Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Many trojan attacks, now internet does not connect. First was trojan

Started by ALittleBit , Dec 15 2010 08:29 PM

  • This topic is locked This topic is locked

#1
ALittleBit
Posted 15 December 2010 - 08:29 PM

ALittleBit

    Member

  • Member
  • PipPip
  • 30 posts
The first sign of a problem I noticed was that when firefox started, it was redirected to a site that claimed it found a virus and wanted me to "click here." I ignored it and ran AVG which found nothing.

The first error that was caught by AVG resident shield was Trojan Horse generic20.aobp. When I chose "Heal" I got a "general error 0xc00700e05, followed by a message that mdmcls32.exe is infected, then drwtsn32.exe.

One thing that installed itself was whitesmoke translator. I used Add/Remove programs to delete that.

I subsequently received many more trojan notices.

I used these to remove infected files:
AVG, Superantispyware, A-squared free, avast, and IS360. I also ran ccleaner.

I can do some basic things on the computer with nothing new popping up, but when I try to access the internet with either firefox or IE, it fails to connect. I'd like to fix that as well as verify that all the trojans have been removed.

I noticed that there was a toolbar that installed itself as well as some buttons I didn't recognize in the system tray.

Help would be greatly appreciated!


OTL logfile created on: 12/15/2010 8:45:40 PM - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = E:\
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,014.00 Mb Total Physical Memory | 334.00 Mb Available Physical Memory | 33.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 71.00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 105.67 Gb Total Space | 80.98 Gb Free Space | 76.63% Space Free | Partition Type: NTFS
Drive E: | 955.73 Mb Total Space | 809.58 Mb Free Space | 84.71% Space Free | Partition Type: FAT

Computer Name: JACK | User Name: XXXXXXXXX | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/12/15 20:40:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
PRC - [2010/12/15 20:08:14 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- E:\HijackThis.exe
PRC - [2010/12/12 18:38:51 | 000,910,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/09/07 11:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/08/05 15:36:54 | 003,467,096 | ---- | M] (IObit) -- C:\Program Files\IObit\IObit Security 360\is360.exe
PRC - [2010/07/14 07:06:50 | 002,048,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2010/06/11 18:14:24 | 001,280,344 | ---- | M] (IObit) -- C:\Program Files\IObit\IObit Security 360\is360tray.exe
PRC - [2010/06/11 18:14:22 | 000,312,152 | ---- | M] (IObit) -- C:\Program Files\IObit\IObit Security 360\is360srv.exe
PRC - [2010/04/15 08:25:20 | 001,872,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe
PRC - [2009/10/06 14:04:25 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe
PRC - [2009/10/06 14:04:24 | 000,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe
PRC - [2009/10/06 14:04:24 | 000,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009/10/06 14:04:24 | 000,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009/10/06 14:04:21 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2009/07/30 18:38:50 | 000,177,392 | ---- | M] (CA, Inc.) -- C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe
PRC - [2009/05/21 11:13:58 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/05/19 00:23:16 | 000,049,968 | ---- | M] (AOL LLC) -- C:\Program Files\AIM6\aim6.exe
PRC - [2008/11/06 12:33:00 | 000,041,264 | ---- | M] (AOL LLC) -- C:\Program Files\AIM6\aolsoftware.exe
PRC - [2008/08/13 23:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/06/03 14:53:19 | 000,014,088 | ---- | M] (CA) -- C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/12/21 10:58:06 | 000,184,320 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Dell\MediaDirect\PCMService.exe
PRC - [2007/08/28 14:54:58 | 000,036,864 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\OEM02Mon.exe
PRC - [2007/07/09 22:03:06 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2007/07/03 13:57:38 | 001,228,800 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\quickset.exe
PRC - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe
PRC - [2006/11/03 18:02:14 | 000,050,688 | ---- | M] (Avanquest Software ) -- C:\Program Files\Digital Line Detect\DLG.exe
PRC - [2006/11/02 14:05:50 | 000,282,624 | ---- | M] (Knowles Acoustics) -- C:\WINDOWS\system32\KADxMain.exe
PRC - [2006/10/15 14:26:48 | 010,870,784 | ---- | M] () -- C:\WINDOWS\cfgmng32.exe
PRC - [2006/10/15 14:08:30 | 001,032,192 | ---- | M] () -- C:\WINDOWS\system32\mdmcls32.exe


========== Modules (SafeList) ==========

MOD - [2010/12/15 20:40:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- E:\OTL.exe
MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2008/06/03 14:53:19 | 000,083,208 | ---- | M] (CA) -- C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOEHook.dll
MOD - [2008/04/13 19:12:08 | 000,212,992 | ---- | M] () -- C:\WINDOWS\akahufajelehe.dll
MOD - [2008/04/13 19:11:51 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ddraw.dll
MOD - [2008/04/13 19:11:51 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dciman32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/09/07 11:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/06/11 18:14:22 | 000,312,152 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\IObit Security 360\is360srv.exe -- (IS360service)
SRV - [2010/04/15 08:25:20 | 001,872,320 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\a-squared Free\a2service.exe -- (a2free)
SRV - [2009/10/06 14:04:25 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc)
SRV - [2009/10/06 14:04:21 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2009/07/30 18:38:51 | 000,214,256 | ---- | M] (CA, Inc.) [On_Demand | Stopped] -- C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe -- (CaCCProvSP)
SRV - [2008/08/13 23:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/04/28 04:42:45 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)
SRV - [2006/10/15 14:08:30 | 001,032,192 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\mdmcls32.exe -- (WinSock Extention Manager)


========== Driver Services (SafeList) ==========

DRV - [2010/09/07 10:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/09/07 10:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/09/07 10:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/09/07 10:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010/09/07 10:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/09/07 10:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2010/07/14 07:17:08 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/07/14 07:17:08 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -- (SASDIFSV)
DRV - [2010/07/14 07:17:08 | 000,012,872 | ---- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)
DRV - [2009/10/06 14:04:51 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2009/10/06 14:04:46 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/10/06 14:04:45 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2008/04/13 13:36:39 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2008/04/13 13:36:39 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2008/04/13 11:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/12/11 13:22:24 | 001,123,328 | ---- | M] (Broadcom Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2007/12/02 18:26:22 | 000,989,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2007/12/02 18:26:20 | 000,731,136 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2007/12/02 18:26:20 | 000,211,200 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2007/08/28 14:55:06 | 000,007,424 | ---- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\OEM02Vfx.sys -- (OEM02Vfx)
DRV - [2007/08/28 14:54:56 | 000,235,520 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\OEM02Dev.sys -- (OEM02Dev)
DRV - [2007/07/10 15:07:56 | 000,045,568 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2007/07/10 14:22:22 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007/07/10 14:22:20 | 000,043,520 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007/07/10 14:22:18 | 000,032,256 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007/07/09 22:21:54 | 000,202,912 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2007/07/09 22:03:04 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2007/07/09 21:58:42 | 005,707,744 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007/05/08 20:22:58 | 000,277,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iaStor.sys -- (iaStor)
DRV - [2006/11/02 12:31:38 | 000,103,168 | ---- | M] (Knowles Acoustics) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dxec02.sys -- (DXEC02)
DRV - [2006/02/25 16:01:12 | 000,016,194 | ---- | M] (AMBIT Microsystems Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\AWINDIS5.SYS -- (AWINDIS5)
DRV - [2005/08/12 17:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -- (APPDRV)
DRV - [2004/08/03 22:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2001/08/17 14:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 14:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 14:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 14:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 14:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 13:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 13:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 13:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 13:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 13:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 13:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 13:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 13:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 13:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 13:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5080428
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5080428

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5080428
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5080428
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5080428
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:59274

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AIM Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect...fftrie7&query="
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.bing.com/...07&form=ZGAPHP"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {58E81A7B-4D92-49F4-B1A3-F884958C475D}:1.9.1
FF - prefs.js..keyword.URL: "http://www.bing.com/...form=ZGAADF&q="


FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009/12/21 19:34:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{58E81A7B-4D92-49F4-B1A3-F884958C475D}: C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D} [2010/12/14 18:23:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/15 19:54:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/15 19:54:04 | 000,000,000 | ---D | M]

[2009/01/16 16:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Extensions
[2010/12/14 18:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Firefox\Profiles\3ggxyain.default\extensions
[2009/09/02 12:18:36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Firefox\Profiles\3ggxyain.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/05/04 16:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Firefox\Profiles\3ggxyain.default\extensions\[email protected]
[2009/04/06 15:42:36 | 000,001,739 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Firefox\Profiles\3ggxyain.default\searchplugins\aim-search.xml
[2010/12/14 21:11:50 | 000,001,919 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\Application Data\Mozilla\Firefox\Profiles\3ggxyain.default\searchplugins\bing-zugo.xml
[2009/01/16 16:30:20 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2007/04/16 12:07:12 | 000,180,293 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npViewpoint.dll

O1 HOSTS File: ([2009/10/13 15:13:13 | 000,000,000 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [cctray] C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe (CA, Inc.)
O4 - HKLM..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4 - HKLM..\Run: [DELL Webcam Manager] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [dvHighMem] C:\WINDOWS\cfgmng32.exe ()
O4 - HKLM..\Run: [Fdehamumokekeg] C:\WINDOWS\akahufajelehe.DLL ()
O4 - HKLM..\Run: [IObit Security 360] C:\Program Files\IObit\IObit Security 360\IS360tray.exe (IObit)
O4 - HKLM..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe (Knowles Acoustics)
O4 - HKLM..\Run: [OEM02Mon.exe] C:\WINDOWS\OEM02Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [PCMService] C:\Program Files\Dell\MediaDirect\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QOELOADER] C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe (CA)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKCU..\Run: [Aim6] C:\Program Files\AIM6\aim6.exe (AOL LLC)
O4 - HKCU..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKCU..\Run: [Dfoxadav] C:\WINDOWS\csrtin.DLL File not found
O4 - HKCU..\Run: [exjmcwtd] C:\Documents and Settings\Malerie Thiel\Local Settings\Temp\dvuegfoip\iktpronaffm.exe (Macromedia, Inc.)
O4 - HKCU..\Run: [OE_OEM] C:\Program Files\Trend Micro\Internet Security 14\TMAS_OE\TMAS_OEMon.exe File not found
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - ._.Trashes ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - ._.Trashes ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/10 13:04:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\Shell\AutoRun\command - "" = E:\RCAMemoryMgr.exe -- File not found
O33 - MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\Shell\Manage your videos\command - "" = E:\RCAMemoryMgr.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/12/15 20:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\Application Data\IObit
[2010/12/15 20:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\IObit
[2010/12/15 20:21:35 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2010/12/15 16:43:22 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/12/15 16:43:21 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/12/15 16:43:17 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/12/15 16:43:14 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/12/15 16:43:10 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/12/15 16:43:10 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/12/15 16:43:09 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/12/15 16:41:28 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010/12/15 16:41:18 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/12/15 16:40:43 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/12/15 16:40:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/12/15 15:48:18 | 000,000,000 | ---D | C] -- C:\Program Files\a-squared Free
[2010/12/15 15:48:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\My Documents\a-squared Free
[2010/12/15 15:42:55 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Malerie Thiel\Recent
[2010/12/15 15:35:41 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/12/15 14:48:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Apple Computer
[2010/12/15 14:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2010/12/14 21:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\Application Data\WhiteSmokeTranslator
[2010/12/14 21:12:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\WhiteSmokeSetup
[2010/12/14 18:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia
[2010/12/14 18:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
[2010/12/14 18:23:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D}
[2010/12/13 21:56:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia
[2010/12/13 21:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe
[2010/12/06 17:30:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\Application Data\SUPERAntiSpyware.com
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\Malerie Thiel\My Documents\*.tmp files -> C:\Documents and Settings\Malerie Thiel\My Documents\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/12/15 20:21:43 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\IObit Security 360.lnk
[2010/12/15 19:12:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/12/15 19:12:34 | 1063,297,024 | -HS- | M] () -- C:\hiberfil.sys
[2010/12/15 16:43:25 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/12/15 16:43:11 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/12/15 15:48:39 | 000,000,648 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\a-squared Free.lnk
[2010/12/15 15:35:42 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2010/12/15 14:04:50 | 068,961,391 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010/12/15 13:36:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Dzomozofuqoqiw.bin
[2010/12/14 19:11:20 | 000,019,497 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\greatrhetoric.docx
[2010/12/14 19:01:34 | 000,002,515 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\Desktop\Microsoft Office Word 2007.lnk
[2010/12/14 18:23:50 | 000,000,120 | ---- | M] () -- C:\WINDOWS\Fwitag.dat
[2010/12/13 17:16:26 | 000,011,834 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\sample.docx
[2010/12/09 20:14:07 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\~$eatrhetoric.docx
[2010/12/09 17:45:21 | 000,012,890 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\french.docx
[2010/12/08 18:53:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/12/06 12:42:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/12/05 16:55:42 | 000,017,439 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\Songs.docx
[2010/11/30 21:57:41 | 000,029,167 | ---- | M] () -- C:\Documents and Settings\Malerie Thiel\My Documents\hey.docx
[2010/11/28 18:40:12 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\Malerie Thiel\My Documents\*.tmp files -> C:\Documents and Settings\Malerie Thiel\My Documents\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/12/15 20:21:43 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\IObit Security 360.lnk
[2010/12/15 16:43:25 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2010/12/15 15:48:39 | 000,000,648 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\a-squared Free.lnk
[2010/12/15 15:35:42 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2010/12/14 18:23:50 | 000,000,120 | ---- | C] () -- C:\WINDOWS\Fwitag.dat
[2010/12/14 18:23:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Dzomozofuqoqiw.bin
[2010/12/13 17:16:25 | 000,011,834 | ---- | C] () -- C:\Documents and Settings\Malerie Thiel\My Documents\sample.docx
[2010/12/09 20:14:07 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Malerie Thiel\My Documents\~$eatrhetoric.docx
[2010/12/09 17:45:20 | 000,012,890 | ---- | C] () -- C:\Documents and Settings\Malerie Thiel\My Documents\french.docx
[2010/12/05 16:41:35 | 000,019,497 | ---- | C] () -- C:\Documents and Settings\Malerie Thiel\My Documents\greatrhetoric.docx
[2010/11/30 21:57:40 | 000,029,167 | ---- | C] () -- C:\Documents and Settings\Malerie Thiel\My Documents\hey.docx
[2009/11/25 09:48:50 | 000,212,992 | ---- | C] () -- C:\WINDOWS\akahufajelehe.dll
[2009/08/14 22:17:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Ransom.INI
[2009/08/02 16:03:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\game.INI
[2009/01/07 15:30:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\CastleMalloy.INI
[2008/08/05 09:01:05 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/08/05 09:01:04 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/07/19 12:31:21 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/06/02 13:58:40 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\mkghj.dll
[2008/06/02 13:38:52 | 002,064,384 | ---- | C] () -- C:\WINDOWS\System32\win32cpr.dll
[2008/06/02 13:38:52 | 001,294,422 | ---- | C] () -- C:\WINDOWS\System32\winsflt.dll
[2008/04/28 04:49:38 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008/04/28 04:39:59 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll
[2008/04/28 04:24:33 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2008/04/28 04:24:31 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2008/04/28 03:57:34 | 000,910,304 | ---- | C] () -- C:\WINDOWS\System32\igmedkrn.dll
[2008/04/28 03:57:34 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4831.dll
[2008/04/28 03:57:32 | 000,016,480 | ---- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2008/04/28 03:55:51 | 000,001,121 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2004/08/10 13:12:05 | 000,000,780 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/10 13:01:18 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/08/10 12:57:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

========== LOP Check ==========

[2009/04/06 15:41:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\acccore
[2010/12/15 16:40:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2009/01/16 10:33:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CA
[2010/12/15 20:21:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2008/04/28 04:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2008/04/28 04:42:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009/06/17 15:13:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2010/12/15 19:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YAHOO
[2009/10/05 16:12:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/05/13 15:33:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2008/06/12 17:04:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\acccore
[2010/12/15 20:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\IObit
[2008/06/02 15:15:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\Skinux
[2009/01/16 16:32:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\Viewpoint
[2010/12/15 17:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Malerie Thiel\Application Data\WhiteSmokeTranslator

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2009/04/30 16:12:53 | 000,000,000 | ---D | M](C:\Docum?) -- C:\Documሀ
[2009/04/30 16:12:53 | 000,000,000 | ---D | C](C:\Docum?) -- C:\Documሀ

< End of report >
  • 0

Advertisements

#2
maliprog
Posted 16 December 2010 - 01:05 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hello ALittleBit and welcome to G2G! :D

My nick is maliprog and I'll will be your technical support on this issue. Before we start cleaning your PC you must print or save to Desktop (in .txt file) this instructions so you can access it in Safe Mode with no internet connection.

NOTE:

  • Malware removal is NOT instantaneous, most infections require several courses of action to completely eradicate.
  • Absence of symptoms does not always mean the computer is clean
  • Kindly follow my instructions in the order posted. Order is crucial in cleaning process.
  • Please DO NOT run any scans or fix on your own without my direction.
  • Please read all of my response through at least once before attempting to follow the procedures described. I would recommend printing them out, if you can, as you can check off each step as you complete it. If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you.

Step 1

You have too many antivirus programs installed on your System.
Anti-Virus programs take up an enormous amount of your computer's resources when they are actively scanning your computer. Having two anti-virus programs running at the same time can cause your computer to run very slow, become unstable and even, in rare cases, crash.
Please choose one and leave it on system. Remove the others from the system before you continue with the fix

Step 2

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    MOD - [2008/04/13 19:12:08 | 000,212,992 | ---- | M] () -- C:\WINDOWS\akahufajelehe.dll
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:59274
    O4 - HKLM..\Run: [Fdehamumokekeg] C:\WINDOWS\akahufajelehe.DLL ()
    O4 - HKCU..\Run: [Dfoxadav] C:\WINDOWS\csrtin.DLL File not found
    O4 - HKCU..\Run: [exjmcwtd] C:\Documents and Settings\Malerie Thiel\Local Settings\Temp\dvuegfoip\iktpronaffm.exe (Macromedia, Inc.)
    O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - ._.Trashes ()
    O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - ._.Trashes ()
    O33 - MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\Shell\AutoRun\command - "" = E:\RCAMemoryMgr.exe -- File not found
    O33 - MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\Shell\Manage your videos\command - "" = E:\RCAMemoryMgr.exe -- File not found
    [2010/12/14 18:23:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D}
    [2010/12/15 13:36:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Dzomozofuqoqiw.bin
    [2010/12/14 18:23:50 | 000,000,120 | ---- | M] () -- C:\WINDOWS\Fwitag.dat
    [2009/11/25 09:48:50 | 000,212,992 | ---- | C] () -- C:\WINDOWS\akahufajelehe.dll
    [2008/06/02 13:58:40 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\mkghj.dll
    [2008/06/02 13:38:52 | 002,064,384 | ---- | C] () -- C:\WINDOWS\System32\win32cpr.dll
    [2008/06/02 13:38:52 | 001,294,422 | ---- | C] () -- C:\WINDOWS\System32\winsflt.dll
    [2008/04/28 04:39:59 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll
    [2009/04/30 16:12:53 | 000,000,000 | ---D | M](C:\Docum?) -- C:\Documሀ
    [2009/04/30 16:12:53 | 000,000,000 | ---D | C](C:\Docum?) -- C:\Documሀ

    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [emptytemp]
    [emptyflash]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Post the fix log it produces in your next reply.

Step 3

Download GMER from Here. Note the file's name and save it to your root folder, such as C:.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security program drivers will not conflict with this file.
  • Click on this link to see a list of programs that should be disabled.
  • Double-click on the downloaded file to start the program. (If running Vista, right click on it and select "Run as an Administrator")
  • Allow the driver to load if asked.
  • You may be prompted to scan immediately if it detects rootkit activity.
  • If you are prompted to scan your system click "No", save the log and post back the results.
  • If not prompted, click the "Rootkit/Malware" tab.
  • On the right-side, all items to be scanned should be checked by default except for "Show All". Leave that box unchecked.
  • Select all drives that are connected to your system to be scanned.
  • Click the Scan button to begin. (Please be patient as it can take some time to complete)
  • When the scan is finished, click Save to save the scan results to your Desktop.
  • Save the file as Results.log and copy/paste the contents in your next reply.
  • Exit the program and re-enable all active protection when done.

Step 4

  • Run OTL.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open notepad window. OTL.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of this file, and post it with your next reply.


Step 5

Please don't forget to include these items in your reply:

  • OTL fix log
  • GMER log
  • New OTL scan log
It would be helpful if you could post each log in separate post
  • 1

#3
ALittleBit
Posted 16 December 2010 - 08:53 AM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
Thanks for the quick reply MailProg.

I've encountered problems with step one. I should have uninstalled the first virus programs before installing the next. When I try to uninstall ISO, I get "Application cannot be executed. unins000.exe is infected." When I try to uninstall AVG, the interface opens, it says it is making a backup, it appears to get about half way complete and then hangs.

It's alright to keep superantispyware, right? That should only run when I start it. I only use the anti-spam and anti-spyware functions of CA. Is that ok to keep?

I will wait for advice before continuing. Thank you.
  • 0

#4
maliprog
Posted 16 December 2010 - 01:59 PM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi ALittleBit,

If you can't uninstall it now leave it. Continue with Step 2. I would be happier if you leave just one antivirus program on your system. I think your PC would be happier too :D. We will get back to this later....
  • 0

#5
ALittleBit
Posted 16 December 2010 - 07:07 PM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
I ran OTL with the quote provided. I did it in safe mode because the computer wasn't stable enough otherwise. Is that ok?

The next link you provided was not an executable file, but an eml. Please clarify.

The result from OTL are:
ll processes killed
========== OTL ==========
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Fdehamumokekeg deleted successfully.
C:\WINDOWS\akahufajelehe.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Dfoxadav deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\exjmcwtd deleted successfully.
C:\Documents and Settings\Malerie Thiel\Local Settings\Temp\dvuegfoip\iktpronaffm.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\ deleted successfully.
._.Trashes moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\ deleted successfully.
.Trashes folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\ deleted successfully.
.Spotlight-V100\Store-V1\Stores\C3EC1EEF-2792-449B-880D-0E9120F09B2F folder moved successfully.
.Spotlight-V100\Store-V1\Stores folder moved successfully.
.Spotlight-V100\Store-V1 folder moved successfully.
.Spotlight-V100 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\ deleted successfully.
.fseventsd folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\ deleted successfully.
.TemporaryItems\folders.2956\TemporaryItems\TEMP_com.apple.iWork.Pages_450_311801984_3 folder moved successfully.
.TemporaryItems\folders.2956\TemporaryItems\TEMP_com.apple.iWork.Pages_450_311801984_2 folder moved successfully.
.TemporaryItems\folders.2956\TemporaryItems\TEMP_com.apple.iWork.Pages_450_311801984_1 folder moved successfully.
.TemporaryItems\folders.2956\TemporaryItems\TEMP_com.apple.iWork.Pages_183_311777370_1 folder moved successfully.
.TemporaryItems\folders.2956\TemporaryItems folder moved successfully.
.TemporaryItems\folders.2956 folder moved successfully.
.TemporaryItems folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\ deleted successfully.
._.TemporaryItems moved successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\ deleted successfully.
File ._.Trashes not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\ deleted successfully.
File ._.Trashes not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000026\ deleted successfully.
File ._.Trashes not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{491e1c33-55a6-11dd-b70e-001644bf951b}\ not found.
File E:\RCAMemoryMgr.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{491e1c33-55a6-11dd-b70e-001644bf951b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{491e1c33-55a6-11dd-b70e-001644bf951b}\ not found.
File E:\RCAMemoryMgr.exe not found.
C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D}\chrome\content folder moved successfully.
C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D}\chrome folder moved successfully.
C:\Documents and Settings\Malerie Thiel\Local Settings\Application Data\{58E81A7B-4D92-49F4-B1A3-F884958C475D} folder moved successfully.
C:\WINDOWS\Dzomozofuqoqiw.bin moved successfully.
C:\WINDOWS\Fwitag.dat moved successfully.
File C:\WINDOWS\akahufajelehe.dll not found.
C:\WINDOWS\system32\mkghj.dll moved successfully.
C:\WINDOWS\system32\win32cpr.dll moved successfully.
C:\WINDOWS\system32\winsflt.dll moved successfully.
C:\WINDOWS\system32\_psisdecd.dll moved successfully.
Folder C:\Docum?\ not found.
Folder C:\Docum?\ not found.
File rity] not found.
File ptytemp] not found.
File ptyflash] not found.
File boot] not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\: LSP stack updated.

OTL by OldTimer - Version 3.2.17.3 log created on 12162010_184756

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

The system seemed stable for a bit after this and I tried to use the internet. BAd idea. I was rerouted to a fake virus page.
Rebooted in safe mode again. I was able to remove iobit, and a^2. Whitesmoke reinstalled itself. I attempted to uninstall it again.
  • 0

#6
maliprog
Posted 17 December 2010 - 05:47 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi ALittleBit,

OK. Continue with Step 3. It is EXE file. Tray to download it and let me know.
  • 0

#7
ALittleBit
Posted 17 December 2010 - 09:26 AM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
I renamed the gmer file from eml to exe and ran it. It got stuck on ACPI.sys and then the system became unresponsive.

Edited by ALittleBit, 17 December 2010 - 09:26 AM.

  • 0

#8
maliprog
Posted 17 December 2010 - 10:41 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi ALittleBit,

OK. It's time for some serious tools :D. Please note that you must remove AVG from your System in order to run Combofix in Step 2. To remove/uninstall AVG please follow Step 1.

Step 1

We need to temporarily remove your Anti-Virus, as it interes with the fix I want to run. You can reinstall it again later. If you are not happy about doing this, please let me know before proceding

Download AppRemover and run it.

Click Next >>
Posted Image


Ensure "Remove Security Application" is collected and click Next >>
Posted Image


AppRemover will scan all the security applications on your PC
Posted Image

Select Any AVG entries from the applications offered and click Next >> twice.
Posted Image

Follow any further on-screen instructions. If asked to reboot,please do so.

Note: Please do not browse the internet or open any email attachments until your Anti-Virus is re-installed

Step 2

Download Combofix from the link below but rename it to svchost.exe before saving it to your desktop. To do this you must right click on link and choose Save as... . Now enter svchost.exe for the name and save it to your desktop.

Combofix

==================================


Double click on the renamed ComboFix.exe & follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt so we can continue cleaning the system.

Step 3

Please don't forget to include these items in your reply:

  • Combofix
It would be helpful if you could post each log in separate post
  • 0

#9
ALittleBit
Posted 17 December 2010 - 10:49 AM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
Hallelujah. I will be thrilled to be rid of AVG. I have it on another system and can't uninstall it there either.
  • 0

#10
ALittleBit
Posted 17 December 2010 - 11:00 AM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
..."AppRemover.exe is not a valid Win32 application."
  • 0

Advertisements

#11
maliprog
Posted 17 December 2010 - 11:10 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
You download didn't finished well. Remove your copy and download it again.
  • 0

#12
ALittleBit
Posted 18 December 2010 - 12:39 PM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
I was able to get a valid copy of AppRemover and run it. It ran very slowly and did not complete. It got to the third screen from above, ran very slowly and finally claimed to be 100% complete, but the "Next" button is still grayed out as is "Back". Its process is using 0 CPU time. (System Idle is taking up 99%.) I can still access other applications.
  • 0

#13
maliprog
Posted 18 December 2010 - 01:22 PM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi ALittleBit,

Download AVG remover from Here and try to remove AVG with it.
  • 0

#14
ALittleBit
Posted 18 December 2010 - 03:29 PM

ALittleBit

    Member

  • Topic Starter
  • Member
  • PipPip
  • 30 posts
The AVG remover appeared to work. Afterward, I ran AppRemover and it did not find AVG. I then ran combofix and it complained that I had to remove AVG first. I rebooted and tried again but got the same message.


This is the AVGRemover.txt.
2010-12-18 20:55:23,437 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2010-12-18 20:55:23,484 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2010-12-18 20:55:23,484 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2010-12-18 20:55:23,484 INFO Command line: "C:\avg_remover_stf_x86_2011_1165.exe"
2010-12-18 20:55:23,515 WARN AvgDir param empty.
2010-12-18 20:55:23,515 WARN AvgAdminDir param empty.
2010-12-18 20:55:23,515 WARN AvgDataDir param empty.
2010-12-18 20:55:47,781 INFO AvgRemover runs in attempt number 1
2010-12-18 20:55:47,781 INFO ***** Msi data *****
2010-12-18 20:55:47,859 DEBUG No product code found for our upgrade codes, nothing to do here
2010-12-18 20:55:47,859 INFO ***** Exchange&Outlook plugins data *****
2010-12-18 20:55:47,859 INFO Removing AvgOutlook addin
2010-12-18 20:55:47,859 INFO AvgOutlook Removing HKCR addin keys x86
2010-12-18 20:55:47,859 INFO Removing Sharepoint plugin if exists
2010-12-18 20:55:47,859 INFO Removing Antispam plugin for Exchange 2000/2003 if exists
2010-12-18 20:55:47,859 DEBUG Stopping service 'MSExchangeIS' to remove VSAPI plugin...
2010-12-18 20:55:47,859 DEBUG Service MSExchangeIS Stop failed (error: c0070424)
2010-12-18 20:55:47,859 DEBUG Exchange&Outlook plugins removal failed with error 0xc0070424
2010-12-18 20:55:47,859 INFO ***** Services *****
2010-12-18 20:55:47,859 INFO Processing service avg8emc, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgTdiX, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service avg8wd, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgLdx86, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgMfx86, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgWFPa, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgWFPx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service avgfws8, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgRkx86, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgMfx64, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service avg9wd, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgLdx64, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgTdiA, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AvgRkx64, it can take several minutes...
2010-12-18 20:55:47,859 INFO Service avg8emc is not installed
2010-12-18 20:55:47,859 INFO Processing service avgfws9, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service avgfws, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service avg9emc, it can take several minutes...
2010-12-18 20:55:47,859 INFO Service AvgTdiX is not installed
2010-12-18 20:55:47,859 INFO Processing service AVGIDSFilterxpx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSAgent, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSShimxpx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSDriverxpx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Service avg8wd is not installed
2010-12-18 20:55:47,859 INFO Processing service AVGIDSDrivervtx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSShimvtx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSDrivervta, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSFilterw7x, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSFiltervta, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSFiltervtx, it can take several minutes...
2010-12-18 20:55:47,859 INFO Service AvgLdx86 is not installed
2010-12-18 20:55:47,859 INFO Processing service AVGIDSDriverw7x, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSFilterw7a, it can take several minutes...
2010-12-18 20:55:47,859 INFO Processing service AVGIDSShimw7x, it can take several minutes...
2010-12-18 20:55:47,859 INFO Service AvgMfx86 is not installed
2010-12-18 20:55:47,921 INFO Processing service avgwd, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSDriverw7a, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSErHrxpx, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSErHrvta, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSErHrw7a, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AvgAdminServer, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSErHrw7x, it can take several minutes...
2010-12-18 20:55:47,921 INFO Processing service AVGIDSErHrvtx, it can take several minutes...
2010-12-18 20:55:47,921 INFO Service AvgWFPa is not installed
2010-12-18 20:55:47,968 INFO Service AvgWFPx is not installed
2010-12-18 20:55:48,031 INFO Service avgfws8 is not installed
2010-12-18 20:55:48,078 INFO Service AvgRkx86 is not installed
2010-12-18 20:55:48,140 INFO Service AvgMfx64 is not installed
2010-12-18 20:55:48,187 INFO Service avg9wd is not installed
2010-12-18 20:55:48,250 INFO Service AvgLdx64 is not installed
2010-12-18 20:55:48,296 INFO Service AvgTdiA is not installed
2010-12-18 20:55:48,359 INFO Service AvgRkx64 is not installed
2010-12-18 20:55:48,375 DEBUG Service avg8emc RegCleanup
2010-12-18 20:55:48,437 INFO Service avgfws9 is not installed
2010-12-18 20:55:48,484 INFO Service avgfws is not installed
2010-12-18 20:55:48,546 INFO Service avg9emc is not installed
2010-12-18 20:55:48,562 DEBUG Service AvgTdiX RegCleanup
2010-12-18 20:55:48,625 INFO Service AVGIDSFilterxpx is not installed
2010-12-18 20:55:48,671 INFO Service AVGIDSAgent is not installed
2010-12-18 20:55:48,734 INFO Service AVGIDSShimxpx is not installed
2010-12-18 20:55:48,781 INFO Service AVGIDSDriverxpx is not installed
2010-12-18 20:55:48,812 DEBUG Service avg8wd RegCleanup
2010-12-18 20:55:48,859 INFO Service AVGIDSDrivervtx is not installed
2010-12-18 20:55:48,921 INFO Service AVGIDSShimvtx is not installed
2010-12-18 20:55:48,968 INFO Service AVGIDSDrivervta is not installed
2010-12-18 20:55:49,031 INFO Service AVGIDSFilterw7x is not installed
2010-12-18 20:55:49,078 INFO Service AVGIDSFiltervta is not installed
2010-12-18 20:55:49,140 INFO Service AVGIDSFiltervtx is not installed
2010-12-18 20:55:49,156 DEBUG Service AvgLdx86 RegCleanup
2010-12-18 20:55:49,218 INFO Service AVGIDSDriverw7x is not installed
2010-12-18 20:55:49,265 INFO Service AVGIDSFilterw7a is not installed
2010-12-18 20:55:49,328 INFO Service AVGIDSShimw7x is not installed
2010-12-18 20:55:49,343 DEBUG Service AvgMfx86 RegCleanup
2010-12-18 20:55:49,406 INFO Service avgwd is not installed
2010-12-18 20:55:49,453 INFO Service AVGIDSDriverw7a is not installed
2010-12-18 20:55:49,515 INFO Service AVGIDSErHrxpx is not installed
2010-12-18 20:55:49,562 INFO Service AVGIDSErHrvta is not installed
2010-12-18 20:55:49,625 INFO Service AVGIDSErHrw7a is not installed
2010-12-18 20:55:49,671 INFO Service AvgAdminServer is not installed
2010-12-18 20:55:49,734 INFO Service AVGIDSErHrw7x is not installed
2010-12-18 20:55:49,781 INFO Service AVGIDSErHrvtx is not installed
2010-12-18 20:55:49,812 DEBUG Service AvgWFPa RegCleanup
2010-12-18 20:55:49,828 DEBUG Service AvgWFPx RegCleanup
2010-12-18 20:55:49,859 DEBUG Service avgfws8 RegCleanup
2010-12-18 20:55:49,890 DEBUG Service AvgRkx86 RegCleanup
2010-12-18 20:55:49,921 DEBUG Service AvgMfx64 RegCleanup
2010-12-18 20:55:49,937 DEBUG Service avg9wd RegCleanup
2010-12-18 20:55:49,968 DEBUG Service AvgLdx64 RegCleanup
2010-12-18 20:55:50,000 DEBUG Service AvgTdiA RegCleanup
2010-12-18 20:55:50,031 DEBUG Service AvgRkx64 RegCleanup
2010-12-18 20:55:50,031 DEBUG Registry keys for service avg8emc are not present
2010-12-18 20:55:50,046 DEBUG Service avgfws9 RegCleanup
2010-12-18 20:55:50,078 DEBUG Service avgfws RegCleanup
2010-12-18 20:55:50,109 DEBUG Service avg9emc RegCleanup
2010-12-18 20:55:50,109 DEBUG Registry keys for service AvgTdiX are not present
2010-12-18 20:55:50,125 DEBUG Service AVGIDSFilterxpx RegCleanup
2010-12-18 20:55:50,156 DEBUG Service AVGIDSAgent RegCleanup
2010-12-18 20:55:50,187 DEBUG Service AVGIDSShimxpx RegCleanup
2010-12-18 20:55:50,218 DEBUG Service AVGIDSDriverxpx RegCleanup
2010-12-18 20:55:50,218 DEBUG Registry keys for service avg8wd are not present
2010-12-18 20:55:50,234 DEBUG Service AVGIDSDrivervtx RegCleanup
2010-12-18 20:55:50,265 DEBUG Service AVGIDSShimvtx RegCleanup
2010-12-18 20:55:50,296 DEBUG Service AVGIDSDrivervta RegCleanup
2010-12-18 20:55:50,328 DEBUG Service AVGIDSFilterw7x RegCleanup
2010-12-18 20:55:50,343 DEBUG Service AVGIDSFiltervta RegCleanup
2010-12-18 20:55:50,375 DEBUG Service AVGIDSFiltervtx RegCleanup
2010-12-18 20:55:50,375 DEBUG Registry keys for service AvgLdx86 are not present
2010-12-18 20:55:50,406 DEBUG Service AVGIDSDriverw7x RegCleanup
2010-12-18 20:55:50,421 DEBUG Service AVGIDSFilterw7a RegCleanup
2010-12-18 20:55:50,453 DEBUG Service AVGIDSShimw7x RegCleanup
2010-12-18 20:55:50,453 DEBUG Registry keys for service AvgMfx86 are not present
2010-12-18 20:55:50,484 DEBUG Service avgwd RegCleanup
2010-12-18 20:55:50,515 DEBUG Service AVGIDSDriverw7a RegCleanup
2010-12-18 20:55:50,531 DEBUG Service AVGIDSErHrxpx RegCleanup
2010-12-18 20:55:50,562 DEBUG Service AVGIDSErHrvta RegCleanup
2010-12-18 20:55:50,593 DEBUG Service AVGIDSErHrw7a RegCleanup
2010-12-18 20:55:50,625 DEBUG Service AvgAdminServer RegCleanup
2010-12-18 20:55:50,640 DEBUG Service AVGIDSErHrw7x RegCleanup
2010-12-18 20:55:50,671 DEBUG Service AVGIDSErHrvtx RegCleanup
2010-12-18 20:55:50,671 DEBUG Registry keys for service avgfws8 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgRkx86 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgWFPx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgWFPa are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service avg9wd are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgMfx64 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgRkx64 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service avgfws9 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service avgfws are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service avg9emc are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgTdiA are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSFilterxpx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSFilterw7x are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSDrivervta are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSAgent are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSShimvtx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service avgwd are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSFilterw7a are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSDriverw7a are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSShimw7x are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSFiltervtx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgAdminServer are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSErHrxpx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSErHrw7a are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AvgLdx64 are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSErHrvta are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSDrivervtx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSShimxpx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSDriverw7x are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSErHrw7x are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSErHrvtx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSDriverxpx are not present
2010-12-18 20:55:50,671 DEBUG Registry keys for service AVGIDSFiltervta are not present
2010-12-18 20:55:50,671 INFO ***** Avg Fw NDIS driver(separate process) *****
2010-12-18 20:55:50,828 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2010-12-18 20:55:50,828 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2010-12-18 20:55:50,828 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2010-12-18 20:55:50,828 INFO Command line: "C:\avg_remover_stf_x86_2011_1165.exe" /ndisonly /skipask
2010-12-18 20:55:50,875 WARN AvgDir param empty.
2010-12-18 20:55:50,906 WARN AvgAdminDir param empty.
2010-12-18 20:55:50,937 WARN AvgDataDir param empty.
2010-12-18 20:55:50,968 INFO AvgRemover runs in attempt number 1
2010-12-18 20:55:50,984 INFO ***** Avg Fw NDIS driver *****
2010-12-18 20:55:51,015 INFO ...this operation can take several minutes...
2010-12-18 20:55:51,046 INFO FW removing policy
2010-12-18 20:55:52,953 INFO FW NDIS driver not present
2010-12-18 20:55:53,078 DEBUG Remove NDIS driver pass, next uninstalation step is 10, old was 1
2010-12-18 20:55:53,078 INFO ***** end of Fw NDIS separated process *****
2010-12-18 20:55:53,125 INFO ***** Drivers *****
2010-12-18 20:55:53,156 INFO ***** Running AVG process *****
2010-12-18 20:55:53,281 INFO ***** Registry keys and values *****
2010-12-18 20:55:53,312 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-12-18 20:55:53,375 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2010-12-18 20:55:53,375 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present
2010-12-18 20:55:53,421 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-12-18 20:55:53,468 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2010-12-18 20:55:53,468 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present
2010-12-18 20:55:53,531 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2010-12-18 20:55:53,578 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2010-12-18 20:55:53,578 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2010-12-18 20:55:53,578 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt
2010-12-18 20:55:53,640 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove
2010-12-18 20:55:53,640 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found
2010-12-18 20:55:53,640 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2010-12-18 20:55:53,687 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2010-12-18 20:55:53,687 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2010-12-18 20:55:53,687 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-12-18 20:55:53,750 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-12-18 20:55:53,750 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-12-18 20:55:53,750 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-12-18 20:55:53,796 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-12-18 20:55:53,796 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-12-18 20:55:53,796 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2010-12-18 20:55:53,859 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2010-12-18 20:55:53,859 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2010-12-18 20:55:53,859 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:55:53,906 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:55:53,906 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:55:53,906 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar
2010-12-18 20:55:53,953 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-12-18 20:55:53,968 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-12-18 20:55:54,015 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:55:54,062 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:55:54,062 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:55:54,062 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-12-18 20:55:54,125 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2010-12-18 20:55:54,125 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension is not present
2010-12-18 20:55:54,171 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-12-18 20:55:54,234 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2010-12-18 20:55:54,234 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present
2010-12-18 20:55:54,281 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2010-12-18 20:55:54,343 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2010-12-18 20:55:54,343 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2010-12-18 20:55:54,343 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-12-18 20:55:54,390 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-12-18 20:55:54,390 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-12-18 20:55:54,453 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-12-18 20:55:54,500 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-12-18 20:55:54,500 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-12-18 20:55:54,562 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-12-18 20:55:54,609 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-12-18 20:55:54,609 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-12-18 20:55:54,671 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-12-18 20:55:54,718 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-12-18 20:55:54,718 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-12-18 20:55:54,781 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-12-18 20:55:54,828 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2010-12-18 20:55:54,828 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2010-12-18 20:55:54,875 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-12-18 20:55:54,937 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove
2010-12-18 20:55:54,937 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present
2010-12-18 20:55:54,984 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2010-12-18 20:55:55,046 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2010-12-18 20:55:55,046 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2010-12-18 20:55:55,046 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall
2010-12-18 20:55:55,093 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove
2010-12-18 20:55:55,093 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found
2010-12-18 20:55:55,093 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
2010-12-18 20:55:55,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove
2010-12-18 20:55:55,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found
2010-12-18 20:55:55,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-12-18 20:55:55,234 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-12-18 20:55:55,234 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-12-18 20:55:55,234 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-12-18 20:55:55,281 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-12-18 20:55:55,281 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-12-18 20:55:55,281 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-12-18 20:55:55,343 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-12-18 20:55:55,343 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-12-18 20:55:55,343 INFO Processing registry SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82}
2010-12-18 20:55:55,390 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove
2010-12-18 20:55:55,390 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found
2010-12-18 20:55:55,390 INFO Processing registry SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82}
2010-12-18 20:55:55,453 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove
2010-12-18 20:55:55,453 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found
2010-12-18 20:55:55,453 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-12-18 20:55:55,468 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-12-18 20:55:55,468 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-12-18 20:55:55,468 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-12-18 20:55:55,500 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-12-18 20:55:55,500 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-12-18 20:55:55,500 INFO Processing registry SOFTWARE\Classes\.avgdi
2010-12-18 20:55:55,531 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2010-12-18 20:55:55,531 DEBUG Key SOFTWARE\Classes\.avgdi not found
2010-12-18 20:55:55,531 INFO Processing registry SOFTWARE\Classes\.avgdx
2010-12-18 20:55:55,562 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove
2010-12-18 20:55:55,562 DEBUG Key SOFTWARE\Classes\.avgdx not found
2010-12-18 20:55:55,562 INFO Processing registry SOFTWARE\Classes\.avgdx
2010-12-18 20:55:55,578 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove
2010-12-18 20:55:55,578 DEBUG Key SOFTWARE\Classes\.avgdx not found
2010-12-18 20:55:55,578 INFO Processing registry SOFTWARE\Classes\.avgdx
2010-12-18 20:55:55,609 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove
2010-12-18 20:55:55,609 DEBUG Key SOFTWARE\Classes\.avgdx not found
2010-12-18 20:55:55,609 INFO Processing registry SOFTWARE\Classes\.avgdx
2010-12-18 20:55:55,640 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove
2010-12-18 20:55:55,640 DEBUG Key SOFTWARE\Classes\.avgdx not found
2010-12-18 20:55:55,640 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-12-18 20:55:55,687 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-12-18 20:55:55,687 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-12-18 20:55:55,687 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-12-18 20:55:55,750 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-12-18 20:55:55,750 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-12-18 20:55:55,750 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-12-18 20:55:55,796 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-12-18 20:55:55,796 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-12-18 20:55:55,796 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:55,859 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:55,859 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:55,859 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:55,906 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:55,906 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:55,906 INFO Processing registry SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:55,968 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:55,968 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:55,968 INFO Processing registry SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:56,015 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:56,015 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:56,015 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:56,062 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:56,062 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:56,062 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension
2010-12-18 20:55:56,125 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove
2010-12-18 20:55:56,125 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension not found
2010-12-18 20:55:56,125 INFO Processing registry SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner
2010-12-18 20:55:56,171 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner ForceRemove
2010-12-18 20:55:56,171 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner not found
2010-12-18 20:55:56,171 INFO Processing registry SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner
2010-12-18 20:55:56,234 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner ForceRemove
2010-12-18 20:55:56,234 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner not found
2010-12-18 20:55:56,234 INFO Processing registry SOFTWARE\Classes\avgsbg.state
2010-12-18 20:55:56,250 DEBUG Key SOFTWARE\Classes\avgsbg.state ForceRemove
2010-12-18 20:55:56,250 DEBUG Key SOFTWARE\Classes\avgsbg.state not found
2010-12-18 20:55:56,250 INFO Processing registry SOFTWARE\Classes\avgsbg.state
2010-12-18 20:55:56,281 DEBUG Key SOFTWARE\Classes\avgsbg.state ForceRemove
2010-12-18 20:55:56,281 DEBUG Key SOFTWARE\Classes\avgsbg.state not found
2010-12-18 20:55:56,281 INFO Processing registry SOFTWARE\Classes\avgsbg.state.1
2010-12-18 20:55:56,343 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 ForceRemove
2010-12-18 20:55:56,343 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 not found
2010-12-18 20:55:56,343 INFO Processing registry SOFTWARE\Classes\avgsbg.state.1
2010-12-18 20:55:56,390 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 ForceRemove
2010-12-18 20:55:56,390 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 not found
2010-12-18 20:55:56,390 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter
2010-12-18 20:55:56,453 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter ForceRemove
2010-12-18 20:55:56,453 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter not found
2010-12-18 20:55:56,453 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter
2010-12-18 20:55:56,500 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter ForceRemove
2010-12-18 20:55:56,500 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter not found
2010-12-18 20:55:56,500 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter.1
2010-12-18 20:55:56,546 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 ForceRemove
2010-12-18 20:55:56,546 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 not found
2010-12-18 20:55:56,546 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter.1
2010-12-18 20:55:56,609 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 ForceRemove
2010-12-18 20:55:56,609 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 not found
2010-12-18 20:55:56,609 INFO Processing registry SOFTWARE\Classes\MicroScanner.MicroScanner
2010-12-18 20:55:56,656 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner ForceRemove
2010-12-18 20:55:56,656 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner not found
2010-12-18 20:55:56,656 INFO Processing registry SOFTWARE\Classes\MicroScanner.MicroScanner
2010-12-18 20:55:56,718 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner ForceRemove
2010-12-18 20:55:56,718 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner not found
2010-12-18 20:55:56,718 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL
2010-12-18 20:55:56,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL ForceRemove
2010-12-18 20:55:56,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL not found
2010-12-18 20:55:56,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-12-18 20:55:56,828 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY Remove
2010-12-18 20:55:56,828 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY is not present
2010-12-18 20:55:56,875 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-12-18 20:55:56,937 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY Remove
2010-12-18 20:55:56,937 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY is not present
2010-12-18 20:55:56,984 INFO Processing registry SOFTWARE\Classes\AppID\avgsbg.DLL
2010-12-18 20:55:57,046 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL ForceRemove
2010-12-18 20:55:57,046 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL not found
2010-12-18 20:55:57,046 INFO Processing registry SOFTWARE\Classes\AppID\avgsbg.DLL
2010-12-18 20:55:57,093 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL ForceRemove
2010-12-18 20:55:57,093 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL not found
2010-12-18 20:55:57,093 INFO Processing registry SYSTEM\ControlSet001\Control\GroupOrderList
2010-12-18 20:55:57,156 DEBUG Value SYSTEM\ControlSet001\Control\GroupOrderList:AVG Remove
2010-12-18 20:55:57,156 INFO Processing registry SYSTEM\ControlSet001\services\Avg
2010-12-18 20:55:57,203 DEBUG Key SYSTEM\ControlSet001\services\Avg ForceRemove
2010-12-18 20:55:57,203 DEBUG Key SYSTEM\ControlSet001\services\Avg not found
2010-12-18 20:55:57,203 INFO Processing registry SYSTEM\ControlSet001\services\Avgfwfd
2010-12-18 20:55:57,265 DEBUG Key SYSTEM\ControlSet001\services\Avgfwfd ForceRemove
2010-12-18 20:55:57,265 DEBUG Key SYSTEM\ControlSet001\services\Avgfwfd not found
2010-12-18 20:55:57,265 INFO Processing registry SYSTEM\ControlSet001\services\AVG Security Toolbar Service
2010-12-18 20:55:57,312 DEBUG Key SYSTEM\ControlSet001\services\AVG Security Toolbar Service ForceRemove
2010-12-18 20:55:57,312 DEBUG Key SYSTEM\ControlSet001\services\AVG Security Toolbar Service not found
2010-12-18 20:55:57,312 INFO Processing registry SYSTEM\ControlSet001\services\Avgfws
2010-12-18 20:55:57,359 DEBUG Key SYSTEM\ControlSet001\services\Avgfws ForceRemove
2010-12-18 20:55:57,359 DEBUG Key SYSTEM\ControlSet001\services\Avgfws not found
2010-12-18 20:55:57,359 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSAgent
2010-12-18 20:55:57,421 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSAgent ForceRemove
2010-12-18 20:55:57,421 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSAgent not found
2010-12-18 20:55:57,421 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSDriver
2010-12-18 20:55:57,468 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSDriver ForceRemove
2010-12-18 20:55:57,468 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSDriver not found
2010-12-18 20:55:57,468 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSEH
2010-12-18 20:55:57,531 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSEH ForceRemove
2010-12-18 20:55:57,531 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSEH not found
2010-12-18 20:55:57,531 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSFilter
2010-12-18 20:55:57,578 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSFilter ForceRemove
2010-12-18 20:55:57,578 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSFilter not found
2010-12-18 20:55:57,578 INFO Processing registry SYSTEM\ControlSet001\services\avgldx64
2010-12-18 20:55:57,640 DEBUG Key SYSTEM\ControlSet001\services\avgldx64 ForceRemove
2010-12-18 20:55:57,640 DEBUG Key SYSTEM\ControlSet001\services\avgldx64 not found
2010-12-18 20:55:57,640 INFO Processing registry SYSTEM\ControlSet001\services\avgldx86
2010-12-18 20:55:57,687 DEBUG Key SYSTEM\ControlSet001\services\avgldx86 ForceRemove
2010-12-18 20:55:57,687 DEBUG Key SYSTEM\ControlSet001\services\avgldx86 not found
2010-12-18 20:55:57,687 INFO Processing registry SYSTEM\ControlSet001\services\avgmfx64
2010-12-18 20:55:57,750 DEBUG Key SYSTEM\ControlSet001\services\avgmfx64 ForceRemove
2010-12-18 20:55:57,750 DEBUG Key SYSTEM\ControlSet001\services\avgmfx64 not found
2010-12-18 20:55:57,750 INFO Processing registry SYSTEM\ControlSet001\services\avgmfx86
2010-12-18 20:55:57,796 DEBUG Key SYSTEM\ControlSet001\services\avgmfx86 ForceRemove
2010-12-18 20:55:57,796 DEBUG Key SYSTEM\ControlSet001\services\avgmfx86 not found
2010-12-18 20:55:57,796 INFO Processing registry SYSTEM\ControlSet001\services\avgrkx64
2010-12-18 20:55:57,843 DEBUG Key SYSTEM\ControlSet001\services\avgrkx64 ForceRemove
2010-12-18 20:55:57,843 DEBUG Key SYSTEM\ControlSet001\services\avgrkx64 not found
2010-12-18 20:55:57,843 INFO Processing registry SYSTEM\ControlSet001\services\avgrkx86
2010-12-18 20:55:57,906 DEBUG Key SYSTEM\ControlSet001\services\avgrkx86 ForceRemove
2010-12-18 20:55:57,906 DEBUG Key SYSTEM\ControlSet001\services\avgrkx86 not found
2010-12-18 20:55:57,906 INFO Processing registry SYSTEM\ControlSet001\services\avgtdia
2010-12-18 20:55:57,953 DEBUG Key SYSTEM\ControlSet001\services\avgtdia ForceRemove
2010-12-18 20:55:57,953 DEBUG Key SYSTEM\ControlSet001\services\avgtdia not found
2010-12-18 20:55:57,953 INFO Processing registry SYSTEM\ControlSet001\services\avgtdix
2010-12-18 20:55:58,015 DEBUG Key SYSTEM\ControlSet001\services\avgtdix ForceRemove
2010-12-18 20:55:58,015 DEBUG Key SYSTEM\ControlSet001\services\avgtdix not found
2010-12-18 20:55:58,015 INFO Processing registry SYSTEM\ControlSet001\services\avgwd
2010-12-18 20:55:58,062 DEBUG Key SYSTEM\ControlSet001\services\avgwd ForceRemove
2010-12-18 20:55:58,062 DEBUG Key SYSTEM\ControlSet001\services\avgwd not found
2010-12-18 20:55:58,062 INFO Processing registry SYSTEM\ControlSet001\services\avgfwdx
2010-12-18 20:55:58,125 DEBUG Key SYSTEM\ControlSet001\services\avgfwdx ForceRemove
2010-12-18 20:55:58,125 DEBUG Key SYSTEM\ControlSet001\services\avgfwdx not found
2010-12-18 20:55:58,125 INFO Processing registry SYSTEM\ControlSet001\services\avgfwda
2010-12-18 20:55:58,171 DEBUG Key SYSTEM\ControlSet001\services\avgfwda ForceRemove
2010-12-18 20:55:58,171 DEBUG Key SYSTEM\ControlSet001\services\avgfwda not found
2010-12-18 20:55:58,171 INFO Processing registry SYSTEM\ControlSet002\services\Avg
2010-12-18 20:55:58,234 DEBUG Key SYSTEM\ControlSet002\services\Avg ForceRemove
2010-12-18 20:55:58,234 DEBUG Key SYSTEM\ControlSet002\services\Avg not found
2010-12-18 20:55:58,234 INFO Processing registry SYSTEM\ControlSet002\services\Avgfwfd
2010-12-18 20:55:58,281 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd ForceRemove
2010-12-18 20:55:58,281 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd not found
2010-12-18 20:55:58,281 INFO Processing registry SYSTEM\ControlSet002\services\AVG Security Toolbar Service
2010-12-18 20:55:58,343 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service ForceRemove
2010-12-18 20:55:58,343 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service not found
2010-12-18 20:55:58,343 INFO Processing registry SYSTEM\ControlSet002\services\Avgfws
2010-12-18 20:55:58,390 DEBUG Key SYSTEM\ControlSet002\services\Avgfws ForceRemove
2010-12-18 20:55:58,390 DEBUG Key SYSTEM\ControlSet002\services\Avgfws not found
2010-12-18 20:55:58,390 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSAgent
2010-12-18 20:55:58,453 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent ForceRemove
2010-12-18 20:55:58,453 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent not found
2010-12-18 20:55:58,453 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSDriver
2010-12-18 20:55:58,500 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver ForceRemove
2010-12-18 20:55:58,500 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver not found
2010-12-18 20:55:58,500 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSEH
2010-12-18 20:55:58,546 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH ForceRemove
2010-12-18 20:55:58,546 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH not found
2010-12-18 20:55:58,546 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSFilter
2010-12-18 20:55:58,609 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter ForceRemove
2010-12-18 20:55:58,609 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter not found
2010-12-18 20:55:58,609 INFO Processing registry SYSTEM\ControlSet002\services\avgldx64
2010-12-18 20:55:58,656 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 ForceRemove
2010-12-18 20:55:58,656 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 not found
2010-12-18 20:55:58,656 INFO Processing registry SYSTEM\ControlSet002\services\avgldx86
2010-12-18 20:55:58,718 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 ForceRemove
2010-12-18 20:55:58,718 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 not found
2010-12-18 20:55:58,718 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx64
2010-12-18 20:55:58,765 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 ForceRemove
2010-12-18 20:55:58,765 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 not found
2010-12-18 20:55:58,765 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx86
2010-12-18 20:55:58,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 ForceRemove
2010-12-18 20:55:58,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 not found
2010-12-18 20:55:58,828 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx64
2010-12-18 20:55:58,875 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 ForceRemove
2010-12-18 20:55:58,875 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 not found
2010-12-18 20:55:58,875 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx86
2010-12-18 20:55:58,937 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 ForceRemove
2010-12-18 20:55:58,937 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 not found
2010-12-18 20:55:58,937 INFO Processing registry SYSTEM\ControlSet002\services\avgtdia
2010-12-18 20:55:58,984 DEBUG Key SYSTEM\ControlSet002\services\avgtdia ForceRemove
2010-12-18 20:55:58,984 DEBUG Key SYSTEM\ControlSet002\services\avgtdia not found
2010-12-18 20:55:58,984 INFO Processing registry SYSTEM\ControlSet002\services\avgtdix
2010-12-18 20:55:59,031 DEBUG Key SYSTEM\ControlSet002\services\avgtdix ForceRemove
2010-12-18 20:55:59,031 DEBUG Key SYSTEM\ControlSet002\services\avgtdix not found
2010-12-18 20:55:59,031 INFO Processing registry SYSTEM\ControlSet002\services\avgwd
2010-12-18 20:55:59,093 DEBUG Key SYSTEM\ControlSet002\services\avgwd ForceRemove
2010-12-18 20:55:59,093 DEBUG Key SYSTEM\ControlSet002\services\avgwd not found
2010-12-18 20:55:59,093 INFO Processing registry SYSTEM\ControlSet002\services\avgfwdx
2010-12-18 20:55:59,140 DEBUG Key SYSTEM\ControlSet002\services\avgfwdx ForceRemove
2010-12-18 20:55:59,140 DEBUG Key SYSTEM\ControlSet002\services\avgfwdx not found
2010-12-18 20:55:59,140 INFO Processing registry SYSTEM\ControlSet002\services\avgfwda
2010-12-18 20:55:59,203 DEBUG Key SYSTEM\ControlSet002\services\avgfwda ForceRemove
2010-12-18 20:55:59,203 DEBUG Key SYSTEM\ControlSet002\services\avgfwda not found
2010-12-18 20:55:59,203 INFO Processing registry SYSTEM\ControlSet002\services\Avg
2010-12-18 20:55:59,250 DEBUG Key SYSTEM\ControlSet002\services\Avg ForceRemove
2010-12-18 20:55:59,250 DEBUG Key SYSTEM\ControlSet002\services\Avg not found
2010-12-18 20:55:59,250 INFO Processing registry SYSTEM\ControlSet002\services\Avgfwfd
2010-12-18 20:55:59,312 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd ForceRemove
2010-12-18 20:55:59,312 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd not found
2010-12-18 20:55:59,312 INFO Processing registry SYSTEM\ControlSet002\services\AVG Security Toolbar Service
2010-12-18 20:55:59,359 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service ForceRemove
2010-12-18 20:55:59,359 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service not found
2010-12-18 20:55:59,359 INFO Processing registry SYSTEM\ControlSet002\services\Avgfws
2010-12-18 20:55:59,421 DEBUG Key SYSTEM\ControlSet002\services\Avgfws ForceRemove
2010-12-18 20:55:59,421 DEBUG Key SYSTEM\ControlSet002\services\Avgfws not found
2010-12-18 20:55:59,421 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSAgent
2010-12-18 20:55:59,468 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent ForceRemove
2010-12-18 20:55:59,468 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent not found
2010-12-18 20:55:59,468 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSDriver
2010-12-18 20:55:59,531 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver ForceRemove
2010-12-18 20:55:59,531 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver not found
2010-12-18 20:55:59,531 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSEH
2010-12-18 20:55:59,578 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH ForceRemove
2010-12-18 20:55:59,578 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH not found
2010-12-18 20:55:59,578 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSFilter
2010-12-18 20:55:59,640 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter ForceRemove
2010-12-18 20:55:59,640 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter not found
2010-12-18 20:55:59,640 INFO Processing registry SYSTEM\ControlSet002\services\avgldx64
2010-12-18 20:55:59,687 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 ForceRemove
2010-12-18 20:55:59,687 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 not found
2010-12-18 20:55:59,687 INFO Processing registry SYSTEM\ControlSet002\services\avgldx86
2010-12-18 20:55:59,734 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 ForceRemove
2010-12-18 20:55:59,734 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 not found
2010-12-18 20:55:59,734 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx64
2010-12-18 20:55:59,796 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 ForceRemove
2010-12-18 20:55:59,796 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 not found
2010-12-18 20:55:59,796 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx86
2010-12-18 20:55:59,843 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 ForceRemove
2010-12-18 20:55:59,843 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 not found
2010-12-18 20:55:59,843 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx64
2010-12-18 20:55:59,906 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 ForceRemove
2010-12-18 20:55:59,906 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 not found
2010-12-18 20:55:59,906 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx86
2010-12-18 20:55:59,953 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 ForceRemove
2010-12-18 20:55:59,953 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 not found
2010-12-18 20:55:59,953 INFO Processing registry SYSTEM\ControlSet002\services\avgtdia
2010-12-18 20:56:00,015 DEBUG Key SYSTEM\ControlSet002\services\avgtdia ForceRemove
2010-12-18 20:56:00,015 DEBUG Key SYSTEM\ControlSet002\services\avgtdia not found
2010-12-18 20:56:00,015 INFO Processing registry SYSTEM\ControlSet002\services\avgtdix
2010-12-18 20:56:00,062 DEBUG Key SYSTEM\ControlSet002\services\avgtdix ForceRemove
2010-12-18 20:56:00,062 DEBUG Key SYSTEM\ControlSet002\services\avgtdix not found
2010-12-18 20:56:00,062 INFO Processing registry SYSTEM\ControlSet002\services\avgwd
2010-12-18 20:56:00,125 DEBUG Key SYSTEM\ControlSet002\services\avgwd ForceRemove
2010-12-18 20:56:00,125 DEBUG Key SYSTEM\ControlSet002\services\avgwd not found
2010-12-18 20:56:00,125 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS
2010-12-18 20:56:00,171 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS ForceRemove
2010-12-18 20:56:00,171 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS not found
2010-12-18 20:56:00,171 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT
2010-12-18 20:56:00,234 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove
2010-12-18 20:56:00,234 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT not found
2010-12-18 20:56:00,234 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER
2010-12-18 20:56:00,296 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove
2010-12-18 20:56:00,296 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER not found
2010-12-18 20:56:00,296 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH
2010-12-18 20:56:00,343 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH ForceRemove
2010-12-18 20:56:00,343 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH not found
2010-12-18 20:56:00,343 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER
2010-12-18 20:56:00,390 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove
2010-12-18 20:56:00,390 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER not found
2010-12-18 20:56:00,390 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM
2010-12-18 20:56:00,453 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove
2010-12-18 20:56:00,453 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM not found
2010-12-18 20:56:00,453 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86
2010-12-18 20:56:00,500 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86 ForceRemove
2010-12-18 20:56:00,500 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86 failed (error e0010058)
2010-12-18 20:56:00,562 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86
2010-12-18 20:56:00,609 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86 ForceRemove
2010-12-18 20:56:00,609 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86 not found
2010-12-18 20:56:00,609 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86
2010-12-18 20:56:00,671 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86 ForceRemove
2010-12-18 20:56:00,671 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86 not found
2010-12-18 20:56:00,671 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64
2010-12-18 20:56:00,718 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64 ForceRemove
2010-12-18 20:56:00,718 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64 not found
2010-12-18 20:56:00,718 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64
2010-12-18 20:56:00,781 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64 ForceRemove
2010-12-18 20:56:00,781 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64 not found
2010-12-18 20:56:00,781 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64
2010-12-18 20:56:00,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64 ForceRemove
2010-12-18 20:56:00,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64 not found
2010-12-18 20:56:00,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX
2010-12-18 20:56:00,890 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX ForceRemove
2010-12-18 20:56:00,890 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX failed (error e0010058)
2010-12-18 20:56:00,937 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA
2010-12-18 20:56:00,984 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA ForceRemove
2010-12-18 20:56:00,984 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA not found
2010-12-18 20:56:00,984 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD
2010-12-18 20:56:01,046 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD ForceRemove
2010-12-18 20:56:01,046 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD not found
2010-12-18 20:56:01,046 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD
2010-12-18 20:56:01,093 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD ForceRemove
2010-12-18 20:56:01,093 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD not found
2010-12-18 20:56:01,093 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX
2010-12-18 20:56:01,156 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove
2010-12-18 20:56:01,156 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found
2010-12-18 20:56:01,156 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX
2010-12-18 20:56:01,218 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove
2010-12-18 20:56:01,218 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX not found
2010-12-18 20:56:01,218 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX
2010-12-18 20:56:01,265 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove
2010-12-18 20:56:01,265 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX not found
2010-12-18 20:56:01,265 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS
2010-12-18 20:56:01,328 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS ForceRemove
2010-12-18 20:56:01,328 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS not found
2010-12-18 20:56:01,328 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT
2010-12-18 20:56:01,375 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove
2010-12-18 20:56:01,375 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT not found
2010-12-18 20:56:01,375 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER
2010-12-18 20:56:01,421 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove
2010-12-18 20:56:01,421 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER not found
2010-12-18 20:56:01,421 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH
2010-12-18 20:56:01,484 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH ForceRemove
2010-12-18 20:56:01,484 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH not found
2010-12-18 20:56:01,484 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER
2010-12-18 20:56:01,531 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove
2010-12-18 20:56:01,531 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER not found
2010-12-18 20:56:01,531 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM
2010-12-18 20:56:01,593 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove
2010-12-18 20:56:01,593 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM not found
2010-12-18 20:56:01,593 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86
2010-12-18 20:56:01,640 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86 ForceRemove
2010-12-18 20:56:01,640 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86 failed (error e0010058)
2010-12-18 20:56:01,703 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86
2010-12-18 20:56:01,750 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86 ForceRemove
2010-12-18 20:56:01,750 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86 not found
2010-12-18 20:56:01,750 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86
2010-12-18 20:56:01,812 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86 ForceRemove
2010-12-18 20:56:01,812 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86 not found
2010-12-18 20:56:01,812 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64
2010-12-18 20:56:01,859 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64 ForceRemove
2010-12-18 20:56:01,859 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64 not found
2010-12-18 20:56:01,859 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64
2010-12-18 20:56:01,906 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64 ForceRemove
2010-12-18 20:56:01,906 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64 not found
2010-12-18 20:56:01,906 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64
2010-12-18 20:56:01,968 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64 ForceRemove
2010-12-18 20:56:01,968 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64 not found
2010-12-18 20:56:01,968 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX
2010-12-18 20:56:02,015 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX ForceRemove
2010-12-18 20:56:02,015 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX failed (error e0010058)
2010-12-18 20:56:02,078 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA
2010-12-18 20:56:02,125 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA ForceRemove
2010-12-18 20:56:02,125 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA not found
2010-12-18 20:56:02,125 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD
2010-12-18 20:56:02,187 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD ForceRemove
2010-12-18 20:56:02,187 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD not found
2010-12-18 20:56:02,187 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD
2010-12-18 20:56:02,234 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD ForceRemove
2010-12-18 20:56:02,234 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD not found
2010-12-18 20:56:02,234 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX
2010-12-18 20:56:02,296 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove
2010-12-18 20:56:02,296 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found
2010-12-18 20:56:02,296 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX
2010-12-18 20:56:02,343 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove
2010-12-18 20:56:02,343 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX not found
2010-12-18 20:56:02,343 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX
2010-12-18 20:56:02,406 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove
2010-12-18 20:56:02,406 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX not found
2010-12-18 20:56:02,406 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS
2010-12-18 20:56:02,453 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS ForceRemove
2010-12-18 20:56:02,453 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS not found
2010-12-18 20:56:02,453 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT
2010-12-18 20:56:02,500 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove
2010-12-18 20:56:02,500 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT not found
2010-12-18 20:56:02,500 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER
2010-12-18 20:56:02,562 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove
2010-12-18 20:56:02,562 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER not found
2010-12-18 20:56:02,562 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH
2010-12-18 20:56:02,609 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH ForceRemove
2010-12-18 20:56:02,609 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH not found
2010-12-18 20:56:02,609 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER
2010-12-18 20:56:02,671 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove
2010-12-18 20:56:02,671 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER not found
2010-12-18 20:56:02,671 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM
2010-12-18 20:56:02,718 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove
2010-12-18 20:56:02,718 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM not found
2010-12-18 20:56:02,718 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86
2010-12-18 20:56:02,781 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86 ForceRemove
2010-12-18 20:56:02,781 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86 not found
2010-12-18 20:56:02,781 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86
2010-12-18 20:56:02,828 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86 ForceRemove
2010-12-18 20:56:02,828 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86 not found
2010-12-18 20:56:02,828 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86
2010-12-18 20:56:02,890 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86 ForceRemove
2010-12-18 20:56:02,890 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86 not found
2010-12-18 20:56:02,890 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64
2010-12-18 20:56:02,937 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64 ForceRemove
2010-12-18 20:56:02,937 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64 not found
2010-12-18 20:56:02,937 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64
2010-12-18 20:56:03,000 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64 ForceRemove
2010-12-18 20:56:03,000 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64 not found
2010-12-18 20:56:03,000 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64
2010-12-18 20:56:03,046 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64 ForceRemove
2010-12-18 20:56:03,046 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64 not found
2010-12-18 20:56:03,046 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX
2010-12-18 20:56:03,093 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX ForceRemove
2010-12-18 20:56:03,093 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX not found
2010-12-18 20:56:03,093 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA
2010-12-18 20:56:03,156 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA ForceRemove
2010-12-18 20:56:03,156 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA not found
2010-12-18 20:56:03,156 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD
2010-12-18 20:56:03,203 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD ForceRemove
2010-12-18 20:56:03,203 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD not found
2010-12-18 20:56:03,203 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD
2010-12-18 20:56:03,265 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD ForceRemove
2010-12-18 20:56:03,265 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD not found
2010-12-18 20:56:03,265 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX
2010-12-18 20:56:03,312 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove
2010-12-18 20:56:03,312 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found
2010-12-18 20:56:03,312 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX
2010-12-18 20:56:03,375 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove
2010-12-18 20:56:03,375 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX not found
2010-12-18 20:56:03,375 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX
2010-12-18 20:56:03,421 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove
2010-12-18 20:56:03,421 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX not found
2010-12-18 20:56:03,421 INFO Processing registry SOFTWARE\AVG\Clients
2010-12-18 20:56:03,453 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2010-12-18 20:56:03,453 DEBUG Key SOFTWARE\AVG\Clients not found
2010-12-18 20:56:03,453 INFO Processing registry SOFTWARE\AVG\AVG8
2010-12-18 20:56:03,484 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-12-18 20:56:03,484 INFO Processing registry SOFTWARE\AVG\AVG9
2010-12-18 20:56:03,500 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-12-18 20:56:03,500 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-12-18 20:56:03,500 INFO Processing registry SOFTWARE\AVG\AVG10
2010-12-18 20:56:03,531 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove
2010-12-18 20:56:03,531 DEBUG Key SOFTWARE\AVG\AVG10 not found
2010-12-18 20:56:03,531 INFO Processing registry SOFTWARE\AVG\AVG10
2010-12-18 20:56:03,562 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove
2010-12-18 20:56:03,562 DEBUG Key SOFTWARE\AVG\AVG10 not found
2010-12-18 20:56:03,562 INFO Processing registry SOFTWARE\AVG\AVG IDS
2010-12-18 20:56:03,593 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2010-12-18 20:56:03,593 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2010-12-18 20:56:03,593 INFO Processing registry SOFTWARE\AVG\AVG IDS
2010-12-18 20:56:03,609 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2010-12-18 20:56:03,609 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2010-12-18 20:56:03,609 INFO Processing registry SOFTWARE\AVG
2010-12-18 20:56:03,640 DEBUG Value SOFTWARE\AVG:DumpType Remove
2010-12-18 20:56:03,640 INFO Value SOFTWARE\AVG:DumpType is not present
2010-12-18 20:56:03,671 INFO Processing registry SOFTWARE\AVG\AvgAdmin10
2010-12-18 20:56:03,687 DEBUG Key SOFTWARE\AVG\AvgAdmin10 ForceRemove
2010-12-18 20:56:03,687 DEBUG Key SOFTWARE\AVG\AvgAdmin10 not found
2010-12-18 20:56:03,687 INFO Processing registry SOFTWARE\AVG\AvgAdmin10
2010-12-18 20:56:03,718 DEBUG Key SOFTWARE\AVG\AvgAdmin10 ForceRemove
2010-12-18 20:56:03,718 DEBUG Key SOFTWARE\AVG\AvgAdmin10 not found
2010-12-18 20:56:03,718 INFO Processing registry SOFTWARE\AVG
2010-12-18 20:56:03,750 DEBUG Key SOFTWARE\AVG ForceRemove
2010-12-18 20:56:03,750 INFO Processing registry SOFTWARE\AVG
2010-12-18 20:56:03,781 DEBUG Key SOFTWARE\AVG ForceRemove
2010-12-18 20:56:03,781 DEBUG Key SOFTWARE\AVG not found
2010-12-18 20:56:03,781 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-12-18 20:56:03,796 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-12-18 20:56:03,796 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-12-18 20:56:03,796 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-12-18 20:56:03,828 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-12-18 20:56:03,828 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-12-18 20:56:03,828 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG
2010-12-18 20:56:03,890 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG ForceRemove
2010-12-18 20:56:03,890 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG not found
2010-12-18 20:56:03,890 INFO Processing registry SOFTWARE\AVG\AVG8
2010-12-18 20:56:03,906 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-12-18 20:56:03,921 INFO Processing registry SOFTWARE\AVG\AVG9
2010-12-18 20:56:03,937 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-12-18 20:56:03,937 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-12-18 20:56:03,937 INFO Processing registry SOFTWARE\AVG\AVG10
2010-12-18 20:56:03,968 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove
2010-12-18 20:56:03,968 DEBUG Key SOFTWARE\AVG\AVG10 not found
2010-12-18 20:56:03,968 INFO Processing registry SOFTWARE\AVG\AVG10
2010-12-18 20:56:04,000 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove
2010-12-18 20:56:04,000 DEBUG Key SOFTWARE\AVG\AVG10 not found
2010-12-18 20:56:04,000 INFO Processing registry SOFTWARE\AVG
2010-12-18 20:56:04,031 DEBUG Key SOFTWARE\AVG ForceRemove
2010-12-18 20:56:04,031 INFO Processing registry SOFTWARE\AVG
2010-12-18 20:56:04,046 DEBUG Key SOFTWARE\AVG ForceRemove
2010-12-18 20:56:04,046 DEBUG Key SOFTWARE\AVG not found
2010-12-18 20:56:04,046 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-12-18 20:56:04,078 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-12-18 20:56:04,078 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-12-18 20:56:04,078 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-12-18 20:56:04,109 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-12-18 20:56:04,109 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-12-18 20:56:04,109 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks
2010-12-18 20:56:04,156 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove
2010-12-18 20:56:04,156 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present
2010-12-18 20:56:04,218 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:56:04,265 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:56:04,265 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:56:04,265 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser
2010-12-18 20:56:04,328 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-12-18 20:56:04,328 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-12-18 20:56:04,375 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:56:04,437 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:56:04,437 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:56:04,437 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-12-18 20:56:04,484 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-12-18 20:56:04,484 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-12-18 20:56:04,484 INFO Processing registry SOFTWARE\AppDataLow\Avg
2010-12-18 20:56:04,515 DEBUG Key SOFTWARE\AppDataLow\Avg ForceRemove
2010-12-18 20:56:04,515 DEBUG Key SOFTWARE\AppDataLow\Avg not found
2010-12-18 20:56:04,515 INFO Processing registry SOFTWARE\AppDataLow\Software\AVG Security Toolbar
2010-12-18 20:56:04,562 DEBUG Key SOFTWARE\AppDataLow\Software\AVG Security Toolbar ForceRemove
2010-12-18 20:56:04,562 DEBUG Key SOFTWARE\AppDataLow\Software\AVG Security Toolbar not found
2010-12-18 20:56:04,562 INFO Processing registry .avgdxa
2010-12-18 20:56:04,593 DEBUG Key .avgdxa ForceRemove
2010-12-18 20:56:04,593 DEBUG Key .avgdxa not found
2010-12-18 20:56:04,593 INFO Processing registry aAvgAPI.AvgBro
2010-12-18 20:56:04,625 DEBUG Key aAvgAPI.AvgBro ForceRemove
2010-12-18 20:56:04,625 DEBUG Key aAvgAPI.AvgBro not found
2010-12-18 20:56:04,625 INFO Processing registry AVG.Office
2010-12-18 20:56:04,656 DEBUG Key AVG.Office ForceRemove
2010-12-18 20:56:04,656 DEBUG Key AVG.Office not found
2010-12-18 20:56:04,656 INFO Processing registry AVG.Office.8
2010-12-18 20:56:04,671 DEBUG Key AVG.Office.8 ForceRemove
2010-12-18 20:56:04,671 DEBUG Key AVG.Office.8 not found
2010-12-18 20:56:04,671 INFO Processing registry AvgDiagFile
2010-12-18 20:56:04,703 DEBUG Key AvgDiagFile ForceRemove
2010-12-18 20:56:04,703 DEBUG Key AvgDiagFile not found
2010-12-18 20:56:04,703 INFO Processing registry AvgDiagExFile
2010-12-18 20:56:04,734 DEBUG Key AvgDiagExFile ForceRemove
2010-12-18 20:56:04,734 DEBUG Key AvgDiagExFile not found
2010-12-18 20:56:04,734 INFO Processing registry avgtoolbar.AVGTOOLBAR
2010-12-18 20:56:04,765 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2010-12-18 20:56:04,765 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2010-12-18 20:56:04,765 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2010-12-18 20:56:04,812 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2010-12-18 20:56:04,812 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2010-12-18 20:56:04,812 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2010-12-18 20:56:04,875 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2010-12-18 20:56:04,875 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2010-12-18 20:56:04,875 INFO Processing registry LinkScannerIE.NavFilter
2010-12-18 20:56:04,890 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2010-12-18 20:56:04,890 DEBUG Key LinkScannerIE.NavFilter not found
2010-12-18 20:56:04,890 INFO Processing registry LinkScannerIE.NavFilter.1
2010-12-18 20:56:04,921 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2010-12-18 20:56:04,921 DEBUG Key LinkScannerIE.NavFilter.1 not found
2010-12-18 20:56:04,921 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2010-12-18 20:56:04,968 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2010-12-18 20:56:04,968 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2010-12-18 20:56:04,968 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2010-12-18 20:56:05,031 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2010-12-18 20:56:05,031 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2010-12-18 20:56:05,031 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2010-12-18 20:56:05,078 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2010-12-18 20:56:05,078 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2010-12-18 20:56:05,078 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-12-18 20:56:05,140 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-12-18 20:56:05,140 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-12-18 20:56:05,140 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-12-18 20:56:05,187 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-12-18 20:56:05,187 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-12-18 20:56:05,187 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2010-12-18 20:56:05,250 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2010-12-18 20:56:05,250 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2010-12-18 20:56:05,250 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2010-12-18 20:56:05,296 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2010-12-18 20:56:05,296 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2010-12-18 20:56:05,296 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2010-12-18 20:56:05,359 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2010-12-18 20:56:05,359 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2010-12-18 20:56:05,359 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2010-12-18 20:56:05,406 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2010-12-18 20:56:05,406 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2010-12-18 20:56:05,406 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7}
2010-12-18 20:56:05,468 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove
2010-12-18 20:56:05,468 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found
2010-12-18 20:56:05,468 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-12-18 20:56:05,515 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-12-18 20:56:05,515 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-12-18 20:56:05,515 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:56:05,578 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:56:05,578 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:56:05,578 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2010-12-18 20:56:05,625 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2010-12-18 20:56:05,625 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2010-12-18 20:56:05,625 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2010-12-18 20:56:05,671 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2010-12-18 20:56:05,671 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2010-12-18 20:56:05,671 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC}
2010-12-18 20:56:05,734 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove
2010-12-18 20:56:05,734 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found
2010-12-18 20:56:05,734 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2010-12-18 20:56:05,781 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2010-12-18 20:56:05,781 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2010-12-18 20:56:05,781 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2010-12-18 20:56:05,843 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2010-12-18 20:56:05,843 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2010-12-18 20:56:05,843 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2010-12-18 20:56:05,890 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2010-12-18 20:56:05,890 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2010-12-18 20:56:05,890 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-12-18 20:56:05,953 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-12-18 20:56:05,953 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-12-18 20:56:05,953 INFO Processing registry CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83}
2010-12-18 20:56:06,000 DEBUG Key CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83} ForceRemove
2010-12-18 20:56:06,000 DEBUG Key CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83} not found
2010-12-18 20:56:06,000 INFO Processing registry CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82}
2010-12-18 20:56:06,062 DEBUG Key CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove
2010-12-18 20:56:06,062 DEBUG Key CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found
2010-12-18 20:56:06,062 INFO Processing registry CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C}
2010-12-18 20:56:06,109 DEBUG Key CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C} ForceRemove
2010-12-18 20:56:06,109 DEBUG Key CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C} not found
2010-12-18 20:56:06,109 DEBUG Removing Session Manager values
2010-12-18 20:56:06,109 DEBUG Registry remover failed for some registry item(s)
2010-12-18 20:56:06,109 INFO ***** Files and folders *****
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 0
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 1
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 2
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 3
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 4
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 5
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 6
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 7
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 8
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 9
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 10
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 11
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 12
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 13
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 14
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 15
2010-12-18 20:56:06,140 DEBUG Missing ParentDir path for fileItem number 16
2010-12-18 20:56:06,140 DEBUG Processing item 'C:\Documents and Settings\Malerie Thiel\Application Data\AVGTOOLBAR'
2010-12-18 20:56:06,140 INFO Directory 'C:\Documents and Settings\Malerie Thiel\Application Data\AVGTOOLBAR' not found
2010-12-18 20:56:06,187 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,187 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0'
2010-12-18 20:56:06,187 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0' not found
2010-12-18 20:56:06,250 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0'
2010-12-18 20:56:06,250 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0' not found
2010-12-18 20:56:06,296 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5'
2010-12-18 20:56:06,296 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5' not found
2010-12-18 20:56:06,359 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5'
2010-12-18 20:56:06,359 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5' not found
2010-12-18 20:56:06,406 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk'
2010-12-18 20:56:06,406 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk' not found
2010-12-18 20:56:06,468 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk'
2010-12-18 20:56:06,468 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk' not found
2010-12-18 20:56:06,515 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk'
2010-12-18 20:56:06,515 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk' not found
2010-12-18 20:56:06,578 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk'
2010-12-18 20:56:06,578 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk' not found
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 27
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 28
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 29
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 30
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 31
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 32
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 33
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 34
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 35
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 36
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 37
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 38
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 39
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 40
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 41
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 42
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 43
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 44
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 45
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 46
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 47
2010-12-18 20:56:06,625 DEBUG Missing ParentDir path for fileItem number 48
2010-12-18 20:56:06,625 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages'
2010-12-18 20:56:06,625 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages' not found
2010-12-18 20:56:06,687 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Update'
2010-12-18 20:56:06,687 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Update' not found
2010-12-18 20:56:06,734 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar'
2010-12-18 20:56:06,734 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar' not found
2010-12-18 20:56:06,781 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,781 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk'
2010-12-18 20:56:06,781 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk' not found
2010-12-18 20:56:06,843 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk'
2010-12-18 20:56:06,843 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk' not found
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 55
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 56
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 57
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 58
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 59
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 60
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 61
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 62
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 63
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 64
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 65
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 66
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 67
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 68
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 69
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 70
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 71
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 72
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 73
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 74
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 75
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 76
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 77
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 78
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 79
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 80
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 81
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 82
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 83
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 84
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 85
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 86
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 87
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 88
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 89
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 90
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 91
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 92
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 93
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 94
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 95
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 96
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 97
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 98
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 99
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 100
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 101
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 102
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 103
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 104
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 105
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 106
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 107
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 108
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 109
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 110
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 111
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 112
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 113
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 114
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 115
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 116
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 117
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 118
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 119
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 120
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 121
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 122
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 123
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 124
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 125
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 126
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 127
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 128
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 129
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 130
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 131
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 132
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 133
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 134
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 135
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 136
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 137
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 138
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 139
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 140
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 141
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 142
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 143
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 144
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 145
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 146
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 147
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 148
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 149
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 150
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 151
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 152
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 153
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 154
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 155
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 156
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 157
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 158
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 159
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 160
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 161
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 162
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 163
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 164
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 165
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 166
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 167
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 168
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 169
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 170
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 171
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 172
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 173
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 174
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 175
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 176
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 177
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 178
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 179
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 180
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 181
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 182
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 183
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 184
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 185
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 186
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 187
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 188
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 189
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 190
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 191
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 192
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 193
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 194
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 195
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 196
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 197
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 198
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 199
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 200
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 201
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 202
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 203
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 204
2010-12-18 20:56:06,890 DEBUG Missing ParentDir path for fileItem number 205
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers'
2010-12-18 20:56:06,890 DEBUG Processing item 'C:\WINDOWS\System32\Drivers\AVG'
2010-12-18 20:56:06,890 INFO Directory 'C:\WINDOWS\System32\Drivers\AVG' not found
2010-12-18 20:56:06,968 DEBUG Processing item 'C:\WINDOWS\System32'
2010-12-18 20:56:07,015 INFO File 'C:\WINDOWS\System32\avgrsstx.dll.install_backup' deleted
2010-12-18 20:56:07,062 DEBUG Processing item 'C:\Program Files\Windows Sidebar\Shared Gadgets\AVG.Gadget'
2010-12-18 20:56:07,062 INFO Directory 'C:\Program Files\Windows Sidebar\Shared Gadgets\AVG.Gadget' not found
2010-12-18 20:56:07,125 DEBUG Missing ParentDir path for fileItem number 215
2010-12-18 20:56:07,125 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupCoreBackup'
2010-12-18 20:56:07,125 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupCoreBackup' not found
2010-12-18 20:56:07,171 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupBackup'
2010-12-18 20:56:07,171 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupBackup' not found
2010-12-18 20:56:07,234 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\Chjw'
2010-12-18 20:56:07,234 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\Chjw' not found
2010-12-18 20:56:07,296 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\Antispam'
2010-12-18 20:56:07,296 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\Antispam' not found
2010-12-18 20:56:07,343 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10'
2010-12-18 20:56:07,343 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10' not found
2010-12-18 20:56:07,390 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011'
2010-12-18 20:56:07,390 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011' not found
2010-12-18 20:56:07,453 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 2011'
2010-12-18 20:56:07,453 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 2011' not found
2010-12-18 20:56:07,500 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk'
2010-12-18 20:56:07,500 INFO File 'C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk' not found
2010-12-18 20:56:07,562 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\AVG FREE 2011.lnk'
2010-12-18 20:56:07,562 INFO File 'C:\Documents and Settings\All Users\Desktop\AVG FREE 2011.lnk' not found
2010-12-18 20:56:07,609 DEBUG Processing item 'C:\WINDOWS\SysWOW64\Drivers\AVG'
2010-12-18 20:56:07,609 INFO Directory 'C:\WINDOWS\SysWOW64\Drivers\AVG' not found
2010-12-18 20:56:07,671 DEBUG Missing ParentDir path for fileItem number 226
  • 0

#15
maliprog
Posted 19 December 2010 - 10:43 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi ALittleBit,

Let's try some other tools instead Combofix. We will get back to it later :D.

Step 1

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Extract its contents to your desktop.
  • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.


    Posted Image
  • If an infected file is detected, the default action will be Cure, click on Continue.


    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue.


    Posted Image
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.


    Posted Image
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
Step 2


Please download MBRCheck.exe to your desktop.

  • Double click to run it
  • It will prompt you with some text
  • A text file will be generated on your desktop
  • Now paste that text here for me.

Step 3

Download GMER from Here. Note the file's name and save it to your root folder, such as C:.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security program drivers will not conflict with this file.
  • Click on this link to see a list of programs that should be disabled.
  • Double-click on the downloaded file to start the program. (If running Vista, right click on it and select "Run as an Administrator")
  • Allow the driver to load if asked.
  • You may be prompted to scan immediately if it detects rootkit activity.
  • If you are prompted to scan your system click "No", save the log and post back the results.
  • If not prompted, click the "Rootkit/Malware" tab.
  • On the right-side, all items to be scanned should be checked by default except for "Show All". Leave that box unchecked.
  • Select all drives that are connected to your system to be scanned.
  • Click the Scan button to begin. (Please be patient as it can take some time to complete)
  • When the scan is finished, click Save to save the scan results to your Desktop.
  • Save the file as Results.log and copy/paste the contents in your next reply.
  • Exit the program and re-enable all active protection when done.

Step 4

  • Run OTL.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open notepad window. OTL.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of this file, and post it with your next reply.

Step 5

Please don't forget to include these items in your reply:

  • TDSSKiller log
  • MBRCheck log
  • GMER log
  • New OTL scan log
It would be helpful if you could post each log in separate post
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP