14 replies to this topic

[dave3232]

I have recently had malware removed as outlined here: http://forums.malwar...howtopic=113811

It was recommended that I start a new topic in this forum.

I am now unable to perform a Windows Update. There were 9 updates available, and they all failed and I got the following message: "Code 80246008 Windows Update encountered an unknown error"

Any assistance will be greatly appreciated. Thanks in advance.

Dave

[Firefox]

Hello and

Have you given the steps located => HERE a try? You can also look at the one in Microsoft Answers HERE.

[Maurice Naggar]

Hello Dave,

In addition to what Firefox has referred to:
Check for missing or disabled Windows services, by doing the following, and post detailed results when done !!

From Start button, select RUN (or Win-key +R) and in the run-text-box type in MSCONFIG and press OK or Enter.
On Vista or Windows 7, press Windows-key on keybooard, and type in MSCONFIG

You should see the General tab. Click the General tab. It should have Normal startup selected (in the radio-box=selection)
IF it does not, then you click on Normal startup.

Click on Services tab. To get it's display of services.

Keep a written list of any changes from my list of services below. That way you and I have a reference document.

Look at the bottom line Hide all Microsoft services
IF and only IF its is checkmarked, then un-check it.

the list of servies may be shown in non-alphabetical order, so ....
Look at the heading titled "Service". Click on it as needed so the list is sorted and top of list starts with the "A" services.
You can toggle as needed to get the desired order.


IF any of below services are NOT shown, don't panic & do not stop, just write down the info for me and proceed with the others !


Then using the scroll-bar scroll down the list

Look for COM+ Event System. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for COM+ System Application. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Ipsec Policy Agent. Is it shown? Is it checked? If not, click on that checkbox to checkmark.

Look for Remote Procedure Call (RPC) Locator. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for RPC Endpoint Mapper. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Firewall. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Management Instrumentation. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Installer. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.

Look for Windows Update. Is it shown ? Is it checked? If not, click on that checkbox to checkmark.


When done, press the Apply button, and the OK button.

You're likely to be prompted to Restart Windows, do so.

If not prompted, you do a Logoff and Restart of Windows.

Then report back here with details.

If any of the services are not shown, just let me know which.

Download >> Farbar's Service Scanner utility << and Save to your Desktop.
If using Windows 7 or Vista, Right-Click on fss.exe and select Run As Admisnitrator.
If using XP, double-click to start.

Answer Yes to ok when prompted.

If your firewall then puts out a prompt, again, allow it to run.

Once FSS is on-screen, be sure the following items are checkmarked:

• Internet Services
  
• Windows Firewall
  
• System Restore
  
• Security Center/Action Center
  
• Windows Update
  
• Windows Defender

Click on "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Copy & Paste contents of FSS.txt into your reply.

[dave3232]

Maurice, thank you for the reply.

I have tried what Firefox suggested. I do not see BITS in my list of services. And when I try to run the MS Fix-it tool I receive an error saying "trouble shooting cannot continue because an error has occured.

Here are the msconfig services results:

Look for COM+ Event System. Is it shown? Is it checked? If not, click on that checkbox to checkmark. checked

Look for COM+ System Application. Is it shown? Is it checked? If not, click on that checkbox to checkmark. checked

Look for Ipsec Policy Agent. Is it shown? Is it checked? If not, click on that checkbox to checkmark. checked

Look for Remote Procedure Call (RPC) Locator. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. checked

Look for RPC Endpoint Mapper. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. not shown

Look for Windows Firewall. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. checked

Look for Windows Management Instrumentation. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. checked

Look for Windows Installer. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. checked

Look for Windows Update. Is it shown ? Is it checked? If not, click on that checkbox to checkmark. checked

Here is the FSS.txt results:

Farbar Service Scanner Version: 06-08-2012
Ran by Dave (administrator) on 20-08-2012 at 18:53:52
Running from "C:\Users\Dave\Desktop"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============
Firewall Disabled Policy:
==================

System Restore:
============
System Restore Disabled Policy:
========================

Security Center:
============
Windows Update:
============
BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of BITS. The value does not exist.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit

**** End of log ****

[Maurice Naggar]

This is for Dave3232 only

This is for VISTA system only <<<---

Download this BITS reg-file http://download.blee.../vista/BITS.reg

Save it to your DESKTOP.

go to Start, type in
REGEDIT and press Enter-key
from main menu, select File
then select IMPORT
navigate the dialog (click on DESKTOP icon on left to select it)
type in bits.reg in the Filename text-box and click Open button.
Once the merge is complete, you will see a confirmation message.
Click OK when done.
Close/exit Regedit.

Logoff and Restart Windows. When done & ready, do a new visit to Windows Update.
Advise me on results.

[dave3232]

Maurice, Windows Update was successful! Thank you, I really appreciate your help. Are there any final steps for me?

Dave

[Maurice Naggar]

Yes, do an MBAM quick scan & a antivirus scan.

Save and close any work documents, close any apps that you started.
Start your MBAM MalwareBytes' Anti-Malware.
Click the Settings Tab and then the General Settings sub-tab. Make sure all option lines have a checkmark.
Then click the Scanner settings sub-tab in second row of tabs. Make sure all option lines have a checkmark.

Next, Click the Update tab. Press the "Check for Updates" button.

If prompted for a Restart, do that.

When done, click the Scanner tab.
Do a Quick Scan.

When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.

When done, Copy and Paste the MBAM scan log.

Close all open browsers at this point.

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
Do NOT turn off the firewall

Start Internet Explorer
Using Internet Explorer browser only, go to BitDefender Quickscan website:
http://quickscan.bitdefender.com

and click "Start Scan".
Observe your browser in case it shows a notice/message bar to allow download and installation of a tool.
Allow the download and install of qsax.cab from BitDefender. Right-click the IE info bar and select Install to install the BitDefender quick scan module.
If prompted, reply yes to allow it to run.
Press the Allow button and follow prompts.

Press the "Start Scan" once more.
You'll see the EULA in a pop-up window. Click the I accept & then the OK button

Note: The FAQ is here --> http://quickscan.bitdefender.com/faq/
and that QuickScan has no removal capability.

The site boasts a 60-second scan. Do have patience as it likely will take longer.
It may seem to stall at moments, but have patience; it will move on.
You'll see a progress bar at top right of window.

Hopefully you will see a No infections found in the bar-winddow. Press the View Log button.
The log report will show in your text editor. Save the log.
Do a Select ALL, Copy. Then paste contents into your next reply.

[dave3232]

Maurice,

Here are the MBAM Quick scan results and Bitdefender log. Both were clean.
Any next steps?

Thank you.
Dave


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org



Database version: v2012.08.21.08



Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Dave :: DAVE-PC [administrator]



8/21/2012 11:25:11 AM
mbam-log-2012-08-21 (11-25-11).txt



Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 210140
Time elapsed: 11 minute(s), 10 second(s)



Memory Processes Detected: 0
(No malicious items detected)



Memory Modules Detected: 0
(No malicious items detected)



Registry Keys Detected: 0
(No malicious items detected)



Registry Values Detected: 0
(No malicious items detected)



Registry Data Items Detected: 0
(No malicious items detected)



Folders Detected: 0
(No malicious items detected)



Files Detected: 0
(No malicious items detected)



(end)


QuickScan 32-bit v0.9.9.118
---------------------------
Scan date: Tue Aug 21 14:16:40 2012
Machine ID: C410C296

No infection found.
-------------------

Processes
---------
Adobe Acrobat Update Service 1668 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
APO Access Service (32-bit) 856 C:\Windows\System32\AERTSrv.exe
AVG IDS 1980 C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\bin\AVGIDSAgent.exe
Backup Manager 2364 C:\Program Files\Rogers Backup Manager\VaultClientSRV.exe
Backup Manager 2436 C:\Program Files\Rogers Backup Manager\VaultClientUpgrade.exe
Bonjour 1332 C:\Program Files\Bonjour\mDNSResponder.exe
Client Gateway 3.7.44 4784 C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RogersServicepointAgentComHandler.exe
Client Gateway 3.7.44 2224 C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\ServicepointService.exe
Dell Dock 2676 C:\Program Files\Dell\DellDock\DellDock.exe
DNA 2984 C:\Program Files\DNA\btdna.exe
Dock Login Service 1476 C:\Program Files\Dell\DellDock\DockLogin.exe
HD Audio Control Panel 3804 C:\Windows\RtHDVCpl.exe
Intel® Common User Interface 3772 C:\Windows\System32\hkcmd.exe
Intel® Common User Interface 3780 C:\Windows\System32\igfxpers.exe
Intel® Common User Interface 3796 C:\Windows\System32\igfxsrvc.exe
iTunes 4284 C:\Program Files\iPod\bin\iPodService.exe
iTunes 3828 C:\Program Files\iTunes\iTunesHelper.exe
Java™ Platform SE Auto Updater 2 0 3916 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Microsoft IntelliPoint 2788 C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
Microsoft IntelliPoint 1808 C:\Program Files\Microsoft IntelliPoint\ipoint.exe
Microsoft Malware Protection 1036 C:\Program Files\Microsoft Security Client\MsMpEng.exe
Microsoft Security Client 2352 C:\Program Files\Microsoft Security Client\msseces.exe
Microsoft® CoReXT 2492 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
Microsoft® CoReXT 2556 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
Microsoft® Windows® Operating System 3468 C:\Windows\explorer.exe
Microsoft® Windows® Operating System 4560 C:\Windows\System32\conime.exe
Microsoft® Windows® Operating System 564 C:\Windows\System32\csrss.exe
Microsoft® Windows® Operating System 620 C:\Windows\System32\csrss.exe
Microsoft® Windows® Operating System 704 C:\Windows\System32\lsass.exe
Microsoft® Windows® Operating System 692 C:\Windows\System32\services.exe
Microsoft® Windows® Operating System 1296 C:\Windows\System32\SLsvc.exe
Microsoft® Windows® Operating System 484 C:\Windows\System32\smss.exe
Microsoft® Windows® Operating System 1956 C:\Windows\System32\spoolsv.exe
Microsoft® Windows® Operating System 2992 C:\Windows\System32\taskeng.exe
Microsoft® Windows® Operating System 3328 C:\Windows\System32\taskeng.exe
Microsoft® Windows® Operating System 4572 C:\Windows\System32\wbem\WmiPrvSE.exe
Microsoft® Windows® Operating System 608 C:\Windows\System32\wininit.exe
Microsoft® Windows® Operating System 656 C:\Windows\System32\winlogon.exe
mlb-nexdef-autobahn.exe 3252 C:\Users\Dave\AppData\Local\Autobahn\mlb-nexdef-autobahn.exe
MobileDeviceService 1404 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
OmniPage 1632 C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
PhotoshopElementsFileAgent.exe 1648 C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
RealPlayer (32-bit) 3848 C:\Program Files\real\realplayer\Update\realsched.exe
RIMBBLaunchAgent 3836 C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
Rogers Online Protection 1548 C:\Program Files\Rogers Online Protection\Rogers Online Protection\Fws.exe
Rogers Online Protection 2176 C:\Program Files\Rogers Online Protection\Rogers Online Protection\RpsSecurityAwareR.exe
Rogers Servicepoint Agent 3812 C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RogersServicepointAgent.exe
Windows® Internet Explorer 2584 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 5452 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Internet Explorer 5996 C:\Program Files\Internet Explorer\iexplore.exe
Windows® Search 5736 C:\Windows\System32\SearchFilterHost.exe
Windows® Search 3524 C:\Windows\System32\SearchProtocolHost.exe
(verified) Microsoft® Windows® Operating System 3376 C:\Windows\System32\dwm.exe
(verified) Microsoft® Windows® Operating System 712 C:\Windows\System32\lsm.exe
(verified) Microsoft® Windows® Operating System 900 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 960 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 2068 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1732 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 2460 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1412 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 2264 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1184 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 304 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 3964 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1160 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1132 C:\Windows\System32\svchost.exe
(verified) Microsoft® Windows® Operating System 1272 C:\Windows\System32\svchost.exe
(verified) Windows® Search 2532 C:\Windows\System32\SearchIndexer.exe

Network activity
----------------
Process iexplore.exe (5452) connected on port 80 (HTTP) --> 74.125.226.66
Process iexplore.exe (5452) connected on port 80 (HTTP) --> 74.125.226.66
Process iexplore.exe (5452) connected on port 80 (HTTP) --> 199.7.71.72
Process iexplore.exe (5452) connected on port 80 (HTTP) --> 66.235.142.2
Process iexplore.exe (5452) connected on port 80 (HTTP) --> 66.235.142.2
Process wininit.exe (608) listens on ports: 49152 (RPC)
Process services.exe (692) listens on ports: 49160 (RPC)
Process lsass.exe (704) listens on ports: 49154 (RPC)
Process svchost.exe (960) listens on ports: 135 (RPC)
Process svchost.exe (1132) listens on ports: 49153 (RPC)
Process svchost.exe (1184) listens on ports: 49155 (RPC)
Process ServicepointService.exe (2224) listens on ports: 8965
Process btdna.exe (2984) listens on ports: 20329

Autoruns and critical files
---------------------------
Adobe Photo Downloader 3.0 component C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Adobe® Flash® Player Update Service C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Apple Push C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
Google Desktop c:\Program Files\Google\Google Desktop Search\googledesktopnetwork3.dll
GoToAssist C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll
HD Audio Control Panel C:\Windows\RtHDVCpl.exe
Intel® Common User Interface C:\Windows\System32\hkcmd.exe
Intel® Common User Interface C:\Windows\system32\igfxdev.dll
Intel® Common User Interface C:\Windows\System32\igfxpers.exe
Intel® Common User Interface C:\Windows\system32\igfxtray.exe
iTunes C:\Program Files\iTunes\iTunesHelper.exe
Java™ Platform SE Auto Updater 2 0 C:\Program Files\Common Files\Java\Java Update\jusched.exe
Microsoft IntelliPoint C:\Program Files\Microsoft IntelliPoint\ipoint.exe
Microsoft Security Client C:\Program Files\Microsoft Security Client\msseces.exe
Microsoft® Windows® Operating System C:\Windows\system32\BROWSEUI.dll
Microsoft® Windows® Operating System C:\Windows\system32\scrnsave.scr
mlb-nexdef-autobahn.exe C:\Users\Dave\AppData\Local\Autobahn\mlb-nexdef-autobahn.exe
OmniPage C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
QuickTime C:\Program Files\QuickTime\QTTask.exe
RealPlayer (32-bit) C:\Program Files\real\realplayer\Update\realsched.exe
Rogers Servicepoint Agent C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RogersServicepointAgent.exe
SSBkgdUpdate C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
Windows® Internet Explorer c:\windows\system32\webcheck.dll
(verified) Google Update C:\Program Files\Google\Update\GoogleUpdate.exe
(verified) Microsoft® Windows® Operating System c:\windows\system32\userinit.exe

Browser plugins
---------------
AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
Bitdefender QuickScan C:\Windows\Downloaded Program Files\qsax.dll
Bonjour C:\Program Files\Bonjour\mdnsNSP.dll
Browser Address Error Redirector c:\program files\dell\bae\bae.dll
DivX Web Player C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
DNA Plug-in C:\Program Files\DNA\plugins\npbtdna.dll
Google Toolbar for Internet Explorer c:\program files\google\google toolbar\googletoolbar_32.dll
Google Update C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.exe
Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Java™ Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
Java™ Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Java™ Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
Microsoft® CoReXT C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
npitunes.dll C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
NPWebSLLauncher.dll C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
QuickTime Plug-in 7.7.2 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
RealJukebox NS Plugin c:\program files\real\realplayer\Netscape6\nprjplug.dll
RealNetworks™ Chrome Background Exte C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
RealPlayer Download and Record Plugin C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
RealPlayer Download Plugin c:\program files\real\realplayer\Netscape6\nprpplugin.dll
RealPlayer™ G2 LiveConnect-Enabled P c:\program files\real\realplayer\Netscape6\nppl3260.dll
RealPlayer™ HTML5VideoShim Plug-In ( C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
Rogers Servicepoint Agent C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\nprpspa.dll
Silverlight Plug-In c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
Software Manager C:\Windows\Downloaded Program Files\isusweb.dll
Windows Presentation Foundation c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\Windows\system32\IEFRAME.dll
Yahoo Application State Plugin C:\Program Files\Yahoo!\Shared\npYState.dll
(verified) DivX Player Netscape Plugin C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
(verified) InstallShield Update Service C:\Windows\Downloaded Program Files\dwusplay.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\mswsock.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\napinsp.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\pnrpnsp.dll
(verified) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll

Scan
----
MD5: 72292ae254ad01236143e750d8952d03 C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
MD5: 63ab43534cbf5d7f3eb81dfdc8161490 C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
MD5: bfe015272a8a81ece1e79952db49bbce C:\Program Files\Adobe\Photoshop Elements 5.0\platform.dll
MD5: 84cbd6f6aa7ee399fbdc265b8ea64474 C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
MD5: 40947436a70e0034e41123df5a0a7702 C:\Program Files\Bonjour\mdnsNSP.dll
MD5: db5bea73edaf19ac68b2c0fad0f92b1a C:\Program Files\Bonjour\mDNSResponder.exe
MD5: d3316f6e3c011435f36e3d6e49b3196c C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
MD5: 02a450fb1b4131b63f0782b3b626bf3d C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll
MD5: ba0ed7aa3c36a8da27ded1d6b3508158 c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
MD5: b63e5c7807334a3a8f731062f15462cc C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
MD5: d19c4ee2ac7c47b8f5f84fff1a789d8a C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
MD5: 60c079cb2150760263d1fe5ff6218961 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
MD5: b45f2c4076acfd9714037b7c69d90167 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
MD5: ba02f01be7ed88e8974c798acb3075f5 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MD5: af54247f97ccf3539de7505c09972ff9 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
MD5: 67b539d844f804ebac7a1e3828fde709 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
MD5: 149d74e1128a86dc9cfb2851fbea11eb C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
MD5: 3bde52411df2fe4252c9289f51cb0f7e C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
MD5: fd86c605fd7ad4a41c01ec7a4a1e1c5d C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
MD5: a3609397ef273b03295dbb10274be12c C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
MD5: 18301b40411b2108076ab685b4e4b6dc C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MD5: 32d78dcabfb942275e01363d5232c77d C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
MD5: df1c1cd0c7ee95cc00d71e9e415e7bcd C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
MD5: c28fd3b37b6f18751c99e6022a2a9782 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
MD5: 53a6ffb9fff5c3e64b64e9b68c31d4e5 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
MD5: a56ccbbfccedce2fd9c69fed24e035e3 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MD5: f401929ee0cc92bfe7f15161ca535383 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
MD5: 3b7d8eae5e44cbda4cd772720594f116 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
MD5: d5369247b6c11eae2c0650d8303e23b4 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
MD5: b0bf87f9e247bb0621bce59eb8cd113f C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
MD5: 995beb69ae5c50d354894354f5a6cd5a C:\Program Files\Common Files\Java\Java Update\jusched.exe
MD5: 785f487a64950f3cb8e9f16253ba3b7b C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
MD5: cf39a105cd553eed31e2255aff4c6742 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
MD5: 45406ffd87f6ba4345b018e303a64ff1 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
MD5: fb01d4ae207b9efdbabfc55dc95c7e31 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
MD5: c649f293b8b047a2694f3c615d09bf17 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
MD5: fae937ced2dceb5001ff08acc81ba479 C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
MD5: cdb517386a26ae420cb24bdb3cd88779 C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
MD5: 846965ae55a2662b1576c0f392dd1d6e C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
MD5: 1d0063597c3666404fcf97698abeb019 C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
MD5: 1a4f60ef6da38621f1091b0cb0fa2c09 c:\program files\dell\bae\bae.dll
MD5: 58d9c70b01dbf2deaea787a1d7c869bb C:\Program Files\Dell\DellDock\DellDock.exe
MD5: db29915209770d8b59654345ec2d943a C:\Program Files\Dell\DellDock\DockLogin.exe
MD5: fc77ea9f18d22d6feca318e81a0bc473 C:\Program Files\Dell\DellDock\MyDockLib.dll
MD5: d05ef65bdd18fcb8632236d4e58b818d C:\Program Files\DNA\btdna.exe
MD5: fb9ca6bf794d81f533b633f40d7e8ec1 C:\Program Files\DNA\plugins\npbtdna.dll
MD5: 5d4bc124faae6730ac002cdb67bf1a1c C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
MD5: 9e37e0c528e1e3a79e215b6a4eea2143 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
MD5: 5d0207080ee0e1588f01f75b63e8bc3d c:\Program Files\Google\Google Desktop Search\googledesktopnetwork3.dll
MD5: a43d7a68d70f57e44352a1973c8196a8 c:\program files\google\google toolbar\googletoolbar_32.dll
MD5: 8f628060daecf76c537bd89a53228d3b C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
MD5: 75101a87783e93c4c7a64aa12413b8ab C:\Program Files\Griffin Technology\iTalk Sync\CopyHook.dll
MD5: 20aa5135c856c44b08333365ebfa8087 C:\Program Files\Internet Explorer\ieproxy.dll
MD5: 868722237aa095367491785e5c41ef0d C:\Program Files\Internet Explorer\IEShims.dll
MD5: 93569d46d79f9756ed077156496afe23 C:\Program Files\Internet Explorer\iexplore.exe
MD5: 0a7b01235b1cbfa387b04a91e2f2b7d0 C:\Program Files\Internet Explorer\plugins\nppdf32.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
MD5: 2f7480a40151eb2e483cf6524edba3f7 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
MD5: e6be7a41a28d8f2db174957454d32448 C:\Program Files\iPod\bin\iPodService.exe
MD5: ce4b444bd0cdcd45d57d17c206159bed C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL
MD5: edc992a51a19205c619c48261dd53655 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL
MD5: b1ca4aa760ff0ddfa1c38e95d19cfefb C:\Program Files\iTunes\iTunesHelper.dll
MD5: 34086f1dbb4065047ea3671cb70505cc C:\Program Files\iTunes\iTunesHelper.exe
MD5: e7fe89f69c3cc65cad3d1adc5d6a9f41 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL
MD5: 0654195051d1024c005e7be135a6fee7 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL
MD5: d28ad1cb902ac6d228532812d3850c7d C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
MD5: 0b4159026b99fa24baa9b1a62f8cbad0 C:\Program Files\Microsoft IntelliPoint\Components\Commands\dpghnt\dpghnt.dll
MD5: 844dbabfb55257433c4f116a4154c0c8 C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
MD5: 29e8836d4ba4bee95db9d1ffe1608115 C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
MD5: 812f17ed4c2ea6c5c4f872e9474bafff C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
MD5: 55c0c08f29c43cc9e883dfe4d98d80fc C:\Program Files\Microsoft IntelliPoint\ipoint.exe
MD5: 03a8471f917e71e986bda1e7b7aa6d70 C:\Program Files\Microsoft IntelliPoint\ipres.dll
MD5: 9a278db687a48c791d8d19790433562b C:\Program Files\Microsoft IntelliPoint\sqmapi.dll
MD5: 7ad9b21be75ae5aa81ef54636f227c66 C:\Program Files\Microsoft IntelliPoint\srres.dll
MD5: a8e35801e04a4183a27df60829402867 C:\Program Files\Microsoft Security Client\EppManifest.dll
MD5: 410ccadf699cee2c0c741df0fd90f204 c:\Program Files\Microsoft Security Client\mpclient.dll
MD5: 891348171414bf1fd6bbbd46159d5446 c:\Program Files\Microsoft Security Client\MpOAv.dll
MD5: 0b3e2a065bb0e0c8854fef37f90dc3be c:\Program Files\Microsoft Security Client\mprtp.dll
MD5: 120aa0938e8b76ce044d5307dd6caa11 c:\Program Files\Microsoft Security Client\mpsvc.dll
MD5: d5bd2608a465a5867e6220ff84e58768 c:\Program Files\Microsoft Security Client\MsMpCom.dll
MD5: 24516bf4e12a46cb67302e2cdcb8cddf C:\Program Files\Microsoft Security Client\MsMpEng.exe
MD5: 687b71c161b246ece1a13d24aacf0413 C:\Program Files\Microsoft Security Client\msseces.exe
MD5: 8de82bd61f12035a07ddf62f4a44d225 c:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
MD5: 290c0d4c4889398797f8df3be00b9698 c:\Program Files\Microsoft Security Client\NisSrv.exe
MD5: 9013599b12923a45c029c34e8d2211ac c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
MD5: 565b2e248ce57ad0d6a31d9fb200cb54 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
MD5: 67ec459e42d3081dd8fd34356f7cafc1 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\msvcr100.dll
MD5: 18c6a57b569f088c2bd7b828a211ac06 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
MD5: b82665cfecc58fb6479f33381abd9da2 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
MD5: 916a2c4eb028604783fd5ea169236c1d C:\Program Files\QuickTime\QTTask.exe
MD5: 82d8354db7ce7131fb939e8482ddf511 C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
MD5: 3719de4180e251ab91d8c183f2d949bf C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe
MD5: ba2d1c9cd426fea1dae5a133bf6f3075 c:\program files\real\realplayer\Netscape6\nppl3260.dll
MD5: ff83180f3d888205b3b137927a2665a5 c:\program files\real\realplayer\Netscape6\nprjplug.dll
MD5: b0bb120c94262686b7772ca71cebd364 c:\program files\real\realplayer\Netscape6\nprpplugin.dll
MD5: a05602fcf939a0a051d0cdf8c5ceda98 C:\Program Files\real\realplayer\Update\realsched.exe
MD5: 952bfa893477f97a0f254d82d38f45d4 C:\Program Files\Rogers Backup Manager\LIBEXPAT.dll
MD5: 70b029a0e50bbb1c95497b75d6626fa7 C:\Program Files\Rogers Backup Manager\VaultClientCOM.dll
MD5: 9c080e899a92a4dad24ab4205a47ced9 C:\Program Files\Rogers Backup Manager\VaultClientMenu.dll
MD5: f56f0e24e35fd91f74a5319e7081a0db C:\Program Files\Rogers Backup Manager\VaultClientSRV.exe
MD5: cf3b0ad3091b2997a1e5d4b6be87ec07 C:\Program Files\Rogers Backup Manager\VaultClientUpgrade.exe
MD5: c4890ace6384522e9b678f403ab5a145 C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\bin\AVGIDSAgent.exe
MD5: bdbed9fc165faf04be644ec212ba4603 C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSDriver.sys
MD5: a6c0c7d9da55e5c3dd9c62b11916586b C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSFilter.sys
MD5: a79eeb6feace017928581ef13d573745 C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSShim.sys
MD5: 716c833fdd8b3c3814cad55503a60bd9 C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\bdfltlib.dll
MD5: d90a33660d328a9f587580f0b38c85de C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\profos.sys
MD5: 4bea90f7d79143cc2135e2c5e85c9eb0 C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\scan.dll
MD5: 86ec240d05066b075569e39cdb245941 C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\smartscn.dll
MD5: 6d15feb597b46286f23ecade64d32b0f C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefenderEngineR.dll
MD5: ec43ffed505c4b4b41232ee3e5cf82e9 C:\Program Files\Rogers Online Protection\Rogers Online Protection\CLBR.DLL
MD5: a4877c15981a532502836f5f36b69b38 C:\Program Files\Rogers Online Protection\Rogers Online Protection\CstmUIR.dll
MD5: 74edbb03de3291fcf2094af1fb363f1d C:\Program Files\Rogers Online Protection\Rogers Online Protection\dbghelp.dll
MD5: cea890bbef0704f49daea9b340fb6a6c C:\Program Files\Rogers Online Protection\Rogers Online Protection\FireR.dll
MD5: ca9ed725bbd3f4795ebbed935fe6e824 C:\Program Files\Rogers Online Protection\Rogers Online Protection\FreeSCR.dll
MD5: 3fc8401df4ee3c257569cd50f2ff2f0d C:\Program Files\Rogers Online Protection\Rogers Online Protection\Fws.exe
MD5: 54d5e02a4c66671beea956a6679865c5 C:\Program Files\Rogers Online Protection\Rogers Online Protection\inhR.dll
MD5: e9390afa4cb30af10400c89c153e9e26 C:\Program Files\Rogers Online Protection\Rogers Online Protection\LibZkR.dll
MD5: 0adab1389e99deb9ca9b89e0857fa65a C:\Program Files\Rogers Online Protection\Rogers Online Protection\MalwareEngineR.dll
MD5: 687e03e8e214a51ed936596051f778b8 C:\Program Files\Rogers Online Protection\Rogers Online Protection\OemLibR.dll
MD5: 6ea00ad5a7d552a3d17bf6d2121a4d2b C:\Program Files\Rogers Online Protection\Rogers Online Protection\PersistR.dll
MD5: c401ccf45d3c2f11d9c252cce7021c91 C:\Program Files\Rogers Online Protection\Rogers Online Protection\PktShimR.dll
MD5: 663c165c99e0b902ab9b6cbf0d46ddf9 C:\Program Files\Rogers Online Protection\Rogers Online Protection\Resources\zk_en_US\CLB_Rsrc.dll
MD5: 5bf0caf1cdcfab7da7c2cd7e0603c654 C:\Program Files\Rogers Online Protection\Rogers Online Protection\Resources\zk_en_US\Fws_Rsrc.dll
MD5: 87f398eecc74e57fbc9b4e7657e8f550 C:\Program Files\Rogers Online Protection\Rogers Online Protection\Resources\zk_en_US\inh_Rsrc.dll
MD5: 6dceffad9f0a9ab4fbfefc044c2ea0ed C:\Program Files\Rogers Online Protection\Rogers Online Protection\RpsSecurityAwareR.exe
MD5: a45507d531de275cf0cff2fb7f29846e C:\Program Files\Rogers Online Protection\Rogers Online Protection\SecurityAwareLIBR.dll
MD5: bb902c9860255a25e6f1458391f55a9b C:\Program Files\Rogers Online Protection\Rogers Online Protection\SktShimR.dll
MD5: 05c3bf97e84f6d132c48b204b83acee3 C:\Program Files\Rogers Online Protection\Rogers Online Protection\UpdMgrR.dll
MD5: 9e4261c9fd4f0396a090bdb9e8e0e35c C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\BSUtil.dll
MD5: 9d47d89c5e942c533263f2578875627f C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\nprpspa.dll
MD5: ab89479b0b34f2145ff96a348d71a2c2 C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RogersServicepointAgent.exe
MD5: eec60879217702e58459102350ee87df C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RogersServicepointAgentComHandler.exe
MD5: b651a7b4bf84e7b14fb827d4d674891e C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\RpSpaWshComAgent.dll
MD5: 47c274b918dfa3de8e25e902568cbea6 C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\ServicepointService.exe
MD5: c826f7ba9c7bf0860cbf1f650e2edc1b C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\Windows7Features.dll
MD5: fba22c413fe8b13ba49d7535174ddbef C:\Program Files\ScanSoft\OmniPageSE4\OpHookSE4.dll
MD5: f8d427dae2984a4968e2d1cb53634784 C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
MD5: 6128e98eaaed364ed1a32708d2fd22cb C:\Program Files\Skype\Updater\Updater.exe
MD5: b7dc98f6f4e7611a9c0849945fb28fb9 C:\Program Files\Windows Defender\MpOav.dll
MD5: f3031f25c96f80a3297146903cea016b C:\Program Files\Windows Photo Gallery\PhotoBase.dll
MD5: 5eb87ba0b93ca7e894fc8002e3ce4c2a C:\Program Files\Windows Portable Devices\SqmApi.dll
MD5: aa060cc3384b08dadf9dad31f3d6175b C:\Program Files\Yahoo!\Shared\npYState.dll
MD5: 253973ca45d11d646d5fd23f205b8922 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{526002E9-B960-4F06-BF6A-B389643AE70F}\mpengine.dll
MD5: 1af17e5a327c4af6d930e2cfd709c74a C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
MD5: 6a03609a79d8c5acecb66eed53f3a0ab C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
MD5: 70677064555d2eb816249abb0150951f C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
MD5: 2a805b53e3d54e3c847ebf0a53ceb0e2 C:\Users\Dave\AppData\Local\Autobahn\mlb-nexdef-autobahn.exe
MD5: c17cf1e7ed495ade9e2bbb07aa592d92 C:\Users\Dave\AppData\Local\Autobahn\rt\bin\hpi.dll
MD5: d5f824b36d43465808639b082553cf59 C:\Users\Dave\AppData\Local\Autobahn\rt\bin\java.dll
MD5: 299634b6acaa2795e2ab4a3f935b026e C:\Users\Dave\AppData\Local\Autobahn\rt\bin\jetvm\jvm.dll
MD5: b52bcf2bf55ff248601277b7d7c8d13d C:\Users\Dave\AppData\Local\Autobahn\rt\bin\net.dll
MD5: 6c078c9f52d38604af22a025fd2394ac C:\Users\Dave\AppData\Local\Autobahn\rt\bin\nio.dll
MD5: 8f9397974d713971656da2681e787b4a C:\Users\Dave\AppData\Local\Autobahn\rt\bin\zip.dll
MD5: 0db1d42e30aa8da79e2e29664feb64d1 C:\Users\Dave\AppData\Local\Autobahn\rt\jetrt\baseline720.dll
MD5: d6804f089cbb6749e95124e7c4d80900 C:\Windows\AppPatch\AcLayers.DLL
MD5: 3dd74ddfada2d113033ebd87da85893a C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\1b337cf9a031145849bc48c11b2cfe58\Accessibility.ni.dll
MD5: d3f7336df6475923f26a732c4672c947 C:\Windows\assembly\NativeImages_v2.0.50727_32\DellDock\a2117f9d2b9670193889149f0ec777d5\DellDock.ni.exe
MD5: 6b9f51436b93925bfac9b0b47aee595f C:\Windows\assembly\NativeImages_v2.0.50727_32\MenuSkinning\e4ead33e7390326a9814a511c566054b\MenuSkinning.ni.dll
MD5: 015a9d857726c083144ca352a273378a C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
MD5: d30528cc80571fb8435a934bfd11102f C:\Windows\assembly\NativeImages_v2.0.50727_32\MyDock.Util\d8dfd448743194309366caa97c215c21\MyDock.Util.ni.dll
MD5: b8876bba284dfec2311d7694483ab8ae C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll
MD5: f05fdb5756f82c6cbbc9203d974a0c3b C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll
MD5: 5a6bfe723cf0e6e39021cdc01ca57eed C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\f3d4d5fe5ab848fbfcf91a49960dc8ae\System.Management.ni.dll
MD5: 279a8be318ebc0c25c5ea9aed19e0cf9 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll
MD5: 99495e46cbf87f1c1ff3e57c069d0a8d C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll
MD5: 1e03babb4d6ca5c27bd2c822f7f95788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll
MD5: 8fbf6631a3513b5bfd3f9519fe4c338b C:\Windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\53ff6fb64982a15d164f25e727be6bb4\VistaBridgeLibrary.ni.dll
MD5: 01e2eca759056f23c73a035fdabb2d6d C:\Windows\Downloaded Program Files\dwusplay.exe
MD5: 56940b50ab0e5923822f47b0e4463885 C:\Windows\Downloaded Program Files\qsax.dll
MD5: 3787a4bc97ce6c630f4b581425223d96 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MD5: c42ae64f5db6bc5e947b7e3e1b1e633e C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MD5: 35a936c7c029a5b705d3ffd40518d660 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
MD5: ab87eeffd18f2baafc274e7075ea6c67 c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
MD5: 215ce077258cedd5be4c56e9d614db9f C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
MD5: f5df6846f30e9f54ea60ccaeb3fb2055 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MD5: b503285b5d1cac5ae445d60c690dcff9 C:\Windows\RtHDVCpl.exe
MD5: e9b9c1b98c8d6d48407e1c1203eac659 C:\Windows\System32\adsldpc.dll
MD5: 031da76a5a7dc13f015dd3491394865e C:\Windows\system32\advpack.dll
MD5: 330a1e4df07c2e29949ed8631cd8828e C:\Windows\System32\AERTSrv.exe
MD5: f31eebc1a1c81fd04005489cc3dcdfe7 C:\Windows\system32\basesrv.dll
MD5: f21f255b91ca4f04e4250decd2067cbb c:\windows\system32\bitsperf.dll
MD5: d333058925ce305e39de8d5ad2b52a46 C:\Windows\system32\CLUSAPI.DLL
MD5: 74f26fc01b180d4a99a168ed69c30a53 C:\Windows\system32\cmd.exe
MD5: 7f15b4953378c8b5161d65c26d5fed4d C:\Windows\system32\cngaudit.dll
MD5: c7bd18da1a6e114d2ee4a0bac290de63 C:\Windows\System32\CNMLM97.DLL
MD5: 93e317d7ad783d8eaee2e3500bfe889d C:\Windows\System32\credui.dll
MD5: f180ede9cfc3ff218d4b45155119f4d9 c:\windows\system32\CRYPT32.dll
MD5: f798a893c8c214f74889dbf9d3a412de C:\Windows\system32\cryptnet.dll
MD5: 75c6a297e364014840b48eccd7525e30 c:\windows\system32\cryptsvc.dll
MD5: 187076dd5d8d4d5d23079d0741195ead C:\Windows\system32\CSRSRV.dll
MD5: abca209eba02cb59233614db83b4f50d C:\Windows\System32\csrss.exe
MD5: 6f766eb966d33dff62810c0b3190fcf7 C:\Windows\system32\CTAPO32.dll
MD5: e9b39c81c87e5b790fce121da9e02701 C:\Windows\system32\d2d1.dll
MD5: 8b02d2ecc7ef6e1f6af08459e3f741f6 C:\Windows\system32\d3d10.dll
MD5: 5256383d1d266a9eefcdb270340c0e5c C:\Windows\system32\d3d10_1.dll
MD5: a441f5b43eaf4bd4e3acfbe38841b46b C:\Windows\system32\d3d10_1core.dll
MD5: 9c7094f537782a82b6a29b4a7172e180 C:\Windows\system32\d3d10core.dll
MD5: 04802864f51046e93471083a24469ace C:\Windows\system32\D3D10Level9.dll
MD5: 4a4c71376eca305d6dea021f1a44816d C:\Windows\system32\D3D10Warp.dll
MD5: d76ef22d86646efe8b1b3ccbb362d4cc C:\Windows\system32\DaisyWrp.dll
MD5: 85e861d0b88db2b54acb0839654c09f7 c:\windows\system32\DNSAPI.dll
MD5: 57d762f6f5974af0da2be88a3349baaa c:\windows\system32\dnsrslvr.dll
MD5: 062373995eae5f0eac9eaa9192136bfb C:\Windows\system32\dnssd.dll
MD5: 3911b972b55fea0478476b2e777b29fa C:\Windows\system32\drivers\afd.sys
MD5: ab37408508b9754e657ec3a7d8af9e5c C:\Windows\system32\drivers\AVGIDSEH.sys
MD5: 9b281f5f673cbc5b9ec886d59e0b4f26 C:\Windows\system32\drivers\bdfsfltr.sys
MD5: 35f376253f687bde63976ccb3f2108ca C:\Windows\system32\DRIVERS\bowser.sys
MD5: 622c41a07ca7e6dd91770f50d532cb6c C:\Windows\System32\Drivers\dfsc.sys
MD5: c68ac676b0ef30cfbb1080adce49eb1f C:\Windows\System32\drivers\dxgkrnl.sys
MD5: 04944f4fc4f0477185f5d26ae0ddb90e C:\Windows\system32\DRIVERS\e1e6032.sys
MD5: 997e8f5939f2d12cd9f2e6b395724c16 C:\Windows\system32\drivers\iastor.sys
MD5: 9378d57e2b96c0a185d844770ad49948 C:\Windows\system32\DRIVERS\igdkmd32.sys
MD5: 4a1445efa932a3baf5bdb02d7131ee20 C:\Windows\System32\Drivers\ksecdd.sys
MD5: d993bea500e7382dc4e760bf4f35efcb C:\Windows\system32\DRIVERS\MpFilter.sys
MD5: 1e94971c4b446ab2290deb71d01cf0c2 C:\Windows\system32\DRIVERS\mrxsmb.sys
MD5: 4fccb34d793b116423209c0f8b7a3b03 C:\Windows\system32\DRIVERS\mrxsmb10.sys
MD5: c3cb1b40ad4a0124d617a1199b0b9d7c C:\Windows\system32\DRIVERS\mrxsmb20.sys
MD5: f70590424eefbf5c27a40c67afdb8383 C:\Windows\system32\drivers\msahci.sys
MD5: b52f26bade7d7e4a79706e3fd91834cd C:\Windows\system32\DRIVERS\NisDrvWFP.sys
MD5: e8717d9b0d1919cadafd8896a8e23e17 C:\Windows\system32\DRIVERS\NuidFltr.sys
MD5: f5cf06754ae54d9d3353fc9c59bc4e04 C:\Windows\System32\DRIVERS\papycpu2.sys
MD5: b09a71e8e1e127455f3a2fe83d38851f C:\Windows\System32\DRIVERS\papyjoy.sys
MD5: b9c2b89f08670e159f7181891e449cd9 C:\Windows\System32\drivers\partmgr.sys
MD5: 1636d43f10416aeb483bc6001097b26c C:\Windows\system32\drivers\pciide.sys
MD5: e56e57cfb75b1ee2bb001ad036c27fbb C:\Windows\system32\DRIVERS\point32k.sys
MD5: 3a5633ad615e2b15291bd0b1b97ccd8a C:\Windows\system32\DRIVERS\RimSerial.sys
MD5: 4f4a4c09cc5be58a76cac1c337e004e6 C:\Windows\System32\Drivers\RimUsb.sys
MD5: 75e8a6bfa7374aba833ae92bf41ae4e6 C:\Windows\System32\Drivers\RootMdm.sys
MD5: b7e136986bb3dac249a00e760281f0a9 C:\Windows\system32\DRIVERS\rp_pkt32.sys
MD5: 750d83c39d60964b6bc2b8a75ed7a165 C:\Windows\system32\DRIVERS\rp_skt32.sys
MD5: f8f53c5449f15b23d4c61d51d2701da8 C:\Windows\system32\drivers\RTKVHDA.sys
MD5: 12e0a4134d5fd9914b965aa5aaa49e8f C:\Windows\System32\Drivers\SQcaptur.sys
MD5: 41987f9fc0e61adf54f581e15029ad91 C:\Windows\System32\DRIVERS\srv.sys
MD5: ff33aff99564b1aa534f58868cbe41ef C:\Windows\System32\DRIVERS\srv2.sys
MD5: 7605c0e1d01a08f3ecd743f38b834a44 C:\Windows\System32\DRIVERS\srvnet.sys
MD5: ee7e10bed85c312c1d5d30c435bdda9f C:\Windows\System32\drivers\tcpip.sys
MD5: 2c2d4cff5e09c73908f9b5af49a51365 C:\Windows\System32\drivers\tcpipreg.sys
MD5: eafe1e00739afe6c51487a050e772e17 C:\Windows\System32\Drivers\usbaapl.sys
MD5: cabd1b34bd05c986b4dbc18bc0e947ee C:\Windows\system32\DWrite.dll
MD5: aaae543c535ed596ecad2ab8761c2c6f C:\Windows\system32\dxgi.dll
MD5: 4312debdacbe338f0b90e7f08e7672be C:\Windows\system32\Dxtmsft.dll
MD5: ca493a92da9880b6f1a89c3dbd54ba5b C:\Windows\system32\Dxtrans.dll
MD5: b8a21907fe2f1a113f3487d9ab60bef9 C:\Windows\system32\en-us\tQuery.dll.mui
MD5: abaeaee763e287bdd39094c4165e1f3f C:\Windows\system32\fdproxy.dll
MD5: a9542ff2e9a82cf100e5729ec79068f0 C:\Windows\system32\FLTLIB.DLL
MD5: 8ce364388c8eca59b14b539179276d44 c:\windows\system32\fntcache.dll
MD5: 67bb7141f7f5f37411f796943b3418b6 C:\Windows\system32\framedynos.dll
MD5: 03f2078a0af7e12fd294d36541a57eca C:\Windows\System32\hccutils.DLL
MD5: b4b59ac042ee3733a862f26cbc0b17fc C:\Windows\system32\hidphone.tsp
MD5: 5f529fbb095cbc9f14bb1e97a7a6b547 C:\Windows\System32\hkcmd.exe
MD5: 0c84b6affa7486422235584110d7176f c:\windows\system32\ICAAPI.dll
MD5: ed6f6fbbcdec95483b7351e23f4fcdf6 C:\Windows\system32\IEADVPACK.DLL
MD5: ee9d715af1b928982f417238b9914484 C:\Windows\system32\ieapfltr.dll
MD5: 32e15ecf5854f5610bc895490bc3246a C:\Windows\system32\IEFRAME.dll
MD5: b17adbbbdc97148d28f995f32c380f2e C:\Windows\system32\iertutil.dll
MD5: 2cc34eff09799a50fa44299599f6589f C:\Windows\system32\IEUI.dll
MD5: 784485b6bf7f0156d3cf64e8a91d1ce6 C:\Windows\system32\igdumd32.dll
MD5: 6b01dad4cb6b2bb507a268dd0dfef04f C:\Windows\system32\igfxdev.dll
MD5: d8a33af26e4143f7a892009890bb6f64 C:\Windows\System32\igfxpers.exe
MD5: d0e997dd37fdf2b7951c96c71b99f14c C:\Windows\system32\igfxrENU.lrc
MD5: 65c4ecda9f77735b26d3459df535db81 C:\Windows\system32\igfxsrvc.dll
MD5: 734006a2db2404138f2c1a2cb86d32ef C:\Windows\System32\igfxsrvc.exe
MD5: 412c0e1b515ab44f45037cd495d6a1be C:\Windows\system32\igfxTMM.dll
MD5: 7f7b42b1ba42242116f5b277a063fe2e C:\Windows\system32\igfxtray.exe
MD5: eb49faa5ebbc06356fb12476438781b9 C:\Windows\system32\imagehlp.dll
MD5: a2c5a505398a160af30121e307ae996e C:\Windows\system32\jscript.dll
MD5: 9f179da6bf972f2b8b7f90978d02d719 C:\Windows\System32\jscript9.dll
MD5: 574b473facaa0e91702b86578440b525 C:\Windows\system32\kernel32.dll
MD5: 953193a9dea40348c1086d171f6440ae C:\Windows\system32\kmddsp.tsp
MD5: ca0b849566776a17f35f0339be17dfd9 c:\windows\system32\ktmw32.dll
MD5: 35d40113e4a5b961b6ce5c5857702518 c:\windows\system32\lmhsvc.dll
MD5: 63396cbb1365769d520e0fd89c2419f2 C:\Windows\System32\localspl.dll
MD5: 178fac2b7c66e9a4400ce7ac37623e3f C:\Windows\system32\LSASRV.dll
MD5: a3e186b4b935905b829219502557314e C:\Windows\System32\lsass.exe
MD5: 09cc3cb9b87dd31a6ebfe5f9b99fdd4c C:\Windows\system32\Macromed\Flash\Flash32_11_3_300_271.ocx
MD5: a9d3b95e8466bd58eeb8a1154654e162 C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
MD5: bf142d4f8c61ed3629a9cdd7ba867900 C:\Windows\System32\mfplat.dll
MD5: b4f5de3dad8e6b97272f45db97674878 C:\Windows\System32\mgmtapi.dll
MD5: 2e837f3d406224df131c34bc8f71621e C:\Windows\system32\modemui.dll
MD5: 56e315acfb08a177b4d01e42b9044db5 C:\Windows\System32\MPRAPI.dll
MD5: 7940c04ce581288a3498d57ec4ee47d2 C:\Windows\System32\msfeeds.dll
MD5: 5e8e869e1342308752a37a2c90cca79d C:\Windows\system32\MSHTML.dll
MD5: aab5feaabf4cb6f76d794203831c8d94 C:\Windows\system32\Msidle.dll
MD5: 35aae2e841aa1a949775168e119482c9 C:\Windows\system32\msls31.dll
MD5: c52ce534397e1d3a442fb4c88a3cbe42 C:\Windows\System32\msonpmon.dll
MD5: 5e41139ec6efbcaffd96d46925e544ab c:\windows\system32\mspatcha.dll
MD5: abe9eea1eabea0711610a637a7b1c25d C:\Windows\system32\msprivs.dll
MD5: 17af64d727545f2804f6e6d998327e3f C:\Windows\system32\msvcrt.dll
MD5: 6abd253226770eae1292b4c945ed4b4b C:\Windows\System32\msxml3.dll
MD5: 024528e25bbe8768536861ea09be1672 C:\Windows\System32\msxml6.dll
MD5: 2fa16465f64db54b1f7f511395eb4fd7 C:\Windows\system32\NCObjAPI.DLL
MD5: 188cc19108b0ebd6332d6628d4ede469 C:\Windows\system32\ncrypt.dll
MD5: f4d9ed6bd74ad7cc0bec83c43a1cb76b c:\windows\system32\ncsi.dll
MD5: 2f6776acefe41ee889c464ea407918f2 C:\Windows\system32\ndptsp.tsp
MD5: 98b656eaf128cd06f625b09c84d959e1 C:\Windows\system32\NETAPI32.dll
MD5: 6bc5fcef351e4cb5a269c1e84b5a06da C:\Windows\system32\netcfgx.dll
MD5: 95daecf0fb120a7b5da679cc54e37dde C:\Windows\system32\netlogon.dll
MD5: 4bf053944e973c073339be841c9ecf28 C:\Windows\System32\NETRAP.dll
MD5: 2f4781f84c92e8c4b1586e47a78e8a61 C:\Windows\system32\npDeployJava1.dll
MD5: 8bb86f0c7eea2bded6fe095d0b4ca9bd c:\windows\system32\nsisvc.dll
MD5: dda770bbd7c2ed024d6f50e279d90e5b C:\Windows\system32\ntdll.dll
MD5: 9586e7cb2255a8b097a7e4538202585e C:\Windows\system32\ole32.dll
MD5: dc15ab7168c0309d8f04fd95b6240422 c:\windows\system32\OLEACC.dll
MD5: b218342214d9bba0f54ea12ba2e9278c C:\Windows\system32\OLEAUT32.dll
MD5: f0062778f50838145ac46b384ffb4fa3 C:\Windows\system32\pcadm.dll
MD5: 21322832c99e8de85bd047689a2a69db C:\Windows\system32\pnpts.dll
MD5: db551a68e81c9049ae050dc0729f3fed C:\Windows\system32\pots.dll
MD5: e340845c8e96d107c36420065d7a5733 C:\Windows\system32\printcom.dll
MD5: 429a7b2973a57b1ef405df270cf3f90c C:\Windows\system32\prnntfy.dll
MD5: 08f9134a2215b7ed985409a4df60ac60 C:\Windows\system32\psbase.dll
MD5: 6d01259214d1e815613eca3cd81679ec C:\Windows\system32\pstorsvc.dll
MD5: c55d27c5a6b99fc8c40feb51b4dacd75 C:\Windows\system32\puiobj.dll
MD5: 801f1e963f7eeffda3f9ef89db3ef133 C:\Windows\system32\radardt.dll
MD5: 2dd6af8e97f59c9d39329bbc2a81f13f C:\Windows\System32\RASDLG.dll
MD5: 88225070dd2f7b0b2ed51e7935078641 C:\Windows\system32\RASQEC.DLL
MD5: b9f3ff52b84fd9e3cafb29b8ee385e5b C:\Windows\system32\RESUTILS.DLL
MD5: c76672234d46fa1a81547f97332eb5d6 C:\Windows\system32\RtkAPO.dll
MD5: 50e3e76b0901bb4fc029bb88bfa5ce79 C:\Windows\system32\schannel.dll
MD5: 1a58069db21d05eb2ab58ee5753ebe8d c:\windows\system32\schedsvc.dll
MD5: 0b883a187017547784420e0a855604d9 C:\Windows\system32\scrnsave.scr
MD5: d602fedbd9155fc2ded6863fb60c950f c:\windows\system32\Secur32.dll
MD5: 0a990afb9f2726323d61c8ecb8b70b17 C:\Windows\system32\security.dll
MD5: 167ac31450c0c53a01fa1491e94d7678 C:\Windows\System32\shdocvw.dll
MD5: aaf101900a23d75ae1ae00840fa6f3b8 C:\Windows\system32\SHELL32.dll
MD5: 9176285122b7b849fec2aa1b72a8f7a8 C:\Windows\system32\SHLWAPI.dll
MD5: c7230fbee14437716701c15be02c27b8 C:\Windows\system32\SHSVCS.dll
MD5: 0be1d05f714dbad3d3a3d316a66555ce C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR97.DLL
MD5: 391f6b1a6692c9ac97c0a733d7f2b405 C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMUI97.DLL
MD5: 1e35825eed687981f94aa15b2fe85deb C:\Windows\system32\spool\PRTPROCS\W32X86\CNMPD97.DLL
MD5: 8554097e5136c3bf9f69fe578a1b35f4 C:\Windows\System32\spoolsv.exe
MD5: bf7e4d6f60a6d9e866432855c6f8c262 c:\windows\system32\sqmapi.dll
MD5: 1bf5eebfd518dd7298434d8c862f825d c:\windows\system32\srvsvc.dll
MD5: 452341e471d2d961229dfe0842957272 C:\Windows\system32\SSCORE.DLL
MD5: 365828e555e9479246efd9090c41c2d7 C:\Windows\System32\sti.dll
MD5: b5950df243837d8217f4e597919b224a C:\Windows\system32\stobject.dll
MD5: 71f5a7104fdf16c0ac5283a6ce666553 C:\Windows\system32\SYSNTFY.dll
MD5: bfa034aac103d8a6f591ac9364688339 C:\Windows\system32\T2EMBED.DLL
MD5: 2a6a2c09ecc2cb495628e45f1379ece8 C:\Windows\system32\taskcomp.dll
MD5: 3d50c4b10352367d5cb20ed1f50f8da2 C:\Windows\System32\taskeng.exe
MD5: 52e129522c1775dbb8cc252e7a0655c7 C:\Windows\system32\taskschd.dll
MD5: cde36a70a5280fc0696e6e4363c4c71d C:\Windows\system32\TaskSchdPS.dll
MD5: 5091452dc719281cf1dd69367e13b494 C:\Windows\System32\tcpmib.dll
MD5: 8a38b5e8493a9d103083b8620ac5f3a1 C:\Windows\system32\tdh.dll
MD5: f8873d15018f411588bec02c1725bada C:\Windows\system32\tspkg.dll
MD5: e45051c374f845edf3db02a35ba13193 C:\Windows\system32\umb.dll
MD5: 0b71899e60d1265229bf3d080eab573d C:\Windows\system32\unimdmat.dll
MD5: dfbaadf1b624dc71e88d34d86b3595be C:\Windows\system32\uniplat.dll
MD5: 667981f2e7c26275f0694b58eee303b9 C:\Windows\system32\urlmon.dll
MD5: 0bf0bb276f17b6ad61a8694d2551ec28 C:\Windows\System32\usbmon.dll
MD5: 80fff14f1757b9af8be9d314fc1ae88b C:\Windows\system32\USP10.dll
MD5: dc3ae9f1554dcd97f90983ddbdacd83d C:\Windows\system32\vsstrace.dll
MD5: f723422a11cd6fa13036746272200993 C:\Windows\system32\wbem\cimwin32.dll
MD5: 83c2f5076e1b4a63c04f2b14ee7cad47 C:\Windows\system32\wbem\wbemdisp.dll
MD5: 2c3b09e586bda2cc49a292be7badc589 C:\Windows\system32\wbem\wmiutils.dll
MD5: e7d0f91e44d9d3b2116fa549bdcdb756 c:\windows\system32\WDSCORE.dll
MD5: 5193de33f3284c447e0d31dafbf92570 c:\windows\system32\webcheck.dll
MD5: 0745d6ead386710110817fbec03f5161 C:\Windows\system32\wfapigp.dll
MD5: 73fe2e5fa55088a241aa2732f5d387d6 C:\Windows\system32\wiarpc.dll
MD5: dbd02e3e6f061ebbbf9b99a9d7cba30b C:\Windows\System32\WINHTTP.dll
MD5: 75a97a2c060e72ab49e071e08c7dd2ba C:\Windows\system32\WININET.dll
MD5: 101ba3ea053480bb5d957ef37c06b5ed C:\Windows\System32\wininit.exe
MD5: 14ff750efe13b0c21e5a06507c3a97b1 c:\windows\system32\WINMM.dll
MD5: 5ec8fb83f31aa2d6f421f02c3f4f4475 c:\windows\system32\WINSPOOL.DRV
MD5: d2293b069e4b63dc17b2f08d45e71124 C:\Windows\system32\winsrv.dll
MD5: e253e5da1249a471d913f7ea4c81faf6 C:\Windows\system32\WINTRUST.dll
MD5: 92283d9e33ec5f41ecc0b430b7459241 C:\Windows\system32\wls0wndh.dll
MD5: 0727200f10320a6ba7e59433094fbba7 C:\Windows\system32\WMALFXGFXDSP.dll
MD5: f0321da5203f1e71917f3b7a13dc4912 C:\Windows\system32\WMsgAPI.dll
MD5: a9662bcf218bc76869a8d91635d5f93a C:\Windows\System32\Wpc.dll
MD5: 1a617835452eee5060976c9b9f5fe635 C:\Windows\system32\wuapi.dll
MD5: fc3ec24fce372c89423e015a2ac1a31e c:\windows\system32\wuaueng.dll
MD5: 399bb52ad0668472717498e97cf28341 c:\windows\system32\WUDFPlatform.dll
MD5: 1908cc7673f72601affdca022689cedf C:\Windows\system32\XmlLite.dll
MD5: d5e459bed3db9cf7fc6cc1455f177d2d C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCP80.dll
MD5: c9564cf4976e7e96b4052737aa2492b4 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll
MD5: 1f5afd468eb5e09e9ed75a087529eab5 C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
MD5: 28a09777d2d952122567a8a82f1a2c7b C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80ENU.DLL
MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll
MD5: cdbe9690cf2b8409facad94fac9479c9 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll
MD5: 35acd5ea63d75e97dd0e9a1629e582b2 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll
MD5: be3c082837866c4c291adaf163c10ea6 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MD5: 76eaef4ddebbc7c38853f586c0e91dce C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll

No file uploaded.
Scan finished - communication took 2 sec
Total traffic - 0.02 MB sent, 1.49 KB recvd
Scanned 921 files and modules - 32 seconds
==============================================================================

[Maurice Naggar]

Very good results.

Download Security Check by screen317 from here.

• Save it to your Desktop.
  
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

[dave3232]

Hi Maurice, here is the log:

Results of screen317's Security Check version 0.99.46
Windows Vista Service Pack 2 x86 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Rogers Online Protection Anti-Virus
Microsoft Security Essentials
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.62.0.1300
JavaFX 2.1.1
Java™ 7 Update 5
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Adobe Reader X (10.1.4)
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
Rogers Online Protection Rogers Online Protection Fws.exe
Rogers Online Protection Rogers Online Protection AVG Identity Protection\agent\Bin\AVGIDSAgent.exe
Rogers Online Protection Rogers Online Protection RpsSecurityAwareR.exe
Rogers Online Protection Rogers Servicepoint Agent ServicepointService.exe
Rogers Online Protection Rogers Servicepoint Agent RogersServicepointAgent.exe
Rogers Online Protection Rogers Servicepoint Agent RogersServicepointAgentComHandler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1 %
````````````````````End of Log``````````````````````

[Maurice Naggar]

You are showing two antivirus apps. Having more than 1 active-monitor antivirus will lead to deadlocks and conflicts.
I'd suggest removing Rogers Online, and restarting the system. Keep MS Security Essentials.

Turn on User Account Control. See this MS article
Turn User Account Control on or off http://windows.micro...ntrol-on-or-off

Keep in mind that out of date utilities, like Java runtime & Adobe Reader, are one of the most frequent facilitators for malicious attacks.
Keep abreast of security updates and always keep those up-to-date.
To that end, get & use Secunia PSI on a regular basis.
See How to detect vulnerable and out-dated programs using Secunia Personal Software Inspector

Adobe Reader
Older versions of Adobe Reader pose a potential security risk.
De-install your Adobe Reader: Use Control Panel's Program and Features, Un-install Adobe Reader 9.
Exit Control Panel

Java
Your Java runtime is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update.

• Accept the EULA & Download the latest version of >> Windows Offline << from here and save it to your desktop.
  
  
• Get the Offline version that corresponds to your "bit-tedness" of your Windows (32-bit or 64-bit)
  How to determine whether a computer is running a 32-bit version or 64-bit version of the Windows operating system
  
  
• Close any programs you may have running - especially your web browser(s).
  
• Go to Start > Settings > Control Panel, select Add/Remove Programs and remove all older versions of Java.
  
• Check (highlight) any item with Java Runtime Environment (JRE or J2SE or Java) in the name.
  
• Click the Remove or Change/Remove button.
  
• Repeat as many times as necessary to remove each Java versions.
  
  
• Reboot your computer once all Java components are removed.
  
  
• Then from your desktop double-click on jre-7u6-windows-i586.exe to install the newest version.
  ( jre-7u6-windows-x64.exe if this is a 64-bit Windows o.s.)

• After the install is complete, go into the Control Panel (using Classic View) and double-click the Java Icon. (looks like a coffee cup)
  • On the General tab, under Temporary Internet Files, click the Settings button.
    
  • Next, click on the Delete Files button
    
  • There are two options in the window to clear the cache - Leave BOTH Checked
    Applications and Applets
    Trace and Log Files
  • Click OK on Delete Temporary Files Window
    Note: This deletes ALL the Downloaded Applications and Applets from the CACHE.
    
  • Click OK to leave the Temporary Files Window

Small tweaks for Java runtime, since most all users do not need to load Java at each Windows startup:
Click Advanced Tab. Expand the Miscellaneous item.
UN-check the line Java quick starter

Press Apply then OK. Close the applet when done.

Best to you. Cheers.

Edited by Maurice Naggar, 22 August 2012 - 06:04 AM.

[dave3232]

Hi again Maurice,

I did everything you suggested above, thank you.

The only issue I came across was that I could not find Adobe Reader 9 in the list of programs to uninstall, and it does still show up when I run the Security Check by screen317.

Let me know if you have any suggestions for that, and also if there are any additional steps I need to take.

Otherwise things seem to be fine.

Thanks,
Dave

[Maurice Naggar]

@ Dave3232

If you are very sure that Adobe Reader 9 is not showing in Programs and Features, but only version 10 then you are OK.

[dave3232]

Thank you very much for all of your help Maurice.

[Maurice Naggar]

You're welcome Dave. Cheers.