Jump to content

dontrunwithscissors

Honorary Members
  • Posts

    27
  • Joined

  • Last visited

Reputation

0 Neutral

About dontrunwithscissors

  • Birthday August 15

Profile Information

  • Location
    NC
  1. Hi Chris, I disabled sleep mode, and deleted SuperAntiSpyware and finally got somewhere. Here is the Combofix log ComboFix 11-09-09.01 - Byte Me 09/09/2011 1:21.8.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.363 [GMT -4:00] Running from: c:\documents and settings\Byte Me\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\Byte Me\Desktop\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\AVG c:\program files\AVG\AVG10\Chrome\safesearch.crx c:\program files\AVG\AVG10\Firefox4\chrome.manifest c:\program files\AVG\AVG10\Firefox4\Chrome\searchshield.jar c:\program files\AVG\AVG10\Firefox4\Components\avgssff4.dll c:\program files\AVG\AVG10\Firefox4\Components\avgssff5.dll c:\program files\AVG\AVG10\Firefox4\Components\avgssff5.dll.old c:\program files\AVG\AVG10\Firefox4\Components\ISearchShield4.xpt c:\program files\AVG\AVG10\Firefox4\install.rdf c:\windows\system32\FF05DA0D.dll c:\windows\system32\IcdCddaDve.dll c:\windows\WindowsUpdate.log . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_AVG7CORE -------\Legacy_AVG7RSW -------\Legacy_AVG7RSXP -------\Legacy_AVG9WD -------\Legacy_AVGCLEAN -------\Legacy_AVGIDSAGENT -------\Legacy_AVGIDSDRIVER -------\Legacy_AVGIDSEH -------\Legacy_AVGIDSFILTER -------\Legacy_AVGIDSSHIM -------\Legacy_AVGLDX86 -------\Legacy_AVGMFX86 -------\Legacy_AVGRKX86 -------\Legacy_AVGTDI -------\Legacy_AVGTDIX -------\Legacy_AVGWD . . ((((((((((((((((((((((((( Files Created from 2011-08-09 to 2011-09-09 ))))))))))))))))))))))))))))))) . . 2011-09-03 10:17 . 2011-09-03 10:17 599040 -c----w- c:\windows\system32\dllcache\crypt32.dll 2011-08-11 03:33 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2011-08-11 03:32 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-06 20:45 . 2011-07-11 01:03 41184 ----a-w- c:\windows\avastSS.scr 2011-09-06 20:45 . 2011-07-11 01:03 199304 ----a-w- c:\windows\system32\aswBoot.exe 2011-09-06 20:38 . 2011-07-11 01:03 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-09-06 20:37 . 2011-07-11 01:04 320856 ----a-w- c:\windows\system32\drivers\aswSP.sys 2011-09-06 20:36 . 2011-07-11 01:04 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2011-09-06 20:36 . 2011-07-11 01:03 52568 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2011-09-06 20:36 . 2011-07-11 01:03 110552 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2011-09-06 20:36 . 2011-07-11 01:03 104536 ----a-w- c:\windows\system32\drivers\aswmon.sys 2011-09-06 20:36 . 2011-07-11 01:04 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2011-09-06 20:33 . 2011-07-11 01:03 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2011-09-03 10:17 . 2002-08-29 12:00 599040 ----a-w- c:\windows\system32\crypt32.dll 2011-08-11 04:21 . 2011-06-18 20:45 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-15 13:29 . 2002-08-29 12:00 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02 . 2002-08-29 12:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-06 23:52 . 2011-07-20 20:41 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 23:52 . 2011-07-20 20:41 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-06-26 03:47 . 2011-06-26 03:47 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys 2011-06-26 03:47 . 2011-06-26 03:47 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe 2011-06-24 14:10 . 2005-11-25 06:43 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:36 . 2005-06-18 04:49 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:36 . 2002-08-29 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-23 18:36 . 2002-08-29 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec 2011-06-20 17:44 . 2002-08-29 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll 2011-06-18 22:20 . 2011-06-18 22:20 99965 ----a-w- c:\windows\UninstallThunderbird.exe . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "nwiz"="nwiz.exe" [2006-10-22 1622016] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2010-1-21 2057536] WDSmartWare.lnk - c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe [2010-1-21 9136960] Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904] . c:\documents and settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [N/A] . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128] . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^desktop.ini] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\desktop.ini backup=c:\windows\pss\desktop.iniCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Exif Launcher.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Exif Launcher.lnk backup=c:\windows\pss\Exif Launcher.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HOTSYNCSHORTCUTNAME.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HOTSYNCSHORTCUTNAME.lnk backup=c:\windows\pss\HOTSYNCSHORTCUTNAME.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NETGEAR WNA1000M Smart Wizard.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA1000M Smart Wizard.lnk backup=c:\windows\pss\NETGEAR WNA1000M Smart Wizard.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2006-10-22 16:22 7700480 ----a-w- c:\windows\system32\nvcpl.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2006-10-22 16:22 86016 ----a-w- c:\windows\system32\nvmctray.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2006-10-22 16:22 1622016 ----a-w- c:\windows\system32\nwiz.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-11 04:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] 2002-02-05 03:32 53248 ----a-w- c:\program files\REGSHAVE\Regshave.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMRUBottedTray] 2008-11-06 16:33 288088 ----a-w- c:\program files\Trend Micro\RUBotted\TMRUBottedTray.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Yahoo! Pager"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" -quiet "Aim6"= . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\WINDOWS\\system32\\dplaysvr.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Thunderbird\\thunderbird.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbamservice.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "135:TCP"= 135:TCP:DCOM(135) . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7/10/2011 9:03 PM 442200] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7/10/2011 9:04 PM 320856] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/10/2011 9:04 PM 20568] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [7/20/2011 4:41 PM 366640] R2 WDDMService;WD SmartWare Drive Manager;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [1/21/2010 4:24 PM 110592] R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [6/16/2009 8:58 AM 20480] R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [2/27/2008 10:54 AM 20480] R3 brfilt;Brother MFC Filter Driver;c:\windows\system32\drivers\BrFilt.sys [11/26/2005 3:00 AM 2944] R3 BrSerWDM;Brother WDM Serial driver;c:\windows\system32\drivers\BrSerWdm.sys [11/26/2005 3:00 AM 60416] R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\system32\drivers\BrUsbMdm.sys [11/26/2005 3:00 AM 11008] R3 BrUsbScn;Brother MFC USB Scanner driver;c:\windows\system32\drivers\BrUsbScn.sys [11/26/2005 3:00 AM 10368] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [7/20/2011 4:41 PM 22712] R3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [6/28/2009 1:17 PM 11264] S3 lne100v5;Linksys LNE100TX(v5) Fast Ethernet Adapter;c:\windows\system32\drivers\lne100v5.sys [11/26/2005 4:27 AM 36013] S3 RTL8192cu;NETGEAR WNA1000M N150 Wireless USB Micro Adapter;c:\windows\system32\DRIVERS\WNA1000M.sys --> c:\windows\system32\DRIVERS\WNA1000M.sys [?] S3 ssmirrdr;ssmirrdr;c:\windows\system32\drivers\ssmirrdr.sys [5/5/2011 9:29 AM 10112] S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [6/21/2011 11:45 PM 11520] . . ------- Supplementary Scan ------- . uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 uStart Page = hxxp://www.google.com/ uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com Trusted Zone: akamai.net\a248.e Trusted Zone: bitdefender.com\www Trusted Zone: netflame.cc\ssl-hints TCP: DhcpNameServer = 207.69.188.186 207.69.188.187 DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab FF - ProfilePath - c:\documents and settings\Byte Me\Application Data\Mozilla\Firefox\Profiles\vbxyk99m.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\AVAST Software\Avast\WebRep\FF . . ************************************************************************** scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'explorer.exe'(720) c:\windows\system32\WININET.dll c:\windows\system32\ieframe.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\AVAST Software\Avast\AvastSvc.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\BRMFRSMG.EXE c:\windows\system32\SearchIndexer.exe c:\windows\system32\devldr32.exe c:\windows\system32\RUNDLL32.EXE c:\windows\system32\wscntfy.exe . ************************************************************************** . Completion time: 2011-09-09 01:42:18 - machine was rebooted ComboFix-quarantined-files.txt 2011-09-09 05:42 ComboFix2.txt 2011-08-20 00:18 . Pre-Run: 296,720,015,360 bytes free Post-Run: 296,588,365,824 bytes free . - - End Of File - - D34F67B12B411FF54F4BBB89662DCFB0 Here is the DDS log . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26 Run by Byte Me at 1:53:40 on 2011-09-09 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.433 [GMT -4:00] . AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe -k imgsvc C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe C:\WINDOWS\system32\BRMFRSMG.EXE C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\system32\devldr32.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\AVAST Software\Avast\avastUI.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\notepad.exe . ============== Pseudo HJT Report =============== . uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 uStart Page = hxxp://www.google.com/ uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com mURLSearchHooks: H - No File BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [nwiz] nwiz.exe /install mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wddmst~1.lnk - c:\program files\western digital\wd smartware\wd drive manager\WDDMStatus.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wdsmar~1.lnk - c:\program files\western digital\wd smartware\front parlor\WDSmartWare.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\autoru~1\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL Trusted Zone: akamai.net\a248.e Trusted Zone: bitdefender.com\www Trusted Zone: netflame.cc\ssl-hints DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc3.cab DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scan8/oscan8.cab DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1132992903234 DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1269200518781 DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} - hxxp://support.f-secure.com/ols/fscax.cab DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} - hxxp://support.f-secure.com/ols/fscax.cab DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} - hxxp://office.microsoft.com/officeupdate/content/opuc4.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 207.69.188.186 207.69.188.187 TCP: Interfaces\{14D12A24-5E10-414A-B737-48FF1FA7120E} : DhcpNameServer = 207.69.188.186 207.69.188.187 TCP: Interfaces\{E3E42C6E-A560-49B3-AA92-8DAB7F969AD3} : DhcpNameServer = 207.69.188.186 207.69.188.187 192.168.1.1 SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\byte me\application data\mozilla\firefox\profiles\vbxyk99m.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - plugin: c:\documents and settings\byte me\application data\mozilla\firefox\profiles\vbxyk99m.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071101000055.dll FF - plugin: c:\progra~1\yahoo!\common\npyaxmpb.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPFxViewer.dll FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\avast software\avast\webrep\FF . ============= SERVICES / DRIVERS =============== . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-7-10 442200] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-7-10 320856] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-7-10 20568] R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-7-10 44768] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-7-20 366640] R2 WDDMService;WD SmartWare Drive Manager;c:\program files\western digital\wd smartware\wd drive manager\WDDMService.exe [2010-1-21 110592] R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files\western digital\wd smartware\front parlor\WDSmartWareBackgroundService.exe [2009-6-16 20480] R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [2008-2-27 20480] R3 brfilt;Brother MFC Filter Driver;c:\windows\system32\drivers\BrFilt.sys [2005-11-26 2944] R3 BrSerWDM;Brother WDM Serial driver;c:\windows\system32\drivers\BrSerWdm.sys [2005-11-26 60416] R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\system32\drivers\BrUsbMdm.sys [2005-11-26 11008] R3 BrUsbScn;Brother MFC USB Scanner driver;c:\windows\system32\drivers\BrUsbScn.sys [2005-11-26 10368] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-7-20 22712] R3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [2009-11-30 206608] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [2009-6-28 11264] S3 lne100v5;Linksys LNE100TX(v5) Fast Ethernet Adapter;c:\windows\system32\drivers\lne100v5.sys [2005-11-26 36013] S3 RTL8192cu;NETGEAR WNA1000M N150 Wireless USB Micro Adapter;c:\windows\system32\drivers\wna1000m.sys --> c:\windows\system32\drivers\WNA1000M.sys [?] S3 ssmirrdr;ssmirrdr;c:\windows\system32\drivers\ssmirrdr.sys [2011-5-5 10112] S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [2009-11-30 206608] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2011-6-21 11520] . =============== Created Last 30 ================ . 2011-09-08 02:47:19 98816 ----a-w- c:\windows\sed.exe 2011-09-08 02:47:19 518144 ----a-w- c:\windows\SWREG.exe 2011-09-08 02:47:19 256000 ----a-w- c:\windows\PEV.exe 2011-09-08 02:47:19 208896 ----a-w- c:\windows\MBR.exe 2011-09-03 10:17:37 599040 -c----w- c:\windows\system32\dllcache\crypt32.dll 2011-08-11 03:33:07 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2011-08-11 03:32:41 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys . ==================== Find3M ==================== . 2011-09-06 20:45:29 41184 ----a-w- c:\windows\avastSS.scr 2011-09-06 20:38:05 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-09-03 10:17:37 599040 ----a-w- c:\windows\system32\crypt32.dll 2011-08-11 04:21:27 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-06 23:52:42 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 23:52:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-06-26 03:47:43 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys 2011-06-26 03:47:39 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe 2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:36:30 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-23 18:36:30 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec 2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll 2011-06-18 22:20:33 99965 ----a-w- c:\windows\UninstallThunderbird.exe . ============= FINISH: 1:54:54.50 =============== Whew! Thanks!
  2. Hi Chris, Did all you said to do, left Combofix w/the CFScript running from 4:30 pm until 12:15 and it never got beyond checking for infected files. I had company, so wasn't even in the vicinity of the computer for the entire time. Do you have any idea why it won't work? Thanks for hanging in there with me!
  3. Hi Chris, I d/l the new combofix, used notepad copying all of the text into it, renamed it CFScript, saved it to the desktop, dragged CFS over Combofix and it got stuck on checking for infected files for almost 2 1/2 hours. I ended it as it should not take that long. Of course I had disabled my av, malwarebytes and firewall. Should we try something else? Could it be because my computer went into sleep mode and I had to move the mouse every once in awhile to see if things were done? If you want me to disable sleep mode so I don't have to touch the mouse, I can do that. If it is going to take hours, just give me a heads up and I will retry. If it IS going to take hours, will my computer being okay with the av and firewall off when those IP'S keep ringing my doorbell as malwarebytes shows? I never had a problem before using combofix and CFS. Thanks for your help....I am exhausted and need to get to sleep.
  4. Hi Chris "What do you mean "not available"?" My remark regarding running processes in System Tools/System Info/Software Environment/Running Tasks is indicating the paths for alg.exe, csrss.exe, searchfilterhost.exe, svhost.exe (4 instances), system, system idle process and wmiprvse.exe are not available. I don't know what Path Unavailable means for these items, but the one labeled just "system" doesn't sound good to a novice such as myself. They all have a number under the Process column except for system idle process which is at zero. As far as the zipped files, I really did not have many zipped files before the PKUNZIP incident unless they came from the original installation of XP. I did not know I had 7zip since it was from a teacher who sent us a file of portable apps he thought would be handy for us. I just want my computer back the way it was before all these files became zipped. I could not even tell you where the files are supposed to go if I WAS to unzip them. When I pulled up the examples for the screen shot, I had just searched using "zip" in the search field. Compressed (zipped) folder C:\Documents and Settings\Administrator\Send To (what do I do with this?) Compressed (zipped) folder C:\Windows\system32\config\systemprofile\Send To (what about this one?) C:\Program Files\FinePixViewer (unzip32.dll) C:\Program Files\MozBackup\dll (DelZip190.dll) (I did not zip this, at least on purpose) plus so many more I also want to get rid of Autoruns, but after checking, I am afraid to just delete. I did not make any changes, but was confused if it made changes on it's own. I could not find out how to delete it. Below is the results of SystemLook...I had been using AVG Free for years until I lost confidence in it. SystemLook 30.07.11 by jpshortstuff Log created at 01:50 on 01/09/2011 by Byte Me Administrator - Elevation successful ========== regfind ========== Searching for "AVG" [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdEnd] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdEndFail] [HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdStart] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray] @="AVG" [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayRSAlert] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayScanFinished] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayScanFinishedThreatFound] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayScanStarted] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayUpdEnd] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayUpdEndFail] [HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray\avgtrayUpdStart] [HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\10.0\AVGeneral] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "DisplayName"="AVG Secure Search" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "URL"="http://search.avg.com/route/?d=4b11b0c7&v=6.10.6.4&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "OSDFileURL"="file:///C:/Documents%20and%20Settings/All%20Users/Application%20Data/AVG%20Security%20Toolbar/osd.xml" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "FaviconURL"="http://search.avg.com/favicon.ico" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "Favicon"="http://search.avg.com/favicon.ico" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "DisplayName"="AVG Secure Search" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "URL"="http://search.avg.com/route/?d=4de91311&v=7.5.30.4&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "OSDFileURL"="file:///C:/Documents%20and%20Settings/All%20Users/Application%20Data/AVG%20Security%20Toolbar/osd.xml" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "FaviconURL"="http://search.avg.com/favicon.ico" [HKEY_CURRENT_USER\Software\Microsoft\Search Assistant\ACMru\5603] "001"="avg" [HKEY_CURRENT_USER\Software\Microsoft\Search Assistant\ACMru\5604] "000"="avg" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List] "File2"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*] "f"="C:\Documents and Settings\Byte Me\Desktop\avg files left after removal tool.JPG" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*] "i"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\JPG] "d"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\JPG] "e"="C:\Documents and Settings\Byte Me\Desktop\avg files left after removal tool.JPG" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList] "a"="avgui.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG 2011] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG Free 9.0] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-for-free.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-for-free.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-secure.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg-download.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg.org] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\www.avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\official-avg-download-now.com] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\avg] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\www.avg] [HKEY_CURRENT_USER\Software\ORL\VNCHooks\Application_Prefs\avgcc.exe] [HKEY_CURRENT_USER\Software\PKWARE\PKZIP70\History\ExtractFolder] "File1"="C:\Documents and Settings\Byte Me\My Documents\Downloads\avg8" [HKEY_CURRENT_USER\Software\PKWARE\PKZIP70\History\OpenArchive] "File3"="C:\Documents and Settings\Byte Me\My Documents\Downloads\avg8.zip" [HKEY_CURRENT_USER\Software\Classes\Applications\avgtray.exe] [HKEY_CURRENT_USER\Software\Classes\Applications\avgtray.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_CURRENT_USER\Software\Classes\Applications\avgui.exe] [HKEY_CURRENT_USER\Software\Classes\Applications\avgui.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{F083C5AB-08AD-4ABF-A2BE-8FA5C7D2F10A}] @="avgoutlook" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVGeneralNotification.AVGeneralNotification] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVGeneralNotification.AVGeneralNotification] @="AVGeneralNotification Class" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVGeneralNotification.AVGeneralNotification\CurVer] @="AVGeneralNotification.AVGeneralNotification.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVGeneralNotification.AVGeneralNotification.1] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVGeneralNotification.AVGeneralNotification.1] @="AVGeneralNotification Class" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1152F8E0-69DB-4935-AFC3-59F8A5A86A30}\LocalServer32] @="C:\PROGRA~1\AVG\AVG10\PCTuneup\MICROS~1.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1B29DEAA-3F68-4A51-8877-A0EB3F879AC3}\InprocServer32] @="C:\PROGRA~1\AVG\AVG10\PCTuneup\MICROS~1.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{239A3C5E-8D41-11D1-B675-00C04FA3C554}] @="AVGeneralNotification Class" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{239A3C5E-8D41-11D1-B675-00C04FA3C554}\ProgID] @="AVGeneralNotification.AVGeneralNotification.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{239A3C5E-8D41-11D1-B675-00C04FA3C554}\VersionIndependentProgID] @="AVGeneralNotification.AVGeneralNotification" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{86E8C5B0-75B6-4ff2-B04F-6789CC7AE386}\Path] "x86"="C:\Program Files\AVG\AVG10\avgapix.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}] "url"="fwstats.mtrap.avg.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F2DDE6B2-9684-4A55-86D4-E255E237B77C}] @="avgsecuritytoolbar" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F2DDE6B2-9684-4A55-86D4-E255E237B77C}] "MenuText"="AVG Security Toolbar" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F2DDE6B2-9684-4A55-86D4-E255E237B77C}\InprocServer32] @="C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\avgsecuritytoolbar] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\avgsecuritytoolbar] @="avgsecuritytoolbar" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{660E1DFA-2E19-4C53-8EE1-F093E2A1E37F}\1.0] @="avgoutlook 1.0 Type Library" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{660E1DFA-2E19-4C53-8EE1-F093E2A1E37F}\1.0\0\win32] @="C:\Program Files\AVG\AVG10\avgoutlookx.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{660E1DFA-2E19-4C53-8EE1-F093E2A1E37F}\1.0\HELPDIR] @="C:\Program Files\AVG\AVG10\" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{66694099-FBD8-4A98-AB9F-F19EAB4144C0}\1.0\0\win32] @="C:\Program Files\AVG\AVG10\PCTuneup\MicroScanner.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{66694099-FBD8-4A98-AB9F-F19EAB4144C0}\1.0\HELPDIR] @="C:\Program Files\AVG\AVG10\PCTuneup\" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{E5D35344-B1B8-4671-81D7-11CF87391027}\1.0\0\win32] @="C:\Program Files\AVG\AVG10\PCTuneup\MicroScannerElevation.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{E5D35344-B1B8-4671-81D7-11CF87391027}\1.0\HELPDIR] @="C:\Program Files\AVG\AVG10\PCTuneup\" [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla] "path"="C:\Program Files\AVG\AVG10\Chrome\safesearch.crx" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\avgfrw] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\avgmfapx] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ESENT\Process\avgui] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] "DllName"="avgssie.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\11.0\Registration\{90110409-6000-11D3-8CFE-0150048383C9}] "Current3"="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 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\11.0\Registration\{90110409-6000-11D3-8CFE-0150048383C9}] "Current4"="GQAIABXAGEAcgByAGEAbgB0AHkAKQAgAHMAaABhAGwAbAAgAGIAZQAgAGwAaQBtAGkAdABlAGQAIAB0AG8AIAB0AGgAZQAgAGcAcgBlAGEAdABlAHIAIABvAGYAIAB0AGgAZQAgAGEAYwB0AHUAYQBsACAAZABhAG0AYQBnAGUAcwAgAHkAbwB1ACAAaQBuAGMAdQByACAAaQBuACAAcgBlAGEAcwBvAG4AYQBiAGwAZQAgAHIAZQBsAGkAYQBuAGMAZQAgAG8AbgAgAHQAaABlACAAUwBvAGYAdAB3AGEAcgBlACAAdQBwACAAdABvACAAdABoAGUAIABhAG0AbwB1AG4AdAAgAGEAYwB0AHUAYQBsAGwAeQAgAHAAYQBpAGQAIABiAHkAIAB5AG8AdQAgAGYAbwByACAAdABoAGUAIABTAG8AZgB0AHcAYQByAGUAIABvAHIAIABVAFMAJAA1AC4AMAAwAC4AIAAgAFQAaABlACAAZgBvAHIAZQBnAG8AaQBuAGcAIABsAGkAbQBpAHQAYQB0AGkAbwBuAHMALAAgAGUAeABjAGwAdQBzAGkAbwBuAHMAIABhAG4AZAAgAGQAaQBzAGMAbABhAGkAbQBlAHIAcwAgACgAaQBuAGMAbAB1AGQAaQBuAGcAIABTAGUAYwB0AGkAbwBuAHMAIAAxADYALAAgADEANwAgAGEAbgBkACAAMQA4ACkAIABzAGgAYQBsAGwAIABhAHAAcABsAHkAIAB0AG8AIAB0AGgAZQAgAG0AYQB4AGkAbQB1AG0AIABlAHgAdABlAG4AdAAgAHAAZQByAG0AaQB0AHQAZQBkACAAYgB5ACAAYQBwAHAAbABpAGMAYQBiAGwAZQAgAGwAYQB3ACwAIABlAHYAZQBuACAA [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\11.0\Registration\{90110409-6000-11D3-8CFE-0150048383C9}] "Current5"="AGkAZQAgAGwAaQBtAGkAdADpAGUAIABlAHQAIABkAGEAbgBzACAAbABhACAAbQBlAHMAdQByAGUAIABtAGEAeABpAG0AYQBsAGUAIABwAGUAcgBtAGkAcwBlACAAcABhAHIAIABsAGUAcwAgAGwAbwBpAHMAIABhAHAAcABsAGkAYwBhAGIAbABlAHMALAAgAGwAZQAgAEwAbwBnAGkAYwBpAGUAbAAgAGUAdAAgAGwAZQBzACAAcwBlAHIAdgBpAGMAZQBzACAAZABlACAAcwBvAHUAdABpAGUAbgAgAHQAZQBjAGgAbgBpAHEAdQBlACAAKABsAGUAIABjAGEAcwAgAOkAYwBoAOkAYQBuAHQAKQAgAHMAbwBuAHQAIABmAG8AdQByAG4AaQBzACAAVABFAEwAUwAgAFEAVQBFAEwAUwAgAEUAVAAgAEEAVgBFAEMAIABUAE8AVQBTACAATABFAFMAIABEAMkARgBBAFUAVABTACAAcABhAHIAIABNAGkAYwByAG8AcwBvAGYAdAAgAGUAdAAgAHMAZQBzACAAZgBvAHUAcgBuAGkAcwBzAGUAdQByAHMALAAgAGwAZQBzAHEAdQBlAGwAcwAgAHAAYQByACAAbABlAHMAIABwAHIA6QBzAGUAbgB0AGUAcwAgAGQA6QBuAGkAZQBuAHQAIAB0AG8AdQB0AGUAcwAgAGEAdQB0AHIAZQBzACAAZwBhAHIAYQBuAHQAaQBlAHMAIABlAHQAIABjAG8AbgBkAGkAdABpAG8AbgBzACAAZQB4AHAAcgBlAHMAcwBlAHMALAAgAGkAbQBwAGwAaQBjAGkAdABlAHMAIABvAHUAIABlAG4AIAB2AGUAcgB0AHUAIABkAGUAIABsAGEAIABsAG8AaQAsACA [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\12.0\Registration\{91120000-0011-0000-0000-0000000FF1CE}] "Current"="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 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\Antispam\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\log\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\WINDOWS\system32\Drivers\AVG\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\scanlogs\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\update\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\EMC\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\avgam\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\lsdb\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\lsdb\prev\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\Cfg\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\cfgall\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\Temp\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\Dumps\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\Chjw\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\IDS\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\admincli\"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\3rd_party\licenses\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\3rd_party\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Drivers\ErHrXpx86\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Drivers\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Icons\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Firefox4\Components\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Firefox4\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Chrome\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\IDS\config\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Identity Protection\Agent\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Identity Protection\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Drivers\XP\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Application Data\AVG10\IDS\config\EN_US\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\platform_XP\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\PCTuneup\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Firefox4\Chrome\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Firefox\Chrome\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders] "C:\Program Files\AVG\AVG10\Firefox\"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002119110000000000000000F01FEC\Features] "VSTAIDEFiles"="*'=!-^1,a=%'HvwuM1s`lKe5wH&]&@iPgg*yzeka^FHUlH5uN9JD-'X2le-Ps(AJAjg'5=pm02,i9u5Td?k78go{S9v~.(_vyvb?7hLd@@7WH?biopFjqbsZ4?0!M_EtF9n3t3Yv}eU**z@Br{g1g(Rsy?VXB]2dxS}AW1_mOA!$oMQKOGPv*5!ULp'a99B&BsXmnNlg^k^shb2)g(FNy?VXB]2dgMB+sWA*0?jr)%4E?mxW}?0KnSBBC@uW&p3_R8rRJ54(qwdUx@+wP31En{vb`BzOcNs9F9~+.(+LTJE7ydnm1rV!1A1_C0b~kk=YW@g!R3IjB@l52{kc-~ak={8UQmN?b?x%%F%R9~S_@!iX2C%EJ@-,dmh3~OTp%chs4XT1W@.n.cJ&=gEZ%m[NUKVZU?&~nA,q7iv-R*hIkzh[)@*)d?=di1Y&v,B]z(D@4AAgL2?R3hF,z@(CfHR}{9(tu$Vq'QBd!FH'Qp8GB@Z2YrD[[C?9x)rAZTkpo9u!-Gb}$QWPlH*czRL2*96Y3KkKmxWX_q'UA+WQJAj%VbnaI0G?y68!l89BL@n~CX`crX-O5$&uxpTp_=A89%l7Qjzj46CT9*IvZ8=EXq+,6+([Ae-p$J{+o=QtITuzyO8Zs.C2V_Fe`A~HkA-Ty8qv!42?$gW$r9lZ)wXcl7aRwE?=@sCO3=HmWx%iGDJ*,!!V-bI9%9sresQy6&Xc'BFM1pD(u8=H@`P&+d$2m}[fE+4Ia?QI?y=)RA)^-d%_JNIM]8P1ch1vDV6P}'-*F{zoM@Slv={j_uap)^fAv9p'S?&tq64pQ10,{zJA,Yg!GA[^F.EP^h6RToHvwCweq?[FVtL,~k~,kDG-p [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-for-free.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-for-free.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-secure.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg-download.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg.org] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\www.avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\official-avg-download-now.com] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\www.avg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\009] "Counter"="1 1847 2 System 4 Memory 6 % Processor Time 10 File Read Operations/sec 12 File Write Operations/sec 14 File Control Operations/sec 16 File Read Bytes/sec 18 File Write Bytes/sec 20 File Control Bytes/sec 24 Available Bytes 26 Committed Bytes 28 Page Faults/sec 30 Commit Limit 32 Write Copies/sec 34 Transition Faults/sec 36 Cache Faults/sec 38 Demand Zero Faults/sec 40 Pages/sec 42 Page Reads/sec 44 Processor Queue Length 46 Thread State 48 Pages Output/sec 50 Page Writes/sec 52 Browser 54 Announcements Server/sec 56 Pool Paged Bytes 58 Pool Nonpaged Bytes 60 Pool Paged Allocs 64 Pool Nonpaged Allocs 66 Pool Paged Resident Bytes 68 System Code Total Bytes 70 System Code Resident Bytes 72 System Driver Total Bytes 74 System Driver Resident Bytes 76 System Cache Resident Bytes 78 Announcements Domain/sec 80 Election Packets/sec 82 Mailslot Writes/sec 84 Server List Requests/sec 86 Cache 88 Data Maps/sec 90 Sync Data Maps/s [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib\009] "Help"="3 The System performance object consists of counters that apply to more than one instance of a component processors on the computer. 5 The Memory performance object consists of counters that describe the behavior of physical and virtual memory on the computer. Physical memory is the amount of random access memory on the computer. Virtual memory consists of the space in physical memory and on disk. Many of the memory counters monitor paging, which is the movement of pages of code and data between disk and physical memory. Excessive paging, a symptom of a memory shortage, can cause delays which interfere with all system processes. 7 % Processor Time is the percentage of elapsed time that the processor spends to execute a non-Idle thread. It is calculated by measuring the duration of the idle thread is active in the sample interval, and subtracting that time from interval duration. (Each processor has an idle thread tha [HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions] "{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"="C:\Program Files\AVG\AVG10\Firefox4\" [HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions] "avg@igeared"="C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG7CORE] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG7RSW] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG7RSW\0000] "Service"="Avg7RsW" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG7RSW\0000] "DeviceDesc"="AVG7 Wrap Driver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG7RSXP] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD\0000] "Service"="avg9wd" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD\0000] "DeviceDesc"="AVG Free WatchDog" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGCLEAN] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT\0000] "Service"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT\0000] "DeviceDesc"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "Service"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "DeviceDesc"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000] "Service"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH\0000] "DeviceDesc"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000] "Service"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER\0000] "DeviceDesc"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM\0000] "Service"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM\0000] "DeviceDesc"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86\0000] "Service"="AvgLdx86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86\0000] "DeviceDesc"="AVG Free AVI Loader Driver x86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86\0000] "Service"="AvgMfx86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86\0000] "DeviceDesc"="AVG Free On-access Scanner Minifilter Driver x86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86\0000] "Service"="Avgrkx86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86\0000] "DeviceDesc"="AVG Anti-Rootkit Driver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDI] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX\0000] "Service"="AvgTdiX" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX\0000] "DeviceDesc"="AVG Free8 Network Redirector" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD\0000] "Service"="avgwd" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD\0000] "DeviceDesc"="AVG WatchDog" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG7CORE] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG7RSW] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG7RSW\0000] "Service"="Avg7RsW" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG7RSW\0000] "DeviceDesc"="AVG7 Wrap Driver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG7RSXP] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD\0000] "Service"="avg9wd" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD\0000] "DeviceDesc"="AVG Free WatchDog" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGCLEAN] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT\0000] "Service"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT\0000] "DeviceDesc"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "Service"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "DeviceDesc"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000] "Service"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH\0000] "DeviceDesc"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000] "Service"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER\0000] "DeviceDesc"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM\0000] "Service"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM\0000] "DeviceDesc"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86\0000] "Service"="AvgMfx86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86\0000] "DeviceDesc"="AVG Free On-access Scanner Minifilter Driver x86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86\0000] "Service"="Avgrkx86" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86\0000] "DeviceDesc"="AVG Anti-Rootkit Driver" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDI] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX\0000] "Service"="AvgTdiX" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX\0000] "DeviceDesc"="AVG Free8 Network Redirector" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD\0000] "Service"="avgwd" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD\0000] "DeviceDesc"="AVG WatchDog" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG7CORE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG7RSW] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG7RSW\0000] "Service"="Avg7RsW" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG7RSW\0000] "DeviceDesc"="AVG7 Wrap Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG7RSXP] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD\0000] "Service"="avg9wd" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD\0000] "DeviceDesc"="AVG Free WatchDog" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGCLEAN] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT\0000] "Service"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT\0000] "DeviceDesc"="AVGIDSAgent" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "Service"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER\0000] "DeviceDesc"="AVGIDSDriver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000] "Service"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH\0000] "DeviceDesc"="AVGIDSEH" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000] "Service"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER\0000] "DeviceDesc"="AVGIDSFilter" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM\0000] "Service"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM\0000] "DeviceDesc"="AVGIDSShim" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86\0000] "Service"="AvgLdx86" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86\0000] "DeviceDesc"="AVG Free AVI Loader Driver x86" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86\0000] "Service"="AvgMfx86" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86\0000] "DeviceDesc"="AVG Free On-access Scanner Minifilter Driver x86" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86\0000] "Service"="Avgrkx86" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86\0000] "DeviceDesc"="AVG Anti-Rootkit Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDI] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX\0000] "Service"="AvgTdiX" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX\0000] "DeviceDesc"="AVG Free8 Network Redirector" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD\0000] "Service"="avgwd" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD\0000] "DeviceDesc"="AVG WatchDog" [HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_USERS\.DEFAULT\AppEvents\EventLabels\avgtrayWSAlert] [HKEY_USERS\.DEFAULT\AppEvents\Schemes\Apps\avgtray] [HKEY_USERS\.DEFAULT\Software\Avg] [HKEY_USERS\.DEFAULT\Software\Avg\Avg9] [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] "spName"="avgsearch" [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] "ChromeSearchName"="AVG Secure Search" [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] "ChromeSearchUrl"="http://search.avg.com/route/?d=$instd$&v=$ver$&i=$dchid$&tp=chrome&q={searchTerms}&lng={moz:locale}&iy=$isYahoo$&ychte=$ychte$" [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] "HomePage"="http://free.avg.com/ww.homepage-tlbrf" [HKEY_USERS\.DEFAULT\Software\AVG Security Toolbar] "CustomizeSearchURL"="http://search.avg.com/route/?d=$instd$&v=$ver$&i=$dchid$&tp=chrome&lng={moz:locale}&iy=$isYahoo$&ychte=$ychte$" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-for-free.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-for-free.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-secure.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg-download.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg.org] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\www.avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\official-avg-download-now.com] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\www.avg] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache] "C:\WINDOWS\Temp\AVGProductUpdate.exe"="AVG Security Toolbar " [HKEY_USERS\S-1-5-19\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_USERS\S-1-5-19\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_USERS\S-1-5-19\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_USERS\S-1-5-19\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_USERS\S-1-5-19\AppEvents\EventLabels\avgtrayWSAlert] [HKEY_USERS\S-1-5-19\AppEvents\Schemes\Apps\avgtray] [HKEY_USERS\S-1-5-19\Software\Avg] [HKEY_USERS\S-1-5-19\Software\Avg\Avg9] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-20\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_USERS\S-1-5-20\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_USERS\S-1-5-20\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_USERS\S-1-5-20\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_USERS\S-1-5-20\AppEvents\EventLabels\avgtrayWSAlert] [HKEY_USERS\S-1-5-20\AppEvents\Schemes\Apps\avgtray] [HKEY_USERS\S-1-5-20\Software\Avg] [HKEY_USERS\S-1-5-20\Software\Avg\Avg9] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayUpdEnd] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayUpdEndFail] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\EventLabels\avgtrayUpdStart] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray] @="AVG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayRSAlert] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayScanFinished] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayScanFinishedThreatFound] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayScanStarted] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayUpdEnd] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayUpdEndFail] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\AppEvents\Schemes\Apps\avgtray\avgtrayUpdStart] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Adobe\Acrobat Reader\10.0\AVGeneral] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "DisplayName"="AVG Secure Search" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "URL"="http://search.avg.com/route/?d=4b11b0c7&v=6.10.6.4&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "OSDFileURL"="file:///C:/Documents%20and%20Settings/All%20Users/Application%20Data/AVG%20Security%20Toolbar/osd.xml" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "FaviconURL"="http://search.avg.com/favicon.ico" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{7A28F53A-2CEE-42A5-94EF-957BAC78EA38}] "Favicon"="http://search.avg.com/favicon.ico" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "DisplayName"="AVG Secure Search" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "URL"="http://search.avg.com/route/?d=4de91311&v=7.5.30.4&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "OSDFileURL"="file:///C:/Documents%20and%20Settings/All%20Users/Application%20Data/AVG%20Security%20Toolbar/osd.xml" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{96A97EBA-7372-424A-9BA5-554CAB854FCA}] "FaviconURL"="http://search.avg.com/favicon.ico" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Search Assistant\ACMru\5603] "001"="avg" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Search Assistant\ACMru\5604] "000"="avg" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List] "File2"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*] "f"="C:\Documents and Settings\Byte Me\Desktop\avg files left after removal tool.JPG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\*] "i"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\JPG] "d"="C:\Documents and Settings\Byte Me\Desktop\avg files left.JPG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\JPG] "e"="C:\Documents and Settings\Byte Me\Desktop\avg files left after removal tool.JPG" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\OpenWithList] "a"="avgui.exe" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG 2011] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG Free 9.0] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-for-free.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-for-free.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-secure.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg-download.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg.org] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\official-avg-download-now.com] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\ORL\VNCHooks\Application_Prefs\avgcc.exe] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\PKWARE\PKZIP70\History\ExtractFolder] "File1"="C:\Documents and Settings\Byte Me\My Documents\Downloads\avg8" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\PKWARE\PKZIP70\History\OpenArchive] "File3"="C:\Documents and Settings\Byte Me\My Documents\Downloads\avg8.zip" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Classes\Applications\avgtray.exe] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Classes\Applications\avgtray.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Classes\Applications\avgui.exe] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Classes\Applications\avgui.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003_Classes\Applications\avgtray.exe] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003_Classes\Applications\avgtray.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003_Classes\Applications\avgui.exe] [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003_Classes\Applications\avgui.exe] "TaskbarGroupIcon"="C:\Program Files\AVG\AVG10\avguires.dll,-128" [HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avgtrayRSAlert] [HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avgtrayScanFinished] [HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avgtrayScanStarted] [HKEY_USERS\S-1-5-18\AppEvents\EventLabels\avgtrayWSAlert] [HKEY_USERS\S-1-5-18\AppEvents\Schemes\Apps\avgtray] [HKEY_USERS\S-1-5-18\Software\Avg] [HKEY_USERS\S-1-5-18\Software\Avg\Avg9] [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] "spName"="avgsearch" [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] "ChromeSearchName"="AVG Secure Search" [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] "ChromeSearchUrl"="http://search.avg.com/route/?d=$instd$&v=$ver$&i=$dchid$&tp=chrome&q={searchTerms}&lng={moz:locale}&iy=$isYahoo$&ychte=$ychte$" [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] "HomePage"="http://free.avg.com/ww.homepage-tlbrf" [HKEY_USERS\S-1-5-18\Software\AVG Security Toolbar] "CustomizeSearchURL"="http://search.avg.com/route/?d=$instd$&v=$ver$&i=$dchid$&tp=chrome&lng={moz:locale}&iy=$isYahoo$&ychte=$ychte$" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-for-free.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\avg-secure.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg-download.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\free-avg.org] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\official-avg-download-now.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-for-free.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\avg-secure.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg-download.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\free-avg.org] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grab-it-today.net\www.avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\official-avg-download-now.com] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\softwarecenterz.com\www.avg] [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\ShellNoRoam\MUICache] "C:\WINDOWS\Temp\AVGProductUpdate.exe"="AVG Security Toolbar " ========== filefind ========== Searching for "AVG" No files found. ========== folderfind ========== Searching for "AVG" C:\Program Files\AVG d------ [04:39 08/05/2009] -= EOF =- Thanks for all of your help! Please download SystemLook from one of the links below and save it to your Desktop. Download Mirror #1 Download Mirror #2 Double-click SystemLook.exe to run it. Copy the content of the following codebox into the main textfield: :regfind AVG :filefind AVG :folderfind AVG Click the Look button to start the scan. When finished, a notepad window will open with the results of the scan. Please post this log in your next reply. Note: The log can also be found on your Desktop entitled SystemLook.txt Correct, MBAM doesn't scan zipped archives. Not sure which archive in particular you're referring to? All of the files in your search results look legitimate... Yes it's created automatically. Not to worry. Right-click and Delete. Same with their logs.
  5. Hi Chris, I found Viewpoint Media Player listed in the Control Panel and removed it. I see there is also something called Viewtalk PDA which I didn't d/l but maybe my daughter did at one time unless it is part of Viewpoint and appeared out of nowhere. Let me know if it is part of the same family and needs to be removed. I read up on FF6 and will wait until it is more stable. I have enough with trying to figure out what is happening with what I already have. Maybe I will move to FF5 when I get these issues fixed. Then again, I still have the laptop I need to get squared away. I checked in System Information (Running Processes) and alg.exe is not available, csrss.exe is not available, svchost (4 instances) are not available, systemx is not available, system idle process is not available and wmiprvse.exe is not available. You should see how huge the startup file is! Something is odd, but I don't know enough about computers to figure it out. Another concern is that nasty AVG that won't go away, in particular AVG10. Did you see all the errors that came up when I tried the removal tool? You had me post the file so it is in an earlier post. Maybe it will give us some clues as to how to proceed. I have attached a file with some of the avg files remaining. If you recall, I had also tried removing it on my own with what I thought was the proper tool. I am running XP Pro. Also, there are some questionable zipped files that I am not sure whether they might be critical to the operation of my machine. I have attached the two image shots. I don't know if malware came in through java which of course Malwarebytes can't see until I open the file, or at least that is my understanding that zipped files are not scanned. I have attached two pages...actually it is 1 1/2 pages. Lastly, the most recent combofix quarantined some files. Does it create this entry automatically even if there is no malware or does it mean I did have something that had to be quarantined? Oh, and almost forgot...how can I remove TCPView, SystemLook, Gmer, and any other tools we used. (Gmer I grabbed when I was following the instructions on "Am I infected"). Can you help me with these last remaining issues? Then I need a break. Thanks Chris. I am sorry I am driving you crazy.
  6. ComboFix 11-08-19.02 - Byte Me 08/19/2011 20:03:24.7.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.495 [GMT -4:00] Running from: c:\documents and settings\Byte Me\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\Byte Me\Desktop\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . FILE :: "c:\documents and settings\Byte Me\Recent\PKZIP for Windows.lnk" "c:\documents and settings\Byte Me\Recent\PKZIP Reader.lnk" . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\All Users\Application Data\PKWARE c:\documents and settings\Byte Me\Application Data\PKWARE c:\documents and settings\Byte Me\Application Data\PKWARE\pkzipw.xml c:\windows\DOWNLO~1\EWIDoo~1.dll . . ((((((((((((((((((((((((( Files Created from 2011-07-20 to 2011-08-20 ))))))))))))))))))))))))))))))) . . 2011-08-11 03:33 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2011-08-11 03:32 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys 2011-07-25 06:43 . 2011-07-25 06:43 -------- d-----w- c:\documents and settings\Byte Me\Local Settings\Application Data\Privatefirewall 2011-07-25 06:39 . 2011-07-25 06:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Privacyware 2011-07-23 06:22 . 2011-07-23 06:24 -------- d-----w- c:\documents and settings\Byte Me\Application Data\QuickScan 2011-07-22 02:49 . 2011-07-22 02:49 -------- d-----w- c:\documents and settings\Byte Me\Application Data\SUPERAntiSpyware.com 2011-07-22 02:49 . 2011-08-15 04:13 -------- d-----w- c:\program files\SUPERAntiSpyware . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-08-11 04:21 . 2011-06-18 20:45 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-15 13:29 . 2002-08-29 12:00 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02 . 2002-08-29 12:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-06 23:52 . 2011-07-20 20:41 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 23:52 . 2011-07-20 20:41 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-04 11:43 . 2011-07-11 01:03 40112 ----a-w- c:\windows\avastSS.scr 2011-07-04 11:43 . 2011-07-11 01:03 199304 ----a-w- c:\windows\system32\aswBoot.exe 2011-07-04 11:36 . 2011-07-11 01:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-07-04 11:36 . 2011-07-11 01:04 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys 2011-07-04 11:35 . 2011-07-11 01:03 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2011-07-04 11:35 . 2011-07-11 01:03 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2011-07-04 11:35 . 2011-07-11 01:03 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys 2011-07-04 11:32 . 2011-07-11 01:04 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2011-07-04 11:32 . 2011-07-11 01:03 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2011-07-04 11:32 . 2011-07-11 01:04 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2011-06-26 03:47 . 2011-06-26 03:47 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys 2011-06-26 03:47 . 2011-06-26 03:47 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe 2011-06-24 14:10 . 2005-11-25 06:43 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:36 . 2005-06-18 04:49 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:36 . 2002-08-29 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-23 18:36 . 2002-08-29 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec 2011-06-20 17:44 . 2002-08-29 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll 2011-06-18 22:20 . 2011-06-18 22:20 99965 ----a-w- c:\windows\UninstallThunderbird.exe 2011-06-02 14:02 . 2002-08-29 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-07-04 11:43 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-08-12 4603264] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "nwiz"="nwiz.exe" [2006-10-22 1622016] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2010-1-21 2057536] WDSmartWare.lnk - c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe [2010-1-21 9136960] Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904] . c:\documents and settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [N/A] . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^desktop.ini] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\desktop.ini backup=c:\windows\pss\desktop.iniCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Exif Launcher.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Exif Launcher.lnk backup=c:\windows\pss\Exif Launcher.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HOTSYNCSHORTCUTNAME.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HOTSYNCSHORTCUTNAME.lnk backup=c:\windows\pss\HOTSYNCSHORTCUTNAME.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NETGEAR WNA1000M Smart Wizard.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA1000M Smart Wizard.lnk backup=c:\windows\pss\NETGEAR WNA1000M Smart Wizard.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2006-10-22 16:22 7700480 ----a-w- c:\windows\system32\nvcpl.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2006-10-22 16:22 86016 ----a-w- c:\windows\system32\nvmctray.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2006-10-22 16:22 1622016 ----a-w- c:\windows\system32\nwiz.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-11 04:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] 2002-02-05 03:32 53248 ----a-w- c:\program files\REGSHAVE\Regshave.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMRUBottedTray] 2008-11-06 16:33 288088 ----a-w- c:\program files\Trend Micro\RUBotted\TMRUBottedTray.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Yahoo! Pager"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" -quiet "Aim6"= . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\WINDOWS\\system32\\dplaysvr.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Thunderbird\\thunderbird.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbamservice.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "135:TCP"= 135:TCP:DCOM(135) . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7/10/2011 9:03 PM 441176] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7/10/2011 9:04 PM 309848] R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 12:27 PM 12880] R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 5:55 PM 67664] R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [8/11/2011 7:38 PM 116608] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/10/2011 9:04 PM 19544] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [7/20/2011 4:41 PM 366640] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [8/18/2008 9:34 PM 24652] R2 WDDMService;WD SmartWare Drive Manager;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [1/21/2010 4:24 PM 110592] R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [6/16/2009 8:58 AM 20480] R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [2/27/2008 10:54 AM 20480] R3 brfilt;Brother MFC Filter Driver;c:\windows\system32\drivers\BrFilt.sys [11/26/2005 3:00 AM 2944] R3 BrSerWDM;Brother WDM Serial driver;c:\windows\system32\drivers\BrSerWdm.sys [11/26/2005 3:00 AM 60416] R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\system32\drivers\BrUsbMdm.sys [11/26/2005 3:00 AM 11008] R3 BrUsbScn;Brother MFC USB Scanner driver;c:\windows\system32\drivers\BrUsbScn.sys [11/26/2005 3:00 AM 10368] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [7/20/2011 4:41 PM 22712] R3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [6/28/2009 1:17 PM 11264] S3 lne100v5;Linksys LNE100TX(v5) Fast Ethernet Adapter;c:\windows\system32\drivers\lne100v5.sys [11/26/2005 4:27 AM 36013] S3 RTL8192cu;NETGEAR WNA1000M N150 Wireless USB Micro Adapter;c:\windows\system32\DRIVERS\WNA1000M.sys --> c:\windows\system32\DRIVERS\WNA1000M.sys [?] S3 ssmirrdr;ssmirrdr;c:\windows\system32\drivers\ssmirrdr.sys [5/5/2011 9:29 AM 10112] S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [6/21/2011 11:45 PM 11520] . --- Other Services/Drivers In Memory --- . *NewlyCreated* - SASDIFSV . . ------- Supplementary Scan ------- . uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 uStart Page = hxxp://www.google.com/ uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com Trusted Zone: akamai.net\a248.e Trusted Zone: bitdefender.com\www Trusted Zone: netflame.cc\ssl-hints TCP: DhcpNameServer = 207.69.188.186 207.69.188.187 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab FF - ProfilePath - c:\documents and settings\Byte Me\Application Data\Mozilla\Firefox\Profiles\vbxyk99m.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com FF - Ext: AVG Safe Search: {1E73965B-8B48-48be-9C8D-68B920ABC1C4} - c:\program files\AVG\AVG10\Firefox4 FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\AVAST Software\Avast\WebRep\FF . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-08-19 20:13 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(952) c:\program files\SUPERAntiSpyware\SASWINLO.DLL c:\windows\system32\WININET.dll . Completion time: 2011-08-19 20:18:19 ComboFix-quarantined-files.txt 2011-08-20 00:18 ComboFix2.txt 2011-08-13 00:24 . Pre-Run: 297,688,690,688 bytes free Post-Run: 297,672,593,408 bytes free . - - End Of File - - EB347B29A48707E29EC8751E2F7D96F0 . DDS (Ver_2011-06-23.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26 Run by Byte Me at 20:23:25 on 2011-08-19 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.455 [GMT -4:00] . AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\devldr32.exe svchost.exe C:\Program Files\SUPERAntiSpyware\SASCORE.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe -k imgsvc C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe C:\WINDOWS\system32\BRMFRSMG.EXE C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\QuickTime\QuickTimePlayer.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\notepad.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\SearchProtocolHost.exe . ============== Pseudo HJT Report =============== . uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 uStart Page = hxxp://www.google.com/ uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com mURLSearchHooks: H - No File BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File uRun: [sUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [nwiz] nwiz.exe /install mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wddmst~1.lnk - c:\program files\western digital\wd smartware\wd drive manager\WDDMStatus.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wdsmar~1.lnk - c:\program files\western digital\wd smartware\front parlor\WDSmartWare.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\autoru~1\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL Trusted Zone: akamai.net\a248.e Trusted Zone: bitdefender.com\www Trusted Zone: netflame.cc\ssl-hints DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc3.cab DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scan8/oscan8.cab DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1132992903234 DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1269200518781 DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} - hxxp://support.f-secure.com/ols/fscax.cab DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} - hxxp://support.f-secure.com/ols/fscax.cab DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} - hxxp://office.microsoft.com/officeupdate/content/opuc4.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: DhcpNameServer = 207.69.188.186 207.69.188.187 TCP: Interfaces\{14D12A24-5E10-414A-B737-48FF1FA7120E} : DhcpNameServer = 207.69.188.186 207.69.188.187 TCP: Interfaces\{E3E42C6E-A560-49B3-AA92-8DAB7F969AD3} : DhcpNameServer = 207.69.188.186 207.69.188.187 192.168.1.1 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\byte me\application data\mozilla\firefox\profiles\vbxyk99m.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - component: c:\program files\avg\avg10\firefox4\components\avgssff4.dll FF - component: c:\program files\avg\avg10\firefox4\components\avgssff5.dll FF - plugin: c:\documents and settings\byte me\application data\mozilla\firefox\profiles\vbxyk99m.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071101000055.dll FF - plugin: c:\progra~1\yahoo!\common\npyaxmpb.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\NPFxViewer.dll FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com FF - Ext: AVG Safe Search: {1E73965B-8B48-48be-9C8D-68B920ABC1C4} - c:\program files\avg\avg10\Firefox4 FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\avast software\avast\webrep\FF . ============= SERVICES / DRIVERS =============== . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-7-10 441176] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-7-10 309848] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664] R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-7-10 19544] R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-7-10 42184] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-7-20 366640] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2008-8-18 24652] R2 WDDMService;WD SmartWare Drive Manager;c:\program files\western digital\wd smartware\wd drive manager\WDDMService.exe [2010-1-21 110592] R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files\western digital\wd smartware\front parlor\WDSmartWareBackgroundService.exe [2009-6-16 20480] R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [2008-2-27 20480] R3 brfilt;Brother MFC Filter Driver;c:\windows\system32\drivers\BrFilt.sys [2005-11-26 2944] R3 BrSerWDM;Brother WDM Serial driver;c:\windows\system32\drivers\BrSerWdm.sys [2005-11-26 60416] R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\system32\drivers\BrUsbMdm.sys [2005-11-26 11008] R3 BrUsbScn;Brother MFC USB Scanner driver;c:\windows\system32\drivers\BrUsbScn.sys [2005-11-26 10368] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-7-20 22712] R3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [2009-11-30 206608] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [2009-6-28 11264] S3 lne100v5;Linksys LNE100TX(v5) Fast Ethernet Adapter;c:\windows\system32\drivers\lne100v5.sys [2005-11-26 36013] S3 RTL8192cu;NETGEAR WNA1000M N150 Wireless USB Micro Adapter;c:\windows\system32\drivers\wna1000m.sys --> c:\windows\system32\drivers\WNA1000M.sys [?] S3 ssmirrdr;ssmirrdr;c:\windows\system32\drivers\ssmirrdr.sys [2011-5-5 10112] S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [2009-11-30 206608] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2011-6-21 11520] . =============== Created Last 30 ================ . 2011-08-20 00:01:02 98816 ----a-w- c:\windows\sed.exe 2011-08-20 00:01:02 518144 ----a-w- c:\windows\SWREG.exe 2011-08-20 00:01:02 256000 ----a-w- c:\windows\PEV.exe 2011-08-20 00:01:02 208896 ----a-w- c:\windows\MBR.exe 2011-08-11 03:33:07 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys 2011-08-11 03:32:41 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys 2011-07-25 06:43:28 -------- d-----w- c:\documents and settings\byte me\local settings\application data\Privatefirewall 2011-07-25 06:39:42 -------- d-----w- c:\documents and settings\all users\application data\Privacyware 2011-07-23 06:22:22 -------- d-----w- c:\documents and settings\byte me\application data\QuickScan 2011-07-22 02:49:38 -------- d-----w- c:\documents and settings\byte me\application data\SUPERAntiSpyware.com 2011-07-22 02:49:18 -------- d-----w- c:\program files\SUPERAntiSpyware . ==================== Find3M ==================== . 2011-08-11 04:21:27 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-06 23:52:42 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 23:52:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-04 11:43:53 40112 ----a-w- c:\windows\avastSS.scr 2011-07-04 11:36:43 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-06-26 03:47:43 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys 2011-06-26 03:47:39 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe 2011-06-24 14:10:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:36:30 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:36:30 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-23 18:36:30 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05:13 385024 ----a-w- c:\windows\system32\html.iec 2011-06-20 17:44:52 293376 ----a-w- c:\windows\system32\winsrv.dll 2011-06-18 22:20:33 99965 ----a-w- c:\windows\UninstallThunderbird.exe 2011-06-02 14:02:05 1858944 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 20:24:41.07 =============== Thanks Chris...I will check on the ability to upgrade to Firefox 6. I don't recall why I have been reluctant to do so. I know under the AVG10 folder is a folder saying Firefox 4. It's all greek to me.
  7. Thank you for getting back to me, I really appreciate your assistance. I am using Firefox 3.6.16 Here is the log (the Desktop JPG is just a screenshot of the page when I d/l the pkware): SystemLook 30.07.11 by jpshortstuff Log created at 23:33 on 16/08/2011 by Byte Me Administrator - Elevation successful ========== regfind ========== Searching for "*PKWARE*" No data found. Searching for "*PKZIP*" No data found. ========== folderfind ========== Searching for "*PKWARE*" C:\Documents and Settings\All Users\Application Data\PKWARE d------ [06:46 16/07/2011] C:\Documents and Settings\Byte Me\Application Data\PKWARE d------ [06:46 16/07/2011] Searching for "*PKZIP*" No folders found. ========== filefind ========== Searching for "*PKWARE*" C:\Documents and Settings\Byte Me\Desktop\pkware registration.JPG --a---- 92733 bytes [17:35 02/08/2011] [17:35 02/08/2011] 496142817E2401CACEB8FDC2318FACAD C:\Documents and Settings\Byte Me\Recent\pkware registration.JPG.lnk --a---- 544 bytes [03:20 17/08/2011] [03:20 17/08/2011] 0F9FB5286560B6437F29EAE5D2E910BB Searching for "*PKZIP*" C:\Documents and Settings\Byte Me\Application Data\PKWARE\pkzipw.xml --a---- 5980 bytes [06:46 16/07/2011] [05:18 31/07/2011] 89F095C9A0A789A154183E570E06FD1B C:\Documents and Settings\Byte Me\Recent\PKZIP for Windows.lnk --a---- 621 bytes [06:46 16/07/2011] [19:03 30/07/2011] 94C1DFB9A7D971049A776D6F84160D94 C:\Documents and Settings\Byte Me\Recent\PKZIP Reader.lnk --a---- 614 bytes [03:24 16/07/2011] [03:24 16/07/2011] 9010DA9D714F28AA7C780DC1AA07FEA3 -= EOF =-
  8. Now I am having issues with trying to search using google and what I typed is completely changed. "What is google redirect" turned into "what is my ip", "how to check an email attachment" turned into "how do I check my att voicemail" (I don't have at&t voicemail). Between this and the crazy log after running the AVG removal tool, I am about to lose my mind. Thanks for your help!
  9. Part 2 of AVG removal trial: 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSERHRXPX not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIMXPX not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGFWS not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSAGENT failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVER failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSEH failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSFILTER failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIM failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86 ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX86 failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86 ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX86 failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86 ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX86 failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGLDX64 not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGMFX64 not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGRKX64 not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIX failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGTDIA not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGWD failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD ForceRemove 2011-08-14 20:10:09,875 WARN Deleting key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVG9WD failed (error e0010058) 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSERHRXPX not found 2011-08-14 20:10:09,875 INFO Processing registry SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SYSTEM\ControlSet002\Enum\Root\LEGACY_AVGIDSSHIMXPX not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\Clients 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\Clients ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\Clients not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG8 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG8 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG9 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG9 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG IDS 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG IDS not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG IDS 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG IDS not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG 2011-08-14 20:10:09,875 DEBUG Value SOFTWARE\AVG:DumpType Remove 2011-08-14 20:10:09,875 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AvgAdmin10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AvgAdmin10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AvgAdmin10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AvgAdmin10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AvgAdmin10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AvgAdmin10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG Security Toolbar 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG Security Toolbar 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG8 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG8 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG9 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG9 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG\AVG10 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG\AVG10 not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG Security Toolbar 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AVG Security Toolbar 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AVG Security Toolbar not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks 2011-08-14 20:10:09,875 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove 2011-08-14 20:10:09,875 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser 2011-08-14 20:10:09,875 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove 2011-08-14 20:10:09,875 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AppDataLow\Avg 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AppDataLow\Avg ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AppDataLow\Avg not found 2011-08-14 20:10:09,875 INFO Processing registry SOFTWARE\AppDataLow\Software\AVG Security Toolbar 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AppDataLow\Software\AVG Security Toolbar ForceRemove 2011-08-14 20:10:09,875 DEBUG Key SOFTWARE\AppDataLow\Software\AVG Security Toolbar not found 2011-08-14 20:10:09,875 INFO Processing registry .avgdxa 2011-08-14 20:10:09,875 DEBUG Key .avgdxa ForceRemove 2011-08-14 20:10:09,875 DEBUG Key .avgdxa not found 2011-08-14 20:10:09,875 INFO Processing registry aAvgAPI.AvgBro 2011-08-14 20:10:09,875 DEBUG Key aAvgAPI.AvgBro ForceRemove 2011-08-14 20:10:09,875 DEBUG Key aAvgAPI.AvgBro not found 2011-08-14 20:10:09,875 INFO Processing registry AVG.Office 2011-08-14 20:10:09,875 DEBUG Key AVG.Office ForceRemove 2011-08-14 20:10:09,875 DEBUG Key AVG.Office not found 2011-08-14 20:10:09,875 INFO Processing registry AVG.Office.8 2011-08-14 20:10:09,875 DEBUG Key AVG.Office.8 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key AVG.Office.8 not found 2011-08-14 20:10:09,875 INFO Processing registry AvgDiagFile 2011-08-14 20:10:09,875 DEBUG Key AvgDiagFile ForceRemove 2011-08-14 20:10:09,875 DEBUG Key AvgDiagFile not found 2011-08-14 20:10:09,875 INFO Processing registry AvgDiagExFile 2011-08-14 20:10:09,875 DEBUG Key AvgDiagExFile ForceRemove 2011-08-14 20:10:09,875 DEBUG Key AvgDiagExFile not found 2011-08-14 20:10:09,875 INFO Processing registry avgtoolbar.AVGTOOLBAR 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBAR not found 2011-08-14 20:10:09,875 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found 2011-08-14 20:10:09,875 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove 2011-08-14 20:10:09,875 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found 2011-08-14 20:10:09,875 INFO Processing registry LinkScannerIE.NavFilter 2011-08-14 20:10:09,875 DEBUG Key LinkScannerIE.NavFilter ForceRemove 2011-08-14 20:10:09,875 DEBUG Key LinkScannerIE.NavFilter not found 2011-08-14 20:10:09,875 INFO Processing registry LinkScannerIE.NavFilter.1 2011-08-14 20:10:09,875 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove 2011-08-14 20:10:09,875 DEBUG Key LinkScannerIE.NavFilter.1 not found 2011-08-14 20:10:09,875 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} 2011-08-14 20:10:09,875 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove 2011-08-14 20:10:09,875 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found 2011-08-14 20:10:09,875 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} 2011-08-14 20:10:09,875 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,890 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} 2011-08-14 20:10:09,890 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found 2011-08-14 20:10:09,890 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} 2011-08-14 20:10:09,890 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found 2011-08-14 20:10:09,890 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} 2011-08-14 20:10:09,890 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found 2011-08-14 20:10:09,890 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found 2011-08-14 20:10:09,890 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found 2011-08-14 20:10:09,890 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found 2011-08-14 20:10:09,890 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{8B39AD4E-1AB3-4AE1-B533-706F1CACED83} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{DC182551-99C7-4e28-A8F3-8DCFC4745C4C} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{B2BFA8E6-DB09-43F4-8469-BC587CB603EB} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found 2011-08-14 20:10:09,890 INFO Processing registry CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} 2011-08-14 20:10:09,890 DEBUG Key CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove 2011-08-14 20:10:09,890 DEBUG Key CLSID\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found 2011-08-14 20:10:09,890 DEBUG Removing Session Manager values 2011-08-14 20:10:09,890 INFO ***** Files and folders ***** 2011-08-14 20:10:09,890 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Scripts\IM\MSN' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Scripts\IM\MSN' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Scripts\IM' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Scripts\IM' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Scripts\Logging' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Scripts\Logging' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Scripts\Dictionary' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Scripts\Dictionary' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Scripts' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Scripts' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\ToolbarIEcache' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\ToolbarIEcache' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\ToolbarFF\Chrome\cache' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\ToolbarFF\Chrome\cache' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\ToolbarFF\Chrome' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\ToolbarFF\Chrome' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\ToolbarFF\Components' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\ToolbarFF\Components' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\ToolbarFF' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\ToolbarFF' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange2007\Scripts' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange2007\Scripts' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange2007' 2011-08-14 20:10:09,906 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange2007' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVGTOOLBAR' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVGTOOLBAR' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.0' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.0' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg 8.5' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\avg free 8.5' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk' 2011-08-14 20:10:09,906 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 8.0.lnk' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk' 2011-08-14 20:10:09,906 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 8.0.lnk' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk' 2011-08-14 20:10:09,906 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 8.5.lnk' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk' 2011-08-14 20:10:09,906 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 8.5.lnk' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\chjw' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\chjw' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\quarantine' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\quarantine' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\profile' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\profile' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\0' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\0' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\1' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\1' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\2' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\2' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\3' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\3' not found 2011-08-14 20:10:09,906 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\4' 2011-08-14 20:10:09,906 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\4' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\5' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\5' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\6' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\6' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\7' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\7' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\8' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\8' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\9' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox\9' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\outbox' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\malwareprofile' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\malwareprofile' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\log' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\log' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\download' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\download' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\Config\EN_US' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\Config\EN_US' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\Config' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS\Config' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\IDS' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log\IDP\log' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log\IDP\log' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log\IDP' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log\IDP' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Languages' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Update' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\Update' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 9.0' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 9.0' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 9.0' 2011-08-14 20:10:09,937 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 9.0' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk' 2011-08-14 20:10:09,937 INFO File 'C:\Documents and Settings\All Users\Desktop\avg 9.0.lnk' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk' 2011-08-14 20:10:09,937 INFO File 'C:\Documents and Settings\All Users\Desktop\avg free 9.0.lnk' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Icons' 2011-08-14 20:10:09,937 INFO Directory 'C:\Program Files\AVG\AVG10\Icons' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Firefox\Chrome' 2011-08-14 20:10:09,937 INFO Directory 'C:\Program Files\AVG\AVG10\Firefox\Chrome' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Firefox\Components' 2011-08-14 20:10:09,937 INFO Directory 'C:\Program Files\AVG\AVG10\Firefox\Components' not found 2011-08-14 20:10:09,937 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Firefox' 2011-08-14 20:10:09,937 INFO Directory 'C:\Program Files\AVG\AVG10\Firefox' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\ErHr7x64' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\ErHr7x64' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\ErHrXPx64' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\ErHrXPx64' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\ErHrXPx86' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\ErHrXPx86' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\XP' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\XP' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\Win7' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\Win7' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\avgfwd' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\avgfwd' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers\avgfwd6' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers\avgfwd6' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Drivers' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Drivers' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Notification' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Notification' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Log' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Log' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\content' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\skin' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome\skin' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41\chrome' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_41' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\content' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\skin' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome\skin' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42\chrome' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\ch_42' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\avg' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\avg' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\ex' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\ex' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\libs' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\libs' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\libsex' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content\libsex' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\content' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\icons\default' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\icons\default' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\icons' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\icons' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\skin' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome\skin' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\chrome' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\components' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared\components' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Firefox' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Firefox' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar\Update' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar\Update' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\content' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\skin' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome\skin' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41\chrome' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_41' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\content' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\skin' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome\skin' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42\chrome' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\ch_42' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\avg' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\avg' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\ex' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\ex' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\html' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\html' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\Languages' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\Languages' not found 2011-08-14 20:10:09,953 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\libs' 2011-08-14 20:10:09,953 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\libs' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\libsex' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content\libsex' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\content' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\icons\default' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\icons\default' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\icons' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\icons' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\skin' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome\skin' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\chrome' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\components' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared\components' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox\avg@igeared' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Firefox' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old\Update' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old\Update' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Toolbar.old' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Toolbar.old' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_XP' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_XP' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_Vista' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_Vista' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_Vista64' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_Vista64' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_WIN7' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_WIN7' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_WIN764' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver\Platform_WIN764' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\driver' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\bin' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent\bin' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection\Agent' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection\Agent' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Identity Protection' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Identity Protection' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange\Transport\Scripts' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange\Transport\Scripts' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange\Transport' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange\Transport' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange\VSAPI' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange\VSAPI' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange\Filters' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange\Filters' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Exchange' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Exchange' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Sharepoint' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Sharepoint' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\3rd_party\licenses' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\3rd_party\licenses' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\3rd_party' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\3rd_party' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\PCTuneup' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\PCTuneup' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Icons' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Icons' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Program Files\AVG\AVG10\Sharepoint' 2011-08-14 20:10:09,984 INFO Directory 'C:\Program Files\AVG\AVG10\Sharepoint' not found 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 170 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 171 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 172 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 173 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 174 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 175 2011-08-14 20:10:09,984 DEBUG Missing ParentDir path for fileItem number 176 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\prepare' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\prepare' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\backup' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\backup' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\download\ads' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\download\ads' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\download' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update\download' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\update' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Lsdb\Prev' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Lsdb\Prev' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Lsdb' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Lsdb' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\scanlogs' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\scanlogs' not found 2011-08-14 20:10:09,984 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log' 2011-08-14 20:10:09,984 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\log' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\active' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\active' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\out' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\out' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\temp' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue\temp' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\queue' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\log' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc\log' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\emc' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\dumps' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\dumps' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Cfg\Avg7Fw' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Cfg\Avg7Fw' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Cfg' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Cfg' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\AvgAm' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\AvgAm' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Antispam' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Antispam' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admincli' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admincli' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\AvgApi' 2011-08-14 20:10:10,015 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\AvgApi' not found 2011-08-14 20:10:10,015 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\CfgAll' 2011-08-14 20:10:10,031 INFO File 'C:\Documents and Settings\Byte Me\Application Data\AVG10\CfgAll\usergui.cfg' deleted 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\CfgAll' deleted 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Temp' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Temp' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Chjw' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Chjw' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\SetupCoreBackup' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\SetupCoreBackup' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\SetupBackup' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\SetupBackup' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Data' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Data' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Log' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Log' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Server Data' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10\Admin Server Data' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\Byte Me\Application Data\AVG10' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\Byte Me\Application Data\AVG10' deleted 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32\Drivers\AVG' 2011-08-14 20:10:10,062 INFO Directory 'C:\WINDOWS\System32\Drivers\AVG' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\System32' 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Program Files\Windows Sidebar\Shared Gadgets\AVG.Gadget' 2011-08-14 20:10:10,062 INFO Directory 'C:\Program Files\Windows Sidebar\Shared Gadgets\AVG.Gadget' not found 2011-08-14 20:10:10,062 DEBUG Missing ParentDir path for fileItem number 217 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupCoreBackup' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupCoreBackup' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupBackup' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\SetupBackup' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\Chjw' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\Chjw' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10\Antispam' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10\Antispam' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Application Data\AVG10' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Application Data\AVG10' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG 2011' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 2011' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG FREE 2011' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk' 2011-08-14 20:10:10,062 INFO File 'C:\Documents and Settings\All Users\Desktop\AVG 2011.lnk' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\AVG FREE 2011.lnk' 2011-08-14 20:10:10,062 INFO File 'C:\Documents and Settings\All Users\Desktop\AVG FREE 2011.lnk' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\WINDOWS\SysWOW64\Drivers\AVG' 2011-08-14 20:10:10,062 INFO Directory 'C:\WINDOWS\SysWOW64\Drivers\AVG' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Program Files\AVG\AVG10' 2011-08-14 20:10:10,062 DEBUG Directory C:\Program Files\AVG\AVG10 not deleted (error c0070091) 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG LinkScanner® 9.0' 2011-08-14 20:10:10,062 INFO Directory 'C:\Documents and Settings\All Users\Start Menu\Programs\AVG LinkScanner® 9.0' not found 2011-08-14 20:10:10,062 DEBUG Processing item 'C:\Documents and Settings\All Users\Desktop\AVG LinkScanner® 9.0.lnk' 2011-08-14 20:10:10,062 INFO File 'C:\Documents and Settings\All Users\Desktop\AVG LinkScanner® 9.0.lnk' not found 2011-08-14 20:10:10,062 DEBUG Deleting AVG path 'C:\Program Files\AVG'... 2011-08-14 20:10:10,062 INFO Deleting AVG path 'C:\Program Files\AVG' failed with error:0xc0070091
  10. ***************************** Hi, I ended combo-fix, rebooted, made a copy of the files in C:\windows\downloaded Installations and attempted to run the AVG removal tool using the link you provided. Nothing showed up in the recycle bin. Something tells me to wait at this point to remove the restore points until you say so. Thanks for your help. This is the result of the AVG removal tool: Part 1 of 2 2011-08-14 20:09:08,437 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013) 2011-08-14 20:09:08,453 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013) 2011-08-14 20:09:08,453 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d) 2011-08-14 20:09:08,453 INFO Command line: "C:\Documents and Settings\Byte Me\Desktop\avg_remover_stf_x86_2011_1322.exe" 2011-08-14 20:09:08,453 WARN AvgDir param empty, but Remover found AvgDir at 'C:\Program Files\AVG\AVG10', use this path as default. 2011-08-14 20:09:08,453 WARN AvgAdminDir param empty. 2011-08-14 20:09:08,453 WARN AvgDataDir param empty, but Remover found AvgDataDir at 'C:\Documents and Settings\Byte Me\Application Data\AVG10', use this path as default. 2011-08-14 20:10:08,203 INFO AvgRemover runs in attempt number 1 2011-08-14 20:10:08,203 INFO ***** Msi data ***** 2011-08-14 20:10:08,218 DEBUG No product code found for our upgrade codes, nothing to do here 2011-08-14 20:10:08,218 INFO ***** Exchange&Outlook plugins data ***** 2011-08-14 20:10:08,234 INFO Removing AvgOutlook addin 2011-08-14 20:10:08,234 INFO AvgOutlook Removing HKCR addin keys x86 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'avgoutlook.Addin': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'avgoutlook.Addin.1': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'CLSID\{9F39046C-801E-4E15-8CD9-ACF0ACF29048}': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'CLSID\{F083C5AB-08AD-4ABF-A2BE-8FA5C7D2F10A}': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'AppID\avgoutlook.DLL': 0xe001003d 2011-08-14 20:10:08,234 INFO AvgOutlook Removing HKCR addin keys x64 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'avgoutlook.Addin': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'avgoutlook.Addin.1': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'CLSID\{9F39046C-801E-4E15-8CD9-ACF0ACF29048}': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'CLSID\{F083C5AB-08AD-4ABF-A2BE-8FA5C7D2F10A}': 0xe001003d 2011-08-14 20:10:08,234 DEBUG Failed to delete key 'AppID\avgoutlook.DLL': 0xe001003d 2011-08-14 20:10:08,234 INFO Removing Sharepoint plugin if exists 2011-08-14 20:10:08,234 DEBUG Failed to open key 'Software\Microsoft\Shared Tools\Web Server Extensions\AVScanner': 0xe0010013 2011-08-14 20:10:08,234 DEBUG Failed to open key 'Software\Microsoft\Shared Tools\Web Server Extensions\AVScanner': 0xe0010013 2011-08-14 20:10:08,234 INFO Removing Antispam plugin for Exchange 2000/2003 if exists 2011-08-14 20:10:08,234 DEBUG Stopping service 'MSExchangeIS' to remove VSAPI plugin... 2011-08-14 20:10:08,234 DEBUG Service MSExchangeIS Stop failed (error: c0070424) 2011-08-14 20:10:08,234 DEBUG Exchange&Outlook plugins removal failed with error 0xc0070424 2011-08-14 20:10:08,234 INFO ***** Services ***** 2011-08-14 20:10:08,234 INFO Processing service avg8emc, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service avgfws8, it can take several minutes... 2011-08-14 20:10:08,234 INFO Service avg8emc is not installed 2011-08-14 20:10:08,234 INFO Service avgfws8 is not installed 2011-08-14 20:10:08,234 INFO Processing service AvgWFPx, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service avg8wd, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgMfx64, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgWFPa, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service avg9wd, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgLdx86, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgMfx86, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgRkx64, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgTdiA, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgLdx64, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service avg9emc, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgRkx86, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service AvgTdiX, it can take several minutes... 2011-08-14 20:10:08,234 DEBUG Service avg8emc RegCleanup 2011-08-14 20:10:08,234 INFO Processing service avgfws, it can take several minutes... 2011-08-14 20:10:08,234 DEBUG Service avgfws8 RegCleanup 2011-08-14 20:10:08,234 INFO Processing service AVGIDSAgent, it can take several minutes... 2011-08-14 20:10:08,234 INFO Processing service avgfws9, it can take several minutes... 2011-08-14 20:10:08,234 INFO Service avg8wd is not installed 2011-08-14 20:10:08,234 INFO Service AvgWFPx is not installed 2011-08-14 20:10:08,234 INFO Service AvgWFPa is not installed 2011-08-14 20:10:08,234 INFO Service AvgMfx64 is not installed 2011-08-14 20:10:08,234 INFO Service avg9wd is not installed 2011-08-14 20:10:08,234 INFO Service AvgLdx86 is not installed 2011-08-14 20:10:08,234 INFO Service AvgRkx64 is not installed 2011-08-14 20:10:08,234 INFO Service AvgTdiA is not installed 2011-08-14 20:10:08,234 INFO Service AvgMfx86 is not installed 2011-08-14 20:10:08,250 INFO Service avg9emc is not installed 2011-08-14 20:10:08,250 INFO Service AvgLdx64 is not installed 2011-08-14 20:10:08,250 DEBUG Registry keys for service avg8emc are not present 2011-08-14 20:10:08,250 DEBUG Registry keys for service avgfws8 are not present 2011-08-14 20:10:08,250 INFO Service AvgTdiX is not installed 2011-08-14 20:10:08,250 INFO Service avgfws is not installed 2011-08-14 20:10:08,250 INFO Service AvgRkx86 is not installed 2011-08-14 20:10:08,250 INFO Service avgfws9 is not installed 2011-08-14 20:10:08,250 INFO Processing service AVGIDSFilterxpx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSShimvtx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSDrivervtx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSFilterw7x, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSDrivervta, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSShimxpx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSFilterw7a, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSErHrxpx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Service AVGIDSAgent is not installed 2011-08-14 20:10:08,250 INFO Processing service AVGIDSErHrvta, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSErHrw7a, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSDriverxpx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSFiltervtx, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSFiltervta, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AvgAdminServer, it can take several minutes... 2011-08-14 20:10:08,250 DEBUG Service avg8wd RegCleanup 2011-08-14 20:10:08,250 INFO Processing service AVGIDSDriverw7x, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSShimw7x, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSDriverw7a, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSErHrvtx, it can take several minutes... 2011-08-14 20:10:08,250 DEBUG Service AvgWFPx RegCleanup 2011-08-14 20:10:08,250 INFO Processing service avgwd, it can take several minutes... 2011-08-14 20:10:08,250 INFO Processing service AVGIDSErHrw7x, it can take several minutes... 2011-08-14 20:10:08,250 DEBUG Service AvgWFPa RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgMfx64 RegCleanup 2011-08-14 20:10:08,250 DEBUG Service avg9wd RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgLdx86 RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgRkx64 RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgTdiA RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgMfx86 RegCleanup 2011-08-14 20:10:08,250 DEBUG Service avg9emc RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgLdx64 RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgTdiX RegCleanup 2011-08-14 20:10:08,250 DEBUG Service avgfws RegCleanup 2011-08-14 20:10:08,250 DEBUG Service AvgRkx86 RegCleanup 2011-08-14 20:10:08,250 INFO Service AVGIDSShimvtx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSDrivervtx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSFilterxpx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSDrivervta is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSShimxpx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSFilterw7x is not installed 2011-08-14 20:10:08,250 DEBUG Service avgfws9 RegCleanup 2011-08-14 20:10:08,250 INFO Service AVGIDSFilterw7a is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSErHrxpx is not installed 2011-08-14 20:10:08,250 DEBUG Service AVGIDSAgent RegCleanup 2011-08-14 20:10:08,250 DEBUG Registry keys for service avg8wd are not present 2011-08-14 20:10:08,250 INFO Service AVGIDSErHrvta is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSFiltervtx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSFiltervta is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSDriverxpx is not installed 2011-08-14 20:10:08,250 INFO Service AVGIDSErHrw7a is not installed 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgWFPx are not present 2011-08-14 20:10:08,265 INFO Service AVGIDSShimw7x is not installed 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgWFPa are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgMfx64 are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service avg9wd are not present 2011-08-14 20:10:08,265 INFO Service AVGIDSDriverw7a is not installed 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgLdx86 are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgMfx86 are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgLdx64 are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgTdiA are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgTdiX are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service avg9emc are not present 2011-08-14 20:10:08,265 INFO Service AVGIDSErHrvtx is not installed 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgRkx86 are not present 2011-08-14 20:10:08,265 INFO Service AVGIDSErHrw7x is not installed 2011-08-14 20:10:08,265 INFO Service AVGIDSDriverw7x is not installed 2011-08-14 20:10:08,265 DEBUG Registry keys for service avgfws are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgRkx64 are not present 2011-08-14 20:10:08,265 INFO Service avgwd is not installed 2011-08-14 20:10:08,265 INFO Service AvgAdminServer is not installed 2011-08-14 20:10:08,265 DEBUG Service AVGIDSShimvtx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSDrivervtx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSFilterxpx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSDrivervta RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSShimxpx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSFilterw7x RegCleanup 2011-08-14 20:10:08,265 DEBUG Registry keys for service avgfws9 are not present 2011-08-14 20:10:08,265 DEBUG Service AVGIDSFilterw7a RegCleanup 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSAgent are not present 2011-08-14 20:10:08,265 DEBUG Service AVGIDSErHrxpx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSErHrvta RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSFiltervtx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSFiltervta RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSDriverxpx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSErHrw7a RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSShimw7x RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSDriverw7a RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSErHrvtx RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSErHrw7x RegCleanup 2011-08-14 20:10:08,265 DEBUG Service AVGIDSDriverw7x RegCleanup 2011-08-14 20:10:08,265 DEBUG Service avgwd RegCleanup 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSDrivervta are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSShimxpx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSFilterw7x are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSFilterxpx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSErHrvta are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSDrivervtx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSFiltervta are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSErHrw7x are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service avgwd are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSDriverw7x are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSErHrvtx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSShimw7x are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSErHrw7a are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSDriverw7a are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSFilterw7a are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSFiltervtx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSErHrxpx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSShimvtx are not present 2011-08-14 20:10:08,265 DEBUG Service AvgAdminServer RegCleanup 2011-08-14 20:10:08,265 DEBUG Registry keys for service AVGIDSDriverxpx are not present 2011-08-14 20:10:08,265 DEBUG Registry keys for service AvgAdminServer are not present 2011-08-14 20:10:08,296 INFO ***** Avg Fw NDIS driver(separate process) ***** 2011-08-14 20:10:08,375 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013) 2011-08-14 20:10:08,375 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013) 2011-08-14 20:10:08,375 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d) 2011-08-14 20:10:08,375 INFO Command line: "C:\Documents and Settings\Byte Me\Desktop\avg_remover_stf_x86_2011_1322.exe" /ndisonly /skipask 2011-08-14 20:10:08,375 WARN AvgDir param empty, but Remover found AvgDir at 'C:\Program Files\AVG\AVG10', use this path as default. 2011-08-14 20:10:08,375 WARN AvgAdminDir param empty. 2011-08-14 20:10:08,375 WARN AvgDataDir param empty, but Remover found AvgDataDir at 'C:\Documents and Settings\Byte Me\Application Data\AVG10', use this path as default. 2011-08-14 20:10:08,375 INFO AvgRemover runs in attempt number 1 2011-08-14 20:10:08,375 INFO ***** Avg Fw NDIS driver ***** 2011-08-14 20:10:08,375 INFO ...this operation can take several minutes... 2011-08-14 20:10:08,375 INFO FW removing policy 2011-08-14 20:10:08,562 INFO FW NDIS driver not present 2011-08-14 20:10:08,562 DEBUG Remove NDIS driver pass, next uninstalation step is 10, old was 1 2011-08-14 20:10:08,562 INFO ***** end of Fw NDIS separated process ***** 2011-08-14 20:10:08,562 INFO ***** Drivers ***** 2011-08-14 20:10:08,578 INFO ***** Running AVG process ***** 2011-08-14 20:10:09,765 INFO ***** Registry keys and values ***** 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present 2011-08-14 20:10:09,765 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found 2011-08-14 20:10:09,765 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found 2011-08-14 20:10:09,765 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found 2011-08-14 20:10:09,765 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found 2011-08-14 20:10:09,765 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify 2011-08-14 20:10:09,765 DEBUG Reading SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs failed (error: e001003d) 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify failed 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run 2011-08-14 20:10:09,765 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove 2011-08-14 20:10:09,765 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\CLSID\{6E801D47-45B7-4D10-8268-DBBD5C233F82} not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\AvgDiagFile 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\AvgDiagFile 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\.avgdi 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdi not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\.avgdx 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\.avgdx 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\.avgdx 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\.avgdx 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\.avgdx not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found 2011-08-14 20:10:09,765 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,765 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,781 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,781 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,781 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,781 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,781 INFO Processing registry SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\avgsbg.state 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\avgsbg.state 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\avgsbg.state.1 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\avgsbg.state.1 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\avgsbg.state.1 not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter.1 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\LinkScannerIE.NavFilter.1 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\LinkScannerIE.NavFilter.1 not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\MicroScanner.MicroScanner 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\MicroScanner.MicroScanner 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\MicroScanner.MicroScanner not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run 2011-08-14 20:10:09,796 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY Remove 2011-08-14 20:10:09,796 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY is not present 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run 2011-08-14 20:10:09,796 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY Remove 2011-08-14 20:10:09,796 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG_TRAY is not present 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\AppID\avgsbg.DLL 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL not found 2011-08-14 20:10:09,796 INFO Processing registry SOFTWARE\Classes\AppID\avgsbg.DLL 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SOFTWARE\Classes\AppID\avgsbg.DLL not found 2011-08-14 20:10:09,796 INFO Processing registry SYSTEM\ControlSet001\Control\GroupOrderList 2011-08-14 20:10:09,796 DEBUG Value SYSTEM\ControlSet001\Control\GroupOrderList:AVG Remove 2011-08-14 20:10:09,796 INFO Value SYSTEM\ControlSet001\Control\GroupOrderList:AVG is not present 2011-08-14 20:10:09,796 INFO Processing registry SYSTEM\ControlSet001\services\Avg 2011-08-14 20:10:09,796 DEBUG Key SYSTEM\ControlSet001\services\Avg ForceRemove 2011-08-14 20:10:09,796 DEBUG Key SYSTEM\ControlSet001\services\Avg not found 2011-08-14 20:10:09,796 INFO Processing registry SYSTEM\ControlSet001\services\Avgfwfd 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\Avgfwfd ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\Avgfwfd not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\AVG Security Toolbar Service 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVG Security Toolbar Service ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVG Security Toolbar Service not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\Avgfws 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\Avgfws ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\Avgfws not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSAgent 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSAgent ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSAgent not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSDriver 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSDriver ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSDriver not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSEH 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSEH ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSEH not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\AVGIDSFilter 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSFilter ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\AVGIDSFilter not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgldx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgldx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgldx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgldx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgldx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgldx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgmfx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgmfx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgmfx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgmfx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgmfx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgmfx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgrkx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgrkx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgrkx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgrkx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgrkx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgrkx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgtdia 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgtdia ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgtdia not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgtdix 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgtdix ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgtdix not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgwd 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgwd ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgwd not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgfwdx 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgfwdx ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgfwdx not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet001\services\avgfwda 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgfwda ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet001\services\avgfwda not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\Avg 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avg ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avg not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\Avgfwfd 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\AVG Security Toolbar Service 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\Avgfws 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avgfws ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\Avgfws not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSAgent 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSDriver 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSEH 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSFilter 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgldx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgldx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx64 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx86 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgtdia 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgtdia ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgtdia not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgtdix 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgtdix ForceRemove 2011-08-14 20:10:09,812 DEBUG Key SYSTEM\ControlSet002\services\avgtdix not found 2011-08-14 20:10:09,812 INFO Processing registry SYSTEM\ControlSet002\services\avgwd 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgwd ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgwd not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgfwdx 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgfwdx ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgfwdx not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgfwda 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgfwda ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgfwda not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\Avg 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avg ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avg not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\Avgfwfd 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avgfwfd not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\AVG Security Toolbar Service 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVG Security Toolbar Service not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\Avgfws 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avgfws ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\Avgfws not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSAgent 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSAgent not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSDriver 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSDriver not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSEH 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSEH not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\AVGIDSFilter 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\AVGIDSFilter not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgldx64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgldx64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgldx86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgldx86 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgmfx86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgmfx86 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgrkx64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgrkx86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgrkx86 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgtdia 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgtdia ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgtdia not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgtdix 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgtdix ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgtdix not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet002\services\avgwd 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgwd ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet002\services\avgwd not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGFWS not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIA not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVG9WD failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVERXPX not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSERHRXPX not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIMXPX not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGFWS not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSAGENT failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVER failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSEH failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSFILTER failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSSHIM failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86 ForceRemove 2011-08-14 20:10:09,828 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX86 failed (error e0010058) 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64 ForceRemove 2011-08-14 20:10:09,828 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGLDX64 not found 2011-08-14 20:10:09,828 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64 ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGMFX64 not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64 ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGRKX64 not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIX failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA ForceRemove 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGTDIA not found 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGWD failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD 2011-08-14 20:10:09,843 DEBUG Key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD ForceRemove 2011-08-14 20:10:09,843 WARN Deleting key SYSTEM\ControlSet001\Enum\Root\LEGACY_AVG9WD failed (error e0010058) 2011-08-14 20:10:09,843 INFO Processing registry SYSTEM\ControlSet001\Enum\Root\LEGACY_AVGIDSDRIVERXPX Part 2 Next of AVG removal trial:
  11. I just finished running the flash drive test: It was attached to my HUB, I hope that didn't screw things up. ComboFix 11-08-12.01 - Byte Me 08/12/2011 20:10:42.6.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.423 [GMT -4:00] Running from: c:\documents and settings\Byte Me\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . ((((((((((((((((((((((((( Files Created from 2011-07-13 to 2011-08-13 ))))))))))))))))))))))))))))))) . . 2011-07-25 06:43 . 2011-07-25 06:43 -------- d-----w- c:\documents and settings\Byte Me\Local Settings\Application Data\Privatefirewall 2011-07-25 06:39 . 2011-07-25 06:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Privacyware 2011-07-23 06:22 . 2011-07-23 06:24 -------- d-----w- c:\documents and settings\Byte Me\Application Data\QuickScan 2011-07-22 02:49 . 2011-07-22 02:49 -------- d-----w- c:\documents and settings\Byte Me\Application Data\SUPERAntiSpyware.com 2011-07-22 02:49 . 2011-07-22 02:49 -------- d-----w- c:\program files\SUPERAntiSpyware 2011-07-20 20:42 . 2011-07-20 20:42 -------- d-----w- c:\documents and settings\Byte Me\Application Data\Malwarebytes 2011-07-20 20:41 . 2011-07-06 23:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-20 20:41 . 2011-07-20 20:41 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2011-07-20 20:41 . 2011-07-20 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-07-20 20:41 . 2011-07-06 23:52 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-16 06:46 . 2011-07-16 06:46 -------- d-----w- c:\documents and settings\Byte Me\Application Data\PKWARE 2011-07-16 06:46 . 2011-07-16 06:46 -------- d-----w- c:\documents and settings\All Users\Application Data\PKWARE 2011-07-16 06:40 . 2011-08-12 22:11 -------- d-----w- c:\documents and settings\Byte Me\Local Settings\Application Data\Downloaded Installations . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-08-11 04:21 . 2011-06-18 20:45 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-15 13:29 . 2002-08-29 12:00 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02 . 2002-08-29 12:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-07-04 11:43 . 2011-07-11 01:03 40112 ----a-w- c:\windows\avastSS.scr 2011-07-04 11:43 . 2011-07-11 01:03 199304 ----a-w- c:\windows\system32\aswBoot.exe 2011-07-04 11:36 . 2011-07-11 01:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2011-07-04 11:36 . 2011-07-11 01:04 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys 2011-07-04 11:35 . 2011-07-11 01:03 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2011-07-04 11:35 . 2011-07-11 01:03 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2011-07-04 11:35 . 2011-07-11 01:03 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys 2011-07-04 11:32 . 2011-07-11 01:04 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2011-07-04 11:32 . 2011-07-11 01:03 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2011-07-04 11:32 . 2011-07-11 01:04 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2011-06-26 03:47 . 2011-06-26 03:47 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys 2011-06-26 03:47 . 2011-06-26 03:47 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe 2011-06-24 14:10 . 2005-11-25 06:43 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-06-23 18:36 . 2005-06-18 04:49 916480 ----a-w- c:\windows\system32\wininet.dll 2011-06-23 18:36 . 2002-08-29 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-23 18:36 . 2002-08-29 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-06-23 12:05 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec 2011-06-20 17:44 . 2002-08-29 12:00 293376 ----a-w- c:\windows\system32\winsrv.dll 2011-06-18 22:20 . 2011-06-18 22:20 99965 ----a-w- c:\windows\UninstallThunderbird.exe 2011-06-02 14:02 . 2002-08-29 12:00 1858944 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-07-04 11:43 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "nwiz"="nwiz.exe" [2006-10-22 1622016] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2010-1-21 2057536] WDSmartWare.lnk - c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe [2010-1-21 9136960] Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904] . c:\documents and settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [N/A] . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^desktop.ini] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\desktop.ini backup=c:\windows\pss\desktop.iniCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Exif Launcher.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Exif Launcher.lnk backup=c:\windows\pss\Exif Launcher.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HOTSYNCSHORTCUTNAME.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HOTSYNCSHORTCUTNAME.lnk backup=c:\windows\pss\HOTSYNCSHORTCUTNAME.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NETGEAR WNA1000M Smart Wizard.lnk] path=c:\documents and settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA1000M Smart Wizard.lnk backup=c:\windows\pss\NETGEAR WNA1000M Smart Wizard.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2006-10-22 16:22 7700480 ----a-w- c:\windows\system32\nvcpl.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2006-10-22 16:22 86016 ----a-w- c:\windows\system32\nvmctray.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2006-10-22 16:22 1622016 ----a-w- c:\windows\system32\nwiz.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-11-11 04:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\REGSHAVE] 2002-02-05 03:32 53248 ----a-w- c:\program files\REGSHAVE\Regshave.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMRUBottedTray] 2008-11-06 16:33 288088 ----a-w- c:\program files\Trend Micro\RUBotted\TMRUBottedTray.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Yahoo! Pager"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" -quiet "Aim6"= . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\WINDOWS\\system32\\dplaysvr.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Mozilla Thunderbird\\thunderbird.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe"= "c:\\Program Files\\Malwarebytes' Anti-Malware\\mbamservice.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "135:TCP"= 135:TCP:DCOM(135) . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7/10/2011 9:03 PM 441176] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7/10/2011 9:04 PM 309848] R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/12/2011 5:55 PM 12880] R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 5:55 PM 67664] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/10/2011 9:04 PM 19544] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [7/20/2011 4:41 PM 366640] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [8/18/2008 9:34 PM 24652] R2 WDDMService;WD SmartWare Drive Manager;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [1/21/2010 4:24 PM 110592] R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [6/16/2009 8:58 AM 20480] R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [2/27/2008 10:54 AM 20480] R3 brfilt;Brother MFC Filter Driver;c:\windows\system32\drivers\BrFilt.sys [11/26/2005 3:00 AM 2944] R3 BrSerWDM;Brother WDM Serial driver;c:\windows\system32\drivers\BrSerWdm.sys [11/26/2005 3:00 AM 60416] R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\system32\drivers\BrUsbMdm.sys [11/26/2005 3:00 AM 11008] R3 BrUsbScn;Brother MFC USB Scanner driver;c:\windows\system32\drivers\BrUsbScn.sys [11/26/2005 3:00 AM 10368] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [7/20/2011 4:41 PM 22712] R3 TMPassthruMP;TMPassthruMP;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 ICDUSB3;ICDUSB3;c:\windows\system32\drivers\ICDUSB3.sys [6/28/2009 1:17 PM 11264] S3 lne100v5;Linksys LNE100TX(v5) Fast Ethernet Adapter;c:\windows\system32\drivers\lne100v5.sys [11/26/2005 4:27 AM 36013] S3 RTL8192cu;NETGEAR WNA1000M N150 Wireless USB Micro Adapter;c:\windows\system32\DRIVERS\WNA1000M.sys --> c:\windows\system32\DRIVERS\WNA1000M.sys [?] S3 ssmirrdr;ssmirrdr;c:\windows\system32\drivers\ssmirrdr.sys [5/5/2011 9:29 AM 10112] S3 TMPassthru;Trend Micro Passthru Ndis Service;c:\windows\system32\drivers\TMPassthru.sys [11/30/2009 8:44 PM 206608] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [6/21/2011 11:45 PM 11520] . . ------- Supplementary Scan ------- . uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 uStart Page = hxxp://www.google.com/ uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com Trusted Zone: akamai.net\a248.e Trusted Zone: bitdefender.com\www Trusted Zone: netflame.cc\ssl-hints TCP: DhcpNameServer = 207.69.188.186 207.69.188.187 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://download.ewido.net/ewidoOnlineScan.cab FF - ProfilePath - c:\documents and settings\Byte Me\Application Data\Mozilla\Firefox\Profiles\vbxyk99m.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo! Search FF - prefs.js: browser.startup.homepage - hxxp://google.com FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Move Media Player: moveplayer@movenetworks.com - %profile%\extensions\moveplayer@movenetworks.com FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - Ext: Ghostery: firefox@ghostery.com - %profile%\extensions\firefox@ghostery.com FF - Ext: AVG Safe Search: {1E73965B-8B48-48be-9C8D-68B920ABC1C4} - c:\program files\AVG\AVG10\Firefox4 FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\AVAST Software\Avast\WebRep\FF . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-08-12 20:19 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-1177238915-73586283-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(952) c:\program files\SUPERAntiSpyware\SASWINLO.DLL c:\windows\system32\WININET.dll . - - - - - - - > 'explorer.exe'(3884) c:\windows\system32\WININET.dll c:\windows\system32\ieframe.dll c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . Completion time: 2011-08-12 20:24:28 ComboFix-quarantined-files.txt 2011-08-13 00:24 ComboFix2.txt 2011-08-06 00:57 . Pre-Run: 294,824,329,216 bytes free Post-Run: 294,816,706,560 bytes free . - - End Of File - - 9C37599D5DC24FF74C52F67178BFD48D
  12. I tried to edit my last post when I found the file in the recycle bin. It was PKUNZIP 12.51 so I restored it to the proper spot so I could continue with the instructions you provided. Sorry for the confusion. I hate when I do things like that.
  13. Sorry so late getting back to you, I had a death in the family (pet). I was doing a trial run making sure I knew where the folders were, and C:\documents and settings\byte me\local settings\application data\Downloaded Installations is totally empty. I tried checking the show all hidden files and folders and it did not help. The other file does exist. Do you wish for me to change anything or just skip the empty folder? Thanks again for your help!
  14. How large of a flash drive do I need? The only one available is 2 gig and it was infected. I used Flash Disinfector" to remove what was there but want to know if you think it is now safe to use. As far as zipping...I screwed that up last time with the PKWARE. How do I zip the files and what do I use? Also, how do I get rid of the system restore points? I never did that before, and that is probably why I have so many. I have been experimenting with the Avast Free settings as I don't know if I have them set right. I have read the forums extensively and the support page, but there was very little guidance. Is it best to have the heuristics on the highest setting? One last thing...I had removed AVG with the removal tool and the one thing it did not remove was the AVG toolbar. I will try your link since some remnants must remain from what you say. I have an appointment this afternoon and will do as you request when I return. Thanks again for your continued support.
  15. Re-hi, I deleted the file you requested, removed combofix by following your instructions, rebooted (held my breath), and when my desktop came back, I updated Avast and ran a full scan. The same things seem to be keeping Avast from giving me a clean bill of health. I have 15 new screen shots which I have attached. Thank you for your assistance and support while it gets sorted out.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.