lnk not found
2010-05-04 21:19:02,221 DEBUG Processing item C:\Users\Public\Desktop\avg free 9.0.lnk
2010-05-04 21:19:02,221 INFO File C:\Users\Public\Desktop\avg free 9.0.lnk not found
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 76
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 77
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 78
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 79
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 80
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 81
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 82
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 83
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 84
2010-05-04 21:19:02,223 DEBUG Missing ParentDir path for fileItem number 85
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 86
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 87
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 88
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 89
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 90
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 91
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 92
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 93
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 94
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 95
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 96
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 97
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 98
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 99
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 100
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 101
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 102
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 103
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 104
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 105
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 106
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 107
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 108
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 109
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 110
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 111
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 112
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 113
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 114
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 115
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 116
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 117
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 118
2010-05-04 21:19:02,224 DEBUG Missing ParentDir path for fileItem number 119
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 120
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 121
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 122
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 123
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 124
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 125
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 126
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 127
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 128
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 129
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 130
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 131
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 132
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 133
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 134
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 135
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 136
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 137
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 138
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 139
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 140
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 141
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 142
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 143
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 144
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 145
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 146
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 147
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 148
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 149
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 150
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 151
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 152
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 153
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 154
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 155
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 156
2010-05-04 21:19:02,226 DEBUG Missing ParentDir path for fileItem number 157
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 158
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 159
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 160
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 161
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 162
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 163
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 164
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 165
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 166
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 167
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 168
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 169
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 170
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 171
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 172
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 173
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 174
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 175
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 176
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 177
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 178
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 179
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 180
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 181
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 182
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 183
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 184
2010-05-04 21:19:02,227 DEBUG Missing ParentDir path for fileItem number 185
2010-05-04 21:19:02,227 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,227 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,228 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,228 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,228 DEBUG Processing item C:\Windows\System32\Drivers
2010-05-04 21:19:02,228 DEBUG Processing item C:\Windows\System32\Drivers\avg
2010-05-04 21:19:02,228 INFO Directory C:\Windows\System32\Drivers\avg not found
2010-05-04 21:19:02,228 DEBUG Processing item C:\Windows\System32
2010-05-04 21:19:02,229 DEBUG Processing item C:\Program Files\AVG
2010-05-04 21:19:02,229 DEBUG Directory C:\Program Files\AVG not deleted (error c0070091)
2010-05-04 21:19:02,229 DEBUG Missing ParentDir path for fileItem number 194
2010-05-04 21:19:02,229 INFO ***** Avg Fw NDIS driver *****
2010-05-04 21:19:03,312 INFO FW NDIS driver not present
  • 0

Advertisements

#26
Essexboy
Posted 04 May 2010 - 03:49 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Download and install another AV and then run OTL - I will then remove all residues
  • 0

#27
Bullet90
Posted 04 May 2010 - 05:28 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
Avira is installed and running. OTL scan log as follows:

OTL logfile created on: 5/4/2010 7:00:16 PM - Run 5
OTL by OldTimer - Version 3.2.4.0 Folder = C:\Users\Paul\Desktop\Utilities
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 65.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287.07 Gb Total Space | 196.62 Gb Free Space | 68.49% Space Free | Partition Type: NTFS
Drive D: | 10.92 Gb Total Space | 1.82 Gb Free Space | 16.68% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PAUL-PC
Current User Name: Paul
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/05/02 17:47:36 | 000,834,248 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2010/05/02 17:47:19 | 001,285,864 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2010/05/01 23:58:12 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\Paul\Desktop\Utilities\OTL.exe
PRC - [2010/04/30 10:00:55 | 002,020,592 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010/04/01 13:58:04 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/03/02 11:28:31 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/01/14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009/11/19 23:16:26 | 000,582,528 | ---- | M] (Duality Software) -- C:\Program Files\DS Clock\dsclock.exe
PRC - [2009/11/19 21:39:16 | 000,062,264 | ---- | M] (Duality Software) -- C:\Program Files\DS Clock\dsetime.exe
PRC - [2009/10/31 01:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/09/30 17:57:20 | 000,718,688 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
PRC - [2009/08/10 08:14:26 | 000,027,184 | ---- | M] () -- C:\Windows\snuvcdsm.exe
PRC - [2009/07/13 21:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 21:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/06/07 14:54:28 | 000,223,248 | ---- | M] (Paragon GmbH) -- C:\Program Files\Paragon Software\Drive Backup 9 Professional\Net Burner Service\NetBurnerService.exe


========== Modules (SafeList) ==========

MOD - [2010/05/01 23:58:12 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\Paul\Desktop\Utilities\OTL.exe
MOD - [2009/07/13 21:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009/07/13 21:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009/07/13 21:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009/07/13 21:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009/07/13 21:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009/07/13 21:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009/07/13 21:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009/07/13 21:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009/07/13 21:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009/07/13 21:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009/07/13 21:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009/07/13 21:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (NMSAccess)
SRV - File not found [Auto | Stopped] -- -- (HP Health Check Service)
SRV - [2010/05/02 17:47:19 | 001,285,864 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/03/29 08:40:55 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009/11/19 21:39:16 | 000,062,264 | ---- | M] (Duality Software) [Auto | Running] -- C:\Program Files\DS Clock\dsetime.exe -- (DSClockSyncTime)
SRV - [2009/07/13 21:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 21:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 21:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 21:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 21:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 21:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 21:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 21:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 21:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 21:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 21:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 21:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 21:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 21:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 21:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009/07/13 21:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 21:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/06/07 14:54:28 | 000,223,248 | ---- | M] (Paragon GmbH) [Auto | Running] -- C:\Program Files\Paragon Software\Drive Backup 9 Professional\Net Burner Service\NetBurnerService.exe -- (NetBurnerService)


========== Driver Services (SafeList) ==========

DRV - [2010/04/30 10:00:55 | 000,061,440 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010/04/23 19:41:21 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2010/04/02 21:24:40 | 000,167,936 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2010/04/02 21:22:50 | 006,755,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5s32.sys -- (NETw5s32) Intel®
DRV - [2010/03/01 10:05:24 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/02/17 11:25:50 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2010/02/17 11:15:58 | 000,012,872 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/02/04 11:53:02 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2010/01/18 16:39:06 | 000,003,200 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rcmirror.sys -- (rcmirror)
DRV - [2009/12/11 03:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/09/10 10:29:50 | 001,761,280 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2009/07/13 21:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 21:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 21:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 21:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 21:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 21:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 21:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 21:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 21:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009/07/13 21:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 21:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 21:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 21:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 21:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 21:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 21:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 21:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 21:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 21:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 21:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 21:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 21:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 21:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 21:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 21:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 21:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 21:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 21:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 21:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 21:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 21:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 21:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 21:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 21:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 21:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 21:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 21:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 21:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009/07/13 20:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 20:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 20:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 19:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 19:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 19:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 19:52:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt)
DRV - [2009/07/13 19:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 19:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 19:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/13 19:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 19:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 19:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 19:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 19:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 19:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 19:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009/07/13 19:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 19:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 18:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 18:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 18:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 18:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 18:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 18:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 18:13:46 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (SrvHsfV92)
DRV - [2009/07/13 18:13:45 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (SrvHsfWinac)
DRV - [2009/07/13 18:13:45 | 000,207,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (SrvHsfHDA)
DRV - [2009/07/13 18:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel®
DRV - [2009/07/13 18:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 18:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 18:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009/06/10 17:19:30 | 004,756,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/04/29 08:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2009/02/28 19:40:18 | 000,087,536 | ---- | M] (CyberLink Corp.) [2010/03/26 22:20:45] [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD9\000.fcl -- ({B154377D-700F-42cc-9474-23858FBDF4BD})
DRV - [2008/06/07 14:54:28 | 000,084,752 | ---- | M] (Rocket Division Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\NetBurn.sys -- (NetBurn)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {0a452a47-c5a8-4854-a237-4b9b06b376f0} - Reg Error: Key error. File not found

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 90 15 AF 43 4E CD CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = EA 92 98 01 9E 56 4C 4B 90 BE 9A 16 B8 3E 7F 8F [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.com"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.3.20100310105313

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/28 23:02:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/26 09:33:42 | 000,000,000 | ---D | M]

[2010/03/26 22:09:03 | 000,000,000 | ---D | M] -- C:\Users\Paul\AppData\Roaming\Mozilla\Extensions
[2010/03/26 22:09:03 | 000,000,000 | ---D | M] -- C:\Users\Paul\AppData\Roaming\Mozilla\Extensions\[email protected]
[2010/05/03 22:14:58 | 000,000,000 | ---D | M] -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\extensions
[2010/04/08 09:42:22 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/04/24 14:15:37 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2010/04/11 21:20:45 | 000,001,948 | ---- | M] () -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\searchplugins\bing-zugo.xml
[2010/04/17 13:16:13 | 000,000,877 | ---- | M] () -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\searchplugins\conduit.xml
[2010/04/23 14:39:49 | 000,002,612 | ---- | M] () -- C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\p01z92q3.default\searchplugins\kickasstorrents.xml
[2010/04/08 09:40:32 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/02/21 06:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
[2010/01/13 18:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll

O1 HOSTS File: ([2010/05/03 11:44:39 | 000,000,808 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - No CLSID value found.
O2 - BHO: (no name) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - No CLSID value found.
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SNUVCDSM] C:\Windows\snuvcdsm.exe ()
O4 - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [DS Clock] C:\Program Files\DS Clock\DSClock.exe (Duality Software)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &D&ownload &with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload all video with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &D&ownload all with BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O15 - HKCU\..Trusted Domains: kickasstorrents.com ([]https in Trusted sites)
O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} http://h20364.www2.h...DataManager.CAB (Hewlett-Packard Online Support Services)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.254
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010/04/01 20:00:19 | 000,000,000 | -H-D | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/03/26 17:14:55 | 000,000,000 | -H-D | M] - D:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2010/05/03 16:58:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010/05/03 11:17:21 | 000,000,000 | ---D | C] -- C:\Users\Paul\DoctorWeb
[2010/05/03 09:59:59 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/05/03 09:59:01 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/05/03 09:53:18 | 000,053,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\_AGP440_.sys.vir
[2010/05/03 09:48:16 | 000,000,000 | ---D | C] -- C:\ComboFix
[2010/05/03 09:47:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/05/02 19:50:50 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Local\temp
[2010/05/02 18:52:03 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/05/02 18:52:02 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/05/02 18:52:02 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/05/02 18:41:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/05/02 18:26:25 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Local\Threat Expert
[2010/05/02 08:50:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/05/02 00:38:45 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/05/02 00:37:27 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/05/01 22:32:25 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\Avira
[2010/05/01 22:13:25 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2010/05/01 22:13:22 | 000,124,784 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2010/05/01 22:13:22 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2010/05/01 22:13:22 | 000,051,992 | ---- | C] (AVIRA GmbH) -- C:\Windows\System32\drivers\avgntdd.sys
[2010/05/01 22:13:22 | 000,017,016 | ---- | C] (AVIRA GmbH) -- C:\Windows\System32\drivers\avgntmgr.sys
[2010/05/01 22:13:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2010/05/01 22:13:20 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2010/05/01 21:58:52 | 000,000,000 | ---D | C] -- C:\Program Files\Free Window Registry Repair
[2010/05/01 15:25:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories
[2010/04/29 09:08:06 | 000,000,000 | ---D | C] -- C:\Users\Paul\manager
[2010/04/28 21:57:49 | 000,000,000 | R--D | C] -- C:\Users\Paul\Downloads
[2010/04/28 20:48:32 | 000,000,000 | ---D | C] -- C:\Users\Paul\Documents\Downloads
[2010/04/28 18:12:06 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010/04/28 07:38:21 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys
[2010/04/26 18:31:19 | 000,000,000 | ---D | C] -- C:\ProgramData\{DA06AA03-DF24-4ECE-939E-1B0939235C66}
[2010/04/25 22:02:26 | 000,000,000 | ---D | C] -- C:\Program Files\SourceTec
[2010/04/25 21:15:17 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010/04/25 19:15:45 | 001,347,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\Msvbvm50.dll
[2010/04/25 19:11:56 | 000,000,000 | ---D | C] -- C:\dforce
[2010/04/25 17:45:57 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys
[2010/04/25 17:41:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
[2010/04/25 12:10:14 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/04/25 12:05:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010/04/25 11:58:05 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/04/25 11:58:03 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/04/25 11:57:58 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/04/24 14:21:42 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\BitComet Downloads
[2010/04/24 14:16:08 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\BitComet
[2010/04/24 14:15:30 | 000,000,000 | ---D | C] -- C:\Program Files\BitComet
[2010/04/24 09:14:40 | 000,000,000 | ---D | C] -- C:\April 24, 2010
[2010/04/23 23:07:26 | 000,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\System32\pthreadGC2.dll
[2010/04/23 23:07:24 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2010/04/23 23:05:40 | 000,290,816 | ---- | C] (SourceTec Software Co., LTD) -- C:\Windows\System32\stFLVSource.ax
[2010/04/23 23:05:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SourceTec
[2010/04/23 23:05:38 | 001,184,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wvc1dmod.dll
[2010/04/23 23:05:38 | 000,438,272 | ---- | C] (Gabest) -- C:\Windows\System32\Mpeg2DecFilter.ax
[2010/04/23 23:05:38 | 000,217,088 | ---- | C] (-) -- C:\Windows\System32\CoreFLACDecoder.ax
[2010/04/23 23:05:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sothink HD Video Converter
[2010/04/23 19:40:50 | 000,000,000 | ---D | C] -- C:\Program Files\LSoft Technologies
[2010/04/23 10:04:08 | 000,000,000 | ---D | C] -- C:\Program Files\Paragon Software
[2010/04/22 08:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010/04/21 22:18:13 | 000,000,000 | ---D | C] -- C:\Users\Paul\Documents\Delta Force Xtreme
[2010/04/21 22:06:37 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2010/04/21 22:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010/04/19 09:56:35 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\Leadertech
[2010/04/18 19:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\NovaLogic
[2010/04/18 08:47:23 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Local\PunkBuster
[2010/04/18 08:47:16 | 000,000,000 | ---D | C] -- C:\Users\Paul\Documents\BFBC2
[2010/04/18 08:35:08 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2010/04/18 08:35:01 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2010/04/18 08:35:01 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2010/04/18 08:35:00 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2010/04/17 12:46:50 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\Game Guides
[2010/04/16 21:28:36 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010/04/16 21:28:36 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010/04/16 21:28:29 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010/04/15 19:55:34 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\Limewire Downloads
[2010/04/15 14:43:07 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Local\ElevatedDiagnostics
[2010/04/15 11:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
[2010/04/14 21:45:54 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\Red Alert 3
[2010/04/14 21:43:44 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2010/04/14 21:43:44 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2010/04/14 21:43:39 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2010/04/14 21:43:39 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2010/04/14 21:43:37 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2010/04/14 21:43:36 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2010/04/14 21:43:31 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2010/04/14 21:43:31 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2010/04/14 21:43:28 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2010/04/14 21:43:28 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2010/04/14 21:43:27 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2010/04/14 21:43:23 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2010/04/14 21:43:23 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2010/04/14 21:43:21 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2010/04/14 21:43:16 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2010/04/14 21:43:13 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2010/04/14 21:43:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2010/04/14 21:43:10 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2010/04/14 21:43:10 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2010/04/14 21:43:08 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2010/04/14 21:43:05 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2010/04/14 21:43:02 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2010/04/14 21:43:02 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2010/04/14 21:42:59 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2010/04/14 21:42:59 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2010/04/14 21:42:59 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2010/04/14 21:42:57 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2010/04/14 21:42:56 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2010/04/14 21:42:56 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2010/04/14 21:42:52 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2010/04/14 21:42:52 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2010/04/14 21:42:50 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2010/04/14 21:42:50 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2010/04/14 21:42:46 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2010/04/14 21:42:42 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2010/04/14 21:42:40 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2010/04/14 21:42:39 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2010/04/14 21:42:39 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2010/04/14 21:42:39 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2010/04/14 21:42:39 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2010/04/14 21:42:37 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2010/04/14 21:42:29 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2010/04/14 21:42:29 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2010/04/14 21:42:29 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2010/04/14 21:42:28 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2010/04/14 21:42:28 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2010/04/14 21:42:00 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2010/04/14 21:42:00 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2010/04/14 21:41:59 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2010/04/14 21:41:58 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2010/04/14 21:41:58 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2010/04/14 21:41:58 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2010/04/14 21:41:58 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2010/04/14 21:41:58 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2010/04/14 21:41:56 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2010/04/14 21:41:56 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2010/04/14 21:41:56 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2010/04/14 21:41:56 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2010/04/14 21:41:49 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2010/04/14 21:41:44 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2010/04/14 21:41:44 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2010/04/14 21:41:44 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010/04/14 21:41:42 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010/04/14 21:41:42 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2010/04/14 21:41:39 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010/04/14 21:41:38 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010/04/14 21:41:36 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010/04/14 21:41:36 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010/04/14 21:41:34 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010/04/14 21:41:14 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010/04/14 21:41:08 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010/04/14 21:41:08 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010/04/14 21:41:05 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010/04/14 21:41:03 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010/04/14 21:41:02 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010/04/14 21:40:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010/04/14 21:40:55 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010/04/14 21:40:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010/04/14 21:31:54 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2010/04/13 21:18:08 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\Torrent Downloads
[2010/04/13 21:08:40 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\Utilities
[2010/04/13 21:04:52 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\PC Games
[2010/04/13 16:51:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
[2010/04/13 15:59:20 | 000,000,000 | ---D | C] -- C:\Games
[2010/04/12 09:50:53 | 000,000,000 | ---D | C] -- C:\Program Files\Call of Duty
[2010/04/11 21:22:36 | 000,000,000 | ---D | C] -- C:\Users\Paul\dwhelper
[2010/04/11 21:20:53 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Local\Radical Software Ltd
[2010/04/10 22:12:27 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2010/04/10 22:09:17 | 000,000,000 | ---D | C] -- C:\Program Files\Activision
[2010/04/10 21:24:18 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010/04/09 20:43:41 | 009,591,104 | ---- | C] (DT Soft Ltd.) -- C:\Users\Paul\DTLite4356-0091.exe
[2010/04/09 12:34:34 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\.BitTornado
[2010/04/09 11:00:22 | 000,000,000 | ---D | C] -- C:\Users\Paul\Desktop\Virus Programs
[2010/04/09 08:08:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/04/09 08:08:50 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010/04/09 08:02:04 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010/04/09 08:01:57 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\SUPERAntiSpyware.com
[2010/04/09 08:01:57 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2010/04/08 19:32:57 | 000,000,000 | ---D | C] -- C:\Users\Paul\Shared
[2010/04/08 19:32:57 | 000,000,000 | ---D | C] -- C:\Users\Paul\Incomplete
[2010/04/08 19:32:03 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\SkyDownloader
[2010/04/08 17:53:54 | 000,691,696 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2010/04/08 17:52:18 | 000,000,000 | ---D | C] -- C:\Users\Paul\AppData\Roaming\DAEMON Tools Lite
[2010/04/08 17:52:06 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010/04/07 22:47:33 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2010/04/07 22:05:51 | 000,000,000 | ---D | C] -- C:\Downloads
[2010/04/06 15:45:56 | 000,000,000 | -H-D | C] -- C:\Windows\PIF
[1 C:\Users\Paul\AppData\Roaming\*.tmp files -> C:\Users\Paul\AppData\Roaming\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/05/04 19:01:59 | 006,029,312 | -HS- | M] () -- C:\Users\Paul\ntuser.dat
[2010/05/04 18:44:01 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2130715792-4014861670-1953933601-1000UA.job
[2010/05/04 18:15:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/05/04 17:32:43 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/05/04 17:32:43 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/05/04 17:25:21 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/05/04 17:25:16 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/05/04 17:25:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/05/04 17:25:08 | 2361,802,752 | -HS- | M] () -- C:\hiberfil.sys
[2010/05/04 17:24:34 | 001,338,305 | -H-- | M] () -- C:\Users\Paul\AppData\Local\IconCache.db
[2010/05/03 20:44:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2130715792-4014861670-1953933601-1000Core.job
[2010/05/03 15:50:58 | 317,816,524 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/05/03 11:44:39 | 000,000,808 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/05/03 10:37:43 | 000,618,264 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/05/03 10:37:43 | 000,104,546 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/05/03 10:37:42 | 000,717,892 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/05/03 09:57:42 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010/05/03 09:53:18 | 000,053,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\_AGP440_.sys.vir
[2010/05/03 09:47:17 | 003,926,394 | R--- | M] () -- C:\Users\Paul\Desktop\ComboFix.exe
[2010/05/02 01:20:34 | 000,000,000 | ---- | M] () -- C:\Users\Paul\AppData\Local\prvlcl.dat
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/04/28 21:55:06 | 000,524,288 | -HS- | M] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TMContainer00000000000000000002.regtrans-ms
[2010/04/28 21:55:06 | 000,524,288 | -HS- | M] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TMContainer00000000000000000001.regtrans-ms
[2010/04/28 21:55:06 | 000,065,536 | -HS- | M] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TM.blf
[2010/04/28 20:42:58 | 000,002,249 | ---- | M] () -- C:\Users\Paul\Desktop\Google Chrome.lnk
[2010/04/27 22:06:25 | 000,001,683 | ---- | M] () -- C:\Users\Paul\Desktop\Sniper Elite.lnk
[2010/04/27 21:18:08 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/04/27 05:34:22 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForPaul.job
[2010/04/26 15:58:12 | 000,256,512 | ---- | M] () -- C:\Windows\PEV.exe
[2010/04/26 09:33:46 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/04/25 22:02:33 | 000,001,212 | ---- | M] () -- C:\Users\Public\Desktop\Sothink Movie DVD Maker.lnk
[2010/04/25 19:09:25 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010/04/25 17:45:47 | 000,015,880 | ---- | M] () -- C:\Windows\System32\lsdelete.exe
[2010/04/25 16:39:38 | 000,001,245 | ---- | M] () -- C:\Users\Paul\Desktop\Delta Force BHD.lnk
[2010/04/24 20:47:47 | 000,022,328 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010/04/24 20:47:47 | 000,022,328 | ---- | M] () -- C:\Users\Paul\AppData\Roaming\PnkBstrK.sys
[2010/04/24 20:25:11 | 000,410,144 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/04/24 19:04:22 | 000,108,824 | ---- | M] () -- C:\Users\Paul\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/04/24 17:01:56 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010/04/24 14:15:36 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\BitComet.lnk
[2010/04/24 09:02:57 | 000,002,357 | ---- | M] () -- C:\Users\Public\Desktop\Paragon Drive Backup™.lnk
[2010/04/24 07:22:56 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2010/04/23 23:05:49 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Sothink HD Video Converter.lnk
[2010/04/23 20:38:18 | 000,007,598 | ---- | M] () -- C:\Users\Paul\AppData\Local\Resmon.ResmonCfg
[2010/04/23 19:41:21 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2010/04/22 08:42:24 | 000,000,938 | ---- | M] () -- C:\Users\Paul\Desktop\7-Zip File Manager.lnk
[2010/04/21 22:06:54 | 000,002,205 | ---- | M] () -- C:\Users\Public\Desktop\WinZip.lnk
[2010/04/21 19:14:57 | 000,000,950 | ---- | M] () -- C:\Users\Paul\Desktop\HP Instant Care.url
[2010/04/21 19:13:30 | 000,000,000 | ---- | M] () -- C:\Windows\System32\file.ext
[2010/04/21 10:01:07 | 000,001,005 | ---- | M] () -- C:\Users\Paul\Desktop\Start Unlocker.lnk
[2010/04/18 21:25:24 | 000,001,191 | ---- | M] () -- C:\Users\Paul\Desktop\Delta Force 2 Xtreme.lnk
[2010/04/18 08:51:27 | 000,215,128 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2010/04/18 08:48:15 | 000,001,848 | ---- | M] () -- C:\Users\Paul\Desktop\Battlefield-Bad Company 2.lnk
[2010/04/18 08:44:19 | 002,434,856 | ---- | M] () -- C:\Windows\System32\pbsvc_bc2.exe
[2010/04/16 22:46:00 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/04/16 22:00:37 | 000,001,873 | ---- | M] () -- C:\Users\Paul\Desktop\LimeWire PRO 5.3.6.lnk
[2010/04/16 21:44:57 | 000,011,324 | ---- | M] () -- C:\Users\Paul\Desktop\300 Ultra Mag.jpg
[2010/04/13 08:39:54 | 000,000,112 | ---- | M] () -- C:\ProgramData\KM8S2d.dat
[2010/04/12 10:13:43 | 000,000,910 | ---- | M] () -- C:\Users\Paul\Desktop\Call of Duty 1 SP.lnk
[2010/04/12 09:56:27 | 000,000,960 | ---- | M] () -- C:\Users\Paul\Desktop\Call of Duty Multiplayer.lnk
[2010/04/12 09:56:23 | 000,000,745 | ---- | M] () -- C:\Windows\CoD.INI
[2010/04/10 22:35:18 | 000,001,062 | ---- | M] () -- C:\Users\Paul\Desktop\Call of Duty 2.lnk
[2010/04/10 22:12:15 | 000,000,287 | ---- | M] () -- C:\Windows\game.ini
[2010/04/10 21:24:42 | 000,001,900 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2010/04/09 21:45:38 | 000,002,058 | ---- | M] () -- C:\Users\Public\Desktop\CyberLink PowerDVD 9.lnk
[2010/04/09 20:43:36 | 009,591,104 | ---- | M] (DT Soft Ltd.) -- C:\Users\Paul\DTLite4356-0091.exe
[2010/04/09 11:03:23 | 000,385,990 | R--- | M] () -- C:\Windows\System32\drivers\etc\hostsold
[2010/04/08 19:26:25 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/04/08 09:40:49 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010/04/06 10:48:00 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/04/06 10:48:00 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/04/05 10:47:20 | 000,000,571 | ---- | M] () -- C:\Windows\eReg.dat
[1 C:\Users\Paul\AppData\Roaming\*.tmp files -> C:\Users\Paul\AppData\Roaming\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/05/02 18:52:03 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/05/02 18:52:02 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/05/02 18:52:02 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/05/02 18:52:02 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/05/02 18:52:02 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/05/02 18:40:17 | 003,926,394 | R--- | C] () -- C:\Users\Paul\Desktop\ComboFix.exe
[2010/05/02 09:04:05 | 000,293,376 | ---- | C] () -- C:\Users\Paul\Desktop\gmer.exe
[2010/04/28 20:42:58 | 000,002,249 | ---- | C] () -- C:\Users\Paul\Desktop\Google Chrome.lnk
[2010/04/28 20:39:26 | 000,000,904 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2130715792-4014861670-1953933601-1000UA.job
[2010/04/28 20:39:26 | 000,000,852 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2130715792-4014861670-1953933601-1000Core.job
[2010/04/28 18:07:02 | 000,524,288 | -HS- | C] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TMContainer00000000000000000002.regtrans-ms
[2010/04/28 18:07:02 | 000,524,288 | -HS- | C] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TMContainer00000000000000000001.regtrans-ms
[2010/04/28 18:07:02 | 000,065,536 | -HS- | C] () -- C:\Users\Paul\ntuser.dat{d23aa1a4-5310-11df-811c-001f16e2d06b}.TM.blf
[2010/04/28 01:08:51 | 000,015,880 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2010/04/25 22:02:33 | 000,001,212 | ---- | C] () -- C:\Users\Public\Desktop\Sothink Movie DVD Maker.lnk
[2010/04/25 17:41:54 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk
[2010/04/25 11:58:14 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/04/24 14:15:36 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\BitComet.lnk
[2010/04/24 09:02:57 | 000,002,357 | ---- | C] () -- C:\Users\Public\Desktop\Paragon Drive Backup™.lnk
[2010/04/23 23:15:17 | 000,001,683 | ---- | C] () -- C:\Users\Paul\Desktop\Sniper Elite.lnk
[2010/04/23 23:07:27 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/04/23 23:05:49 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Sothink HD Video Converter.lnk
[2010/04/23 20:38:18 | 000,007,598 | ---- | C] () -- C:\Users\Paul\AppData\Local\Resmon.ResmonCfg
[2010/04/23 10:04:36 | 000,247,560 | ---- | C] () -- C:\Windows\System32\prgiso.dll
[2010/04/22 08:42:24 | 000,000,938 | ---- | C] () -- C:\Users\Paul\Desktop\7-Zip File Manager.lnk
[2010/04/21 22:06:54 | 000,002,205 | ---- | C] () -- C:\Users\Public\Desktop\WinZip.lnk
[2010/04/21 21:40:28 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2010/04/21 19:14:57 | 000,000,950 | ---- | C] () -- C:\Users\Paul\Desktop\HP Instant Care.url
[2010/04/21 19:13:29 | 000,000,000 | ---- | C] () -- C:\Windows\System32\file.ext
[2010/04/21 10:01:07 | 000,001,005 | ---- | C] () -- C:\Users\Paul\Desktop\Start Unlocker.lnk
[2010/04/21 06:45:20 | 000,000,000 | ---- | C] () -- C:\Users\Paul\AppData\Local\prvlcl.dat
[2010/04/19 10:07:09 | 000,001,245 | ---- | C] () -- C:\Users\Paul\Desktop\Delta Force BHD.lnk
[2010/04/18 21:25:24 | 000,001,191 | ---- | C] () -- C:\Users\Paul\Desktop\Delta Force 2 Xtreme.lnk
[2010/04/18 08:48:15 | 000,001,848 | ---- | C] () -- C:\Users\Paul\Desktop\Battlefield-Bad Company 2.lnk
[2010/04/18 08:47:26 | 000,215,128 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2010/04/18 08:44:35 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010/04/18 08:44:35 | 000,022,328 | ---- | C] () -- C:\Users\Paul\AppData\Roaming\PnkBstrK.sys
[2010/04/18 08:44:21 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2010/04/18 08:44:19 | 002,434,856 | ---- | C] () -- C:\Windows\System32\pbsvc_bc2.exe
[2010/04/18 08:44:19 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010/04/16 22:00:37 | 000,001,873 | ---- | C] () -- C:\Users\Paul\Desktop\LimeWire PRO 5.3.6.lnk
[2010/04/16 21:44:56 | 000,011,324 | ---- | C] () -- C:\Users\Paul\Desktop\300 Ultra Mag.jpg
[2010/04/16 18:32:49 | 000,069,632 | ---- | C] () -- C:\Windows\RAUNINST.EXE
[2010/04/13 22:05:04 | 317,816,524 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010/04/12 10:13:43 | 000,000,910 | ---- | C] () -- C:\Users\Paul\Desktop\Call of Duty 1 SP.lnk
[2010/04/12 09:56:27 | 000,000,960 | ---- | C] () -- C:\Users\Paul\Desktop\Call of Duty Multiplayer.lnk
[2010/04/12 09:48:52 | 000,000,745 | ---- | C] () -- C:\Windows\CoD.INI
[2010/04/10 22:35:18 | 000,001,062 | ---- | C] () -- C:\Users\Paul\Desktop\Call of Duty 2.lnk
[2010/04/10 22:31:28 | 000,374,272 | ---- | C] () -- C:\Windows\System\mss32.dll
[2010/04/10 22:12:15 | 000,000,287 | ---- | C] () -- C:\Windows\game.ini
[2010/04/10 21:24:42 | 000,001,900 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2010/04/08 19:26:25 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/04/08 09:40:49 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010/04/08 09:40:34 | 000,001,889 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/04/06 10:48:00 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/04/06 10:48:00 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/04/05 16:29:18 | 000,000,112 | ---- | C] () -- C:\ProgramData\KM8S2d.dat
[2010/04/05 10:47:20 | 000,000,571 | ---- | C] () -- C:\Windows\eReg.dat
[2010/04/02 21:25:00 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/03/27 13:55:54 | 000,069,632 | R--- | C] () -- C:\Windows\System32\xmltok.dll
[2010/03/27 13:55:54 | 000,036,864 | R--- | C] () -- C:\Windows\System32\xmlparse.dll
[2010/01/18 16:38:46 | 000,010,496 | ---- | C] () -- C:\Windows\System32\rcmirror.dll
[2009/09/10 10:29:50 | 001,761,280 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/05/11 09:39:16 | 000,000,323 | ---- | C] () -- C:\Windows\PidList.ini
[2008/12/29 09:13:30 | 000,028,544 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2008/06/07 14:53:02 | 004,244,744 | ---- | C] () -- C:\Windows\System32\qtp-mt334.dll
[2008/06/07 14:53:02 | 000,013,576 | ---- | C] () -- C:\Windows\System32\wnaspi32.dll
[2008/01/14 17:47:06 | 000,099,712 | ---- | C] () -- C:\Windows\HPBroker.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
< End of report >
  • 0

#28
Essexboy
Posted 05 May 2010 - 12:32 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK clearing AVG now - If you still cannot access those site then we will look at spybot next, particularly the immunisation feature

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - No CLSID value found.
O2 - BHO: (no name) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - No CLSID value found.
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (no name) - {9D425283-D487-4337-BAB6-AB8354A81457} - No CLSID value found.
O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found.
O20 - AppInit_DLLs: (C:\Windows\System32\avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found

:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done

  • 0

#29
Bullet90
Posted 05 May 2010 - 01:01 PM

Bullet90

    Member

  • Topic Starter
  • Member
  • PipPip
  • 27 posts
OTL Log

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0a452a47-c5a8-4854-a237-4b9b06b376f0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0a452a47-c5a8-4854-a237-4b9b06b376f0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D425283-D487-4337-BAB6-AB8354A81457}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\Windows\System32\avgrsstx.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Paul
->Temp folder emptied: 65307824 bytes
->Temporary Internet Files folder emptied: 784944 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 56225682 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 5786 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 117.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Paul
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.4.0 log created on 05052010_145803

Files\Folders moved on Reboot...
C:\Users\Paul\AppData\Local\Temp\ehmsas.txt moved successfully.

Registry entries deleted on Reboot...
  • 0

#30
Essexboy
Posted 05 May 2010 - 01:12 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK now try the sites
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP