Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

cant run OTL


  • Please log in to reply

#61
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
result from sigverif

hi ron only 5 unsigned files newest is from 2007 ?
>atprint.gpd 1/ 29 /07
>atpdrvnt.dll 1/29/07
>acpdfui250.dll 12/21/05
>acpdf250.dll 12/25/05
>acpdf.txt 12/8/05

thats it nothing recent
going to download event veiwer by vino now results to come soon

Edited by snowysdad43, 11 November 2011 - 09:51 PM.

  • 0

Advertisements


#62
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
Vino's Event Viewer v01c run on Windows XP in English
Report run at 11/11/2011 10:55:11 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 11/11/2011 9:12:44 PM
Type: error Category: 0
Event: 7011 Source: Service Control Manager
Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service.

Log: 'System' Date/Time: 11/11/2011 9:11:32 PM
Type: error Category: 0
Event: 7023 Source: Service Control Manager
The Akamai NetSession Interface service terminated with the following error: The specified module could not be found.

Log: 'System' Date/Time: 11/11/2011 9:11:32 PM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The adfs service failed to start due to the following error: The system cannot find the file specified.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 11/11/2011 9:26:47 PM
Type: warning Category: 0
Event: 18 Source: avgntflt
TIMEOUT<mmc.exe> C:\...\Network Magic\nmrsrc.dll

Log: 'System' Date/Time: 11/11/2011 9:17:04 PM
Type: warning Category: 0
Event: 18 Source: avgntflt
TIMEOUT<explorer.exe> C:\...ork Magic\nmrsrc.dll

Log: 'System' Date/Time: 11/11/2011 9:16:00 PM
Type: warning Category: 0
Event: 18 Source: avgntflt
TIMEOUT<nmapp.exe> C:\...etwork Magic\nmrsrc.dll

Log: 'System' Date/Time: 11/11/2011 9:13:56 PM
Type: warning Category: 0
Event: 18 Source: avgntflt
TIMEOUT<nmapp.exe> C:\...etwork Magic\nmrsrc.dll

Log: 'System' Date/Time: 11/11/2011 9:13:23 PM
Type: warning Category: 0
Event: 18 Source: avgntflt
TIMEOUT<nmapp.exe> C:\...etwork Magic\nmrsrc.dll
  • 0

#63
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
Vino's Event Viewer v01c run on Windows XP in English
Report run at 11/11/2011 10:58:39 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#64
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,788 posts
  • MVP
Start, Run, services.msc, OK

Find the Akamai NetSession Interface service and right click and select Properties then change the Startup Type: to Disabled and Apply, OK

Repeat for NVIDIA Driver Helper Service

Repeat for adfs service (Might have a longer name like ADFS Web Agent Authentication Service)

Copy the next line:

C:\Program Files\Network Magic\nmrsrc.dll

Now go to http://www.virustotal.com

Click on Browse and then Ctrl + V to paste the copied line in and hit Open

Hit Send. It will take a little time but you should get a report on the file. 0/43 is clean. If you don't get a 0 then view last report and copy and paste the text into a reply. I sort of expect it to be clean but Avira is choking on the file for some reason.

Use IE and go to http://eset.com/onlinescan and click on ESET online Scanner. Accept the terms then press Start (If you get a warning from your browser tell it you want to run it).

# Check Scan Archives
# Push the Start button.
# ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
# When the scan completes, push LIST OF THREATS FOUND
# Push EXPORT TO TEXT FILE , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
# Push the BACK button.
# Push Finish
# Once the scan is completed, you may close the window.
# Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
# Copy and paste that log as a reply.


Let's also try the bitdefender quickscan.

http://quickscan.bitdefender.com/

When it finishes there is a report option. Click on it and copy and paste the report (even if it says nothing found).


How is it running?
  • 0

#65
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
ron i can not find the adfs web agent authentication under either name ? should i proceed anyway with the procedure ?

Edited by snowysdad43, 12 November 2011 - 09:43 PM.

  • 0

#66
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,788 posts
  • MVP
Yes we will look for it later.
  • 0

#67
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
there is no browse button i did the" submit url" procedure and thatis running now on another tab will advise
am i supposed to "choose a file " the other option available ? when i do that it opens up a open feature for me to choose a file in my computer and the section to check is 15.0.874.120 it looks like the save as box is that where i paste the file ?

edited to say i downloaded the program now i am goiing to browse the file sorry i misunderstood how to do this procedure
thanks ron

Edited by snowysdad43, 14 November 2011 - 09:46 PM.

  • 0

#68
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,788 posts
  • MVP
Not sure why you are not seeing the Browse button. Submit a URL isn't going to do it for you. Go back to Upload a File and you should see the Browse button. Once you click on it then you get a window that lets you point it at a file but you can just paste in the path and not have to steer it.
  • 0

#69
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
ron i did see the browse button when i past the file it says the path does not exist and to verify the correct path was given
i am going to procede with the next scan that you suggested

edited to say : i am running este and it has already detected a win 32/bagle.gen zip worm ? still awaiting final scan results will advise

edited again (dont want to bump my topic )
hi ron scan is still running 3.5 hours now and says 14 things found
but they are mostly variants of win 32 viruses i am wondering if it is seeing some of the malware tools as viruses ?
any way i will post log when done

Edited by snowysdad43, 15 November 2011 - 09:30 PM.

  • 0

#70
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WildTangent8.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\hp\bin\wbug\CompaqPresario_Spring06.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP357\A0040755.dll a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP398\A0049390.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP432\A0051140.exe a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP432\A0051142.dll a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP432\A0051143.exe a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP432\A0051144.exe a variant of Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP437\A0057627.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP437\A0057628.exe a variant of Win32/Toolbar.Zugo application deleted - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP438\A0065944.exe a variant of Win32/Toolbar.Zugo application deleted - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP438\A0065967.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP438\A0066811.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP446\A0074023.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
D:\I386\APPS\APP29429\src\CompaqPresario_Spring06.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
D:\I386\APPS\APP29429\src\HPPavillion_Spring06.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
D:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP446\A0074089.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
D:\System Volume Information\_restore{00EFF98B-5705-4D9A-BA78-7681A60AFB54}\RP446\A0074090.exe a variant of Win32/Toolbar.MyWebSearch application deleted - quarantined
  • 0

Advertisements


#71
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
QuickScan Beta 32-bit v0.9.9.99
-------------------------------
Scan date: Wed Nov 16 02:06:51 2011
Machine ID: BC7DA2C2



No infection found.
-------------------



Processes
---------
AntiVir Desktop 2484 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
AntiVir Desktop 240 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
AntiVir Desktop 444 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
AntiVir Desktop 1632 C:\Program Files\Avira\AntiVir Desktop\sched.exe
AOL Service Libraries 3192 C:\Program Files\Common Files\AOL\1230249116\EE\aolsoftware.exe
AOL Service Libraries 3200 C:\Program Files\Common Files\AOL\1230249116\EE\aolsoftware.exe
Apple Mobile Device Service 432 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
Bonjour 464 C:\Program Files\Bonjour\mDNSResponder.exe
brother Industries Ltd brss01a.exe 1580 C:\WINDOWS\system32\brss01a.exe
brother Industries Ltd brsvc01a 1560 C:\WINDOWS\system32\brsvc01a.exe
Content Transfer Walkman Detector 652 C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
Core Service 228 C:\Program Files\SUPERAntiSpyware\SASCore.exe
DNA 3840 C:\Program Files\DNA\btdna.exe
hp digital imaging - hp all-in-one seri 3692 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
hpsysdrv 2976 C:\WINDOWS\system\hpsysdrv.exe
InstallShield Update Service 3024 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
iTunes 2164 C:\Program Files\iPod\bin\iPodService.exe
iTunes 2540 C:\Program Files\iTunes\iTunesHelper.exe
Java™ Platform SE 6 U21 816 C:\Program Files\Java\jre6\bin\jqs.exe
Microsoft® Windows® Operating System 1588 C:\WINDOWS\system32\spoolsv.exe
Pure Networks Platform 2956 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
Pure Networks Platform 1820 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
QuickTime 2248 C:\Program Files\QuickTime\QTTask.exe
RealPlayer (32-bit) 512 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
Realtek HD Audio Sound Effect Manager 3516 C:\WINDOWS\RTHDCPL.EXE
SUPERAntiSpyware 2660 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(verified) Microsoft® Visual Studio .NET 1128 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(verified) Microsoft® Windows® Operating System 2132 C:\WINDOWS\explorer.exe
(verified) Microsoft® Windows® Operating System 2948 C:\WINDOWS\system32\alg.exe
(verified) Microsoft® Windows® Operating System 668 C:\WINDOWS\system32\csrss.exe
(verified) Microsoft® Windows® Operating System 3672 C:\WINDOWS\system32\ctfmon.exe
(verified) Microsoft® Windows® Operating System 748 C:\WINDOWS\system32\lsass.exe
(verified) Microsoft® Windows® Operating System 736 C:\WINDOWS\system32\services.exe
(verified) Microsoft® Windows® Operating System 600 C:\WINDOWS\system32\smss.exe
(verified) Microsoft® Windows® Operating System 1352 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1748 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1320 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1144 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1092 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 972 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 912 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1448 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 692 C:\WINDOWS\system32\winlogon.exe
(verified) Windows® Internet Explorer 2964 C:\Program Files\Internet Explorer\iexplore.exe
(verified) Windows® Internet Explorer 3876 C:\Program Files\Internet Explorer\iexplore.exe


Network activity
----------------
Process iexplore.exe (2964) connected on port 80 (HTTP) --> 74.125.226.173
Process iexplore.exe (2964) connected on port 80 (HTTP) --> 69.171.228.13
Process iexplore.exe (2964) connected on port 80 (HTTP) --> 63.116.246.8
Process iexplore.exe (2964) connected on port 80 (HTTP) --> 63.116.246.82
Process iexplore.exe (2964) connected on port 443 (HTTP over SSL) --> 72.14.204.95
Process aolsoftware.exe (3192) connected on port 443 (HTTP over SSL) --> 205.188.134.217

Process svchost.exe (972) listens on ports: 135 (RPC)
Process nmsrvc.exe (1820) listens on ports: 1196
Process btdna.exe (3840) listens on ports: 2311


Autoruns and critical files
---------------------------
Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
AntiVir Desktop C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
AOL Connectivity Service C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
AOL Service Libraries C:\Program Files\Common Files\AOL\1230249116\EE\aolsoftware.exe
Apple Software Update C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Content Transfer Walkman Detector C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
DNA C:\Program Files\DNA\btdna.exe
hp digital imaging - hp all-in-one seri C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
HPBootOp C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
InstallShield Update Service C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe
Microsoft Office OneNote C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
Microsoft® Windows® Operating System C:\WINDOWS\system32\CRYPT32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cscdll.dll
Microsoft® Windows® Operating System C:\WINDOWS\System32\dimsntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\SHELL32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\upnpui.dll
Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\WlNotify.dll
Network Magic C:\Program Files\Pure Networks\Network Magic\nmapp.exe
NVIDIA Compatible Windows 2000 Display C:\WINDOWS\system32\NvCpl.dll
nwiz.exe C:\WINDOWS\system32\nwiz.exe
Pure Networks Platform C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
QuickTime C:\Program Files\QuickTime\QTTask.exe
RealPlayer (32-bit) C:\Program Files\Common Files\Real\Update_OB\realsched.exe
Realtek HD Audio Sound Effect Manager C:\WINDOWS\RTHDCPL.EXE
Recguard Application C:\WINDOWS\SMINST\RECGUARD.EXE
SuperAntiSpyware C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
TeaTimer.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
(verified) Google Update C:\Program Files\Google\Update\GoogleUpdate.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\BROWSEUI.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\stobject.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll
(verified) Windows® Internet Explorer C:\WINDOWS\system32\msfeedssync.exe
(verified) Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll


Browser plugins
---------------
npMailUtil Dynamic Link Library C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\paq1dsxb.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}\components\MailUtil.dll
2007 Microsoft Office system C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
AcroIEHelperShim Library C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
Adobe Acrobat C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.10\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.11\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.12\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.13\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.14\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.15\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.16\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.17\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.18\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.19\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.1\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.20\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.21\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.22\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.23\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.24\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.25\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.26\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.27\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.28\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.29\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.2\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.30\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.31\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.32\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.33\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.34\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.35\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.36\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.37\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.38\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.39\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.3\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.40\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.41\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.4\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.52\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.53\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.54\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.55\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.56\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.57\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.58\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.59\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.5\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.60\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.61\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.62\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.63\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.64\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.65\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.66\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.67\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.68\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.69\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.6\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.70\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.71\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.72\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.73\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.74\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.75\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.76\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.77\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.78\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.79\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.7\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.80\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.81\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.82\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.83\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.84\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.85\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.88\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.89\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.8\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\CONFLICT.9\FP_AX_CAB_INSTALLER.exe
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe
Adventure Ball ActiveX Control C:\WINDOWS\Downloaded Program Files\abxgh.ocx
Akamai Download Manager ActiveX Control C:\WINDOWS\Downloaded Program Files\CONFLICT.1\DownloadManagerV2.ocx
Akamai Download Manager ActiveX Control C:\WINDOWS\Downloaded Program Files\CONFLICT.1\Manager.exe
Akamai Download Manager ActiveX Control C:\WINDOWS\Downloaded Program Files\Manager.exe
AOL Media Playback Plugin C:\Program Files\Mozilla Firefox\plugins\npunagi2.dll
AOL Toolbar for Internet Explorer c:\program files\aol toolbar\aoltb.dll
BitDefender QuickScan C:\WINDOWS\Downloaded Program Files\qsax.dll
Bonjour C:\Program Files\Bonjour\mdnsNSP.dll
DNA Plug-in C:\Program Files\DNA\plugins\npbtdna.dll
downloadUpdater C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
Garmin Communicator Plug-In C:\Program Files\Garmin GPS Plugin\npGarmin.dll
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.100\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.101\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.102\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.103\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.104\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.105\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.106\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.107\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.108\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.109\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.110\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.111\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.86\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.87\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.90\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.91\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.92\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.93\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.94\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.95\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.96\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.97\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.98\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\CONFLICT.99\GarminAxControl.ocx
Garmin Communicator Plug-In C:\WINDOWS\Downloaded Program Files\GarminAxControl.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.42\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.43\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.44\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.45\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.46\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.47\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.48\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.49\gp.ocx
getPlus+® C:\WINDOWS\Downloaded Program Files\CONFLICT.50\gp.ocx
Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Google Toolbar for IE c:\program files\google\googletoolbar1.dll
Google Update C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
Java Deployment Toolkit 6.0.210.7 C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
Java™ Platform SE 6 U21 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
Messenger C:\Program Files\Messenger\msmsgs.exe
Microsoft® Windows® Operating System C:\WINDOWS\System32\mswsock.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
Microsoft® Windows® Operating System C:\WINDOWS\System32\winrnr.dll
Mozilla Default Plug-in C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
NP_wtapp.dll C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
npitunes.dll C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
Process Scanner C:\WINDOWS\Downloaded Program Files\sabspx.dll
RealJukebox NS Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
RealPlayer Version Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
RealPlayer™ G2 LiveConnect-Enabled P C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
Shockwave for Director C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
Windows Presentation Foundation c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\WINDOWS\system32\ieframe.dll
Zylom Games Player C:\WINDOWS\Downloaded Program Files\zylomgamesplayer.dll
(verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
(verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
(verified) Microsoft Office 2003 C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
(verified) Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
(verified) QuickTime Plug-in 7.5.5 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll


Scan
----
MD5: 031ccdff85a57172f3402cb99b3e9d46 C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MD5: 2786afc6ab1f04d7600228e39df2e186 C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MD5: db4b28b8f25b3a2548b947a42b2df3b3 C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MD5: 11ab72d5d603db401c190b454fb935a7 C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MD5: 10d2aedf74b8eaf317c01c4f965ce451 C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\paq1dsxb.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}\components\MailUtil.dll
MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
MD5: 826ddbbca98f2e6cd1dfe33cef33994c C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
MD5: 33a3e06aaec160eba6c58230ccc72b04 c:\program files\aol toolbar\aoltb.dll
MD5: 7b43567b4c32ad7aded537cd3b1342b9 C:\Program Files\Apple Software Update\SoftwareUpdate.exe
MD5: 54a1a9fdae8a3dccdaabd13055ba1192 C:\Program Files\Avira\AntiVir Desktop\aecore.dll
MD5: ee0477f95aaf614c5cb14f324ca48c3d C:\Program Files\Avira\AntiVir Desktop\aeemu.dll
MD5: 4c00b2dcd85ea98474cebd98728830d4 C:\Program Files\Avira\AntiVir Desktop\aegen.dll
MD5: 771fdb76b1315ba85b0f1adf4b4d3482 C:\Program Files\Avira\AntiVir Desktop\aehelp.dll
MD5: dd930560a499ef258476bdd81a47b9b3 C:\Program Files\Avira\AntiVir Desktop\aeheur.dll
MD5: 8d50358297d534ee48d95935233e7767 C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll
MD5: 2e35c9677cf1b9e245ddc1b472087fe8 C:\Program Files\Avira\AntiVir Desktop\aepack.dll
MD5: cf28139a8aecbf3bec26ca1a16fd69cf C:\Program Files\Avira\AntiVir Desktop\aerdl.dll
MD5: ea8d2dcbadb11928df166a5683d7b524 C:\Program Files\Avira\AntiVir Desktop\aesbx.dll
MD5: 864e4cec9f60c25a8a93ad3784da2e64 C:\Program Files\Avira\AntiVir Desktop\aescn.dll
MD5: 16c2af703b0c7f5d3468fe8a041c845f C:\Program Files\Avira\AntiVir Desktop\aescript.dll
MD5: ae3896f436841be390b23cec79499f93 C:\Program Files\Avira\AntiVir Desktop\aevdf.dll
MD5: 4c3eed40c3f2a9fc9956b0511d431304 C:\Program Files\Avira\AntiVir Desktop\AVEvtLog.dll
MD5: 5ee5c132d47ba6f331099bff1d1db539 C:\Program Files\Avira\AntiVir Desktop\AVGIO.DLL
MD5: c983e62b6fb74457d173ba93f66f6068 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
MD5: df5a3016052755c910a206058b4a1729 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
MD5: 5252bb49a0b35e1127d3771e21c7af6d C:\Program Files\Avira\AntiVir Desktop\AVPREF.DLL
MD5: f7263b4e58e0346178cad70eac7f35e6 c:\program files\avira\antivir desktop\ccgen.dll
MD5: f05a5753c308425749b37acd39a5f760 c:\program files\avira\antivir desktop\ccgenrc.dll
MD5: 4b3a4639dd281b709162a2120b3daefc c:\program files\avira\antivir desktop\ccguard.dll
MD5: c0245ed1f48397d41632cab0afa842ce c:\program files\avira\antivir desktop\cclic.dll
MD5: 98d551a16398529f181570a001843231 c:\program files\avira\antivir desktop\ccmsg.dll
MD5: bd655a8ecaf694c48684b89c745f52fa c:\program files\avira\antivir desktop\ccupdate.dll
MD5: a93a23d1d8922fe1e625d9884c275ff5 c:\program files\avira\antivir desktop\ccupdrc.dll
MD5: a0ef10de0d455e33adffc39948660899 c:\program files\avira\antivir desktop\ccupdw.dll
MD5: 47766f6b79a25af04ed3f6f2b02aa4cb C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll
MD5: 92d9eb35797530fedc07b1d75533f68e C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll
MD5: a285373eab723d7f3fcfdb70accb60a1 C:\Program Files\Avira\AntiVir Desktop\rcimage.dll
MD5: b4837fe56d76b2e9ea90e5365cf6a2be C:\Program Files\Avira\AntiVir Desktop\sched.exe
MD5: 13a86ff71b5e57da8c9a6e2316ce1eaa C:\Program Files\Avira\AntiVir Desktop\schedr.dll
MD5: 902c61f27c86b4a0c0bff31f154ddbeb C:\Program Files\Avira\AntiVir Desktop\shlext.dll
MD5: 0e3e56064e162ee9cc48698355098301 C:\Program Files\Bonjour\mdnsNSP.dll
MD5: 9efe4236f8670846b6e7c5b0eff6e715 C:\Program Files\Bonjour\mDNSResponder.exe
MD5: c3104be7d2b689ebe47e2aac64c07530 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MD5: 203a74767eb81f96a5166b1933db46d0 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
MD5: 47c1de0a890613ffcff1d67648eedf90 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
MD5: d9dae0ce5dcbbf3b2bdc69df286d8eed C:\Program Files\Common Files\AOL\1230249116\EE\aolsoftware.exe
MD5: a80d79fe93ae200cec781ed86ed780eb C:\Program Files\Common Files\AOL\1230249116\ee\AOLSvcMgr.dll
MD5: 930eeac7175c5798c782b5c2dbe5be16 c:\program files\common files\aol\1230249116\ee\services\aolsystrayservice\ver4_1_1_2\AOLSysTrayService.dll
MD5: 5767306c882e304cc0d2114a7f6b6998 c:\program files\common files\aol\1230249116\ee\services\authentication\ver7_1_6_1\authenticationshadow.dll
MD5: 195eba15056fed0113bd60146103f1b0 c:\program files\common files\aol\1230249116\ee\services\authorization\ver3_2_5_1\authorization.dll
MD5: 90e624e6b4232a0c00f0b46de7efaa6c c:\program files\common files\aol\1230249116\ee\services\computerCheckupUI\Ver4_3_45_1\computerCheckupUI.dll
MD5: c4f6b2e61aba9a13819ea2e217e0bfc0 c:\program files\common files\aol\1230249116\ee\services\localStorage\ver8_1_1_1\clsSvc.dll
MD5: 6548c67bc96a25d7d005b93615a90338 c:\program files\common files\aol\1230249116\ee\services\metrics\ver4_1_11_1\cmls.dll
MD5: 79a3c68fc62384faa93c170a45382547 c:\program files\common files\aol\1230249116\ee\services\notification\ver7_1_1_1\Notify.dll
MD5: 1337ef044854f38b9dfd085e56ebc3a2 c:\program files\common files\aol\1230249116\ee\services\os\ver5_2_1_1\AOLIdleMon.dll
MD5: 483302397a9a1334fb9d44dd16638898 c:\program files\common files\aol\1230249116\ee\services\os\ver5_2_1_1\OS.dll
MD5: 7f1949ebfb85165952be3239cdeac2b2 c:\program files\common files\aol\1230249116\ee\services\osInfo\ver2_1_1_1\OSInfo.dll
MD5: e7e21e5bce1ea6e034298cce69e0226a c:\program files\common files\aol\1230249116\ee\services\preferences\ver6_1_1_1\preferences.dll
MD5: adb9520ed3ef63fe437c93b0f2fffe65 c:\program files\common files\aol\1230249116\ee\services\proxyprovider\ver1_0_0_1\proxyprovider.dll
MD5: dae616813f2371b85f8e36d6f9ae4aed c:\program files\common files\aol\1230249116\ee\services\suiteFramework\ver5_1_4_1\suiteFramework.dll
MD5: 4acff1a0e97d660eb9204b1c9009c522 C:\Program Files\Common Files\AOL\1230249116\EE\tai2.dll
MD5: bf9d64e0ecd591bc1b38bd335156b66f C:\Program Files\Common Files\AOL\1230249116\EE\xprt5.dll
MD5: 50d574d226a62265dd2ecf02bf3abfd6 C:\Program Files\Common Files\AOL\1230249116\ee\xprt6.dll
MD5: 85180cf88c5ebad73b452a43a004ca51 C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
MD5: b9b78f0d9aebca8f717680fbabbb5ff4 C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
MD5: 628c28f3b0f227266573efd19faa9eb6 C:\Program Files\Common Files\AOL\AOLDiag\tbdiag.dll
MD5: b8e865d24f2753a35cc2a9a6a3ce1ad4 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
MD5: a6ccd1900ddee95a2158d10fc00ec31c C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll
MD5: d2aeadfd998706b4216315b2bd3fa79e C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
MD5: a7e8525fa8788ca52f728414a65ba349 C:\Program Files\Common Files\Microsoft Shared\INK\SKCHUI.DLL
MD5: 4d18a32bbf680d49f8f568312427441d C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL
MD5: cf514ce8a21808abd84ce8f307b02bdd C:\Program Files\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmctxtPS.dll
MD5: b80933a7e3d63277a23f9882bf839db5 C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
MD5: 6bcbed73231f5d30b92dee591b6679e9 C:\Program Files\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll
MD5: 1f174a1bf0b7718ecb8d1821ad1d3166 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmagnt.dll
MD5: 54e18addc60a2054cf99b2e847a6d378 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmcore.dll
MD5: d960ab4131a0568ed12c6bceda95f618 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxt.dll
MD5: 73bfdc88c6ef9715cdf57134a438837a C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
MD5: 79e76dfb12de84a5dc3f677f6df172e5 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxthl.dll
MD5: de35eff35c9eb0b381709cf979537e2a C:\Program Files\Common Files\Pure Networks Shared\Platform\nmrasv.dll
MD5: cd569fa91ec6f59d045c19d0d3850f44 C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
MD5: 75c1ca5b61414748ce9bcf3c7a52c39f C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll
MD5: 130203d3313a0323dc333b941c3aa87a C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll
MD5: d0aa2987178aaf134d011c4cc7364b8b C:\Program Files\Common Files\Pure Networks Shared\Platform\upnpgw.dll
MD5: 1ac2c58b587c70de64582ad41ee79fba C:\Program Files\Common Files\Real\Update_OB\realsched.exe
MD5: 8ca06052cb0ed27701f345e9f87baf07 C:\Program Files\DNA\plugins\npbtdna.dll
MD5: a1e7537cf72a4224926c283b1091ac57 C:\Program Files\Garmin GPS Plugin\npGarmin.dll
MD5: 2437be68d5a37a75fad51c5f0e9a03ed C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
MD5: 9a00b7c38dbc6d01fb72784ac307cb3b c:\program files\google\googletoolbar1.dll
MD5: 8c2044169be2224c8a7cb8e81e7581af C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
MD5: a789b145f17fa5c2326907f4872fe173 C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
MD5: 821f73b833c4daebc33c1a9a4b16bb5a C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
MD5: 8eb0a2a9040cf4b66690fc80ca355902 C:\Program Files\Internet Explorer\ieproxy.dll
MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Internet Explorer\plugins\nppdf32.dll
MD5: 1115eea4ae0da72e416b210adba424a2 C:\Program Files\internet explorer\xpshims.dll
MD5: d2e8efb8af35fcf5a7af22f5a0ce1a82 C:\Program Files\iPod\bin\iPodService.exe
MD5: 8ff5d8f1bb658ce8841902aaaab5de44 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL
MD5: 2f5df20959e1ab594c8649cf7846604a C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL
MD5: 8efb041989185bed47072353b73d6355 C:\Program Files\iTunes\iTunesHelper.exe
MD5: d5edaed18929f66e16f59713822c8410 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL
MD5: d723885bc459eee7db7a82cded01c5cd C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL
MD5: 2d315bb5a7a4c6c265192b05db53034f C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
MD5: 2d5394ff0e31ffefb5049f0911e91d89 C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
MD5: 844c363b47960cafcd81e5285269f280 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
MD5: 3e930c641079443d4de036167a69caa2 C:\Program Files\Messenger\msmsgs.exe
MD5: ce6db25ffa35fd051c503f11db745862 c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
MD5: 323fe218dac089eed70ca55e6c1c2f1d C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
MD5: 858f4be5cac0154ae5a641258e28c3c6 C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
MD5: 9a6101f29e2e9d41b99cbcc8f106e8fe C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
MD5: 4393dcb856a2a109e266e6f59e2ef31a C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
MD5: 4b0e1ad13e44536bfa0d995e474c3efc C:\Program Files\Mozilla Firefox\plugins\npunagi2.dll
MD5: 86a591473178aa6b6400a8da225df04f C:\Program Files\Notepad++\NppShell_04.dll
MD5: 45d2e47073134976d2f1dd4bf8582b14 C:\Program Files\Pure Networks\Network Magic\nmapp.exe
MD5: afdcc9f772b713c98fa28392e7a4bf4a C:\Program Files\QuickTime\QTSystem\QuickTime.qts
MD5: 6cd5c3276c83f72677d647f27ee14abd C:\Program Files\QuickTime\QTTask.exe
MD5: e2b8c15caab06c6389184f23bac5ad6f C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
MD5: 3d304c8a8aa570169d87b0fc1701a864 C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
MD5: 4b2f61dca7db661570828dce5d302525 C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
MD5: a93047583ed0efc8f78a85dc9deadf3a C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
MD5: 390679f7a217a5e73d756276c40ae887 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
MD5: c0393eb99a6c72c6bef9bfc4a72b33a6 C:\Program Files\SUPERAntiSpyware\SASCore.exe
MD5: 477e08fe0114afea114fc954c983d4db C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL
MD5: 39763504067962108505bff25f024345 C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
MD5: 77b9fc20084b48408ad3e87570eb4a85 C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
MD5: 2975c66459c426c20bc22d639df6b611 C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
MD5: 6f1a4819473d934e4fbed6d105ce78b2 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
MD5: ba72cfc2bf952da409a953e89d6fe2cd C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
MD5: c403c5db49a0f9aaf4f2128edc0106d8 C:\Program Files\WildTangent Games\App\GamesAppService.exe
MD5: a379b75a6ffe4dfd3184f35f0141ce91 C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe
MD5: 310c15fd8358b2c4cd7a5b98a112883f C:\WINDOWS\AppPatch\AcGenral.DLL
MD5: a780d90af62e9b8290ebef8423990de5 C:\WINDOWS\Downloaded Program Files\abxgh.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.100\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.101\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.102\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.103\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.104\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.105\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.106\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.107\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.108\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.109\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.110\GarminAxControl.ocx
MD5: 6384af9ba8ca54f0f9a6f4a6d77e596e C:\WINDOWS\Downloaded Program Files\CONFLICT.111\GarminAxControl.ocx
MD5: b715701e20988cdac038093f92c3c2ff C:\WINDOWS\Downloaded Program Files\CONFLICT.1\DownloadManagerV2.ocx
MD5: ca4fc60b6c162fd34872f2faa3872327 C:\WINDOWS\Downloaded Program Files\CONFLICT.1\Manager.exe
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.42\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.43\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.44\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.45\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.46\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.47\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.48\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.49\gp.ocx
MD5: cb5396ea9cbbfc7d1c8a91bbfee71409 C:\WINDOWS\Downloaded Program Files\CONFLICT.50\gp.ocx
MD5: 24d72bbbb64487af7cb32b2d8da03ce5 C:\WINDOWS\Downloaded Program Files\CONFLICT.86\GarminAxControl.ocx
MD5: 24d72bbbb64487af7cb32b2d8da03ce5 C:\WINDOWS\Downloaded Program Files\CONFLICT.87\GarminAxControl.ocx
MD5: d0bb2c76e3bc0676ef0fee6866fe0cfc C:\WINDOWS\Downloaded Program Files\CONFLICT.90\GarminAxControl.ocx
MD5: d0bb2c76e3bc0676ef0fee6866fe0cfc C:\WINDOWS\Downloaded Program Files\CONFLICT.91\GarminAxControl.ocx
MD5: d0bb2c76e3bc0676ef0fee6866fe0cfc C:\WINDOWS\Downloaded Program Files\CONFLICT.92\GarminAxControl.ocx
MD5: d0bb2c76e3bc0676ef0fee6866fe0cfc C:\WINDOWS\Downloaded Program Files\CONFLICT.93\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.94\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.95\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.96\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.97\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.98\GarminAxControl.ocx
MD5: 662769bd82b2ff518b00d7701eb0a1ae C:\WINDOWS\Downloaded Program Files\CONFLICT.99\GarminAxControl.ocx
MD5: 24d72bbbb64487af7cb32b2d8da03ce5 C:\WINDOWS\Downloaded Program Files\GarminAxControl.ocx
MD5: 3f4413dcd8d3bbabf08f68f25e6d60e1 C:\WINDOWS\Downloaded Program Files\isusweb.dll
MD5: 6d61950f8b7a023a64d19f650a314b45 C:\WINDOWS\Downloaded Program Files\Manager.exe
MD5: 823451876778f382b23afe20ef2ddc20 C:\WINDOWS\Downloaded Program Files\qsax.dll
MD5: 37823fcaffb40d7a3b3724a9b8250d6d C:\WINDOWS\Downloaded Program Files\sabspx.dll
MD5: 7faf5222eeb546e1dc0f348dcb314b0b C:\WINDOWS\Downloaded Program Files\zylomgamesplayer.dll
MD5: d43637f8e835ddf2fe95fbe6242494b0 C:\WINDOWS\IME\SPGRMR.DLL
MD5: f6faec07446a78a9c5af4558ff5bd118 C:\WINDOWS\ime\sptip.dll
MD5: 9a2d686c89acc36e3aa7cde3d1c45c1a C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
MD5: ab87eeffd18f2baafc274e7075ea6c67 c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
MD5: 10dd3509f84e9e5bdc2086288d009335 C:\WINDOWS\RTHDCPL.EXE
MD5: f3eaea279f09a7779c18793c87640794 C:\WINDOWS\SMINST\RECGUARD.EXE
MD5: bca175a4d68910b97c9391f2b5f02a4d C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
MD5: 9e646cd378d4d0c996baf9bcb18237c7 C:\WINDOWS\system32\brss01a.exe
MD5: d3facb34fff5db91adb70987838f8ba7 C:\WINDOWS\system32\brsvc01a.exe
MD5: 84032d07de3d81e210281b89430a2ace C:\WINDOWS\system32\BrUSi04a.dll
MD5: eeaf0623b3a33df441734613c853f264 C:\WINDOWS\system32\BrWia04a.dll
MD5: 93afb83fbc1f9443cac722fca63d73bf C:\WINDOWS\system32\comctl32.dll
MD5: ed0c0df222209e43ad9afbf3fe87dde0 C:\WINDOWS\system32\comsvcs.dll
MD5: 8fcf03e4d7be9b5587ccf11719959006 C:\WINDOWS\system32\corpol.dll
MD5: a90e118f12d355f9946dfb30a8f94609 C:\WINDOWS\system32\CRYPT32.dll
MD5: c14350fc0d47d806699c4f907fc6785b C:\WINDOWS\system32\cryptnet.dll
MD5: 515a7fae2070c2b0242b2353443e2f11 C:\WINDOWS\system32\cscdll.dll
MD5: 2a9e427681169f02274ad8c17d52fa2d C:\WINDOWS\system32\CSRSRV.dll
MD5: 56adb11f7d4d0816c0be1e701c1b5e52 C:\WINDOWS\system32\D3DIM700.DLL
MD5: e2092f0a1d7abc243f9c2362483d150d C:\WINDOWS\System32\dimsntfy.dll
MD5: 78e862846112347eee8214b649ae563f C:\WINDOWS\system32\dispex.dll
MD5: 389496118b3b03c2328024af320132ac C:\WINDOWS\system32\DNSAPI.dll
MD5: 5f7e24fa9eab896051ffb87f840730d2 c:\windows\system32\dnsrslvr.dll
MD5: 1e44bc1e83d8fd2305f8d452db109cf9 C:\WINDOWS\System32\drivers\afd.sys
MD5: 59301936898ae62245a6f09c0aba9475 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
MD5: 1e4114685de1ffa9675e09c6a1fb3f4b C:\WINDOWS\system32\DRIVERS\avgntflt.sys
MD5: 0f78d3dae6dedd99ae54c9491c62adf2 C:\WINDOWS\system32\DRIVERS\avipbb.sys
MD5: 7270d070173b20ac9487ea16bb08b45f C:\WINDOWS\system32\DRIVERS\bb-run.sys
MD5: 6cf3aed19c2185c60de2ae50ee37a342 C:\WINDOWS\System32\Drivers\BrScnUsb.sys
MD5: 22399d3ce5840c6082844679cca5d2fc C:\WINDOWS\system32\DRIVERS\ftsata2.sys
MD5: ab8a6a87d9d7255c3884d5b9541a6e80 C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
MD5: 11ec1afceb5c917ce73d3c301ff4291e C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
MD5: a7f8c9228898a1e871d2ae7082f50ac3 C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
MD5: 1f5c64b0c6b2e2f48735a77ae714ccb8 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
MD5: 9a65e42664d1534b68512caad0efe963 C:\WINDOWS\system32\DRIVERS\iaStor.sys
MD5: e246a32c445056996074a397da56e815 C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
MD5: 7d304a5eb4344ebeeab53a2fe3ffb9f0 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
MD5: 0109c4f3850dfbab279542515386ae22 C:\WINDOWS\system32\DRIVERS\ndistapi.sys
MD5: ce58f42b11be20a47c3d8d2f38da254e C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
MD5: 22eedb34c4d7613a25b10c347c6c4c21 C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
MD5: 5e3f6ad5cad0f12d3cccd06fd964087a C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
MD5: 36fcac4fa28b462ca867742dea59b0d0 C:\WINDOWS\system32\DRIVERS\pnarp.sys
MD5: d8ac00388262b1a4878a7ee12f31d376 C:\WINDOWS\system32\DRIVERS\purendis.sys
MD5: 0457e25bb122b854e267cf552dcdc370 C:\WINDOWS\System32\Drivers\PxHelp20.sys
MD5: 64be56b8858ca0153c725c720ffd194f C:\WINDOWS\system32\drivers\RtkHDAud.sys
MD5: 47ddfc2f003f7f9f0592c6874962a2e7 C:\WINDOWS\system32\DRIVERS\srv.sys
MD5: 0a716c08cb13c3a8f4f51e882dbf7416 C:\WINDOWS\system32\DRIVERS\wanatw4.sys
MD5: f5b754cdea20bbb3a31e16a776ede6d6 c:\windows\system32\ESENT.dll
MD5: 0217cd51d55ca3e693a682664d3de2bf C:\WINDOWS\system32\ieframe.dll
MD5: aaf56985933f7d3e953e1b994d22e4f4 C:\WINDOWS\system32\iepeers.dll
MD5: 7cfdeb1560eacad6006d653ec55d12d0 C:\WINDOWS\system32\iertutil.dll
MD5: 0689622e6484934eb6e5f4d3a96311f9 C:\WINDOWS\system32\jscript.dll
MD5: a525c96c51d55111fdf3bea9ffffc7ae C:\WINDOWS\system32\kerberos.dll
MD5: 20fa028cb6506591a99c51432a3c0174 C:\WINDOWS\system32\LangWrbk.dll
MD5: bd31dc6dbe9333c4fbd4bdf0899f2160 C:\WINDOWS\system32\LSASRV.dll
MD5: c1377779618cf33afcef5299309dbef6 C:\WINDOWS\system32\Macromed\Flash\Flash10x.ocx
MD5: 9e0d70607f833470963672d170bc035d C:\WINDOWS\system32\msfeeds.dll
MD5: 4963cb503600fc3bcbdbfba51fba1fac C:\WINDOWS\system32\mshtml.dll
MD5: d3f72d50de53f9f1f55240115af4d42e C:\WINDOWS\system32\msi.dll
MD5: 98e53ca00d3c0a2e9faa4e59c101aeba C:\WINDOWS\system32\mslbui.dll
MD5: 943337d786a56729263071623bbb9de5 C:\WINDOWS\System32\mswsock.dll
MD5: 062f837c1fbdb6a0a75f82efc2ee8e74 c:\windows\system32\netshell.dll
MD5: f8f0d25ca553e39dde485d8fc7fcce89 C:\WINDOWS\system32\ntdll.dll
MD5: df5133ea0d6d7c34e44551f87044ee59 C:\WINDOWS\system32\NvCpl.dll
MD5: 95caec95d6777ce7d6b7091bc4d91ceb C:\WINDOWS\system32\nvsvc32.exe
MD5: ae0a7905c97ba30211c700c3e12dfd83 C:\WINDOWS\system32\nwiz.exe
MD5: 40b0f98bad16ad5def894e88c3ef8014 C:\WINDOWS\system32\ODBC32.dll
MD5: 7a6a7900b5e322763430ba6fd9a31224 C:\WINDOWS\system32\ole32.dll
MD5: 20200ee3cfe10e9f0c028d8653be11c6 C:\WINDOWS\system32\OLEACC.dll
MD5: 1b2be5777f69a71778f52ffee1c798d6 C:\WINDOWS\system32\OLEAUT32.dll
MD5: f1dac7969c1337af790bd1d981aa780c C:\WINDOWS\system32\qmgrprxy.dll
MD5: d4502f124289a31976130cccb014c9aa C:\WINDOWS\system32\RPCRT4.dll
MD5: 72451fd61ddbb0a1fb071b7c3cde5594 C:\WINDOWS\system32\rsvpsp.dll
MD5: abeedd547e939ad827b2e29dec754206 C:\WINDOWS\system32\schannel.dll
MD5: c896f6270ec20a60799298b423d5f58b C:\WINDOWS\system32\SHDOCVW.dll
MD5: e86423aa9aa8c382af02b94a058dc2aa C:\WINDOWS\system32\SHELL32.dll
MD5: 99bc0b50f511924348be19c7c7313bbf C:\WINDOWS\system32\SHSVCS.dll
MD5: d5c949af42dc0a7e3d26cf63d43604bd C:\WINDOWS\System32\spool\PRTPROCS\W32X86\brmfpp1.dll
MD5: 60784f891563fb1b767f70117fc2428f C:\WINDOWS\system32\spoolsv.exe
MD5: 3a7c3cbe5d96b8ae96ce81f0b22fb527 c:\windows\system32\srvsvc.dll
MD5: 3caeae7608f1bd7ba873a3b02895b106 C:\WINDOWS\system32\sti.dll
MD5: 5c4adb808b54126c1ed2fba0eae06c63 C:\WINDOWS\system32\upnpui.dll
MD5: 31b6e9e116a3d6f8eb13202c9b5db403 C:\WINDOWS\system32\urlmon.dll
MD5: a93aee1928a9d7ce3e16d24ec7380f89 c:\windows\system32\userinit.exe
MD5: 9e03dc5ab51cfd0190541ce2038d819d C:\WINDOWS\system32\USP10.dll
MD5: 31cf51dcda1424b813cc97b20f71b431 C:\WINDOWS\system32\vbscript.dll
MD5: 1a377838b4b468e37c3eeb5baa24f925 C:\WINDOWS\system32\WININET.dll
MD5: d72b9ec3337b247a666f098f3d6b43de C:\WINDOWS\System32\winrnr.dll
MD5: 95cf3446911a6e25ee4086df8a45b2aa C:\WINDOWS\system32\winsrv.dll
MD5: 9eefe69139fdbb4a3c327630f8eb993a C:\WINDOWS\system32\wlanapi.dll
MD5: 2cc34e8bb667eef78899546e12649196 C:\WINDOWS\system32\WlNotify.dll
MD5: 5caf91e865fe0c85048a233e594544d2 c:\windows\system32\WUDFPlatform.dll
MD5: 18473f44d6de85c8cb4e70f503c5ea64 C:\WINDOWS\System32\xactsrv.dll
MD5: 16403217ab6fc5c30c14c6b12098ad4b C:\WINDOWS\system32\xpsp2res.dll
MD5: 06a1ecb63df139ec639e084d4ab3c9d7 C:\WINDOWS\system\hpsysdrv.exe
MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCP80.dll
MD5: c9564cf4976e7e96b4052737aa2492b4 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80U.DLL
MD5: 28a09777d2d952122567a8a82f1a2c7b C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\MFC80ENU.DLL
MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\MSVCP90.dll
MD5: cdbe9690cf2b8409facad94fac9479c9 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\MSVCR90.dll
MD5: ca6ade4f7761bb15b3325356dc3b82bb C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
MD5: fbfca1a574d47ee575448b719cbbf2e4 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\MFC90ENU.DLL
MD5: 736b12b725aeb2b07f0241a9f680cb10 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MD5: 33d9b7bb7ba323bafe489df033dac824 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\gdiplus.dll


No file uploaded.

Scan finished - communication took 2 sec
Total traffic - 0.02 MB sent, 1.02 KB recvd
Scanned 787 files and modules - 100 seconds

==============================================================================
  • 0

#72
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
hi Ron
machine is running great so far its certainly accessing sites fast :yes:
i still can not uninstall search settings v1.2.3 by spigot when i click remove it says windows install will close internet explorer then i click ok then get a warning /dialog box that says "unknown/ search settings bho.1/clsid verify that you have sufficient access to that key or contact your support personnel "
also something of a mystery is i can not find or access mozilla firefox i had tried to remove it a while ago (months ) but yet it shows up in add/remove programs and when i click it to remove it just does nothing but it says i accesed it yesterday ? i tried to search for it but could not find it a few days ago
so i dont know how its really running :)
any way let me know what you think and again ron i can not thank you enough for your patience with me and all your help
p.s (edit) i do see firefox in start menu but says( safe mode) next to it i also see the folder in c/program files should i delete that folder if i want to be rid of firefox ?since i cant remove via add/remove programs ?

Edited by snowysdad43, 16 November 2011 - 01:49 AM.

  • 0

#73
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,788 posts
  • MVP
The things that ESET found had already been removed or were in System Restore or they were trivial things provided by your PC maker.

Your anti-virus is having a problem checking nmrsrc.dll which is why I wanted you to submit it to virustotal. It's normally part of Cisco's Network Magic.

Copy the next line:

sc config adfs start= disabled /c


Start, Run, cmd, OK
right click and Paste or Edit then Paste and the copied line should appear. Hit Enter.

If you get and error then:

reg query HKLM /s /f adfs > \junk.txt

(This one will take a while to search the registry for adfs. When the prompt returns:

notepad \junk.txt

Copy and paste the text into a reply.

How is it running now?
  • 0

#74
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,788 posts
  • MVP
I would just reinstall Firefox. Then if you want to get rid of it, uninstall it.

Copy the next line:

dir "\program files" > \junk2.txt

Start, Run, cmd, OK

right click and Paste or Edit then Paste and the line should appear. Hit Enter.


notepad \junk2.txt

Copy and paste the text from notepad into a reply.
  • 0

#75
snowysdad43

snowysdad43

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 233 posts
ok the first command gives a list of config options and the second one says to many command line parameters

Edited by snowysdad43, 16 November 2011 - 02:08 AM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP