Hi, sorry for the delay. The sound is no longer there. I had removed the Longtail video folder (JW Player) that housed the Conduit toolbar which I didn't like and the sound stopped. Coincidence? Anyway, continuing to post results of scans:
Malewarebytes:
Malwarebytes Anti-Malware (PRO) 1.62.0.1300
www.malwarebytes.org
Database version: v2012.08.08.11
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Randy :: SUPERNAT-F2B3B3 [administrator]
Protection: Enabled
8/8/2012 5:42:14 PM
mbam-log-2012-08-08 (17-42-14).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 672936
Time elapsed: 3 hour(s), 30 minute(s), 6 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 13
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0092995.exe (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093001.exe (RiskWare.Tool.CK) -> Quarantined and deleted
successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093008.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093249.exe (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093266.exe (RiskWare.Tool.CK) -> Quarantined and deleted
successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093272.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093589.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093595.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0093607.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0094514.exe (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0094520.exe (RiskWare.Tool.CK) -> Quarantined and deleted
successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0094528.exe (RiskWare.Tool.CK) -> Quarantined and deleted
successfully.
C:\System Volume Information\_restore{91D7D715-6BE0-46B2-9820-24FE9608BCCC}\RP374\A0094727.EXE (Dont.Steal.Our.Software) -> Quarantined and
deleted successfully.
(end)
_ _ _ _ _ _ _ _
Mini-Toolbox:
MiniToolBox by Farbar Version: 23-07-2012
Ran by Randy (administrator) on 12-08-2012 at 10:40:13
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 secure.tune-up.com
========================= IP Configuration: ================================
1394 Net Adapter = 1394 Connection (Connected)
Intel® 82562V-2 10/100 Network Connection = Local Area Connection (Connected)
# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip
# Interface IP Configuration for "Local Area Connection"
set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
popd
# End of interface IP configuration
Windows IP Configuration Host Name . . . . . . . . . . . . : supernat-f2b3b3 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : BelkinEthernet adapter Local Area Connection: Connection-specific DNS Suffix . : Belkin Description . . . . . . . . . . . : Intel® 82562V-2 10/100 Network Connection Physical Address. . . . . . . . . : 00-1D-09-8C-46-04 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.2.6 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.2.1 DHCP Server . . . . . . . . . . . : 192.168.2.1 DNS Servers . . . . . . . . . . . : 192.168.2.1 Lease Obtained. . . . . . . . . . : Sunday, August 12, 2012 7:35:59 AM Lease Expires . . . . . . . . . . : Monday, January 18, 2038 11:14:07 PMServer: UnKnown
Address: 192.168.2.1
Name: google.com
Addresses: 74.125.137.138, 74.125.137.102, 74.125.137.139, 74.125.137.100
74.125.137.113, 74.125.137.101
Pinging google.com [173.194.37.64] with 32 bytes of data:Reply from 173.194.37.64: bytes=32 time=28ms TTL=54Reply from 173.194.37.64: bytes=32 time=28ms TTL=54Ping statistics for 173.194.37.64: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 28ms, Maximum = 28ms, Average = 28msServer: UnKnown
Address: 192.168.2.1
Name: yahoo.com
Addresses: 209.191.122.70, 72.30.38.140, 98.139.183.24
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:Reply from 98.139.183.24: bytes=32 time=167ms TTL=49Reply from 98.139.183.24: bytes=32 time=90ms TTL=49Ping statistics for 98.139.183.24: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 90ms, Maximum = 167ms, Average = 128msServer: UnKnown
Address: 192.168.2.1
Name: bleepingcomputer.com
Address: 208.43.87.2
Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:Reply from 208.43.87.2: Destination host unreachable.Reply from 208.43.87.2: Destination host unreachable.Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1d 09 8c 46 04 ...... Intel® 82562V-2 10/100 Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.6 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.2.6 192.168.2.6 20
192.168.2.0 255.255.255.0 192.168.2.6 192.168.2.6 20
192.168.2.6 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.2.255 255.255.255.255 192.168.2.6 192.168.2.6 20
224.0.0.0 240.0.0.0 192.168.2.6 192.168.2.6 20
255.255.255.255 255.255.255.255 192.168.2.6 192.168.2.6 1
Default Gateway: 192.168.2.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (11/21/2011 01:45:43 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:45:42 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:45:41 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:45:41 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:45:40 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:45:39 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Error 1500.Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:44:21 PM) (Source: MsiInstaller) (User: SUPERNAT-F2B3B3)SUPERNAT-F2B3B3
Description: Product: Adobe Photoshop Elements 10 -- Please install/uninstall the product using Setup.exe in the root folder.(NULL)(NULL)(NULL)(NULL)
Error: (11/21/2011 01:36:54 PM) (Source: Application Hang) (User: )
Description: Hanging application msiexec.exe, version 4.5.6001.22159, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (11/21/2011 01:22:11 PM) (Source: Application Hang) (User: )
Description: Hanging application CORE10k.EXE, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (11/17/2011 08:48:21 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module unknown, version 0.0.0.0, fault address 0x8424b48b.
Processing media-specific event for [iexplore.exe!ws!]
System errors:
=============
Error: (10/30/2011 11:51:39 AM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/29/2011 01:44:17 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/28/2011 09:30:33 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/28/2011 09:04:16 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/28/2011 04:17:55 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/28/2011 01:27:34 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/28/2011 09:50:05 AM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/27/2011 06:07:17 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/27/2011 03:18:42 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (10/27/2011 01:08:34 PM) (Source: DCOM) (User: SUPERNAT-F2B3B3)
Description: DCOM got error "%%1058" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Microsoft Office Sessions:
=========================
Error: (07/30/2012 02:10:22 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1217 seconds with 120 seconds of active time. This session ended with a crash.
Error: (07/01/2012 02:29:49 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 56 seconds with 0 seconds of active time. This session ended with a crash.
Error: (06/14/2012 10:16:28 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 43 seconds with 0 seconds of active time. This session ended with a crash.
Error: (06/07/2012 08:55:19 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 47 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/02/2012 09:24:41 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 48 seconds with 0 seconds of active time. This session ended with a crash.
Error: (01/02/2012 01:12:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 148 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/11/2011 05:05:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 47 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/22/2011 06:47:06 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5 seconds with 0 seconds of active time. This session ended with a crash.
Error: (10/25/2011 00:06:16 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time. This session ended with a crash.
Error: (10/25/2011 10:52:34 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
=========================== Installed Programs ============================
32 Bit HP CIO Components Installer (Version: 7.1.8)
3D Male Characters for The Logo Creator 6.0 (Version: 6.0)
7-Zip 9.20
AccmeWare FileBulldog Toolbar
Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.3)
Adobe AIR (Version: 3.3.0.3650)
Adobe Audition CS5.5 (Version: 4.0)
Adobe Creative Suite 6 Master Collection (Version: 6)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.3.300.268)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Help Manager (Version: 4.0.244)
Adobe Photoshop Elements 10 (Version: 10.0)
Adobe Photoshop Elements 9 (Version: 9.0.3.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Akamai NetSession Interface
Amazon Kindle
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Antares Auto-Tune v4.39
AnyDVD (Version: 6.8.4.2)
AnySync (Version: 6.5)
AnyTime Organizer (Version: 13)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Atmosphere Deluxe v7.1
Audacity 1.2.6
Audiograbber 1.83 SE (Version: 1.83 SE )
Audiograbber MP3 Plugin (Version: 1.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.1913)
BenVista PhotoArtist 2.0.8 (Version: 2.0.8)
bl (Version: 1.0.0)
BoldChat v7.15 (Version: 7.15.4567)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 140.0.212.000)
C309g-m (Version: 140.0.690.000)
calibre (Version: 0.8.61)
CCleaner (Version: 3.21)
CCScore (Version: 8.02.0000.0001)
Cepstral Whispery 5.1.0 (Version: 5.1.0)
CloneDVD2 (Version: 2.9.2.8)
CoffeeCup Animation Studio
CoffeeCup Direct FTP (Version: 3.9.1995)
CoffeeCup Flash FireStarter
CoffeeCup Flash Menu Builder
CoffeeCup HTML Editor
CoffeeCup LockBox
CoffeeCup MP3 Rip & Burn
CoffeeCup Photo Gallery
CoffeeCup PixConverter
CoffeeCup Sitemapper
CoffeeCup Web Form Builder
CoffeeCup Web Form Builder (Version: 2.1.4462)
CoffeeCup Web Form Builder Lite (Version: 1.0.3033)
CoffeeCup Web Video Player
CoffeeCup Website Access Manager
CoffeeCup Website Color Schemer
ColorPic (Version: 4.1)
Cool MP3 Splitter 2.02
Defraggler (Version: 2.10)
Delete Duplicate Files 4.6
Dell Resource CD (Version: 1.00.0000)
Desktop Player (Version: 1.00.0000)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DFX for Windows Media Player (Version: 9.304.0.0)
Dragon NaturallySpeaking 11 (Version: 11.50.100)
Driver Genius Professional Edition (Version: 10.0)
Dropbox (Version: 1.4.9)
Edirol HQ Orchestral VSTi v1.03
Elements 10 Organizer (Version: 10.0)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
ESET Online Scanner v3
ESSBrwr (Version: 8.02.0000.0001)
ESSCDBK (Version: 8.03.0000.0001)
ESScore (Version: 8.03.0000.0001)
ESSgui (Version: 8.03.0000.0001)
ESSini (Version: 8.02.0000.0001)
ESSPCD (Version: 8.02.0000.0001)
ESSPDock (Version: 6.03.0001.0004)
ESSTOOLS (Version: 5.00.0000.0004)
essvatgt (Version: 8.00.0000.0001)
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
FileHippo.com Update Checker
FileZilla Client 3.5.3 (Version: 3.5.3)
FinePrint (Version: 6.25)
Firebird SQL Server - MAGIX Edition (Version: 2.1.31.0)
Free Audio Recorder 6.5.6
Free M4a to MP3 Converter 7.0
GoodSync (Version: 8.7.6.6)
Google Chrome (Version: 21.0.1180.75)
Google Drive (Version: 1.3.3209.2688)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
GoToMeeting 4.8.0.723 (Version: 4.8.0.723)
GPBaseService2 (Version: 140.0.211.000)
Graffi's Splitter 10.1
Hal Text-to-Speech with NeoSpeech VoiceText (Version: 1.03.0000)
Horizons - 1.00.06
Horizons - 1.00.08
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Premium C309g-m All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.002.002.002)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
Inkscape 0.48.2 (Version: 0.48.2)
Intel® Graphics Media Accelerator Driver (Version: 0.0.0.0000)
Intel® PRO Network Connections 12.1.12.0 (Version: )
Internet Download Manager
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 10.6.3.25)
iZotope Ozone 4 (Version: 4.00)
iZotope Vinyl (Version: 1.61)
j2 Messenger (Version: 4.4.0.515)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Kepler 7.0
Kindle PC Converter (Version: )
Kodak EasyShare software
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
LogoDesignSuite
LongTailVideo Toolbar (Version: 6.9.0.16)
Magic Bullet Quick Looks (for MAGIX) (Version: 1.0.0)
MAGIX Audio Cleaning Lab 16 deluxe Download Version (Version: 16.0.0.0)
MAGIX Movie Edit Pro 17 Plus (Version: 10.0.0.33)
MAGIX Movie Edit Pro 17 Plus Video Plugins (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium (Red Giant Magic Bullet Quick Looks) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium (Video Plugins) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Demo project) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Design elements) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Fade effects) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Individual menu templates) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Introductory videos) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Menu templates 1) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Menu templates 2) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (movie templates) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (NewBlueFX Light Blends) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (proDAD Adorage starter package) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (proDAD VitaScene 2 MAGIX Edition) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Slideshow Maker styles 1) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Slideshow Maker styles 2) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Soundtrack Maker styles) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (title effects) (Version: 1.0.0.0)
MAGIX Movie Edit Pro MX Premium Download Version (Version: 11.0.1.4)
MAGIX Music Maker 17 Premium (Demo songs) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Instrument package 1) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Instrument package 2) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Instrument package 3) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Introductory videos) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Sound package) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium (Synthesizer and effects) (Version: 1.0.0.0)
MAGIX Music Maker 17 Premium Download Version (Version: 17.0.0.16)
MAGIX Music Maker MX Production Suite Download Version (Demo songs) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 1) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 2) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 3) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 4) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 5) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Instrument package 6) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Introductory videos) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Sound package) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Synthesizer and effects) (Version: 1.0.0.0)
MAGIX Music Maker MX Production Suite Download Version (Version: 18.0.1.11)
MAGIX Music Maker MX Production Suite Download Version (Visuals) (Version: 1.0.0.0)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Speed 2 (MSI) (Version: 6.0.1.2)
MAGIX Speed burnR (MSI) (Version: 7.0.1.27)
MAGIX Vita Solo Instruments (Century Keys) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Jazz Drums) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Saxophonia) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Space Pad) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Upright Bass) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Vibraphone) for MAGIX Music Maker 17 Premium Download Version (Version: 1.1.0.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 140.0.212.000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft ActiveSync (Version: 4.5.5096.0)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Basic 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WinUsb 1.0
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Mind Stereo 1.1.3
Mind Stereo Visualizations Pack 1.1.2
Mind WorkStation 1.3.4
Mind WorkStation Visualizations Pack 1.0
Mindjet MindManager 2012 (Version: 10.0.445)
MiniTool Partition Wizard Home Edition 7.5
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MP4/M4A Plugin (Free/GPL) 1.1, install for Neuro-Programmer 3
MP4/M4A Plugin (Free/GPL), install for Mind WorkStation 1.3.4
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MSXML 6.0 Parser (Version: 6.00.3883.15)
netbrdg (Version: 7.01.0000.0001)
Network (Version: 140.0.215.000)
Neuro-Programmer 2.5.4
Neuro-Programmer 3 Visualizations Pack 1.0
Neuro-Programmer 3.1.4
NewBlue 3D Explosions for Windows (Version: 1.4)
NewBlue 3D Transformations for Windows (Version: 1.4)
NewBlue Art Blends for Windows (Version: 2.4)
NewBlue Art Effects for Windows (Version: 2.4)
NewBlue Film Effects for Windows (Version: 1.4)
NewBlue Free Effects for Windows (Version: 1.4)
NewBlue Light Effects for Windows (Version: 1.4)
NewBlue Motion Blends for Windows (Version: 2.4)
NewBlue Motion Effects for Windows (Version: 2.4)
NewBlue Paint Blends for Windows (Version: 1.4)
NewBlue Paint Effects for Windows (Version: 1.4)
NewBlue Sampler Pack for Windows (Version: 1.4)
NewBlue Stabilizer for Windows (Version: 1.4)
NewBlue Video Essentials for Windows (Version: 1.4)
NewBlue Video Essentials II for Windows (Version: 1.4)
NewBlue Video Essentials III for Windows (Version: 1.4)
NewBlue Video Essentials IV for Windows (Version: 1.4)
OfotoXMI (Version: 8.03.0000.0001)
Olympus Digital Wave Player
palmOne (Version: 4.1.0420)
PDF-XChange 3
PDF Settings CS6 (Version: 11.0)
pdfFactory Pro (Version: 4.50)
Personal Numerologist 5.0.9 (Version: 5.0.9)
ph (Version: 1.0.0)
Picture Merge Genius 2.8.1
Power CD+G Filter
PowerISO
proDAD Adorage 3.0 (Version: 3.0.92)
proDAD Vitascene 2.0 (Version: 2.0.112)
PRS-500 USB driver (Version: 1.0.00.08110)
PS_AIO_06_C309g-m_SW_Min (Version: 140.0.690.000)
PSE10 STI Installer (Version: 10.0)
QuickTime (Version: 7.72.80.56)
QuickTransfer (Version: 140.0.98.000)
Reader Library by Sony (Version: 3.3.00.07130)
Realtek High Definition Audio Driver (Version: 5.10.0.5408)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.650.0)
Scan (Version: 140.0.80.000)
Seagate Dashboard (Version: 1.1.0.1421)
SFR (Version: 8.01.0000.0001)
SHARM 4
SHASTA (Version: 7.01.0000.0001)
Shop for HP Supplies (Version: 14.0)
skin0001 (Version: 8.02.0000.0001)
SKINXSDK (Version: 8.02.0000.0001)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
SmartSound Common Data (Version: 1.1.0)
SmartSound Sonicfire Pro 5 (Version: 5.7.1)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Sonarca Sound Recorder XiFi 3.8.3
Sothink Logo Maker (Version: 3.2)
Sothink SWF Decompiler (Version: 6.1)
Sothink SWF Quicker (Version: 4.0)
Sound Forge Pro 10.0 (Version: 10.0.368)
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 4.6 (Version: 4.6.0)
staticcr (Version: 8.02.0000.0001)
Status (Version: 140.0.212.000)
Style Master 4.6 (Version: 4.6.0)
SUPERAntiSpyware (Version: 5.5.1006)
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
TeamViewer 7 (Version: 7.0.12979)
Text-To-Speech-Runtime (Version: 1.0.0.0)
TextAloud 3.0 (Version: 3.0)
The Action Machine 3
The Flash Ad Creator v2
The Flash Ad Creator v2.6
The Logo Creator v5
The Logo Creator v5.2
Tinnitus Masker Deluxe 7.1
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
TuneUp Utilities 2011 (Version: 10.0.4320.13)
TuneUp Utilities Language Pack (en-GB) (Version: 10.0.4320.13)
Universal Extractor 1.6.1 (Version: 1.6.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking (Version: 11.0.0)
Visual Site Designer (Version: 7.0.76)
VLC media player 2.0.3 (Version: 2.0.3)
VPRINTOL (Version: 8.02.0000.0001)
VT-Bridget-M16-SAPI5 (Version: 3.11.1.0)
Weather Watcher Live (Version: Weather Watcher Live (Build: 9/28/11))
Web Calendar
Web Image Studio (Version: 1.1.3659)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 140.0.212.017)
Win*Star 2.05.05 Install
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Driver Package - Sony Corporation (PRSUSB) USB (08/08/2006 1.0.03.08080) (Version: 08/08/2006 1.0.03.08080)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell™ 1.0 (Version: 2)
WinRAR archiver
WIRELESS (Version: 8.02.0000.0001)
WOW Love
Xara Designer Pro 6 (Version: 6.1.1.13205)
Xara Designer Pro 6 Content Pack (Version: 1.0.0.0)
Xara Designer Pro 7 (MAGIX PanoramaStudio 2) (Version: 1.3.0.0)
Xara Designer Pro 7 (Version: 7.1.1.17261)
Xara Designer Pro 7 Content Pack (Version: 1.9.0.0)
Xara Web Designer 7 (Version: 7.1.2.18332)
Xara Web Designer 7 Content Pack (Version: 1.0.2.0)
Xilisoft MP3 CD Burner 6 (Version: 6.2.0.0331)
Yahoo! Toolbar
YouSendIt Express (Version: 2.11.2)
YouSendIt Plug-in for Outlook (Version: 2.15.0)
========================= Memory info: ===================================
Percentage of memory in use: 31%
Total physical RAM: 3317.1 MB
Available physical RAM: 2267.98 MB
Total Pagefile: 5201.15 MB
Available Pagefile: 3969.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 1967.02 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:298.04 GB) (Free:140.43 GB) NTFS
3 Drive e: (FreeAgent GoFlex Drive) (Fixed) (Total:1863.01 GB) (Free:478.56 GB) NTFS
4 Drive f: () (Removable) (Total:0.24 GB) (Free:0.12 GB) FAT
========================= Users: ========================================
User accounts for \\SUPERNAT-F2B3B3
Administrator ASPNET Guest
HelpAssistant Randy SUPPORT_388945a0
**** End of log ****
_ _ _ __ __ _ _ _
FSS
Farbar Service Scanner Version: 06-08-2012
Ran by Randy (administrator) on 12-08-2012 at 10:44:47
Running from "C:\Documents and Settings\Randy\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
System Restore:
============
System Restore Disabled Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
Extra List:
=======
Avgfwfd(8) Avgtdix(9) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x09000000050000000100000002000000030000000400000008000000090000000600000007000000
IpSec Tag value is correct.
**** End of log ****
_ _ _ _ _ _ _ _ _
Adware Cleaner:
# AdwCleaner v1.800 - Logfile created 08/12/2012 at 10:51:53
# Updated 01/08/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Randy - SUPERNAT-F2B3B3
# Running from : C:\Documents and Settings\Randy\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
Stopped & Deleted : vToolbarUpdater11.2.0
***** [Files / Folders] *****
Folder Deleted : C:\Documents and Settings\Randy\Local Settings\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\Randy\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Randy\Local Settings\Application Data\LongTailVideo
Folder Deleted : C:\Documents and Settings\Randy\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\Randy\Application Data\Mozilla\Firefox\Profiles\5eftda6s.default\extensions\avg@toolbar
Folder Deleted : C:\Documents and Settings\Randy\Application Data\Mozilla\Firefox\Profiles\5eftda6s.default\extensions\staged
Folder Deleted : C:\Documents and Settings\All Users\Application Data\AVG Secure Search
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\LongTailVideo
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
***** [Registry] *****
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\LongTailVideo
Key Deleted : HKCU\Software\Smartbar
Key Deleted : HKCU\Software\Somoto Toolbar
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\LongTailVideo
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LongTailVideo Toolbar
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Wise Solutions
***** [Registre - GUID] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C52A8505-B703-44AE-9C74-2EB07FD0FF2E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{662379C1-C1BF-4173-BA52-FB63B89301AB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1BCEC53B-AA13-4DE2-814D-2D6A98E7BA79}]
***** [Internet Browsers] *****
-\\ Internet Explorer v8.0.6001.18702
[OK] Registry is clean.
-\\ Mozilla Firefox v12.0 (en-US)
Profile name : default
File : C:\Documents and Settings\Randy\Application Data\Mozilla\Firefox\Profiles\5eftda6s.default\prefs.js
C:\Documents and Settings\Randy\Application Data\Mozilla\Firefox\Profiles\5eftda6s.default\user.js ... Deleted !
Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("extensions.facemoods.DNSErrUrl", "hxxp://start.facemoods.com/?a=drive&f=5");
Deleted : user_pref("extensions.facemoods.aflt", "drive");
Deleted : user_pref("extensions.facemoods.dfltSrch", false);
Deleted : user_pref("extensions.facemoods.dnsErr", false);
Deleted : user_pref("extensions.facemoods.firstRun", true);
Deleted : user_pref("extensions.facemoods.hmpg", false);
Deleted : user_pref("extensions.facemoods.hmpgUrl", "hxxp://start.facemoods.com/?a=drive");
Deleted : user_pref("extensions.facemoods.id", "e4ca6537000000000000001d098c4604");
Deleted : user_pref("extensions.facemoods.instlDay", "15323");
Deleted : user_pref("extensions.facemoods.mntz", "");
Deleted : user_pref("extensions.facemoods.newTab", false);
Deleted : user_pref("extensions.facemoods.prtnrId", "facemoods.com");
Deleted : user_pref("extensions.facemoods.searchProviderAdded", false);
Deleted : user_pref("extensions.facemoods.sid", "5e6bd601abc84ce49918d7459dc1c3e3");
Deleted : user_pref("extensions.facemoods.tlbrSrchUrl", "hxxp://start.facemoods.com/?a=drive&f=3");
Deleted : user_pref("extensions.facemoods.vrsn", "1.4.17.11");
Deleted : user_pref("keyword.URL", "hxxp://isearch.avg.com/search?cid=%7Bd0f75153-167d-4308-b4cf-6e5a30d44ec8%[...]
-\\ Google Chrome v21.0.1180.75
File : C:\Documents and Settings\Randy\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
Deleted : "path": "C:\\Program Files\\Common Files\\AVG Secure Search\\SiteSafetyInstaller\\11.0.2\\\[...]
*************************
AdwCleaner[R1].txt - [8752 octets] - [12/08/2012 10:49:38]
AdwCleaner[R2].txt - [8812 octets] - [12/08/2012 10:51:46]
AdwCleaner[S1].txt - [9065 octets] - [12/08/2012 10:51:53]
########## EOF - C:\AdwCleaner[S1].txt - [9193 octets] ##########
That's it!
Thank you.
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Back to top
