Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HTJ Log


  • This topic is locked This topic is locked
13 replies to this topic

#1 samuel3

samuel3

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 10 April 2009 - 08:16 PM

Checking seeing if everything is ok?

Hope this is fine.

Please tell me if there is anything that needs clearing up.


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:13:59, on 11/04/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.thetechguys.com/welcome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

--
End of file - 3155 bytes

BC AdBot (Login to Remove)

 


#2 KoanYorel

KoanYorel

    Bleepin' Conundrum


  • Members
  • 19,461 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:65 miles due East of the "Logic Free Zone", in Md, USA
  • Local time:06:30 PM

Posted 24 April 2009 - 12:54 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

R,
K
The only easy day was yesterday.

...some do, some don't; some will, some won't (WR)

#3 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 27 April 2009 - 04:04 PM

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:02:52, on 27/04/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.thetechguys.com/welcome
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

--
End of file - 3000 bytes


This is the new HTJ incase ive changed lots since the 11th <.<

#4 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 27 April 2009 - 07:27 PM

Howdy, my name is Hoov, and I will be helping you with your dilemma.

Please make sure you watch this thread for responses. If you click the options tab at the top of your first post, you can select to track this thread.

Here is what I am asking you to do during the repair of your computer

*Tell me everything that you have done, if anything, to try and fix this problem.

*Please only use 1 forum to help clear up your problem. Posting on more than 1 and following instructions from more than 1 forum will cause those helping you to pull out thier hair.

*Follow my instructions - If you can't for some reason, or if you don't understand something, please tell me. If you deviate from my instructions, tell me, it may make a difference on where we go. Don't install anything, even other programs that have nothing to do with security or malware, it could cause things to change, and I would never know it.

*Have faith. I will do all I can to get your computer working, and if I can't - someone else here will know something else to try.

*Stick with me to the end. My aim is to fix your problems, and give you the tools and knowledge to keep this from happening again.

Now onto trying to fix your computer.

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Can you explain why you are running Hijackthis? Is your computer doing something that concerns you? Also can you tell me why you didn't run DDS as asked?
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#5 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 28 April 2009 - 02:10 PM

I did some changes. So i posted a new HTJ and wanted to see if my system is fine.

#6 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 28 April 2009 - 07:09 PM

OK. There is nothing wrong in the log, but unfortunately Hijackthis is sadly outdated. There are many new problems that no longer show up in hijackthis. DDS does a better job. Personally I like the users input though. Does the computer feel the same, better or worse than it did before?
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#7 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 29 April 2009 - 09:44 AM

This is the DDS Log.


DDS (Ver_09-03-16.01) - NTFSx86
Run by Sam at 15:42:16.68 on 29/04/2009
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_13
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.3454.2571 [GMT 1:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Windows\system32\taskeng.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Sam\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uDefault_Page_URL = hxxp://www.thetechguys.com/welcome
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mPolicies-explorer: EnableShellExecuteHooks = 1 (0x1)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

================= FIREFOX ===================

FF - ProfilePath - c:\users\sam\appdata\roaming\mozilla\firefox\profiles\ys7q1nht.default\
FF - plugin: c:\users\sam\appdata\roaming\mozilla\firefox\profiles\ys7q1nht.default\extensions\iaplayer@instantaction.com\plugins\npiaplayer.dll

============= SERVICES / DRIVERS ===============

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-4-1 108289]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2009-3-24 7808]
R3 RTL85n86;Belkin Wireless G Notebook Card Service v8;c:\windows\system32\drivers\RTL85n86.sys [2009-3-22 354816]
S4 getPlus® Helper;getPlus® Helper;c:\program files\nos\bin\getplus_helpersvc.exe --> c:\program files\nos\bin\getPlus_HelperSvc.exe [?]

=============== Created Last 30 ================

2009-04-13 18:50 <DIR> --d----- c:\users\sam\appdata\roaming\Spotify
2009-04-13 18:50 <DIR> --d----- c:\program files\Spotify
2009-04-09 14:49 107,864 a------- c:\windows\system32\tsccvid.dll
2009-04-09 14:49 <DIR> --d----- c:\windows\system32\QuickTime
2009-04-04 19:23 <DIR> --d----- c:\program files\SystemRequirementsLab
2009-04-03 23:58 <DIR> --d----- c:\program files\Secunia
2009-04-03 23:47 <DIR> --d----- c:\users\sam\Tracing
2009-04-03 23:46 <DIR> --d----- c:\program files\Microsoft
2009-04-03 23:41 <DIR> --d----- c:\program files\common files\Windows Live
2009-04-01 22:04 55,640 a------- c:\windows\system32\drivers\avgntflt.sys
2009-04-01 22:04 <DIR> --d----- c:\programdata\Avira
2009-04-01 22:04 <DIR> --d----- c:\program files\Avira
2009-04-01 22:04 <DIR> --d----- c:\progra~2\Avira
2009-03-31 16:32 <DIR> --d----- c:\users\sam\appdata\roaming\TeamViewer

==================== Find3M ====================

2009-04-29 15:38 34 a------- c:\users\sam\jagex_runescape_preferences.dat
2009-04-12 19:59 86,016 a------- c:\windows\inf\infstrng.dat
2009-04-12 19:59 51,200 a------- c:\windows\inf\infpub.dat
2009-04-12 19:59 86,016 a------- c:\windows\inf\infstor.dat
2009-04-12 14:44 410,984 a------- c:\windows\system32\deploytk.dll
2009-04-06 15:32 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-06 15:32 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-03-24 12:03 7,808 a------- c:\windows\system32\drivers\psi_mf.sys
2009-03-17 04:38 40,960 a------- c:\windows\apppatch\apihex86.dll
2009-03-17 04:38 13,824 a------- c:\windows\system32\apilogen.dll
2009-03-17 04:38 24,064 a------- c:\windows\system32\amxread.dll
2009-03-06 09:06 140,800 a------- c:\windows\system32\drivers\Rtlh86.sys
2009-03-05 06:54 73,728 a------- c:\windows\system32\RtNicProp32.dll
2009-03-03 05:46 3,599,328 a------- c:\windows\system32\ntkrnlpa.exe
2009-03-03 05:46 3,547,632 a------- c:\windows\system32\ntoskrnl.exe
2009-03-03 05:40 827,392 a------- c:\windows\system32\wininet.dll
2009-03-03 05:39 183,296 a------- c:\windows\system32\sdohlp.dll
2009-03-03 05:39 551,424 a------- c:\windows\system32\rpcss.dll
2009-03-03 05:39 26,112 a------- c:\windows\system32\printfilterpipelineprxy.dll
2009-03-03 05:37 78,336 a------- c:\windows\system32\ieencode.dll
2009-03-03 05:37 98,304 a------- c:\windows\system32\iasrecst.dll
2009-03-03 05:37 54,784 a------- c:\windows\system32\iasads.dll
2009-03-03 05:37 44,032 a------- c:\windows\system32\iasdatastore.dll
2009-03-03 04:04 666,624 a------- c:\windows\system32\printfilterpipelinesvc.exe
2009-03-03 03:38 17,408 a------- c:\windows\system32\iashost.exe
2009-03-03 03:28 26,624 a------- c:\windows\system32\ieUnatt.exe
2009-02-13 09:49 72,704 a------- c:\windows\system32\secur32.dll
2009-02-13 09:49 1,255,936 a------- c:\windows\system32\lsasrv.dll
2009-02-09 04:10 2,033,152 a------- c:\windows\system32\win32k.sys
2009-02-06 18:52 49,504 a------- c:\windows\system32\sirenacm.dll
2008-11-08 16:22 665,600 a------- c:\windows\inf\drvindex.dat
2008-01-21 03:43 174 a--sh--- c:\program files\desktop.ini
2006-11-02 13:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 13:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 13:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 13:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 10:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 10:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 10:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 10:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2008-04-21 15:46 8,192 a--sh--- c:\windows\users\default\NTUSER.DAT

============= FINISH: 15:42:54.78 ===============

#8 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 29 April 2009 - 12:23 PM

Did you use to have AVG installed? There are some remnants of the toolbar left. There is a removal tool available.
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#9 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 29 April 2009 - 01:41 PM

2009-04-29 18:39:55,459 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2009-04-29 18:39:55,487 WARN AvgDir param empty.
2009-04-29 18:39:55,487 WARN AvgDataDir param empty.
2009-04-29 18:40:03,686 INFO AvgRemover runs in attempt number 1
2009-04-29 18:40:03,686 INFO ***** Services *****
2009-04-29 18:40:03,687 INFO Processing service avg8emc
2009-04-29 18:40:03,687 INFO Service avg8emc is not installed
2009-04-29 18:40:03,688 DEBUG Service avg8emc RegCleanup
2009-04-29 18:40:03,688 DEBUG Registry keys for service avg8emc are not present
2009-04-29 18:40:03,688 INFO Processing service avgfws8
2009-04-29 18:40:03,689 INFO Service avgfws8 is not installed
2009-04-29 18:40:03,689 DEBUG Service avgfws8 RegCleanup
2009-04-29 18:40:03,689 DEBUG Registry keys for service avgfws8 are not present
2009-04-29 18:40:03,689 INFO Processing service avg8wd
2009-04-29 18:40:03,690 INFO Service avg8wd is not installed
2009-04-29 18:40:03,691 DEBUG Service avg8wd RegCleanup
2009-04-29 18:40:03,691 DEBUG Registry keys for service avg8wd are not present
2009-04-29 18:40:03,691 INFO Processing service AvgMfx86
2009-04-29 18:40:03,692 INFO Service AvgMfx86 is not installed
2009-04-29 18:40:03,692 DEBUG Service AvgMfx86 RegCleanup
2009-04-29 18:40:03,692 DEBUG Registry keys for service AvgMfx86 are not present
2009-04-29 18:40:03,692 INFO Processing service AvgMfx64
2009-04-29 18:40:03,693 INFO Service AvgMfx64 is not installed
2009-04-29 18:40:03,693 DEBUG Service AvgMfx64 RegCleanup
2009-04-29 18:40:03,694 DEBUG Registry keys for service AvgMfx64 are not present
2009-04-29 18:40:03,694 INFO Processing service AvgLdx86
2009-04-29 18:40:03,694 INFO Service AvgLdx86 is not installed
2009-04-29 18:40:03,694 DEBUG Service AvgLdx86 RegCleanup
2009-04-29 18:40:03,695 DEBUG Registry keys for service AvgLdx86 are not present
2009-04-29 18:40:03,695 INFO Processing service AvgLdx64
2009-04-29 18:40:03,695 INFO Service AvgLdx64 is not installed
2009-04-29 18:40:03,695 DEBUG Service AvgLdx64 RegCleanup
2009-04-29 18:40:03,696 DEBUG Registry keys for service AvgLdx64 are not present
2009-04-29 18:40:03,696 INFO Processing service AvgTdiX
2009-04-29 18:40:03,696 INFO Service AvgTdiX is not installed
2009-04-29 18:40:03,697 DEBUG Service AvgTdiX RegCleanup
2009-04-29 18:40:03,697 DEBUG Registry keys for service AvgTdiX are not present
2009-04-29 18:40:03,697 INFO Processing service AvgTdiA
2009-04-29 18:40:03,698 INFO Service AvgTdiA is not installed
2009-04-29 18:40:03,698 DEBUG Service AvgTdiA RegCleanup
2009-04-29 18:40:03,698 DEBUG Registry keys for service AvgTdiA are not present
2009-04-29 18:40:03,698 INFO Processing service AvgWFPx
2009-04-29 18:40:03,699 INFO Service AvgWFPx is not installed
2009-04-29 18:40:03,699 DEBUG Service AvgWFPx RegCleanup
2009-04-29 18:40:03,699 DEBUG Registry keys for service AvgWFPx are not present
2009-04-29 18:40:03,699 INFO Processing service AvgWFPa
2009-04-29 18:40:03,701 INFO Service AvgWFPa is not installed
2009-04-29 18:40:03,702 DEBUG Service AvgWFPa RegCleanup
2009-04-29 18:40:03,702 DEBUG Registry keys for service AvgWFPa are not present
2009-04-29 18:40:03,702 INFO Processing service AvgRkx86
2009-04-29 18:40:03,704 INFO Service AvgRkx86 is not installed
2009-04-29 18:40:03,705 DEBUG Service AvgRkx86 RegCleanup
2009-04-29 18:40:03,705 DEBUG Registry keys for service AvgRkx86 are not present
2009-04-29 18:40:03,705 INFO ***** Registry keys and values *****
2009-04-29 18:40:03,706 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-04-29 18:40:03,708 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2009-04-29 18:40:03,708 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} not present - Key not found
2009-04-29 18:40:03,708 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-04-29 18:40:03,709 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2009-04-29 18:40:03,709 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} not present - Key not found
2009-04-29 18:40:03,710 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2009-04-29 18:40:03,711 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2009-04-29 18:40:03,711 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2009-04-29 18:40:03,711 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2009-04-29 18:40:03,713 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2009-04-29 18:40:03,713 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2009-04-29 18:40:03,713 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-04-29 18:40:03,714 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-04-29 18:40:03,715 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-04-29 18:40:03,715 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-04-29 18:40:03,717 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-04-29 18:40:03,717 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-04-29 18:40:03,717 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2009-04-29 18:40:03,719 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2009-04-29 18:40:03,719 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2009-04-29 18:40:03,719 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-04-29 18:40:03,721 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2009-04-29 18:40:03,721 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension not present - Key not found
2009-04-29 18:40:03,721 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-04-29 18:40:03,723 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2009-04-29 18:40:03,723 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension not present - Key not found
2009-04-29 18:40:03,723 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2009-04-29 18:40:03,725 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2009-04-29 18:40:03,725 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2009-04-29 18:40:03,725 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:03,726 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:03,727 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:03,728 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:03,730 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:03,730 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:03,733 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:03,735 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:03,735 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:03,738 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:03,739 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:03,740 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:03,741 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2009-04-29 18:40:03,743 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2009-04-29 18:40:03,744 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2009-04-29 18:40:03,745 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2009-04-29 18:40:03,747 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2009-04-29 18:40:03,747 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2009-04-29 18:40:03,747 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-04-29 18:40:03,750 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-04-29 18:40:03,750 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-04-29 18:40:03,750 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-04-29 18:40:03,752 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-04-29 18:40:03,752 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-04-29 18:40:03,752 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-04-29 18:40:03,753 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-04-29 18:40:03,753 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-04-29 18:40:03,753 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-04-29 18:40:03,754 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-04-29 18:40:03,754 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-04-29 18:40:03,754 INFO Processing registry SOFTWARE\Classes\.avgdi
2009-04-29 18:40:03,755 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2009-04-29 18:40:03,755 DEBUG Key SOFTWARE\Classes\.avgdi not found
2009-04-29 18:40:03,755 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:03,757 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:03,757 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:03,757 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:03,758 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:03,758 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:03,758 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:03,759 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:03,760 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:03,760 INFO Processing registry SOFTWARE\AVG\Clients
2009-04-29 18:40:03,761 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2009-04-29 18:40:03,761 DEBUG Key SOFTWARE\AVG\Clients not found
2009-04-29 18:40:03,761 INFO Processing registry SOFTWARE\AVG\AVG8
2009-04-29 18:40:03,762 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-04-29 18:40:03,762 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-04-29 18:40:03,762 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:03,763 DEBUG Value SOFTWARE\AVG:DumpType Remove
2009-04-29 18:40:03,764 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found
2009-04-29 18:40:03,764 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:03,765 DEBUG Key SOFTWARE\AVG Remove
2009-04-29 18:40:03,765 DEBUG Key SOFTWARE\AVG not found
2009-04-29 18:40:03,765 INFO Processing registry SOFTWARE\AVG\AVG8
2009-04-29 18:40:03,766 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-04-29 18:40:03,766 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-04-29 18:40:03,766 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:03,766 DEBUG Key SOFTWARE\AVG Remove
2009-04-29 18:40:03,766 DEBUG Key SOFTWARE\AVG not found
2009-04-29 18:40:03,766 INFO Processing registry aAvgAPI.AvgBro
2009-04-29 18:40:03,767 DEBUG Key aAvgAPI.AvgBro ForceRemove
2009-04-29 18:40:03,767 DEBUG Key aAvgAPI.AvgBro not found
2009-04-29 18:40:03,767 INFO Processing registry AVG.Office
2009-04-29 18:40:03,767 DEBUG Key AVG.Office ForceRemove
2009-04-29 18:40:03,768 DEBUG Key AVG.Office not found
2009-04-29 18:40:03,768 INFO Processing registry AVG.Office.8
2009-04-29 18:40:03,768 DEBUG Key AVG.Office.8 ForceRemove
2009-04-29 18:40:03,769 DEBUG Key AVG.Office.8 not found
2009-04-29 18:40:03,769 INFO Processing registry avgtoolbar.AVGTOOLBAR
2009-04-29 18:40:03,769 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2009-04-29 18:40:03,769 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2009-04-29 18:40:03,769 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2009-04-29 18:40:03,770 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2009-04-29 18:40:03,770 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2009-04-29 18:40:03,770 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2009-04-29 18:40:03,770 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2009-04-29 18:40:03,770 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2009-04-29 18:40:03,770 INFO Processing registry LinkScannerIE.NavFilter
2009-04-29 18:40:03,771 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2009-04-29 18:40:03,771 DEBUG Key LinkScannerIE.NavFilter not found
2009-04-29 18:40:03,771 INFO Processing registry LinkScannerIE.NavFilter.1
2009-04-29 18:40:03,772 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2009-04-29 18:40:03,772 DEBUG Key LinkScannerIE.NavFilter.1 not found
2009-04-29 18:40:03,772 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2009-04-29 18:40:03,773 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2009-04-29 18:40:03,773 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2009-04-29 18:40:03,773 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2009-04-29 18:40:03,773 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2009-04-29 18:40:03,773 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2009-04-29 18:40:03,774 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2009-04-29 18:40:03,774 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2009-04-29 18:40:03,774 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2009-04-29 18:40:03,774 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-04-29 18:40:03,775 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-04-29 18:40:03,775 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-04-29 18:40:03,775 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-04-29 18:40:03,776 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-04-29 18:40:03,776 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-04-29 18:40:03,776 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2009-04-29 18:40:03,777 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2009-04-29 18:40:03,777 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2009-04-29 18:40:03,777 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2009-04-29 18:40:03,778 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2009-04-29 18:40:03,778 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2009-04-29 18:40:03,778 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2009-04-29 18:40:03,779 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2009-04-29 18:40:03,779 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2009-04-29 18:40:03,779 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2009-04-29 18:40:03,780 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2009-04-29 18:40:03,780 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2009-04-29 18:40:03,780 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2009-04-29 18:40:03,781 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2009-04-29 18:40:03,781 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2009-04-29 18:40:03,781 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2009-04-29 18:40:03,782 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2009-04-29 18:40:03,782 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2009-04-29 18:40:03,782 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2009-04-29 18:40:03,783 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2009-04-29 18:40:03,783 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2009-04-29 18:40:03,783 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2009-04-29 18:40:03,784 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2009-04-29 18:40:03,784 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2009-04-29 18:40:03,784 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2009-04-29 18:40:03,786 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2009-04-29 18:40:03,786 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2009-04-29 18:40:03,786 INFO ***** Files and folders *****
2009-04-29 18:40:03,786 DEBUG Missing ParentDir path for fileItem number 0
2009-04-29 18:40:03,786 DEBUG Missing ParentDir path for fileItem number 1
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 2
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 3
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 4
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 5
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 6
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 7
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 8
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 9
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 10
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 11
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 12
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 13
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 14
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 15
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 16
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 17
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 18
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 19
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 20
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 21
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 22
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 23
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 24
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 25
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 26
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 27
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 28
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 29
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 30
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 31
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 32
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 33
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 34
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 35
2009-04-29 18:40:03,787 DEBUG Missing ParentDir path for fileItem number 36
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 37
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 38
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 39
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 40
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 41
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 42
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 43
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 44
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 45
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 46
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 47
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 48
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 49
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 50
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 51
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 52
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 53
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 54
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 55
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 56
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 57
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 58
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 59
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 60
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 61
2009-04-29 18:40:03,788 DEBUG Missing ParentDir path for fileItem number 62
2009-04-29 18:40:03,788 DEBUG Processing item C:\Users\Sam\AppData\Roaming\AVGTOOLBAR
2009-04-29 18:40:03,788 INFO Directory C:\Users\Sam\AppData\Roaming\AVGTOOLBAR not found
2009-04-29 18:40:03,789 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,789 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,790 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,790 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,790 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,790 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:03,790 DEBUG Processing item C:\Windows\System32\Drivers\avg
2009-04-29 18:40:03,790 INFO Directory C:\Windows\System32\Drivers\avg not found
2009-04-29 18:40:03,791 DEBUG Processing item C:\Windows\System32
2009-04-29 18:40:03,792 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0
2009-04-29 18:40:03,792 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0 not found
2009-04-29 18:40:03,793 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0
2009-04-29 18:40:03,793 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0 not found
2009-04-29 18:40:03,793 DEBUG Processing item C:\Users\Public\Desktop\avg 8.0.lnk
2009-04-29 18:40:03,793 INFO File C:\Users\Public\Desktop\avg 8.0.lnk not found
2009-04-29 18:40:03,794 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.0.lnk
2009-04-29 18:40:03,794 INFO File C:\Users\Public\Desktop\avg free 8.0.lnk not found
2009-04-29 18:40:03,795 DEBUG Processing item C:\Program Files\AVG
2009-04-29 18:40:03,795 INFO Directory C:\Program Files\AVG not found
2009-04-29 18:40:03,796 INFO ***** Avg Fw NDIS driver *****
2009-04-29 18:40:04,367 INFO FW NDIS driver not present
2009-04-29 18:40:31,061 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2009-04-29 18:40:31,067 WARN AvgDir param empty.
2009-04-29 18:40:31,067 WARN AvgDataDir param empty.
2009-04-29 18:40:34,411 INFO AvgRemover runs in attempt number 1
2009-04-29 18:40:34,412 INFO ***** Services *****
2009-04-29 18:40:34,412 INFO Processing service avg8emc
2009-04-29 18:40:34,413 INFO Service avg8emc is not installed
2009-04-29 18:40:34,413 DEBUG Service avg8emc RegCleanup
2009-04-29 18:40:34,413 DEBUG Registry keys for service avg8emc are not present
2009-04-29 18:40:34,414 INFO Processing service avgfws8
2009-04-29 18:40:34,415 INFO Service avgfws8 is not installed
2009-04-29 18:40:34,415 DEBUG Service avgfws8 RegCleanup
2009-04-29 18:40:34,416 DEBUG Registry keys for service avgfws8 are not present
2009-04-29 18:40:34,416 INFO Processing service avg8wd
2009-04-29 18:40:34,416 INFO Service avg8wd is not installed
2009-04-29 18:40:34,416 DEBUG Service avg8wd RegCleanup
2009-04-29 18:40:34,417 DEBUG Registry keys for service avg8wd are not present
2009-04-29 18:40:34,417 INFO Processing service AvgMfx86
2009-04-29 18:40:34,417 INFO Service AvgMfx86 is not installed
2009-04-29 18:40:34,418 DEBUG Service AvgMfx86 RegCleanup
2009-04-29 18:40:34,418 DEBUG Registry keys for service AvgMfx86 are not present
2009-04-29 18:40:34,418 INFO Processing service AvgMfx64
2009-04-29 18:40:34,419 INFO Service AvgMfx64 is not installed
2009-04-29 18:40:34,419 DEBUG Service AvgMfx64 RegCleanup
2009-04-29 18:40:34,419 DEBUG Registry keys for service AvgMfx64 are not present
2009-04-29 18:40:34,419 INFO Processing service AvgLdx86
2009-04-29 18:40:34,420 INFO Service AvgLdx86 is not installed
2009-04-29 18:40:34,420 DEBUG Service AvgLdx86 RegCleanup
2009-04-29 18:40:34,420 DEBUG Registry keys for service AvgLdx86 are not present
2009-04-29 18:40:34,421 INFO Processing service AvgLdx64
2009-04-29 18:40:34,421 INFO Service AvgLdx64 is not installed
2009-04-29 18:40:34,422 DEBUG Service AvgLdx64 RegCleanup
2009-04-29 18:40:34,422 DEBUG Registry keys for service AvgLdx64 are not present
2009-04-29 18:40:34,422 INFO Processing service AvgTdiX
2009-04-29 18:40:34,423 INFO Service AvgTdiX is not installed
2009-04-29 18:40:34,423 DEBUG Service AvgTdiX RegCleanup
2009-04-29 18:40:34,423 DEBUG Registry keys for service AvgTdiX are not present
2009-04-29 18:40:34,423 INFO Processing service AvgTdiA
2009-04-29 18:40:34,424 INFO Service AvgTdiA is not installed
2009-04-29 18:40:34,425 DEBUG Service AvgTdiA RegCleanup
2009-04-29 18:40:34,425 DEBUG Registry keys for service AvgTdiA are not present
2009-04-29 18:40:34,425 INFO Processing service AvgWFPx
2009-04-29 18:40:34,426 INFO Service AvgWFPx is not installed
2009-04-29 18:40:34,426 DEBUG Service AvgWFPx RegCleanup
2009-04-29 18:40:34,426 DEBUG Registry keys for service AvgWFPx are not present
2009-04-29 18:40:34,426 INFO Processing service AvgWFPa
2009-04-29 18:40:34,427 INFO Service AvgWFPa is not installed
2009-04-29 18:40:34,428 DEBUG Service AvgWFPa RegCleanup
2009-04-29 18:40:34,429 DEBUG Registry keys for service AvgWFPa are not present
2009-04-29 18:40:34,429 INFO Processing service AvgRkx86
2009-04-29 18:40:34,430 INFO Service AvgRkx86 is not installed
2009-04-29 18:40:34,431 DEBUG Service AvgRkx86 RegCleanup
2009-04-29 18:40:34,431 DEBUG Registry keys for service AvgRkx86 are not present
2009-04-29 18:40:34,432 INFO ***** Registry keys and values *****
2009-04-29 18:40:34,432 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-04-29 18:40:34,434 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2009-04-29 18:40:34,434 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} not present - Key not found
2009-04-29 18:40:34,434 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-04-29 18:40:34,435 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2009-04-29 18:40:34,435 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} not present - Key not found
2009-04-29 18:40:34,435 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2009-04-29 18:40:34,437 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2009-04-29 18:40:34,437 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2009-04-29 18:40:34,437 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2009-04-29 18:40:34,439 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2009-04-29 18:40:34,439 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2009-04-29 18:40:34,439 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-04-29 18:40:34,440 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-04-29 18:40:34,440 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-04-29 18:40:34,440 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-04-29 18:40:34,441 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-04-29 18:40:34,441 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-04-29 18:40:34,442 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2009-04-29 18:40:34,443 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2009-04-29 18:40:34,443 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2009-04-29 18:40:34,443 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-04-29 18:40:34,445 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2009-04-29 18:40:34,445 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension not present - Key not found
2009-04-29 18:40:34,445 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-04-29 18:40:34,446 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2009-04-29 18:40:34,446 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension not present - Key not found
2009-04-29 18:40:34,446 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2009-04-29 18:40:34,447 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2009-04-29 18:40:34,447 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs doesn't need to be modified
2009-04-29 18:40:34,448 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:34,449 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:34,449 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:34,450 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:34,452 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:34,452 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:34,454 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:34,454 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:34,455 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:34,456 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-04-29 18:40:34,457 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-04-29 18:40:34,458 WARN Deleting value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} failed (error e0010058)
2009-04-29 18:40:34,459 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2009-04-29 18:40:34,461 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2009-04-29 18:40:34,462 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2009-04-29 18:40:34,463 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2009-04-29 18:40:34,464 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2009-04-29 18:40:34,464 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2009-04-29 18:40:34,465 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-04-29 18:40:34,466 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-04-29 18:40:34,466 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-04-29 18:40:34,466 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-04-29 18:40:34,468 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-04-29 18:40:34,469 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-04-29 18:40:34,469 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-04-29 18:40:34,470 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-04-29 18:40:34,470 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-04-29 18:40:34,470 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-04-29 18:40:34,471 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-04-29 18:40:34,471 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-04-29 18:40:34,471 INFO Processing registry SOFTWARE\Classes\.avgdi
2009-04-29 18:40:34,472 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2009-04-29 18:40:34,473 DEBUG Key SOFTWARE\Classes\.avgdi not found
2009-04-29 18:40:34,473 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:34,474 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:34,474 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:34,475 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:34,476 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:34,476 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:34,476 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-04-29 18:40:34,478 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-04-29 18:40:34,478 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-04-29 18:40:34,478 INFO Processing registry SOFTWARE\AVG\Clients
2009-04-29 18:40:34,479 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2009-04-29 18:40:34,479 DEBUG Key SOFTWARE\AVG\Clients not found
2009-04-29 18:40:34,479 INFO Processing registry SOFTWARE\AVG\AVG8
2009-04-29 18:40:34,480 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-04-29 18:40:34,480 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-04-29 18:40:34,480 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:34,481 DEBUG Value SOFTWARE\AVG:DumpType Remove
2009-04-29 18:40:34,481 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found
2009-04-29 18:40:34,481 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:34,482 DEBUG Key SOFTWARE\AVG Remove
2009-04-29 18:40:34,482 DEBUG Key SOFTWARE\AVG not found
2009-04-29 18:40:34,482 INFO Processing registry SOFTWARE\AVG\AVG8
2009-04-29 18:40:34,483 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-04-29 18:40:34,483 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-04-29 18:40:34,483 INFO Processing registry SOFTWARE\AVG
2009-04-29 18:40:34,484 DEBUG Key SOFTWARE\AVG Remove
2009-04-29 18:40:34,484 DEBUG Key SOFTWARE\AVG not found
2009-04-29 18:40:34,484 INFO Processing registry aAvgAPI.AvgBro
2009-04-29 18:40:34,485 DEBUG Key aAvgAPI.AvgBro ForceRemove
2009-04-29 18:40:34,485 DEBUG Key aAvgAPI.AvgBro not found
2009-04-29 18:40:34,485 INFO Processing registry AVG.Office
2009-04-29 18:40:34,486 DEBUG Key AVG.Office ForceRemove
2009-04-29 18:40:34,487 DEBUG Key AVG.Office not found
2009-04-29 18:40:34,487 INFO Processing registry AVG.Office.8
2009-04-29 18:40:34,487 DEBUG Key AVG.Office.8 ForceRemove
2009-04-29 18:40:34,488 DEBUG Key AVG.Office.8 not found
2009-04-29 18:40:34,488 INFO Processing registry avgtoolbar.AVGTOOLBAR
2009-04-29 18:40:34,489 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2009-04-29 18:40:34,489 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2009-04-29 18:40:34,489 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2009-04-29 18:40:34,491 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2009-04-29 18:40:34,491 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2009-04-29 18:40:34,491 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2009-04-29 18:40:34,492 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2009-04-29 18:40:34,493 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2009-04-29 18:40:34,493 INFO Processing registry LinkScannerIE.NavFilter
2009-04-29 18:40:34,494 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2009-04-29 18:40:34,494 DEBUG Key LinkScannerIE.NavFilter not found
2009-04-29 18:40:34,494 INFO Processing registry LinkScannerIE.NavFilter.1
2009-04-29 18:40:34,495 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2009-04-29 18:40:34,495 DEBUG Key LinkScannerIE.NavFilter.1 not found
2009-04-29 18:40:34,495 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2009-04-29 18:40:34,497 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2009-04-29 18:40:34,497 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2009-04-29 18:40:34,497 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2009-04-29 18:40:34,498 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2009-04-29 18:40:34,498 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2009-04-29 18:40:34,498 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2009-04-29 18:40:34,499 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2009-04-29 18:40:34,500 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2009-04-29 18:40:34,500 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-04-29 18:40:34,502 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-04-29 18:40:34,502 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-04-29 18:40:34,502 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-04-29 18:40:34,504 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-04-29 18:40:34,504 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-04-29 18:40:34,505 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2009-04-29 18:40:34,507 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2009-04-29 18:40:34,507 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2009-04-29 18:40:34,507 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2009-04-29 18:40:34,508 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2009-04-29 18:40:34,508 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2009-04-29 18:40:34,508 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2009-04-29 18:40:34,509 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2009-04-29 18:40:34,509 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2009-04-29 18:40:34,510 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2009-04-29 18:40:34,510 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2009-04-29 18:40:34,511 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2009-04-29 18:40:34,511 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2009-04-29 18:40:34,512 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2009-04-29 18:40:34,513 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2009-04-29 18:40:34,513 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2009-04-29 18:40:34,514 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2009-04-29 18:40:34,514 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2009-04-29 18:40:34,514 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2009-04-29 18:40:34,515 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2009-04-29 18:40:34,515 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2009-04-29 18:40:34,516 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2009-04-29 18:40:34,516 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2009-04-29 18:40:34,517 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2009-04-29 18:40:34,517 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2009-04-29 18:40:34,518 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2009-04-29 18:40:34,518 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2009-04-29 18:40:34,518 INFO ***** Files and folders *****
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 0
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 1
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 2
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 3
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 4
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 5
2009-04-29 18:40:34,519 DEBUG Missing ParentDir path for fileItem number 6
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 7
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 8
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 9
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 10
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 11
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 12
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 13
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 14
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 15
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 16
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 17
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 18
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 19
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 20
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 21
2009-04-29 18:40:34,520 DEBUG Missing ParentDir path for fileItem number 22
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 23
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 24
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 25
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 26
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 27
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 28
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 29
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 30
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 31
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 32
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 33
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 34
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 35
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 36
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 37
2009-04-29 18:40:34,521 DEBUG Missing ParentDir path for fileItem number 38
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 39
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 40
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 41
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 42
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 43
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 44
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 45
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 46
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 47
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 48
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 49
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 50
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 51
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 52
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 53
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 54
2009-04-29 18:40:34,522 DEBUG Missing ParentDir path for fileItem number 55
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 56
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 57
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 58
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 59
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 60
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 61
2009-04-29 18:40:34,523 DEBUG Missing ParentDir path for fileItem number 62
2009-04-29 18:40:34,523 DEBUG Processing item C:\Users\Sam\AppData\Roaming\AVGTOOLBAR
2009-04-29 18:40:34,523 INFO Directory C:\Users\Sam\AppData\Roaming\AVGTOOLBAR not found
2009-04-29 18:40:34,524 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,525 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,525 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,525 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,525 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,526 DEBUG Processing item C:\Windows\System32\Drivers
2009-04-29 18:40:34,526 DEBUG Processing item C:\Windows\System32\Drivers\avg
2009-04-29 18:40:34,526 INFO Directory C:\Windows\System32\Drivers\avg not found
2009-04-29 18:40:34,527 DEBUG Processing item C:\Windows\System32
2009-04-29 18:40:34,528 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0
2009-04-29 18:40:34,528 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0 not found
2009-04-29 18:40:34,530 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0
2009-04-29 18:40:34,530 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0 not found
2009-04-29 18:40:34,532 DEBUG Processing item C:\Users\Public\Desktop\avg 8.0.lnk
2009-04-29 18:40:34,532 INFO File C:\Users\Public\Desktop\avg 8.0.lnk not found
2009-04-29 18:40:34,532 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.0.lnk
2009-04-29 18:40:34,533 INFO File C:\Users\Public\Desktop\avg free 8.0.lnk not found
2009-04-29 18:40:34,534 DEBUG Processing item C:\Program Files\AVG
2009-04-29 18:40:34,534 INFO Directory C:\Program Files\AVG not found
2009-04-29 18:40:34,535 INFO ***** Avg Fw NDIS driver *****
2009-04-29 18:40:34,981 INFO FW NDIS driver not present

#10 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 29 April 2009 - 07:32 PM

Looks like it got the remnants.

That was all I saw. Do you have any other questions or concerns?
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#11 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 30 April 2009 - 10:56 AM

Should i unistall Hijackthis now?

And use DDS all the time for logs?

Also for DDS do i right click 'run as' because on HTJ you have to right click run as to make sure it does an updated log.

#12 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 30 April 2009 - 11:39 AM

Go ahead and Leave hijackthis there. It does occasionally still show useful entries, and there is always the hope it will be updated. But mostly use DDS. And you can just double click it to run DDS.

Any other questions? :thumbup2:
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image

#13 samuel3

samuel3
  • Topic Starter

  • Members
  • 2,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:30 PM

Posted 03 May 2009 - 04:45 PM

Nope. The topic can be closed now.

Thanks for your help.

#14 Hoov

Hoov

  • Malware Response Team
  • 3,519 posts
  • OFFLINE
  •  
  • Location:Mikado Michigan
  • Local time:06:30 PM

Posted 03 May 2009 - 07:38 PM

You are welcome!
Visiting From SpywareHammer.com and DonHoover.net

Tilting at windmills hurts you more than the windmills.
-From the Notebooks of Lazarus Long
Senior of the Howard Families

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users