Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

tango toolbar infection

Started by xxxitson , Jun 21 2010 03:10 PM

  • Please log in to reply

#1
xxxitson
Posted 21 June 2010 - 03:10 PM

xxxitson

    New Member

  • Member
  • Pip
  • 9 posts
:) firstly thank you for any assistance that i can get.
i logged on to pc opened my browser and i had this tango toolbar in my browser
i went to add and remove and tried to delete it but could not get rid of it.
i scanned with avast pro and moved anything it found to chest then i ran malwarebytes the paid for version and removed anything that malwarebytes found also.
but tango is still in add and remove but gone from my browser...
im unsure if i still have infection or others

cheers xxxitson
  • 0

Advertisements

#2
RKinner
Posted 21 June 2010 - 09:28 PM

RKinner

    Malware Expert

  • Expert
  • 24,483 posts
  • MVP
Do as much of

http://www.geekstogo...uide-t2852.html

as you can. If a step won't work, skip to the next one. Copy and paste your gmer, mbam, otl, & extras logs into a reply. Do not attach them.

If you lose internet access after running MBAM or if you are not able to get to the downloads:

In IE, Tools, Internet Options, Connections, LAN Settings, then uncheck all boxes and OK. Close IE and restart IE.

In FireFox, Tools, Options, Advanced, Settings, check No Proxy then OK. Close Firefox and restart Firefox.

In Chrome, Wrench, Options, Under the Hood, Change Proxy Settings, uncheck all boxes, OK.

Ron
  • 0

#3
xxxitson
Posted 22 June 2010 - 05:44 PM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
Thank you very much for the assistance and help if i have missed anything that you need i apologise.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4220

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

23/06/2010 9:05:52 a.m.
mbam-log-2010-06-23 (09-05-52).txt

Scan type: Quick scan
Objects scanned: 143666
Time elapsed: 21 minute(s), 20 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected





GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-06-23 10:33:26
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\Shelley\LOCALS~1\Temp\pxtdipoc.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwClose [0xF3B956B8]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateKey [0xF3B95574]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDeleteValueKey [0xF3B95A52]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDuplicateObject [0xF3B9514C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenKey [0xF3B9564E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenProcess [0xF3B9508C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenThread [0xF3B950F0]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwQueryValueKey [0xF3B9576E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwRestoreKey [0xF3B9572E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwSetValueKey [0xF3B958AE]

---- Kernel code sections - GMER 1.0.15 ----

.text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xF95D7340, 0xFFF3F, 0xF8000020]
.text C:\WINDOWS\System32\nv4_disp.dll section is writeable [0xBF012300, 0x234A20, 0xF8000020]

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/ALWIL Software)
AttachedDevice \FileSystem\Ntfs \Ntfs avg7rsw.sys (AVG Resident Shield Unload Helper/GRISOFT, s.r.o.)

Device \Driver\Tcpip \Device\Ip avgtdi.sys (AVG Network connection watcher/GRISOFT, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

Device \Driver\Tcpip \Device\Tcp avgtdi.sys (AVG Network connection watcher/GRISOFT, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\atapi \Device\Ide\IdePort0 sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\atapi \Device\Ide\IdePort1 sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-e sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\mcdbus \Device\00000069 sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\mcdbus \Device\mcdbus sdcplh.sys (SDCPLH/Macrovision Europe Ltd)
Device \Driver\Tcpip \Device\Udp avgtdi.sys (AVG Network connection watcher/GRISOFT, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

Device \Driver\Tcpip \Device\RawIp avgtdi.sys (AVG Network connection watcher/GRISOFT, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

Device \Driver\Tcpip \Device\IPMULTICAST avgtdi.sys (AVG Network connection watcher/GRISOFT, s.r.o.)

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/ALWIL Software)
AttachedDevice \FileSystem\Fastfat \Fat avg7rsw.sys (AVG Resident Shield Unload Helper/GRISOFT, s.r.o.)

---- EOF - GMER 1.0.15 ----





OTL logfile created on: 23/06/2010 10:38:46 a.m. - Run 1
OTL by OldTimer - Version 3.2.6.1 Folder = C:\Documents and Settings\Shelley\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001409 | Country: New Zealand | Language: ENZ | Date Format: d/MM/yyyy

255.00 Mb Total Physical Memory | 101.00 Mb Available Physical Memory | 40.00% Memory free
618.00 Mb Paging File | 212.00 Mb Available in Paging File | 34.00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.89 Gb Total Space | 15.20 Gb Free Space | 27.20% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HATS
Current User Name: Shelley
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/06/22 17:34:11 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\OTL.exe
PRC - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010/04/29 15:39:32 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2009/11/25 12:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/11/25 12:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009/11/25 12:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/11/25 12:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009/11/25 12:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/10/07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2008/04/14 12:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2002/10/15 18:00:20 | 001,818,624 | ---- | M] (C-Media Electronic Inc. (www.cmedia.com.tw)) -- C:\WINDOWS\mixer.exe


========== Modules (SafeList) ==========

MOD - [2010/06/22 17:34:11 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\OTL.exe
MOD - [2009/11/25 12:50:32 | 000,139,264 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\AhJsctNs.dll
MOD - [2008/04/14 12:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - [2010/04/29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2009/11/25 12:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009/11/25 12:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009/11/25 12:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009/11/25 12:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009/10/07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2007/05/20 10:15:17 | 000,049,664 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgupsvc.exe -- (Avg7UpdSvc)
SRV - [2007/05/20 10:15:15 | 000,343,552 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgamsvr.exe -- (Avg7Alrt)
SRV - [2007/05/20 10:15:15 | 000,321,536 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgemc.exe -- (AVGEMS)


========== Driver Services (SafeList) ==========

DRV - [2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2009/11/25 12:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009/11/25 12:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009/11/25 12:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009/11/25 12:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009/11/25 12:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009/11/25 12:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009/10/07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009/05/01 11:01:34 | 000,265,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)
DRV - [2009/05/01 10:55:56 | 002,687,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2009/05/01 10:55:32 | 000,013,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)
DRV - [2008/07/28 17:19:28 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2008/07/27 03:26:22 | 000,041,752 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008/04/14 06:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS)
DRV - [2008/04/14 06:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2008/04/14 06:41:21 | 000,026,112 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\memstpci.sys -- (MemStPCI) Sony Memory Stick controller (PCI)
DRV - [2007/05/20 10:15:22 | 000,004,960 | ---- | M] (GRISOFT, s.r.o.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\avgtdi.sys -- (AvgTdi)
DRV - [2007/05/20 10:15:22 | 000,003,968 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgclean.sys -- (AvgClean)
DRV - [2007/05/20 10:15:20 | 000,028,416 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7rsxp.sys -- (Avg7RsXP)
DRV - [2007/05/20 10:15:20 | 000,004,224 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7rsw.sys -- (Avg7RsW)
DRV - [2007/05/20 10:15:18 | 000,816,288 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7core.sys -- (Avg7Core)
DRV - [2006/04/11 16:55:38 | 000,019,345 | ---- | M] (Motive, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MREMPR5.sys -- (MREMPR5)
DRV - [2006/04/11 16:55:38 | 000,018,003 | ---- | M] (Motive, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Motive\MRENDIS5.sys -- (MRENDIS5)
DRV - [2005/11/10 11:42:06 | 000,055,168 | ---- | M] (Macrovision Europe Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdcplh.sys -- (sdcplh)
DRV - [2004/08/04 10:41:36 | 000,606,684 | ---- | M] (LT) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ltmdmnt.sys -- (ltmodem5)
DRV - [2003/07/28 14:19:00 | 001,341,339 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2002/11/18 15:51:40 | 000,377,358 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci) C-Media PCI Audio Driver (WDM)
DRV - [2001/08/17 12:20:16 | 000,297,728 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ac97sis.sys -- (SiS7018) Service for AC'97 Sample Driver (WDM)
DRV - [2001/08/17 12:19:20 | 000,096,256 | ---- | M] (Copyright © Creative Technology Ltd. 1994-2001) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctlsb16.sys -- (ctlsb16) Creative SB16/AWE32/AWE64 Driver (WDM)
DRV - [2001/08/17 11:12:20 | 000,032,840 | ---- | M] (NETGEAR Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Ngrpci.sys -- (ngrpci)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "iMesh Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.google.co...-8&oe=UTF-8&q="
FF - prefs.js..browser.search.selectedEngine: "iMesh Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.imesh.com/"
FF - prefs.js..browser.search.order.1: "iMesh Web Search"
FF - prefs.js..keyword.URL: "http://search.imesh....web?src=ffb&q="

FF - user.js..browser.search.defaultenginename: "4.6.6.0"
FF - user.js..browser.search.defaulturl: "4.6.6.0"
FF - user.js..browser.search.selectedEngine: "4.6.6.0"
FF - user.js..keyword.URL: "4.6.6.0"
FF - user.js..keyword.enabled: true

FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007/12/17 20:30:42 | 000,000,000 | ---D | M]

[2008/08/06 16:53:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\extensions
[2009/11/06 20:09:16 | 000,000,215 | ---- | M] () -- C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\4.6.6.0.xml
[2008/08/23 16:12:45 | 000,002,386 | ---- | M] () -- C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\siteadvisor.xml

O1 HOSTS File: ([2004/08/05 00:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {6F20345C-6055-414E-994C-97D3A81B9070} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {6F20345C-6055-414E-994C-97D3A81B9070} - No CLSID value found.
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [C-Media Mixer] C:\WINDOWS\mixer.exe (C-Media Electronic Inc. (www.cmedia.com.tw))
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKCU..\Run: [iMesh] C:\Program Files\iMesh Applications\iMesh\iMesh.exe File not found
O4 - Startup: C:\Documents and Settings\Shelley\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://a1540.g.akama...ex/qtplugin.cab (Reg Error: Key error.)
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} http://www.bebo.com/...oader.5.1.4.cab (Bebo Uploader Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1179622007756 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: Microsoft XML Parser for Java file:///C:/WINDOWS/Java/classes/xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Shelley\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Shelley\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/05/20 09:59:38 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{0052c4de-6a14-11df-a2c6-00a0cc3d3ea1}\Shell - "" = AutoRun
O33 - MountPoints2\{0052c4de-6a14-11df-a2c6-00a0cc3d3ea1}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{71cd054e-3fe0-11dd-a095-d3d02766cbb2}\Shell\AutoRun\command - "" = nvcple.exe
O33 - MountPoints2\{74de80be-7a8a-11df-a2e8-00a0cc3d3ea1}\Shell - "" = AutoRun
O33 - MountPoints2\{74de80be-7a8a-11df-a2e8-00a0cc3d3ea1}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007/05/20 09:58:51 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: aux - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: aux1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midi3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - C:\WINDOWS\System32\midimap.dll (Microsoft Corporation)
Drivers32: mixer - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer1 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: mixer2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.imaadpcm - C:\WINDOWS\System32\imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.msadpcm - C:\WINDOWS\System32\msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msaudio1 - C:\WINDOWS\System32\msaud32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - C:\WINDOWS\System32\msg711.acm (Microsoft Corporation)
Drivers32: msacm.msg723 - C:\WINDOWS\System32\msg723.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - C:\WINDOWS\System32\msgsm32.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\LVCodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.IYUV - C:\WINDOWS\System32\iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.M261 - C:\WINDOWS\System32\msh261.drv (Microsoft Corporation)
Drivers32: vidc.M263 - C:\WINDOWS\System32\msh263.drv (Microsoft Corporation)
Drivers32: vidc.mrle - C:\WINDOWS\System32\msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - C:\WINDOWS\System32\msvidc32.dll (Microsoft Corporation)
Drivers32: VIDC.UYVY - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: VIDC.YUY2 - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: VIDC.YVU9 - C:\WINDOWS\System32\tsbyuv.dll (Microsoft Corporation)
Drivers32: VIDC.YVYU - C:\WINDOWS\System32\msyuv.dll (Microsoft Corporation)
Drivers32: wave - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave2 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wave3 - C:\WINDOWS\System32\wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - C:\WINDOWS\System32\msacm32.drv (Microsoft Corporation)
Unable to start service SrService!

========== Files/Folders - Created Within 90 Days ==========

[2010/06/22 18:01:43 | 000,444,416 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\TFC.exe
[2010/06/22 17:34:03 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\OTL.exe
[2010/06/22 16:26:10 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010/06/22 15:59:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\My Documents\SightSpeed Recordings
[2010/06/22 15:46:31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Shelley\Recent
[2010/06/22 15:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Local Settings\Application Data\LogiShrd
[2010/06/22 00:39:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/06/22 00:39:34 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/06/22 00:39:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/06/21 13:49:04 | 000,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/06/21 13:49:03 | 000,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/06/21 13:49:02 | 000,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/06/21 13:48:58 | 000,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2010/06/21 13:48:56 | 000,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/06/21 13:48:56 | 000,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/06/21 13:48:56 | 000,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/06/21 13:48:56 | 000,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/06/21 13:48:29 | 001,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/06/21 13:48:25 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/06/21 13:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\My Documents\LimeWire
[2010/06/21 13:38:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Application Data\LimeWire
[2010/06/21 13:37:57 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire
[2010/06/21 13:06:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/06/21 13:04:40 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/06/18 20:43:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Incomplete
[2010/06/18 20:41:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\My Documents\Downloads
[2010/06/18 20:39:32 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010/06/18 20:39:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Application Data\uTorrent
[2010/06/18 20:25:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\33128
[2010/06/06 12:34:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Application Data\EmailNotifier
[2010/06/06 09:44:51 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2010/06/06 09:44:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Local Settings\Application Data\Online_Radio_India
[2010/06/06 09:44:48 | 000,000,000 | ---D | C] -- C:\Program Files\Online_Radio_India
[2010/05/31 12:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2010/05/28 00:31:07 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Shelley\PrivacIE
[2010/05/28 00:29:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Shelley\IETldCache
[2010/05/28 00:24:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010/05/27 22:23:30 | 000,000,000 | ---D | C] -- C:\387062a6c410ee0083
[2010/05/01 08:33:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\21109
[2010/04/05 14:25:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/03/27 17:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Local Settings\Application Data\SCE
[2010/03/27 17:26:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Shelley\Application Data\Sony Online Entertainment

========== Files - Modified Within 90 Days ==========

[2010/06/23 11:00:00 | 000,000,442 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{FC6951A7-053F-40F5-ABA5-77369E79CBF0}.job
[2010/06/23 10:39:00 | 000,001,018 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-790525478-879983540-725345543-1004UA.job
[2010/06/23 08:32:17 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/06/23 08:29:57 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/06/23 08:29:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/06/23 08:28:08 | 007,864,320 | -H-- | M] () -- C:\Documents and Settings\Shelley\NTUSER.DAT
[2010/06/23 08:28:08 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Shelley\ntuser.ini
[2010/06/22 20:01:52 | 002,697,548 | -H-- | M] () -- C:\Documents and Settings\Shelley\Local Settings\Application Data\IconCache.db
[2010/06/22 18:16:19 | 000,000,570 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/06/22 18:16:19 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/06/22 18:16:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010/06/22 18:01:46 | 000,444,416 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\TFC.exe
[2010/06/22 17:39:00 | 000,000,966 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-790525478-879983540-725345543-1004Core.job
[2010/06/22 17:34:11 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Shelley\Desktop\OTL.exe
[2010/06/22 17:11:39 | 000,284,915 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\gmer.zip
[2010/06/22 16:39:56 | 000,000,847 | ---- | M] () -- C:\Documents and Settings\Shelley\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/06/22 16:31:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/06/22 00:39:45 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/21 14:22:57 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/06/21 13:49:05 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2010/06/21 13:38:08 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\LimeWire PRO 4.18.8.lnk
[2010/06/21 13:34:34 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\Internet Explorer.lnk
[2010/06/19 16:19:05 | 000,082,432 | ---- | M] () -- C:\Documents and Settings\Shelley\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/12 22:22:30 | 000,255,864 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/06/12 15:37:37 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\Skype.lnk
[2010/06/09 12:03:05 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\CCleaner.lnk
[2010/06/07 12:39:02 | 000,000,301 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\Shortcut to Sounds and Audio Devices.lnk
[2010/06/03 15:31:30 | 000,000,000 | ---- | M] () -- C:\testwma.raw
[2010/05/31 20:19:30 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Pool.INI
[2010/05/31 13:00:07 | 000,000,822 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Logitech Vid.lnk
[2010/05/31 12:53:29 | 000,001,882 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Logitech Webcam Software.lnk
[2010/05/11 16:17:51 | 000,000,788 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\Windows Media Player (2).lnk
[2010/05/06 12:58:28 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/04/09 19:31:33 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\Shelley\My Documents\Adobe Reader 9.lnk
[2010/04/05 14:00:07 | 000,356,120 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/04/05 14:00:07 | 000,312,378 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/04/05 14:00:07 | 000,040,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/03/28 07:58:23 | 000,000,637 | ---- | M] () -- C:\Documents and Settings\Shelley\My Documents\Shortcut to GameHouse Games Collection.lnk
[2010/03/28 07:58:23 | 000,000,637 | ---- | M] () -- C:\Documents and Settings\Shelley\Desktop\Shortcut to GameHouse Games Collection.lnk

========== Files Created - No Company Name ==========

[2010/06/22 18:16:19 | 000,000,684 | ---- | C] () -- C:\Documents and Settings\Shelley\Start Menu\Programs\Startup\MagicDisc.lnk
[2010/06/22 17:11:35 | 000,284,915 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\gmer.zip
[2010/06/22 16:29:17 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010/06/22 00:39:45 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/21 13:49:05 | 000,001,741 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2010/06/21 13:48:29 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2010/06/21 13:38:08 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\LimeWire PRO 4.18.8.lnk
[2010/06/21 13:34:34 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\Internet Explorer.lnk
[2010/06/07 12:39:02 | 000,000,301 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\Shortcut to Sounds and Audio Devices.lnk
[2010/06/01 02:44:39 | 000,000,442 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{FC6951A7-053F-40F5-ABA5-77369E79CBF0}.job
[2010/05/31 20:19:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Pool.INI
[2010/05/31 13:00:07 | 000,000,822 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Logitech Vid.lnk
[2010/05/31 12:53:29 | 000,001,882 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Logitech Webcam Software.lnk
[2010/05/23 18:26:44 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\Shelley\My Documents\Adobe Reader 9.lnk
[2010/05/11 16:17:51 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\Windows Media Player (2).lnk
[2010/05/11 16:17:33 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Shelley\My Documents\Windows Media Player.lnk
[2010/05/11 02:51:43 | 000,000,637 | ---- | C] () -- C:\Documents and Settings\Shelley\My Documents\Shortcut to GameHouse Games Collection.lnk
[2010/05/06 12:58:28 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/04/15 20:51:39 | 000,000,000 | ---- | C] () -- C:\testwma.raw
[2010/03/28 07:58:23 | 000,000,637 | ---- | C] () -- C:\Documents and Settings\Shelley\Desktop\Shortcut to GameHouse Games Collection.lnk
[2009/10/07 01:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2009/10/07 01:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll
[2009/08/31 17:45:47 | 000,082,289 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2009/06/05 16:12:08 | 000,000,094 | -H-- | C] () -- C:\WINDOWS\System32\spv1_WCssg.ini
[2008/12/31 15:38:25 | 000,000,101 | ---- | C] () -- C:\WINDOWS\CMMIXER.INI
[2008/01/11 17:04:56 | 000,000,023 | ---- | C] () -- C:\WINDOWS\kodakpcd.Riki-Lee Haeata.ini
[2008/01/04 13:47:27 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll
[2007/10/14 09:32:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2007/07/22 14:16:50 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LAME_MP3.dll
[2007/07/13 21:43:27 | 000,000,025 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
[2007/05/25 19:06:22 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\CNMVS3y.DLL
[2004/12/20 11:08:28 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2004/12/20 11:03:26 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

========== LOP Check ==========

[2010/05/01 08:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\21109
[2010/06/18 20:25:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\33128
[2009/08/29 12:02:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG7
[2009/05/16 15:30:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA
[2009/08/29 11:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft
[2009/05/08 22:31:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
[2009/08/28 21:13:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/09/21 17:12:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\AVG7
[2010/06/06 12:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\EmailNotifier
[2009/08/31 17:44:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\Leadertech
[2010/06/21 19:52:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\LimeWire
[2010/03/27 17:26:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\Sony Online Entertainment
[2009/08/29 01:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\StarOffice8
[2010/06/21 13:20:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\uTorrent
[2009/05/18 16:20:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Shelley\Application Data\Wildfire
[2010/06/23 11:00:00 | 000,000,442 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{FC6951A7-053F-40F5-ABA5-77369E79CBF0}.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2007/05/20 09:59:38 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/06/22 18:16:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2007/05/20 09:59:38 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2007/05/20 09:59:38 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2007/05/20 09:59:38 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004/08/05 00:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009/05/11 18:04:28 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/06/23 08:29:17 | 401,842,176 | -HS- | M] () -- C:\pagefile.sys
[2010/06/03 15:31:30 | 000,000,000 | ---- | M] () -- C:\testwma.raw

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2002/02/12 17:00:00 | 000,013,824 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPD3y.DLL
[2002/02/12 17:00:00 | 000,043,008 | ---- | M] (CANON INC.) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPP3y.DLL

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2007/05/20 21:42:06 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2007/05/20 21:42:06 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2007/05/20 21:42:06 | 000,880,640 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\user32.dll /md5 >
[2008/04/14 12:12:08 | 000,578,560 | ---- | M] (Microsoft Corporation) MD5=B26B135FF1B9F60C9388B4A7D16F600B -- C:\WINDOWS\system32\user32.dll

< %systemroot%\system32\ws2_32.dll /md5 >
[2008/04/14 12:12:10 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

========== Alternate Data Streams ==========

@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >







OTL Extras logfile created on: 23/06/2010 10:38:46 a.m. - Run 1
OTL by OldTimer - Version 3.2.6.1 Folder = C:\Documents and Settings\Shelley\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001409 | Country: New Zealand | Language: ENZ | Date Format: d/MM/yyyy

255.00 Mb Total Physical Memory | 101.00 Mb Available Physical Memory | 40.00% Memory free
618.00 Mb Paging File | 212.00 Mb Available in Paging File | 34.00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 55.89 Gb Total Space | 15.20 Gb Free Space | 27.20% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HATS
Current User Name: Shelley
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5893:TCP" = 5893:TCP:*:Enabled:enpxszse

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Grisoft\AVG Free\avginet.exe" = C:\Program Files\Grisoft\AVG Free\avginet.exe:*:Enabled:avginet.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\Grisoft\AVG Free\avgamsvr.exe" = C:\Program Files\Grisoft\AVG Free\avgamsvr.exe:*:Enabled:avgamsvr.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\Grisoft\AVG Free\avgcc.exe" = C:\Program Files\Grisoft\AVG Free\avgcc.exe:*:Enabled:avgcc.exe -- File not found
"C:\Program Files\Grisoft\AVG Free\avgemc.exe" = C:\Program Files\Grisoft\AVG Free\avgemc.exe:*:Enabled:avgemc.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- File not found
"C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe" = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe:*:Disabled:Kodak Software Updater -- File not found
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare -- File not found
"C:\Program Files\Kazaa\kazaa.exe" = C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa -- File not found
"C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"C:\Program Files\GameHouse Games Collection\Wheel of Fortune\Wheel of Fortune.exe" = C:\Program Files\GameHouse Games Collection\Wheel of Fortune\Wheel of Fortune.exe:*:Enabled:Wheel of Fortune -- (Sony Pictures Digital Networks Inc.)
"C:\Program Files\iMesh Applications\iMesh\iMesh.exe" = C:\Program Files\iMesh Applications\iMesh\iMesh.exe:*:Enabled:iMesh -- File not found
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Logitech\Logitech Vid\Vid.exe" = C:\Program Files\Logitech\Logitech Vid\Vid.exe:*:Enabled:Logitech Vid -- (Logitech Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1CB92574-96F2-467B-B793-5CEB35C40C29}" = Image Resizer Powertoy for Windows XP
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java™ 6 Update 20
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}" = Logitech Vid
"{53735ECE-E461-4FD0-B742-23A352436D3A}" = Logitech Updater
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{6F20345C-6055-414E-994C-97D3A81B9070}" = Tango
"{9D44AC08-92C9-4280-8CE4-5C7A86D7C377}" = Robots Creative Studio
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.1
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"3d26dc75-02e4-4ef4-f575-a062f4d84201" = Dynamic Targeting Fruttinet
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Ancient Tripeaks" = GameHouse Games Collection: Ancient Tripeaks
"Atlantis" = GameHouse Games Collection: Atlantis
"avast!" = avast! Antivirus
"CANONBJ_Deinstall_CNMCP3y.DLL" = Canon S200SP
"CCleaner" = CCleaner
"Charm Solitaire" = GameHouse Games Collection: Charm Solitaire
"Chicktionary" = GameHouse Games Collection: Chicktionary
"Diner Dash" = GameHouse Games Collection: Diner Dash
"DSL USB Driver" = DSL USB Driver
"Feeding Frenzy" = GameHouse Games Collection: Feeding Frenzy
"Five Card Deluxe" = GameHouse Games Collection: Five Card Deluxe
"Flip Words" = GameHouse Games Collection: Flip Words
"Flying Leo" = GameHouse Games Collection: Flying Leo
"Fresco Wizard" = GameHouse Games Collection: Fresco Wizard
"GameHouse Sudoku" = GameHouse Games Collection: GameHouse Sudoku
"Granny in Paradise" = GameHouse Games Collection: Granny in Paradise
"Gutterball" = GameHouse Games Collection: Gutterball
"Gutterball 2" = GameHouse Games Collection: Gutterball 2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Incredible Ink" = GameHouse Games Collection: Incredible Ink
"Insaniquarium Deluxe" = GameHouse Games Collection: Insaniquarium Deluxe
"Invadazoid" = GameHouse Games Collection: Invadazoid
"Lame MP3 Codec (for the ACM)" = Lame ACM MP3 Codec
"Lemonade Tycoon" = GameHouse Games Collection: Lemonade Tycoon
"LimeWire" = LimeWire PRO 4.18.8
"lvdrivers_12.10" = Logitech Webcam Software Driver Package
"Mad Caps" = GameHouse Games Collection: Mad Caps
"Magic Ball 2" = GameHouse Games Collection: Magic Ball 2
"Magic Ball 2 - New Worlds" = GameHouse Games Collection: Magic Ball 2 - New Worlds
"Magic Ball Deluxe" = GameHouse Games Collection: Magic Ball
"MagicDisc 2.7.105" = MagicDisc 2.7.105
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"PCI Audio Driver" = PCI Audio Driver
"Picasa 3" = Picasa 3
"Pizza Frenzy" = GameHouse Games Collection: Pizza Frenzy
"Puzzle Express" = GameHouse Games Collection: Puzzle Express
"Puzzle Solitaire" = GameHouse Games Collection: Puzzle Solitaire
"QBz" = GameHouse Games Collection: QBz
"Saints & Sinners Bingo" = GameHouse Games Collection: Saints & Sinners Bingo
"SCRABBLE" = GameHouse Games Collection: SCRABBLE
"Shape Shifter" = GameHouse Games Collection: Shape Shifter
"Spelvin" = GameHouse Games Collection: Spelvin
"Splash" = GameHouse Games Collection: Splash
"Super 5-Line Slots" = GameHouse Games Collection: Super 5-Line Slots
"Super Bounce Out!" = GameHouse Games Collection: Super Bounce Out!
"Super Candy Cruncher" = GameHouse Games Collection: Super Candy Cruncher
"Super Fruit Frolic" = GameHouse Games Collection: Super Fruit Frolic
"Super Gem Drop" = GameHouse Games Collection: Super Gem Drop
"Super Pool" = GameHouse Games Collection: Super Pool
"Super Pop & Drop!" = GameHouse Games Collection: Super Pop & Drop!
"Super SpongeBob Collapse!" = GameHouse Games Collection: Super SpongeBob Collapse!
"Super WHATword" = GameHouse Games Collection: Super WHATword
"Super Wild Wild Words" = GameHouse Games Collection: Super Wild Wild Words
"Ten Pin Championship Bowling Pro" = GameHouse Games Collection: Ten Pin Championship Bowling Pro
"Tradewinds 2" = GameHouse Games Collection: Tradewinds 2
"Tropical Swaps" = GameHouse Games Collection: Tropical Swaps
"Tumblebugs" = GameHouse Games Collection: Tumblebugs
"Turtle Bay" = GameHouse Games Collection: Turtle Bay
"uTorrent" = µTorrent
"Varmintz Deluxe" = GameHouse Games Collection: Varmintz Deluxe
"VLC media player" = VideoLAN VLC media player 0.8.6a
"Wheel of Fortune" = GameHouse Games Collection: Wheel of Fortune
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Word Slinger" = GameHouse Games Collection: Word Slinger
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XviD_is1" = XviD MPEG-4 Video Codec

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 21/06/2010 8:55:59 a.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\windows\system32\nzmffs.dll failed, 00000005.

Error - 21/06/2010 8:56:29 a.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\WINDOWS\system32\01.tmp failed, 00000005.

Error - 21/06/2010 4:16:42 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\windows\system32\nzmffs.dll failed, 00000005.

Error - 21/06/2010 4:17:00 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\WINDOWS\system32\01.tmp failed, 00000005.

Error - 21/06/2010 8:06:22 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\windows\system32\nzmffs.dll failed, 00000005.

Error - 21/06/2010 8:07:21 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\WINDOWS\system32\01.tmp failed, 00000005.

Error - 21/06/2010 11:35:24 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\windows\system32\nzmffs.dll failed, 00000005.

Error - 21/06/2010 11:37:10 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\WINDOWS\system32\01.tmp failed, 00000005.

Error - 21/06/2010 11:50:56 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\windows\system32\nzmffs.dll failed, 00000005.

Error - 21/06/2010 11:54:04 p.m. | Computer Name = HATS | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\WINDOWS\system32\01.tmp failed, 00000005.

[ Application Events ]
Error - 21/06/2010 9:47:20 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 9:47:20 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:34:00 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:34:00 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:34:53 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:34:53 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:49:15 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:49:15 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:49:19 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE}
and it will not be loaded. This is most likely caused by a faulty registration.

Error - 21/06/2010 11:49:19 p.m. | Computer Name = HATS | Source = Userenv | ID = 1041
Description = Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
and it will not be loaded. This is most likely caused by a faulty registration.

[ System Events ]
Error - 22/06/2010 4:31:44 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7000
Description = The avast! Web Scanner service failed to start due to the following
error: %%1053

Error - 22/06/2010 4:32:41 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the avast! Web Scanner service
to connect.

Error - 22/06/2010 4:32:41 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7000
Description = The avast! Web Scanner service failed to start due to the following
error: %%1053

Error - 22/06/2010 4:33:28 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the avast! Web Scanner service
to connect.

Error - 22/06/2010 4:33:29 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7000
Description = The avast! Web Scanner service failed to start due to the following
error: %%1053

Error - 22/06/2010 4:35:56 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7034
Description = The avast! Web Scanner service terminated unexpectedly. It has done
this 1 time(s).

Error - 22/06/2010 4:42:21 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the AVG7 Update Service service
to connect.

Error - 22/06/2010 4:42:21 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7000
Description = The AVG7 Update Service service failed to start due to the following
error: %%1053

Error - 22/06/2010 6:41:34 p.m. | Computer Name = HATS | Source = SRService | ID = 104
Description = The System Restore initialization process failed.

Error - 22/06/2010 6:41:38 p.m. | Computer Name = HATS | Source = Service Control Manager | ID = 7023
Description = The System Restore Service service terminated with the following error:
%%2


< End of report >

i still have tango in add and remove i also do not have avg antivirus on my pc..or in add and remove.
  • 0

#4
RKinner
Posted 22 June 2010 - 06:27 PM

RKinner

    Malware Expert

  • Expert
  • 24,483 posts
  • MVP
Get the AVG removal tool:

http://download.avg..../avgremover.exe

and run it.


Copy the text in the code box by highlighting and Ctrl + c 

:OTL
SRV - [2007/05/20 10:15:17 | 000,049,664 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgupsvc.exe -- (Avg7UpdSvc)
SRV - [2007/05/20 10:15:15 | 000,343,552 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgamsvr.exe -- (Avg7Alrt)
SRV - [2007/05/20 10:15:15 | 000,321,536 | ---- | M] (GRISOFT, s.r.o.) [Auto | Stopped] -- C:\Program Files\Grisoft\AVG Free\avgemc.exe -- (AVGEMS)
DRV - [2007/05/20 10:15:22 | 000,004,960 | ---- | M] (GRISOFT, s.r.o.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\Drivers\avgtdi.sys -- (AvgTdi)
DRV - [2007/05/20 10:15:22 | 000,003,968 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgclean.sys -- (AvgClean)
DRV - [2007/05/20 10:15:20 | 000,028,416 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7rsxp.sys -- (Avg7RsXP)
DRV - [2007/05/20 10:15:20 | 000,004,224 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7rsw.sys -- (Avg7RsW)
DRV - [2007/05/20 10:15:18 | 000,816,288 | ---- | M] (GRISOFT, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avg7core.sys -- (Avg7Core)
FF - prefs.js..browser.search.defaultenginename: "iMesh Web Search"
FF - prefs.js..browser.search.selectedEngine: "iMesh Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.imesh.com/"
FF - prefs.js..browser.search.order.1: "iMesh Web Search"
FF - prefs.js..keyword.URL: "http://search.imesh.com/web?src=ffb&q="
[2009/11/06 20:09:16 | 000,000,215 | ---- | M] () -- C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\4.6.6.0.xml
[2008/08/23 16:12:45 | 000,002,386 | ---- | M] () -- C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\siteadvisor.xml
FF - user.js..browser.search.defaultenginename: "4.6.6.0"
FF - user.js..browser.search.defaulturl: "4.6.6.0"
FF - user.js..browser.search.selectedEngine: "4.6.6.0"
FF - user.js..keyword.URL: "4.6.6.0"
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {6F20345C-6055-414E-994C-97D3A81B9070} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {6F20345C-6055-414E-994C-97D3A81B9070} - No CLSID value found.
O4 - HKCU..\Run: [iMesh] C:\Program Files\iMesh Applications\iMesh\iMesh.exe File not found
	
:Commands
[purity]
[emptytemp]
[Reboot]
then run OTL and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the Run Fix button at the top
Let the program run unhindered, OTL will reboot the PC when it is done.

Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.



Download but do not yet run ComboFix
:!: If you have a previous version of Combofix.exe, delete it and download a fresh copy. :!:

:!: It must be saved to your desktop, do not run it :!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html


Download and Rename this file -- (call it george.exe ) to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Doubleclick on george to start the program.



* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.


* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix. Allow it to install the Recovery Console then Continue. When the scan completes Notepad will open with with your results log open. Do a File, Exit and answer 'Yes' to save changes.


A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.

Re-activate your anti-virus program at this time :!:

Ron
  • 0

#5
xxxitson
Posted 22 June 2010 - 09:04 PM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
here is my log as requested thank you Ron

All processes killed
========== OTL ==========
Service Avg7UpdSvc stopped successfully!
Service Avg7UpdSvc deleted successfully!
C:\Program Files\Grisoft\AVG Free\avgupsvc.exe moved successfully.
Service Avg7Alrt stopped successfully!
Service Avg7Alrt deleted successfully!
C:\Program Files\Grisoft\AVG Free\avgamsvr.exe moved successfully.
Service AVGEMS stopped successfully!
Service AVGEMS deleted successfully!
C:\Program Files\Grisoft\AVG Free\avgemc.exe moved successfully.
Service AvgTdi stopped successfully!
Service AvgTdi deleted successfully!
File C:\WINDOWS\System32\Drivers\avgtdi.sys not found.
Service AvgClean stopped successfully!
Service AvgClean deleted successfully!
C:\WINDOWS\system32\drivers\avgclean.sys moved successfully.
Service Avg7RsXP stopped successfully!
Service Avg7RsXP deleted successfully!
C:\WINDOWS\system32\drivers\avg7rsxp.sys moved successfully.
Error: Unable to stop service Avg7RsW!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Avg7RsW deleted successfully.
C:\WINDOWS\system32\drivers\avg7rsw.sys moved successfully.
Service Avg7Core stopped successfully!
Service Avg7Core deleted successfully!
C:\WINDOWS\system32\drivers\avg7core.sys moved successfully.
Prefs.js: "iMesh Web Search" removed from browser.search.defaultenginename
Prefs.js: "iMesh Web Search" removed from browser.search.selectedEngine
Prefs.js: "http://search.imesh.com/" removed from browser.startup.homepage
Prefs.js: "iMesh Web Search" removed from browser.search.order.1
Prefs.js: "http://search.imesh....web?src=ffb&q=" removed from keyword.URL
C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\4.6.6.0.xml moved successfully.
C:\Documents and Settings\Shelley\Application Data\Mozilla\Firefox\Profiles\kec31fer.default\searchplugins\siteadvisor.xml moved successfully.
C:\Documents and Settings\Shelley\Application Data\Mozilla\FireFox\Profiles\kec31fer.default\user.js moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0BF43445-2F28-4351-9252-17FE6E806AA0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BF43445-2F28-4351-9252-17FE6E806AA0}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{6F20345C-6055-414E-994C-97D3A81B9070} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6F20345C-6055-414E-994C-97D3A81B9070}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{6F20345C-6055-414E-994C-97D3A81B9070} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6F20345C-6055-414E-994C-97D3A81B9070}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\iMesh not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Michael
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Riki-Lee Haeata

User: ScOoB
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Shelley
->Temp folder emptied: 594321 bytes
->Temporary Internet Files folder emptied: 291199890 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 984 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 125947 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 278.00 mb


OTL by OldTimer - Version 3.2.6.1 log created on 06232010_145100

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
C:\WINDOWS\temp\Perflib_Perfdata_4d0.dat moved successfully.

Registry entries deleted on Reboot...
  • 0

#6
RKinner
Posted 22 June 2010 - 09:28 PM

RKinner

    Malware Expert

  • Expert
  • 24,483 posts
  • MVP
Tango appears to be gone except from the Add/Remove Programs list. If you try to uninstall it what happens?

You can also try

Start, Run, cmd, OK to bring up a command window then

msiexec /x {6F20345C-6055-414E-994C-97D3A81B9070}

Ron
  • 0

#7
xxxitson
Posted 22 June 2010 - 09:44 PM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
sorry i forgot to post combofix.

ComboFix 10-06-22.02 - Shelley 23/06/2010 15:17:24.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.64.1033.18.255.108 [GMT 12:00]
Running from: c:\documents and settings\Shelley\Desktop\george.exe
AV: avast! antivirus 4.8.1368 [VPS 100622-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: AVG 7.5.428 *On-access scanning enabled* (Outdated) {41564737-3200-1071-989B-0000E87B4FB1}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Fast Browser Search
c:\windows\system32\3d26dc75-02e4-4ef4-f575-a062f4d84201.exe

.
((((((((((((((((((((((((( Files Created from 2010-05-23 to 2010-06-23 )))))))))))))))))))))))))))))))
.

2010-06-23 02:12 . 2010-06-23 02:12 -------- d-----w- C:\_OTL
2010-06-22 06:31 . 2010-06-22 06:31 -------- d-sh--w- c:\documents and settings\Michael\PrivacIE
2010-06-22 04:31 . 2010-05-06 10:41 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-22 04:26 . 2010-06-22 04:29 -------- dc-h--w- c:\windows\ie8
2010-06-22 03:39 . 2010-06-22 03:39 -------- d-----w- c:\documents and settings\Shelley\Local Settings\Application Data\LogiShrd
2010-06-21 12:39 . 2010-04-29 03:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-06-21 12:39 . 2010-04-29 03:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-06-21 12:39 . 2010-06-21 12:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-06-21 01:49 . 2009-11-25 00:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-06-21 01:49 . 2009-11-25 00:49 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-06-21 01:49 . 2009-11-25 00:47 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-06-21 01:48 . 2009-11-25 00:47 97480 ----a-w- c:\windows\system32\AvastSS.scr
2010-06-21 01:48 . 2009-11-25 00:51 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-06-21 01:48 . 2009-11-25 00:50 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-06-21 01:48 . 2009-11-25 00:50 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-06-21 01:48 . 2009-11-25 00:50 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-06-21 01:48 . 2009-11-25 00:54 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2010-06-21 01:48 . 2003-03-18 21:20 1060864 ----a-w- c:\windows\system32\MFC71.dll
2010-06-21 01:48 . 2010-06-21 01:48 -------- d-----w- c:\program files\Alwil Software
2010-06-21 01:38 . 2010-06-21 07:52 -------- d-----w- c:\documents and settings\Shelley\Application Data\LimeWire
2010-06-21 01:37 . 2010-06-21 01:38 -------- d-----w- c:\program files\LimeWire
2010-06-21 01:06 . 2010-06-21 01:06 -------- d-----w- c:\program files\Common Files\Java
2010-06-21 01:06 . 2010-06-21 01:06 61440 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-4d4345bf-n\decora-sse.dll
2010-06-21 01:06 . 2010-06-21 01:06 12800 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-4d4345bf-n\decora-d3d.dll
2010-06-21 01:04 . 2010-06-21 01:04 -------- d-----w- c:\program files\Java
2010-06-18 09:12 . 2010-06-18 09:12 503808 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-70109b6a-n\msvcp71.dll
2010-06-18 09:12 . 2010-06-18 09:12 499712 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-70109b6a-n\jmc.dll
2010-06-18 09:12 . 2010-06-18 09:12 348160 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-70109b6a-n\msvcr71.dll
2010-06-18 09:11 . 2010-06-21 01:04 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-18 08:43 . 2010-06-21 00:50 -------- d-----w- c:\documents and settings\Shelley\Incomplete
2010-06-18 08:39 . 2010-06-18 08:39 -------- d-----w- c:\program files\uTorrent
2010-06-18 08:39 . 2010-06-21 01:20 -------- d-----w- c:\documents and settings\Shelley\Application Data\uTorrent
2010-06-18 08:25 . 2010-06-18 08:25 -------- d-----w- c:\documents and settings\All Users\Application Data\33128
2010-06-06 00:34 . 2010-06-06 00:38 -------- d-----w- c:\documents and settings\Shelley\Application Data\EmailNotifier
2010-06-05 21:44 . 2010-06-05 21:44 -------- d-----w- c:\program files\Conduit
2010-06-05 21:44 . 2010-06-06 00:40 -------- d-----w- c:\documents and settings\Shelley\Local Settings\Application Data\Online_Radio_India
2010-06-05 21:44 . 2010-06-06 00:43 -------- d-----w- c:\program files\Online_Radio_India
2010-05-31 06:46 . 2010-05-31 06:46 -------- d-sh--w- c:\documents and settings\Michael\IETldCache
2010-05-31 00:56 . 2009-04-30 22:55 2687512 ----a-w- c:\windows\system32\drivers\LV302V32.SYS
2010-05-31 00:55 . 2009-04-30 22:57 199192 ----a-w- c:\windows\system32\lvci1201278.dll
2010-05-31 00:53 . 2010-05-31 00:59 -------- d-----w- c:\program files\Logitech
2010-05-27 12:31 . 2010-05-27 12:31 -------- d-sh--w- c:\documents and settings\Shelley\PrivacIE
2010-05-27 12:30 . 2010-05-27 12:30 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2010-05-27 12:29 . 2010-05-27 12:29 -------- d-sh--w- c:\documents and settings\Shelley\IETldCache
2010-05-27 12:25 . 2010-04-16 11:43 41984 -c----w- c:\windows\system32\dllcache\iecompat.dll
2010-05-27 12:24 . 2010-06-23 02:44 -------- d-----w- c:\windows\ie8updates
2010-05-27 12:24 . 2010-05-06 10:41 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-05-27 12:24 . 2010-05-06 10:41 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-05-27 10:23 . 2010-05-27 10:23 -------- d-----w- C:\387062a6c410ee0083

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-22 20:34 . 2009-08-31 05:57 -------- d-----w- c:\documents and settings\Shelley\Application Data\Skype
2010-06-09 00:03 . 2009-08-28 13:52 -------- d-----w- c:\program files\CCleaner
2010-05-31 00:57 . 2009-08-31 05:42 -------- d-----w- c:\program files\Common Files\LogiShrd
2010-05-31 00:53 . 2009-08-31 05:42 -------- d-----w- c:\documents and settings\All Users\Application Data\Logishrd
2010-05-06 10:41 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-06 00:58 . 2010-05-06 00:58 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-05-02 05:22 . 2004-08-04 12:00 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-30 20:33 . 2010-04-30 20:33 -------- d-----w- c:\documents and settings\All Users\Application Data\21109
2010-04-30 08:16 . 2009-11-04 03:57 -------- d-----w- c:\documents and settings\Michael\Application Data\imeshmediabartb
2010-04-20 05:30 . 2004-08-04 12:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-15 08:20 . 2010-04-15 08:20 503808 ----a-w- c:\documents and settings\Michael\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-18b467e7-n\msvcp71.dll
2010-04-15 08:20 . 2010-04-15 08:20 499712 ----a-w- c:\documents and settings\Michael\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-18b467e7-n\jmc.dll
2010-04-15 08:20 . 2010-04-15 08:20 61440 ----a-w- c:\documents and settings\Michael\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-51431a47-n\decora-sse.dll
2010-04-15 08:20 . 2010-04-15 08:20 348160 ----a-w- c:\documents and settings\Michael\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-18b467e7-n\msvcr71.dll
2010-04-15 08:20 . 2010-04-15 08:20 12800 ----a-w- c:\documents and settings\Michael\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-51431a47-n\decora-d3d.dll
2010-04-05 02:25 . 2010-04-05 02:25 503808 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-40c9ecd2-n\msvcp71.dll
2010-04-05 02:24 . 2010-04-05 02:24 499712 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-40c9ecd2-n\jmc.dll
2010-04-05 02:24 . 2010-04-05 02:24 61440 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-4e4e71cf-n\decora-sse.dll
2010-04-05 02:24 . 2010-04-05 02:24 348160 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-40c9ecd2-n\msvcr71.dll
2010-04-05 02:24 . 2010-04-05 02:24 12800 ----a-w- c:\documents and settings\Shelley\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-4e4e71cf-n\decora-d3d.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"C-Media Mixer"="Mixer.exe" [2002-10-15 1818624]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2003-07-28 4841472]
"nwiz"="nwiz.exe" [2003-07-28 323584]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-21 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-17 248040]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-25 81000]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"AVG7_Run"="c:\progra~1\Grisoft\AVGFRE~1\avgw.exe" [2007-05-19 146432]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^Shelley^Start Menu^Programs^Startup^MagicDisc.lnk]
path=c:\documents and settings\Shelley\Start Menu\Programs\Startup\MagicDisc.lnk
backup=c:\windows\pss\MagicDisc.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2009-09-02 03:46 25785128 ----a-r- c:\program files\Skype\Phone\Skype.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\GameHouse Games Collection\\Wheel of Fortune\\Wheel of Fortune.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Logitech\\Logitech Vid\\Vid.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5893:TCP"= 5893:TCP:enpxszse

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [21/06/2010 1:48 p.m. 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [21/06/2010 1:48 p.m. 20560]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [22/06/2010 12:39 a.m. 20952]
R3 ngrpci;NETGEAR FA310TX Fast Ethernet Adapter Driver;c:\windows\system32\drivers\Ngrpci.sys [18/10/2008 10:00 a.m. 32840]
S3 40c52e5e-10b7-4c0e-be46-5a753baf1916;40c52e5e-10b7-4c0e-be46-5a753baf1916;\??\d:\player\cds300.dll --> d:\player\cds300.dll [?]
S3 ctlsb16;Creative SB16/AWE32/AWE64 Driver (WDM);c:\windows\system32\drivers\ctlsb16.sys [18/06/2007 5:33 p.m. 96256]
S3 MemStPCI;Sony Memory Stick controller (PCI);c:\windows\system32\drivers\memstpci.sys [11/01/2008 4:32 p.m. 26112]
.
Contents of the 'Scheduled Tasks' folder

2010-06-23 c:\windows\Tasks\User_Feed_Synchronization-{FC6951A7-053F-40F5-ABA5-77369E79CBF0}.job
- c:\windows\system32\msfeedssync.exe [2006-10-16 16:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.co.nz/
mSearch Bar = hxxp://www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = 127.0.0.1
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-iMesh - c:\program files\iMesh Applications\iMesh\iMesh.exe
AddRemove-3d26dc75-02e4-4ef4-f575-a062f4d84201 - c:\windows\system32\3d26dc75-02e4-4ef4-f575-a062f4d84201.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-23 15:25
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2010-06-23 15:30:18
ComboFix-quarantined-files.txt 2010-06-23 03:30

Pre-Run: 16,216,014,848 bytes free
Post-Run: 16,184,131,584 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - C67ED463534492183464129F130F636B


this is comes upon on screen while in add and remove when i try to remove TANGO. i will try your other suggestion


Hello, If you were sent to this page then it is likely that you have downloaded some sort of adware or malware. We have recently begun to receive reports from individuals who have installed a toolbar that includes the name ‘tango’ and tells them to go to here to remove it. Our company, Brand Tango, has no association with this software and we do not create any software for individual use. The reported toolbar is attempting to mislead people by sending them to a domain that they don’t own and that can’t help them. We recommend that you ensure your internet security software (anti-virus, firewall, malware/adware protection, etc…) is up to date and then contact their technical support for help removing the toolbar. For your convenience, links to some of the more popular internet security companies are listed below.

Sincerely,
Brand Tango


http://usa.kaspersky.com/
http://www.symantec....orton/index.jsp
http://www.mcafee.com/us/default.asp
  • 0

#8
RKinner
Posted 22 June 2010 - 10:06 PM

RKinner

    Malware Expert

  • Expert
  • 24,483 posts
  • MVP
We can also try regseeker:

Get RegSeeker.
http://www.hoverdesk.net/freeware.htm
The download is where it says:
DOWNLOAD RegSeeker 1.55 (>20 languages included !)
It's a zip file so you have to save it then right click on it and Extract All then run regseeker.exe.

Select Find in Registry then have it look for {6F20345C-6055-414E-994C-97D3A81B9070}. You can then select all and then right click and delete selected. It puts a copy of the stuff it removes in the backups folder which it creates below the folder it is in so if it doesn't work you can go back and replace it.

RegSeeker also has a registry cleaner but I don't really trust registry cleaners so I'd rather you didn't use it.

Ron
  • 0

#9
xxxitson
Posted 22 June 2010 - 10:27 PM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
thanks Ron regseeker removed tango from add and remove should i do any other scans to see if pc is now clean ?
you rock dude i would like to learn how to help others like yourself.

:)
  • 0

#10
xxxitson
Posted 22 June 2010 - 11:02 PM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
avgremover log report

2010-06-23 02:02:20,671 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2010-06-23 02:02:20,765 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2010-06-23 02:02:20,765 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2010-06-23 02:02:20,765 WARN AvgDir param empty.
2010-06-23 02:02:20,765 WARN AvgDataDir param empty.
2010-06-23 02:02:32,281 INFO AvgRemover runs in attempt number 1
2010-06-23 02:02:32,281 INFO ***** Services *****
2010-06-23 02:02:32,281 INFO Processing service avg8emc
2010-06-23 02:02:32,328 INFO Service avg8emc is not installed
2010-06-23 02:02:32,328 DEBUG Service avg8emc RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service avg8emc are not present
2010-06-23 02:02:32,328 INFO Processing service avgfws8
2010-06-23 02:02:32,328 INFO Service avgfws8 is not installed
2010-06-23 02:02:32,328 DEBUG Service avgfws8 RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service avgfws8 are not present
2010-06-23 02:02:32,328 INFO Processing service avg8wd
2010-06-23 02:02:32,328 INFO Service avg8wd is not installed
2010-06-23 02:02:32,328 DEBUG Service avg8wd RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service avg8wd are not present
2010-06-23 02:02:32,328 INFO Processing service AvgWFPx
2010-06-23 02:02:32,328 INFO Service AvgWFPx is not installed
2010-06-23 02:02:32,328 DEBUG Service AvgWFPx RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service AvgWFPx are not present
2010-06-23 02:02:32,328 INFO Processing service AvgWFPa
2010-06-23 02:02:32,328 INFO Service AvgWFPa is not installed
2010-06-23 02:02:32,328 DEBUG Service AvgWFPa RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service AvgWFPa are not present
2010-06-23 02:02:32,328 INFO Processing service AvgMfx86
2010-06-23 02:02:32,328 INFO Service AvgMfx86 is not installed
2010-06-23 02:02:32,328 DEBUG Service AvgMfx86 RegCleanup
2010-06-23 02:02:32,328 DEBUG Registry keys for service AvgMfx86 are not present
2010-06-23 02:02:32,343 INFO Processing service AvgMfx64
2010-06-23 02:02:32,343 INFO Service AvgMfx64 is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgMfx64 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgMfx64 are not present
2010-06-23 02:02:32,343 INFO Processing service AvgLdx86
2010-06-23 02:02:32,343 INFO Service AvgLdx86 is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgLdx86 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgLdx86 are not present
2010-06-23 02:02:32,343 INFO Processing service AvgLdx64
2010-06-23 02:02:32,343 INFO Service AvgLdx64 is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgLdx64 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgLdx64 are not present
2010-06-23 02:02:32,343 INFO Processing service AvgTdiX
2010-06-23 02:02:32,343 INFO Service AvgTdiX is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgTdiX RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgTdiX are not present
2010-06-23 02:02:32,343 INFO Processing service AvgTdiA
2010-06-23 02:02:32,343 INFO Service AvgTdiA is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgTdiA RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgTdiA are not present
2010-06-23 02:02:32,343 INFO Processing service AvgRkx86
2010-06-23 02:02:32,343 INFO Service AvgRkx86 is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgRkx86 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgRkx86 are not present
2010-06-23 02:02:32,343 INFO Processing service AvgRkx64
2010-06-23 02:02:32,343 INFO Service AvgRkx64 is not installed
2010-06-23 02:02:32,343 DEBUG Service AvgRkx64 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AvgRkx64 are not present
2010-06-23 02:02:32,343 INFO Processing service avg9emc
2010-06-23 02:02:32,343 INFO Service avg9emc is not installed
2010-06-23 02:02:32,343 DEBUG Service avg9emc RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service avg9emc are not present
2010-06-23 02:02:32,343 INFO Processing service avgfws9
2010-06-23 02:02:32,343 INFO Service avgfws9 is not installed
2010-06-23 02:02:32,343 DEBUG Service avgfws9 RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service avgfws9 are not present
2010-06-23 02:02:32,343 INFO Processing service avg9wd
2010-06-23 02:02:32,343 INFO Service avg9wd is not installed
2010-06-23 02:02:32,343 DEBUG Service avg9wd RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service avg9wd are not present
2010-06-23 02:02:32,343 INFO Processing service AVGIDSAgent
2010-06-23 02:02:32,343 INFO Service AVGIDSAgent is not installed
2010-06-23 02:02:32,343 DEBUG Service AVGIDSAgent RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AVGIDSAgent are not present
2010-06-23 02:02:32,343 INFO Processing service AVGIDSShimxpx
2010-06-23 02:02:32,343 INFO Service AVGIDSShimxpx is not installed
2010-06-23 02:02:32,343 DEBUG Service AVGIDSShimxpx RegCleanup
2010-06-23 02:02:32,343 DEBUG Registry keys for service AVGIDSShimxpx are not present
2010-06-23 02:02:32,343 INFO Processing service AVGIDSFilterxpx
2010-06-23 02:02:32,359 INFO Service AVGIDSFilterxpx is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSFilterxpx RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSFilterxpx are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSDriverxpx
2010-06-23 02:02:32,359 INFO Service AVGIDSDriverxpx is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSDriverxpx RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSDriverxpx are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSShimvtx
2010-06-23 02:02:32,359 INFO Service AVGIDSShimvtx is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSShimvtx RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSShimvtx are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSFiltervtx
2010-06-23 02:02:32,359 INFO Service AVGIDSFiltervtx is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSFiltervtx RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSFiltervtx are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSDrivervtx
2010-06-23 02:02:32,359 INFO Service AVGIDSDrivervtx is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSDrivervtx RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSDrivervtx are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSFiltervta
2010-06-23 02:02:32,359 INFO Service AVGIDSFiltervta is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSFiltervta RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSFiltervta are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSDrivervta
2010-06-23 02:02:32,359 INFO Service AVGIDSDrivervta is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSDrivervta RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSDrivervta are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSShimw7x
2010-06-23 02:02:32,359 INFO Service AVGIDSShimw7x is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSShimw7x RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSShimw7x are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSFilterw7x
2010-06-23 02:02:32,359 INFO Service AVGIDSFilterw7x is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSFilterw7x RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSFilterw7x are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSDriverw7x
2010-06-23 02:02:32,359 INFO Service AVGIDSDriverw7x is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSDriverw7x RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSDriverw7x are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSFilterw7a
2010-06-23 02:02:32,359 INFO Service AVGIDSFilterw7a is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSFilterw7a RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSFilterw7a are not present
2010-06-23 02:02:32,359 INFO Processing service AVGIDSDriverw7a
2010-06-23 02:02:32,359 INFO Service AVGIDSDriverw7a is not installed
2010-06-23 02:02:32,359 DEBUG Service AVGIDSDriverw7a RegCleanup
2010-06-23 02:02:32,359 DEBUG Registry keys for service AVGIDSDriverw7a are not present
2010-06-23 02:02:32,375 INFO Processing service AVGIDSErHrxpx
2010-06-23 02:02:32,375 INFO Service AVGIDSErHrxpx is not installed
2010-06-23 02:02:32,375 DEBUG Service AVGIDSErHrxpx RegCleanup
2010-06-23 02:02:32,375 DEBUG Registry keys for service AVGIDSErHrxpx are not present
2010-06-23 02:02:32,375 INFO Processing service AVGIDSErHrvtx
2010-06-23 02:02:32,375 INFO Service AVGIDSErHrvtx is not installed
2010-06-23 02:02:32,375 DEBUG Service AVGIDSErHrvtx RegCleanup
2010-06-23 02:02:32,375 DEBUG Registry keys for service AVGIDSErHrvtx are not present
2010-06-23 02:02:32,375 INFO Processing service AVGIDSErHrvta
2010-06-23 02:02:32,375 INFO Service AVGIDSErHrvta is not installed
2010-06-23 02:02:32,375 DEBUG Service AVGIDSErHrvta RegCleanup
2010-06-23 02:02:32,375 DEBUG Registry keys for service AVGIDSErHrvta are not present
2010-06-23 02:02:32,375 INFO Processing service AVGIDSErHrw7x
2010-06-23 02:02:32,375 INFO Service AVGIDSErHrw7x is not installed
2010-06-23 02:02:32,375 DEBUG Service AVGIDSErHrw7x RegCleanup
2010-06-23 02:02:32,375 DEBUG Registry keys for service AVGIDSErHrw7x are not present
2010-06-23 02:02:32,375 INFO Processing service AVGIDSErHrw7a
2010-06-23 02:02:32,375 INFO Service AVGIDSErHrw7a is not installed
2010-06-23 02:02:32,375 DEBUG Service AVGIDSErHrw7a RegCleanup
2010-06-23 02:02:32,375 DEBUG Registry keys for service AVGIDSErHrw7a are not present
2010-06-23 02:02:32,375 INFO ***** Registry keys and values *****
2010-06-23 02:02:32,375 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-06-23 02:02:32,375 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2010-06-23 02:02:32,406 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present
2010-06-23 02:02:32,406 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-06-23 02:02:32,406 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2010-06-23 02:02:32,406 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present
2010-06-23 02:02:32,406 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2010-06-23 02:02:32,406 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2010-06-23 02:02:32,406 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2010-06-23 02:02:32,406 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt
2010-06-23 02:02:32,406 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove
2010-06-23 02:02:32,406 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found
2010-06-23 02:02:32,406 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2010-06-23 02:02:32,406 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2010-06-23 02:02:32,640 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-06-23 02:02:32,640 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-06-23 02:02:32,656 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-06-23 02:02:32,656 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-06-23 02:02:32,656 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-06-23 02:02:32,656 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-06-23 02:02:32,656 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2010-06-23 02:02:32,656 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2010-06-23 02:02:32,687 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2010-06-23 02:02:32,687 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:32,687 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:32,687 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:32,687 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar
2010-06-23 02:02:32,687 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-06-23 02:02:32,734 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-06-23 02:02:32,734 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:32,734 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:32,734 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:32,734 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-06-23 02:02:32,734 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2010-06-23 02:02:32,812 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-06-23 02:02:32,812 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2010-06-23 02:02:32,812 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present
2010-06-23 02:02:32,812 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2010-06-23 02:02:32,812 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2010-06-23 02:02:32,812 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2010-06-23 02:02:32,812 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:02:32,812 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:02:32,937 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:02:32,937 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:02:32,984 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:02:33,000 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:02:33,000 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:02:33,000 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:02:33,000 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:02:33,000 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:02:33,000 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-06-23 02:02:33,000 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2010-06-23 02:02:33,156 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-06-23 02:02:33,156 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove
2010-06-23 02:02:33,156 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\.avgdi
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\.avgdi not found
2010-06-23 02:02:33,156 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:02:33,156 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:02:33,187 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:02:33,187 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:02:33,187 INFO Processing registry SOFTWARE\AVG\Clients
2010-06-23 02:02:33,187 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\Clients not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG\AVG8
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG\AVG9
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG\AVG IDS
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:02:33,203 DEBUG Value SOFTWARE\AVG:DumpType Remove
2010-06-23 02:02:33,203 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG Remove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-06-23 02:02:33,203 INFO Processing registry SOFTWARE\AVG\AVG8
2010-06-23 02:02:33,203 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-06-23 02:02:33,234 INFO Processing registry SOFTWARE\AVG\AVG9
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-06-23 02:02:33,234 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG Remove
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG not found
2010-06-23 02:02:33,234 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-06-23 02:02:33,234 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-06-23 02:02:33,234 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks
2010-06-23 02:02:33,234 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove
2010-06-23 02:02:33,265 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present
2010-06-23 02:02:33,265 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:33,265 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:33,265 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:33,265 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser
2010-06-23 02:02:33,265 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-06-23 02:02:33,296 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-06-23 02:02:33,296 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:33,296 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:33,296 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:33,296 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:02:33,296 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:02:33,296 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:02:33,296 INFO Processing registry aAvgAPI.AvgBro
2010-06-23 02:02:33,296 DEBUG Key aAvgAPI.AvgBro ForceRemove
2010-06-23 02:02:33,296 DEBUG Key aAvgAPI.AvgBro not found
2010-06-23 02:02:33,296 INFO Processing registry AVG.Office
2010-06-23 02:02:33,296 DEBUG Key AVG.Office ForceRemove
2010-06-23 02:02:33,421 INFO Processing registry AVG.Office.8
2010-06-23 02:02:33,421 DEBUG Key AVG.Office.8 ForceRemove
2010-06-23 02:02:33,421 DEBUG Key AVG.Office.8 not found
2010-06-23 02:02:33,421 INFO Processing registry avgtoolbar.AVGTOOLBAR
2010-06-23 02:02:33,421 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2010-06-23 02:02:33,453 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2010-06-23 02:02:33,453 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2010-06-23 02:02:33,453 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2010-06-23 02:02:33,453 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2010-06-23 02:02:33,453 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2010-06-23 02:02:33,453 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2010-06-23 02:02:33,453 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2010-06-23 02:02:33,453 INFO Processing registry LinkScannerIE.NavFilter
2010-06-23 02:02:33,453 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2010-06-23 02:02:33,453 DEBUG Key LinkScannerIE.NavFilter not found
2010-06-23 02:02:33,453 INFO Processing registry LinkScannerIE.NavFilter.1
2010-06-23 02:02:33,453 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2010-06-23 02:02:33,453 DEBUG Key LinkScannerIE.NavFilter.1 not found
2010-06-23 02:02:33,453 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2010-06-23 02:02:33,453 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2010-06-23 02:02:33,453 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2010-06-23 02:02:33,453 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2010-06-23 02:02:33,453 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2010-06-23 02:02:33,468 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2010-06-23 02:02:33,468 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2010-06-23 02:02:33,468 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2010-06-23 02:02:33,500 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2010-06-23 02:02:33,500 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-06-23 02:02:33,500 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-06-23 02:02:33,656 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-06-23 02:02:33,656 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-06-23 02:02:33,656 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-06-23 02:02:33,656 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2010-06-23 02:02:33,656 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2010-06-23 02:02:33,656 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2010-06-23 02:02:33,656 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2010-06-23 02:02:33,656 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2010-06-23 02:02:33,656 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2010-06-23 02:02:33,687 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2010-06-23 02:02:33,687 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7}
2010-06-23 02:02:33,687 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove
2010-06-23 02:02:33,687 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found
2010-06-23 02:02:33,687 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:02:33,687 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:02:33,687 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:02:33,687 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:33,687 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:33,687 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:33,687 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2010-06-23 02:02:33,687 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2010-06-23 02:02:33,687 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2010-06-23 02:02:33,687 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2010-06-23 02:02:33,687 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2010-06-23 02:02:33,750 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2010-06-23 02:02:33,750 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC}
2010-06-23 02:02:33,750 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove
2010-06-23 02:02:33,750 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found
2010-06-23 02:02:33,750 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2010-06-23 02:02:33,750 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2010-06-23 02:02:33,765 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2010-06-23 02:02:33,765 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2010-06-23 02:02:33,765 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2010-06-23 02:02:33,765 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2010-06-23 02:02:33,765 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2010-06-23 02:02:33,781 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2010-06-23 02:02:33,781 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2010-06-23 02:02:33,781 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:02:33,781 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:02:33,781 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:02:33,781 INFO ***** Files and folders *****
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 0
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 1
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 2
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 3
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 4
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 5
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 6
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 7
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 8
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 9
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 10
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 11
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 12
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 13
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 14
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 15
2010-06-23 02:02:33,781 DEBUG Missing ParentDir path for fileItem number 16
2010-06-23 02:02:33,781 DEBUG Processing item C:\Documents and Settings\Shelley\Application Data\AVGTOOLBAR
2010-06-23 02:02:33,781 INFO Directory C:\Documents and Settings\Shelley\Application Data\AVGTOOLBAR not found
2010-06-23 02:02:33,781 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,796 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0 not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0 not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5 not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5 not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk not found
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 27
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 28
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 29
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 30
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 31
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 32
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 33
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 34
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 35
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 36
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 37
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 38
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 39
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 40
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 41
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 42
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 43
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 44
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 45
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 46
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 47
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 48
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 49
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 50
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 51
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 52
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 53
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 54
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 55
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 56
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 57
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 58
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 59
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 60
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 61
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 62
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 63
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 64
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 65
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 66
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 67
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 68
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 69
2010-06-23 02:02:33,859 DEBUG Missing ParentDir path for fileItem number 70
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
2010-06-23 02:02:33,859 INFO Directory C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk not found
2010-06-23 02:02:33,859 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk
2010-06-23 02:02:33,859 INFO File C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk not found
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 76
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 77
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 78
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 79
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 80
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 81
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 82
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 83
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 84
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 85
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 86
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 87
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 88
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 89
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 90
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 91
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 92
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 93
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 94
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 95
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 96
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 97
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 98
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 99
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 100
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 101
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 102
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 103
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 104
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 105
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 106
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 107
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 108
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 109
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 110
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 111
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 112
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 113
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 114
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 115
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 116
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 117
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 118
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 119
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 120
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 121
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 122
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 123
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 124
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 125
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 126
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 127
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 128
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 129
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 130
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 131
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 132
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 133
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 134
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 135
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 136
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 137
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 138
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 139
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 140
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 141
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 142
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 143
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 144
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 145
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 146
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 147
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 148
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 149
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 150
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 151
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 152
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 153
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 154
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 155
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 156
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 157
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 158
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 159
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 160
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 161
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 162
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 163
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 164
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 165
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 166
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 167
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 168
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 169
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 170
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 171
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 172
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 173
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 174
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 175
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 176
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 177
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 178
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 179
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 180
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 181
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 182
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 183
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 184
2010-06-23 02:02:33,875 DEBUG Missing ParentDir path for fileItem number 185
2010-06-23 02:02:33,875 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,875 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,875 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,875 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,875 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:02:33,890 INFO File C:\WINDOWS\System32\Drivers\\avgtdi.sys deleted
2010-06-23 02:02:33,890 DEBUG Processing item C:\WINDOWS\System32\Drivers\avg
2010-06-23 02:02:33,937 INFO Directory C:\WINDOWS\System32\Drivers\avg not found
2010-06-23 02:02:33,937 DEBUG Processing item C:\WINDOWS\System32
2010-06-23 02:02:33,984 DEBUG Processing item C:\Program Files\AVG
2010-06-23 02:02:33,984 INFO Directory C:\Program Files\AVG not found
2010-06-23 02:02:33,984 DEBUG Missing ParentDir path for fileItem number 194
2010-06-23 02:02:33,984 INFO ***** Avg Fw NDIS driver *****
2010-06-23 02:02:36,687 INFO FW NDIS driver not present
2010-06-23 02:44:42,984 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2010-06-23 02:44:43,125 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2010-06-23 02:44:43,125 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2010-06-23 02:44:43,125 WARN AvgDir param empty.
2010-06-23 02:44:43,140 WARN AvgDataDir param empty.
2010-06-23 02:44:55,843 INFO AvgRemover runs in attempt number 1
2010-06-23 02:44:55,843 INFO ***** Services *****
2010-06-23 02:44:55,859 INFO Processing service avg8emc
2010-06-23 02:44:55,875 INFO Service avg8emc is not installed
2010-06-23 02:44:55,875 DEBUG Service avg8emc RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service avg8emc are not present
2010-06-23 02:44:55,875 INFO Processing service avgfws8
2010-06-23 02:44:55,875 INFO Service avgfws8 is not installed
2010-06-23 02:44:55,875 DEBUG Service avgfws8 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service avgfws8 are not present
2010-06-23 02:44:55,875 INFO Processing service avg8wd
2010-06-23 02:44:55,875 INFO Service avg8wd is not installed
2010-06-23 02:44:55,875 DEBUG Service avg8wd RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service avg8wd are not present
2010-06-23 02:44:55,875 INFO Processing service AvgWFPx
2010-06-23 02:44:55,875 INFO Service AvgWFPx is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgWFPx RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgWFPx are not present
2010-06-23 02:44:55,875 INFO Processing service AvgWFPa
2010-06-23 02:44:55,875 INFO Service AvgWFPa is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgWFPa RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgWFPa are not present
2010-06-23 02:44:55,875 INFO Processing service AvgMfx86
2010-06-23 02:44:55,875 INFO Service AvgMfx86 is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgMfx86 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgMfx86 are not present
2010-06-23 02:44:55,875 INFO Processing service AvgMfx64
2010-06-23 02:44:55,875 INFO Service AvgMfx64 is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgMfx64 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgMfx64 are not present
2010-06-23 02:44:55,875 INFO Processing service AvgLdx86
2010-06-23 02:44:55,875 INFO Service AvgLdx86 is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgLdx86 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgLdx86 are not present
2010-06-23 02:44:55,875 INFO Processing service AvgLdx64
2010-06-23 02:44:55,875 INFO Service AvgLdx64 is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgLdx64 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgLdx64 are not present
2010-06-23 02:44:55,875 INFO Processing service AvgTdiX
2010-06-23 02:44:55,875 INFO Service AvgTdiX is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgTdiX RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgTdiX are not present
2010-06-23 02:44:55,875 INFO Processing service AvgTdiA
2010-06-23 02:44:55,875 INFO Service AvgTdiA is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgTdiA RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgTdiA are not present
2010-06-23 02:44:55,875 INFO Processing service AvgRkx86
2010-06-23 02:44:55,875 INFO Service AvgRkx86 is not installed
2010-06-23 02:44:55,875 DEBUG Service AvgRkx86 RegCleanup
2010-06-23 02:44:55,875 DEBUG Registry keys for service AvgRkx86 are not present
2010-06-23 02:44:55,875 INFO Processing service AvgRkx64
2010-06-23 02:44:55,890 INFO Service AvgRkx64 is not installed
2010-06-23 02:44:55,890 DEBUG Service AvgRkx64 RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AvgRkx64 are not present
2010-06-23 02:44:55,890 INFO Processing service avg9emc
2010-06-23 02:44:55,890 INFO Service avg9emc is not installed
2010-06-23 02:44:55,890 DEBUG Service avg9emc RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service avg9emc are not present
2010-06-23 02:44:55,890 INFO Processing service avgfws9
2010-06-23 02:44:55,890 INFO Service avgfws9 is not installed
2010-06-23 02:44:55,890 DEBUG Service avgfws9 RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service avgfws9 are not present
2010-06-23 02:44:55,890 INFO Processing service avg9wd
2010-06-23 02:44:55,890 INFO Service avg9wd is not installed
2010-06-23 02:44:55,890 DEBUG Service avg9wd RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service avg9wd are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSAgent
2010-06-23 02:44:55,890 INFO Service AVGIDSAgent is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSAgent RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSAgent are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSShimxpx
2010-06-23 02:44:55,890 INFO Service AVGIDSShimxpx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSShimxpx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSShimxpx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSFilterxpx
2010-06-23 02:44:55,890 INFO Service AVGIDSFilterxpx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSFilterxpx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSFilterxpx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSDriverxpx
2010-06-23 02:44:55,890 INFO Service AVGIDSDriverxpx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSDriverxpx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSDriverxpx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSShimvtx
2010-06-23 02:44:55,890 INFO Service AVGIDSShimvtx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSShimvtx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSShimvtx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSFiltervtx
2010-06-23 02:44:55,890 INFO Service AVGIDSFiltervtx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSFiltervtx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSFiltervtx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSDrivervtx
2010-06-23 02:44:55,890 INFO Service AVGIDSDrivervtx is not installed
2010-06-23 02:44:55,890 DEBUG Service AVGIDSDrivervtx RegCleanup
2010-06-23 02:44:55,890 DEBUG Registry keys for service AVGIDSDrivervtx are not present
2010-06-23 02:44:55,890 INFO Processing service AVGIDSFiltervta
2010-06-23 02:44:55,890 INFO Service AVGIDSFiltervta is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSFiltervta RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSFiltervta are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSDrivervta
2010-06-23 02:44:55,906 INFO Service AVGIDSDrivervta is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSDrivervta RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSDrivervta are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSShimw7x
2010-06-23 02:44:55,906 INFO Service AVGIDSShimw7x is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSShimw7x RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSShimw7x are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSFilterw7x
2010-06-23 02:44:55,906 INFO Service AVGIDSFilterw7x is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSFilterw7x RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSFilterw7x are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSDriverw7x
2010-06-23 02:44:55,906 INFO Service AVGIDSDriverw7x is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSDriverw7x RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSDriverw7x are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSFilterw7a
2010-06-23 02:44:55,906 INFO Service AVGIDSFilterw7a is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSFilterw7a RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSFilterw7a are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSDriverw7a
2010-06-23 02:44:55,906 INFO Service AVGIDSDriverw7a is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSDriverw7a RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSDriverw7a are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSErHrxpx
2010-06-23 02:44:55,906 INFO Service AVGIDSErHrxpx is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSErHrxpx RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSErHrxpx are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSErHrvtx
2010-06-23 02:44:55,906 INFO Service AVGIDSErHrvtx is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSErHrvtx RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSErHrvtx are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSErHrvta
2010-06-23 02:44:55,906 INFO Service AVGIDSErHrvta is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSErHrvta RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSErHrvta are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSErHrw7x
2010-06-23 02:44:55,906 INFO Service AVGIDSErHrw7x is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSErHrw7x RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSErHrw7x are not present
2010-06-23 02:44:55,906 INFO Processing service AVGIDSErHrw7a
2010-06-23 02:44:55,906 INFO Service AVGIDSErHrw7a is not installed
2010-06-23 02:44:55,906 DEBUG Service AVGIDSErHrw7a RegCleanup
2010-06-23 02:44:55,906 DEBUG Registry keys for service AVGIDSErHrw7a are not present
2010-06-23 02:44:55,906 INFO ***** Registry keys and values *****
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2010-06-23 02:44:55,921 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2010-06-23 02:44:55,921 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present
2010-06-23 02:44:55,921 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2010-06-23 02:44:55,921 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found
2010-06-23 02:44:55,921 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2010-06-23 02:44:55,921 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-06-23 02:44:55,921 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-06-23 02:44:55,921 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:55,921 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2010-06-23 02:44:55,921 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension is not present
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2010-06-23 02:44:55,921 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2010-06-23 02:44:55,921 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:44:55,921 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:44:55,953 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:44:55,953 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2010-06-23 02:44:55,953 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-06-23 02:44:55,953 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2010-06-23 02:44:55,953 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove
2010-06-23 02:44:55,953 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2010-06-23 02:44:55,953 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2010-06-23 02:44:55,953 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2010-06-23 02:44:55,953 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall
2010-06-23 02:44:55,953 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\.avgdi
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\.avgdi not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\Clients
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\Clients not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\AVG8
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\AVG9
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\AVG IDS
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:44:55,968 DEBUG Value SOFTWARE\AVG:DumpType Remove
2010-06-23 02:44:55,968 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Remove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\AVG8
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG8 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG\AVG9
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG\AVG9 not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Remove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\AVG Security Toolbar
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks
2010-06-23 02:44:55,968 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove
2010-06-23 02:44:55,968 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser
2010-06-23 02:44:55,968 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2010-06-23 02:44:55,968 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:55,968 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:44:55,968 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:44:55,968 INFO Processing registry aAvgAPI.AvgBro
2010-06-23 02:44:55,968 DEBUG Key aAvgAPI.AvgBro ForceRemove
2010-06-23 02:44:55,984 DEBUG Key aAvgAPI.AvgBro not found
2010-06-23 02:44:55,984 INFO Processing registry AVG.Office
2010-06-23 02:44:55,984 DEBUG Key AVG.Office ForceRemove
2010-06-23 02:44:55,984 DEBUG Key AVG.Office not found
2010-06-23 02:44:55,984 INFO Processing registry AVG.Office.8
2010-06-23 02:44:55,984 DEBUG Key AVG.Office.8 ForceRemove
2010-06-23 02:44:55,984 DEBUG Key AVG.Office.8 not found
2010-06-23 02:44:55,984 INFO Processing registry avgtoolbar.AVGTOOLBAR
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2010-06-23 02:44:55,984 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2010-06-23 02:44:55,984 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2010-06-23 02:44:55,984 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2010-06-23 02:44:55,984 INFO Processing registry LinkScannerIE.NavFilter
2010-06-23 02:44:55,984 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2010-06-23 02:44:55,984 DEBUG Key LinkScannerIE.NavFilter not found
2010-06-23 02:44:55,984 INFO Processing registry LinkScannerIE.NavFilter.1
2010-06-23 02:44:55,984 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2010-06-23 02:44:55,984 DEBUG Key LinkScannerIE.NavFilter.1 not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2010-06-23 02:44:55,984 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2010-06-23 02:44:55,984 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2010-06-23 02:44:55,984 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2010-06-23 02:44:55,984 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2010-06-23 02:44:55,984 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2010-06-23 02:44:55,984 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-06-23 02:44:55,984 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-06-23 02:44:55,984 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2010-06-23 02:44:55,984 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2010-06-23 02:44:55,984 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2010-06-23 02:44:55,984 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2010-06-23 02:44:56,000 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:56,000 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:56,000 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2010-06-23 02:44:56,000 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2010-06-23 02:44:56,000 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2010-06-23 02:44:56,000 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2010-06-23 02:44:56,000 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC}
2010-06-23 02:44:56,000 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found
2010-06-23 02:44:56,000 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2010-06-23 02:44:56,000 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2010-06-23 02:44:56,000 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2010-06-23 02:44:56,000 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2010-06-23 02:44:56,000 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2010-06-23 02:44:56,031 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2010-06-23 02:44:56,031 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2010-06-23 02:44:56,031 INFO ***** Files and folders *****
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 0
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 1
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 2
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 3
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 4
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 5
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 6
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 7
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 8
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 9
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 10
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 11
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 12
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 13
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 14
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 15
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 16
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\Shelley\Application Data\AVGTOOLBAR
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\Shelley\Application Data\AVGTOOLBAR not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0 not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0 not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5 not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5 not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk not found
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 27
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 28
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 29
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 30
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 31
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 32
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 33
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 34
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 35
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 36
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 37
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 38
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 39
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 40
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 41
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 42
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 43
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 44
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 45
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 46
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 47
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 48
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 49
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 50
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 51
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 52
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 53
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 54
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 55
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 56
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 57
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 58
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 59
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 60
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 61
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 62
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 63
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 64
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 65
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 66
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 67
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 68
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 69
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 70
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
2010-06-23 02:44:56,031 INFO Directory C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk not found
2010-06-23 02:44:56,031 DEBUG Processing item C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk
2010-06-23 02:44:56,031 INFO File C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk not found
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 76
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 77
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 78
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 79
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 80
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 81
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 82
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 83
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 84
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 85
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 86
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 87
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 88
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 89
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 90
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 91
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 92
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 93
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 94
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 95
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 96
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 97
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 98
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 99
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 100
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 101
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 102
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 103
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 104
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 105
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 106
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 107
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 108
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 109
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 110
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 111
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 112
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 113
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 114
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 115
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 116
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 117
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 118
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 119
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 120
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 121
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 122
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 123
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 124
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 125
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 126
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 127
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 128
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 129
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 130
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 131
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 132
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 133
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 134
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 135
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 136
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 137
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 138
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 139
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 140
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 141
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 142
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 143
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 144
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 145
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 146
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 147
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 148
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 149
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 150
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 151
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 152
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 153
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 154
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 155
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 156
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 157
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 158
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 159
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 160
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 161
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 162
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 163
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 164
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 165
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 166
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 167
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 168
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 169
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 170
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 171
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 172
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 173
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 174
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 175
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 176
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 177
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 178
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 179
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 180
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 181
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 182
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 183
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 184
2010-06-23 02:44:56,031 DEBUG Missing ParentDir path for fileItem number 185
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers
2010-06-23 02:44:56,031 DEBUG Processing item C:\WINDOWS\System32\Drivers\avg
2010-06-23 02:44:56,031 INFO Directory C:\WINDOWS\System32\Drivers\avg not found
2010-06-23 02:44:56,046 DEBUG Processing item C:\WINDOWS\System32
2010-06-23 02:44:56,046 DEBUG Processing item C:\Program Files\AVG
2010-06-23 02:44:56,046 INFO Directory C:\Program Files\AVG not found
2010-06-23 02:44:56,046 DEBUG Missing ParentDir path for fileItem number 194
2010-06-23 02:44:56,046 INFO ***** Avg Fw NDIS driver *****
2010-06-23 02:44:56,906 INFO FW NDIS driver not present
  • 0

#11
RKinner
Posted 23 June 2010 - 01:08 AM

RKinner

    Malware Expert

  • Expert
  • 24,483 posts
  • MVP
We need to clean up System Restore. Follow Jim's procedure here:
http://forum.aumha.o...581099691bf108f



I usually recommend a free BitDefender online scan as a final check to see if we missed anything. http://www.bitdefend...nline/free.html


You can uninstall or delete any tools we had you download and their logs.
To uninstall combofix, copy the next line:

"%userprofile%\Desktop\george.exe" /Uninstall

Start, Run, cmd, OK then right click, Paste, then hit Enter.

To hide hidden files again:

XP

# Close all programs so that you are at your desktop.
# Double-click on the My Computer icon.
# Select the Tools menu and click Folder Options.
# After the new window appears select the View tab.
# Uncheck the checkbox labeled Display the contents of system folders.
# Under the Hidden files and folders section select the 'Hide protected operating system files (recommended)' option.
# Check the checkbox labeled Hide protected operating system files.
# Press the Apply button and then the OK button and shutdown My Computer.


Also make sure you have the latest versions of any adobe.com products you use like Shockwave, Flash or Acrobat. Adobe is fond of foisting GetPlus on you. You can let them install it and then afterwards, go into Control Panel, Add/Remove Software and remove it. It probably doesn't hurt to leave it but I don't see the need for it and it has caused problems in the past.

Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program. There is an exploit out there now that can use it to get on your PC. For Adobe Reader: Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript. OK Close program. It's the same for Foxit reader except you uncheck Enable Javascript Actions.

I recommend you install the free WinPatrol 2010 from http://www.winpatrol.com/download.html

It's a small program that will sit in your systray and warn you if something tries to make changes to your system.

If you use USB drives you might want to install Autorun Eater v2.4.
http://oldmcdonald.w...orun-eater-v24/
Another small program which will stay resident and prevent an infected USB drive from infecting your PC.

If you use Firefox then get the AdBlock Plus Add-on.

If Firefox is slow loading make sure it only has the current Java add-on. Then download and run Speedy Fox.
http://www.crystalidea.com/speedyfox

Be warned: If you use Limewire, utorrent or any of the other P2P programs you will almost certain be coming back to the Malware Removal forum. If you must use P2P then submit any files you get to http://virustotal.com before you open them.

Ron

PS To learn how to fight malware see:
http://www.geekstogo...ware-t4817.html
  • 0

#12
xxxitson
Posted 23 June 2010 - 02:55 AM

xxxitson

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
thank you for your time and help kudos to you Ron and geekstogo :)
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP