prosím o kontrolu HJT pc je šílené Vyřešeno

[jaro3]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

KillAll::
File::
c:\windows\SET139.tmp
c:\windows\SET12D.tmp
c:\windows\SET12A.tmp
c:\windows\system32\wups2(2)(2).dll
c:\windows\system32\wups(2)(2).dll
c:\windows\system32\win32k(2)(2).sys
c:\documents and settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe

Registry::
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Facebook Update"=-


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Reklama]

[John.Ross]

boFix 12-07-14.01 - Euromedica 16.07.2012 13:40:33.6.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.702.237 [GMT 2:00]
Spuštěný z: c:\documents and settings\Euromedica.EUROMEDI-09D832\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msmqinst.log
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-16 do 2012-07-16 )))))))))))))))))))))))))))))))
.
.
2012-07-12 20:34 . 2012-07-12 20:34 -------- d-----w- c:\documents and settings\Administrator.EUROMEDI-09D832
2012-07-11 23:16 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-07-11 23:06 . 2012-05-05 03:14 2150400 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-07-11 23:06 . 2012-05-05 03:14 2194816 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-07-11 23:06 . 2012-05-05 03:14 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-07-11 23:06 . 2012-05-05 03:14 2071296 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-07-11 23:05 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-07-10 12:27 . 2012-07-10 12:27 -------- d-----w- c:\documents and settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Sun
2012-07-10 12:26 . 2012-07-10 12:26 -------- d-----w- c:\program files\Oracle
2012-07-10 12:26 . 2012-07-10 12:26 -------- d-----w- c:\documents and settings\Euromedica.EUROMEDI-09D832\Data aplikací\Oracle
2012-07-10 12:26 . 2012-05-04 17:29 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-09 15:27 . 2012-07-09 15:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-09 15:27 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-09 12:00 . 2012-07-02 10:23 25088 ----a-w- c:\windows\system32\drivers\teamviewervpn.sys
2012-07-09 07:15 . 2001-10-25 14:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
2012-07-09 07:15 . 2001-10-25 14:00 31360 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys
2012-07-09 07:15 . 2008-04-14 06:52 77312 -c--a-w- c:\windows\system32\dllcache\wam51.dll
2012-07-09 07:15 . 2008-04-14 06:52 53248 -c--a-w- c:\windows\system32\dllcache\wamreg51.dll
2012-07-09 07:15 . 2001-10-25 14:00 9216 -c--a-w- c:\windows\system32\dllcache\wamps51.dll
2012-07-09 07:15 . 2008-04-14 06:52 366080 -c--a-w- c:\windows\system32\dllcache\w3svc.dll
2012-07-09 07:15 . 2001-10-25 14:00 73728 -c--a-w- c:\windows\system32\dllcache\w3ext.dll
2012-07-09 07:15 . 2001-10-25 14:00 5632 -c--a-w- c:\windows\system32\dllcache\w3svapi.dll
2012-07-09 07:15 . 2001-10-25 14:00 4608 -c--a-w- c:\windows\system32\dllcache\w3ctrs51.dll
2012-07-09 07:15 . 2001-10-25 14:00 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll
2012-07-09 07:15 . 2008-04-14 06:50 86073 -c--a-w- c:\windows\system32\dllcache\voicesub.dll
2012-07-09 07:15 . 2008-04-14 06:50 426041 -c--a-w- c:\windows\system32\dllcache\voicepad.dll
2012-07-09 07:13 . 2001-10-24 10:24 38912 -c--a-w- c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
2012-07-09 07:12 . 2008-04-13 20:13 208952 -c--a-w- c:\windows\system32\dllcache\imjpmig.exe
2012-07-09 07:11 . 2008-04-14 06:38 198656 -c--a-w- c:\windows\system32\dllcache\cintime.dll
2012-07-09 07:10 . 2008-04-14 06:51 43520 -c--a-w- c:\windows\system32\dllcache\admwprox.dll
2012-07-09 07:10 . 2008-04-14 06:51 290816 -c--a-w- c:\windows\system32\dllcache\adsiis51.dll
2012-07-09 07:07 . 2001-10-25 14:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2012-07-09 07:07 . 2001-10-25 14:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
2012-07-09 07:00 . 2001-08-17 18:13 27165 ----a-w- c:\windows\system32\drivers\fetnd5.sys
2012-07-09 06:55 . 2001-10-25 14:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2012-07-09 06:55 . 2001-10-25 14:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
2012-07-09 06:55 . 2001-10-25 14:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2012-07-09 06:55 . 2001-10-25 14:00 13312 ----a-w- c:\windows\system32\irclass.dll
2012-07-09 06:54 . 2008-04-14 08:52 16825 ----a-r- c:\windows\SET139.tmp
2012-07-09 06:54 . 2008-04-14 08:52 1088840 ----a-r- c:\windows\SET12D.tmp
2012-07-09 06:54 . 2008-04-14 08:59 1246067 ----a-r- c:\windows\SET12A.tmp
2012-07-04 13:05 . 2012-01-31 12:44 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-07-04 12:48 . 2012-07-04 12:48 -------- d-----w- C:\c9a3d5c76888fb824292
2012-07-04 12:36 . 2012-07-04 12:36 -------- d-----w- c:\windows\system32\wbem\Repository
2012-07-04 12:15 . 2012-07-04 12:25 -------- d-----w- C:\fef31c51442c5167ce050796af952b
2012-07-04 11:39 . 2012-07-04 12:31 -------- d-----w- c:\windows\LastGood(2)
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-13 13:55 . 2008-04-14 05:45 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-06-05 15:49 . 2008-04-14 06:51 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2008-04-14 06:51 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2008-04-14 06:51 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2012-06-02 13:19 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2012-06-02 13:19 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2008-04-08 16:04 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2008-04-08 16:04 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2008-04-08 16:04 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2012-06-02 13:19 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2012-06-02 13:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2012-06-02 13:19 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2012-06-02 13:19 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2008-04-08 16:04 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2008-04-08 16:04 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2008-04-08 16:04 35864 ----a-w- c:\windows\system32\wups(2)(2).dll
2012-06-02 13:19 . 2007-07-30 17:19 45080 ----a-w- c:\windows\system32\wups2(2)(2).dll
2012-06-02 13:19 . 2008-04-08 16:04 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2008-04-08 16:04 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2008-04-11 16:01 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2008-04-11 16:01 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2008-04-11 16:01 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2008-04-14 06:51 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 07:59 . 2008-04-14 06:52 668160 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:55 . 2004-08-18 12:00 1863168 ----a-w- c:\windows\system32\win32k(2)(2).sys
2012-05-05 03:14 . 2008-04-14 08:06 2071296 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-05 03:14 . 2008-04-14 06:07 2194816 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 17:29 . 2008-04-08 18:07 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-05-04 17:29 . 2010-05-03 11:14 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-05-02 13:46 . 2008-04-08 16:02 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-20 19:30 . 2008-04-14 06:51 81920 ----a-w- c:\windows\system32\ieencode.dll
2012-04-20 19:30 . 2008-04-14 06:50 61952 ----a-w- c:\windows\system32\tdc.ocx
2012-04-20 19:28 . 2008-04-14 05:50 370176 ----a-w- c:\windows\system32\html.iec
.
.
((((((((((((((((((((((((((((( SnapShot@2012-07-09_13.17.00 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-07-16 10:14 . 2012-07-16 10:14 16384 c:\windows\temp\Perflib_Perfdata_534.dat
+ 2008-04-14 06:52 . 2008-05-09 10:56 90112 c:\windows\system32\wshext.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 90112 c:\windows\system32\wshext.dll
+ 2008-04-14 06:52 . 2009-06-25 08:27 54272 c:\windows\system32\wdigest.dll
+ 2008-04-14 06:52 . 2012-04-20 19:30 37888 c:\windows\system32\url.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 37888 c:\windows\system32\url.dll
+ 2008-04-14 06:52 . 2011-11-08 13:46 46080 c:\windows\system32\tzchange.exe
+ 2008-04-14 06:52 . 2009-06-15 10:45 81408 c:\windows\system32\tlntsess.exe
+ 2008-04-14 06:52 . 2009-06-15 10:45 78336 c:\windows\system32\telnet.exe
+ 2008-04-14 06:52 . 2010-08-17 13:17 58880 c:\windows\system32\spoolsv.exe
+ 2008-04-14 06:51 . 2009-06-25 08:27 56832 c:\windows\system32\secur32.dll
+ 2001-10-25 14:00 . 2009-02-06 10:39 35328 c:\windows\system32\sc.exe
+ 2008-04-14 06:51 . 2009-10-12 13:40 79872 c:\windows\system32\raschap.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 79872 c:\windows\system32\raschap.dll
+ 2004-08-18 12:00 . 2012-07-13 12:50 84922 c:\windows\system32\perfc009.dat
+ 2008-04-14 06:52 . 2011-11-20 06:12 60416 c:\windows\system32\packager.exe
+ 2001-10-25 14:00 . 2011-09-26 09:41 22528 c:\windows\system32\oleaccrc.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 91648 c:\windows\system32\mtxoci.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 91648 c:\windows\system32\mtxoci.dll
+ 2008-04-14 06:51 . 2008-06-12 14:24 66560 c:\windows\system32\mtxclu.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 66560 c:\windows\system32\mtxclu.dll
+ 2008-04-14 08:51 . 2009-11-27 17:14 17920 c:\windows\system32\msyuv.dll
+ 2001-10-25 14:00 . 2009-11-27 16:09 28672 c:\windows\system32\msvidc32.dll
+ 2008-04-14 06:51 . 2009-11-27 16:09 11264 c:\windows\system32\msrle32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 11264 c:\windows\system32\msrle32.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 58880 c:\windows\system32\msdtclog.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 58880 c:\windows\system32\msdtclog.dll
+ 2008-04-14 06:51 . 2008-06-24 16:44 74240 c:\windows\system32\mscms.dll
+ 2008-04-14 06:51 . 2009-09-04 21:05 58880 c:\windows\system32\msasn1.dll
+ 2008-04-14 06:51 . 2011-10-14 14:47 23040 c:\windows\system32\mciseq.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 23040 c:\windows\system32\mciseq.dll
+ 2006-01-03 23:14 . 2006-01-03 23:14 20480 c:\windows\system32\Macromed\Flash\UninstFl.exe
- 2008-04-14 06:52 . 2004-08-10 23:45 96768 c:\windows\system32\logagent.exe
+ 2008-04-14 06:52 . 2008-06-10 07:17 96768 c:\windows\system32\logagent.exe
+ 2008-04-14 08:51 . 2009-11-27 16:09 48128 c:\windows\system32\iyuv_32.dll
+ 2008-04-08 16:04 . 2010-11-18 18:15 81920 c:\windows\system32\isign32.dll
- 2008-04-08 16:04 . 2008-04-14 06:51 81920 c:\windows\system32\isign32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 80384 c:\windows\system32\iccvid.dll
+ 2008-04-14 06:51 . 2010-06-17 14:03 80384 c:\windows\system32\iccvid.dll
+ 2008-04-14 06:51 . 2009-10-15 16:32 81920 c:\windows\system32\fontsub.dll
+ 2008-04-13 22:27 . 2010-11-02 15:17 40960 c:\windows\system32\drivers\ndproxy.sys
+ 2008-04-13 22:27 . 2011-07-08 14:02 10496 c:\windows\system32\drivers\ndistapi.sys
+ 2008-04-13 22:01 . 2009-06-24 11:18 92928 c:\windows\system32\drivers\ksecdd.sys
- 2008-04-14 06:51 . 2008-04-14 06:51 45568 c:\windows\system32\dnsrslvr.dll
+ 2008-04-14 06:51 . 2009-04-20 17:19 45568 c:\windows\system32\dnsrslvr.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 35864 c:\windows\system32\dllcache\wups.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 53784 c:\windows\system32\dllcache\wuauclt.exe
+ 2008-04-14 06:52 . 2008-05-09 10:56 90112 c:\windows\system32\dllcache\wshext.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 90112 c:\windows\system32\dllcache\wshext.dll
+ 2008-04-14 06:52 . 2009-06-25 08:27 54272 c:\windows\system32\dllcache\wdigest.dll
+ 2005-12-21 15:34 . 2010-10-11 14:59 45568 c:\windows\system32\dllcache\wab.exe
+ 2008-04-14 06:52 . 2012-04-20 19:30 37888 c:\windows\system32\dllcache\url.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 37888 c:\windows\system32\dllcache\url.dll
+ 2008-04-14 06:52 . 2009-06-15 10:45 81408 c:\windows\system32\dllcache\tlntsess.exe
+ 2008-04-14 06:52 . 2009-06-15 10:45 78336 c:\windows\system32\dllcache\telnet.exe
+ 2008-04-14 06:52 . 2010-08-17 13:17 58880 c:\windows\system32\dllcache\spoolsv.exe
+ 2008-04-14 06:51 . 2009-06-25 08:27 56832 c:\windows\system32\dllcache\secur32.dll
+ 2001-10-25 14:00 . 2009-02-06 10:39 35328 c:\windows\system32\dllcache\sc.exe
- 2008-04-14 06:51 . 2008-04-14 06:51 79872 c:\windows\system32\dllcache\raschap.dll
+ 2008-04-14 06:51 . 2009-10-12 13:40 79872 c:\windows\system32\dllcache\raschap.dll
+ 2008-04-14 06:52 . 2011-11-20 06:12 60416 c:\windows\system32\dllcache\packager.exe
+ 2001-10-25 14:00 . 2011-09-26 09:41 22528 c:\windows\system32\dllcache\oleaccrc.dll
+ 2008-04-13 22:27 . 2010-11-02 15:17 40960 c:\windows\system32\dllcache\ndproxy.sys
+ 2008-04-13 22:27 . 2011-07-08 14:02 10496 c:\windows\system32\dllcache\ndistapi.sys
- 2008-04-08 16:02 . 2008-04-14 06:51 91648 c:\windows\system32\dllcache\mtxoci.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 91648 c:\windows\system32\dllcache\mtxoci.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 66560 c:\windows\system32\dllcache\mtxclu.dll
+ 2008-04-14 06:51 . 2008-06-12 14:24 66560 c:\windows\system32\dllcache\mtxclu.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2001-10-25 14:00 . 2009-11-27 16:09 28672 c:\windows\system32\dllcache\msvidc32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 11264 c:\windows\system32\dllcache\msrle32.dll
+ 2008-04-14 06:51 . 2009-11-27 16:09 11264 c:\windows\system32\dllcache\msrle32.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 58880 c:\windows\system32\dllcache\msdtclog.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 58880 c:\windows\system32\dllcache\msdtclog.dll
+ 2008-04-14 06:51 . 2008-06-24 16:44 74240 c:\windows\system32\dllcache\mscms.dll
+ 2008-04-14 06:51 . 2009-09-04 21:05 58880 c:\windows\system32\dllcache\msasn1.dll
+ 2008-04-14 06:51 . 2011-10-14 14:47 23040 c:\windows\system32\dllcache\mciseq.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 23040 c:\windows\system32\dllcache\mciseq.dll
- 2008-04-14 06:52 . 2004-08-10 23:45 96768 c:\windows\system32\dllcache\logagent.exe
+ 2008-04-14 06:52 . 2008-06-10 07:17 96768 c:\windows\system32\dllcache\logagent.exe
+ 2008-04-13 22:01 . 2009-06-24 11:18 92928 c:\windows\system32\dllcache\ksecdd.sys
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\system32\dllcache\iyuv_32.dll
- 2008-04-08 16:04 . 2008-04-14 06:51 81920 c:\windows\system32\dllcache\isign32.dll
+ 2008-04-08 16:04 . 2010-11-18 18:15 81920 c:\windows\system32\dllcache\isign32.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 81920 c:\windows\system32\dllcache\ieencode.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2008-04-14 06:51 . 2009-10-15 16:32 81920 c:\windows\system32\dllcache\fontsub.dll
+ 2008-04-14 06:51 . 2009-04-20 17:19 45568 c:\windows\system32\dllcache\dnsrslvr.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 45568 c:\windows\system32\dllcache\dnsrslvr.dll
+ 2008-04-14 06:51 . 2011-10-28 05:32 33280 c:\windows\system32\dllcache\csrsrv.dll
+ 2012-06-02 13:19 . 2012-06-02 13:19 97304 c:\windows\system32\dllcache\cdm.dll
+ 2008-04-14 06:51 . 2010-01-13 14:02 86016 c:\windows\system32\dllcache\cabview.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 84992 c:\windows\system32\dllcache\avifil32.dll
+ 2008-04-14 06:51 . 2009-11-27 16:09 84992 c:\windows\system32\dllcache\avifil32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-04-14 06:51 . 2009-07-17 19:04 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-04-14 06:51 . 2010-03-05 14:42 65536 c:\windows\system32\dllcache\asycfilt.dll
+ 2008-04-14 06:51 . 2011-10-28 05:32 33280 c:\windows\system32\csrsrv.dll
+ 2008-04-14 06:51 . 2010-01-13 14:02 86016 c:\windows\system32\cabview.dll
+ 2008-04-14 06:51 . 2009-11-27 16:09 84992 c:\windows\system32\avifil32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 84992 c:\windows\system32\avifil32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 58880 c:\windows\system32\atl.dll
+ 2008-04-14 06:51 . 2009-07-17 19:04 58880 c:\windows\system32\atl.dll
+ 2008-04-14 06:51 . 2010-03-05 14:42 65536 c:\windows\system32\asycfilt.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 26488 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\update\spcustom.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 18296 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\spmsg.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 26488 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\update\spcustom.dll
- 2012-07-04 11:57 . 2012-05-05 03:16 16896 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\update\mpsyschk.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 18296 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\spmsg.dll
- 2012-07-04 11:56 . 2010-07-05 13:13 26488 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\update\spcustom.dll
- 2012-07-04 11:56 . 2010-07-05 13:13 18296 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\spmsg.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\Driver Cache\i386\msyuv.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\Driver Cache\i386\iyuv_32.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\462e18bd5c5a03b8c34d3e3896a2cc5b\System.Web.DynamicData.Design.ni.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2718704\update\spcustom.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2718704\spmsg.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2707511\update\spcustom.dll
+ 2012-07-11 23:01 . 2012-05-05 03:16 16896 c:\windows\$hf_mig$\KB2707511\update\mpsyschk.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2707511\spmsg.dll
+ 2012-07-13 12:17 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2685939\update\spcustom.dll
+ 2012-07-13 12:17 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2685939\spmsg.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2001-10-24 12:25 . 2009-11-27 16:09 8704 c:\windows\system32\tsbyuv.dll
+ 2011-11-12 12:04 . 2011-11-12 12:04 9845 c:\windows\system32\mswoneoie.dll
- 2011-01-16 13:14 . 2011-01-16 13:14 9845 c:\windows\system32\mswoneoie.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 8704 c:\windows\Driver Cache\i386\tsbyuv.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2008-04-14 06:52 . 2008-05-08 11:24 155648 c:\windows\system32\wscript.exe
- 2008-04-14 06:52 . 2008-04-14 06:52 155648 c:\windows\system32\wscript.exe
+ 2008-04-14 06:52 . 2009-04-09 23:01 530280 c:\windows\system32\wmspdmod.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 233472 c:\windows\system32\wmpdxm.dll
+ 2008-04-14 06:52 . 2009-07-12 10:21 233472 c:\windows\system32\wmpdxm.dll
+ 2008-04-14 06:52 . 2007-10-20 04:01 227328 c:\windows\system32\wmasf.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 132096 c:\windows\system32\wkssvc.dll
+ 2008-04-14 06:52 . 2009-06-10 06:16 132096 c:\windows\system32\wkssvc.dll
+ 2008-04-14 06:52 . 2012-02-29 14:10 177664 c:\windows\system32\wintrust.dll
+ 2008-04-14 06:52 . 2011-11-25 21:57 293376 c:\windows\system32\winsrv.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 293376 c:\windows\system32\winsrv.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 174592 c:\windows\system32\winmm.dll
+ 2008-04-14 06:52 . 2011-10-14 14:47 174592 c:\windows\system32\winmm.dll
+ 2008-04-14 06:52 . 2011-11-16 14:21 354816 c:\windows\system32\winhttp.dll
+ 2008-04-08 16:01 . 2009-02-06 10:10 227840 c:\windows\system32\wbem\wmiprvse.exe
+ 2008-04-08 16:01 . 2009-02-09 10:56 453120 c:\windows\system32\wbem\wmiprvsd.dll
+ 2008-04-08 16:01 . 2009-02-09 10:56 473600 c:\windows\system32\wbem\fastprox.dll
+ 2008-04-14 06:52 . 2011-03-04 06:43 434176 c:\windows\system32\vbscript.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 434176 c:\windows\system32\vbscript.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 406016 c:\windows\system32\usp10.dll
+ 2008-04-14 06:52 . 2010-04-16 15:38 406016 c:\windows\system32\usp10.dll
+ 2008-04-14 06:52 . 2012-04-20 19:30 627712 c:\windows\system32\urlmon.dll
+ 2008-04-14 06:52 . 2010-08-27 08:03 119808 c:\windows\system32\t2embed.dll
+ 2008-04-14 06:52 . 2009-08-26 08:02 247326 c:\windows\system32\strmdll.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 135168 c:\windows\system32\shsvcs.dll
+ 2008-04-14 06:51 . 2009-07-27 23:19 135168 c:\windows\system32\shsvcs.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 474112 c:\windows\system32\shlwapi.dll
+ 2008-04-14 06:51 . 2009-12-08 09:25 474112 c:\windows\system32\shlwapi.dll
+ 2008-04-14 06:51 . 2011-01-21 14:44 440320 c:\windows\system32\shimgvw.dll
+ 2008-04-14 06:52 . 2009-02-09 11:25 111104 c:\windows\system32\services.exe
- 2008-04-14 06:51 . 2008-04-14 06:51 172032 c:\windows\system32\scrrun.dll
+ 2008-04-14 06:51 . 2008-05-09 10:56 172032 c:\windows\system32\scrrun.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 180224 c:\windows\system32\scrobj.dll
+ 2008-04-14 06:51 . 2008-05-09 10:56 180224 c:\windows\system32\scrobj.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 270848 c:\windows\system32\sbe.dll
+ 2008-04-14 06:51 . 2011-02-09 13:53 270848 c:\windows\system32\sbe.dll
+ 2008-04-14 06:51 . 2009-02-09 10:56 401408 c:\windows\system32\rpcss.dll
+ 2008-04-14 06:51 . 2010-08-16 08:45 590848 c:\windows\system32\rpcrt4.dll
+ 2008-04-14 06:51 . 2009-10-12 13:40 150016 c:\windows\system32\rastls.dll
+ 2008-04-14 06:51 . 2011-11-03 15:29 386560 c:\windows\system32\qdvd.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 386560 c:\windows\system32\qdvd.dll
+ 2004-08-18 12:00 . 2012-07-13 12:50 482496 c:\windows\system32\perfh009.dat
+ 2004-08-18 12:00 . 2012-07-13 12:50 478980 c:\windows\system32\perfh005.dat
+ 2004-08-18 12:00 . 2012-07-13 12:50 100212 c:\windows\system32\perfc005.dat
- 2008-04-14 06:51 . 2008-04-14 06:51 284160 c:\windows\system32\pdh.dll
+ 2008-04-14 06:51 . 2009-03-06 14:23 284160 c:\windows\system32\pdh.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 551936 c:\windows\system32\oleaut32.dll
+ 2008-04-14 06:51 . 2010-12-20 17:32 551936 c:\windows\system32\oleaut32.dll
+ 2001-10-25 14:00 . 2011-09-26 09:41 220160 c:\windows\system32\oleacc.dll
+ 2008-04-14 06:51 . 2010-11-09 14:52 249856 c:\windows\system32\odbc32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 249856 c:\windows\system32\odbc32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 271360 c:\windows\system32\oakley.dll
+ 2008-04-14 06:51 . 2009-10-13 10:34 271360 c:\windows\system32\oakley.dll
+ 2008-04-14 06:51 . 2010-12-09 15:15 713216 c:\windows\system32\ntdll.dll
+ 2008-04-14 06:51 . 2008-10-15 16:38 337408 c:\windows\system32\netapi32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 337408 c:\windows\system32\netapi32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 247296 c:\windows\system32\mswsock.dll
+ 2008-04-14 06:51 . 2008-06-20 16:04 247296 c:\windows\system32\mswsock.dll
+ 2008-04-14 06:51 . 2009-08-05 09:01 205312 c:\windows\system32\mswebdvd.dll
+ 2008-04-14 06:51 . 2009-09-11 14:19 136192 c:\windows\system32\msv1_0.dll
+ 2008-04-08 16:02 . 2011-01-27 11:57 677888 c:\windows\system32\mstsc.exe
- 2008-04-08 16:02 . 2008-04-14 06:52 677888 c:\windows\system32\mstsc.exe
+ 2008-04-14 06:51 . 2012-04-20 19:30 532480 c:\windows\system32\mstime.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 532480 c:\windows\system32\mstime.dll
+ 2008-04-08 16:02 . 2009-12-17 07:42 343552 c:\windows\system32\mspaint.exe
- 2008-04-08 16:02 . 2008-04-14 06:52 343552 c:\windows\system32\mspaint.exe
+ 2008-04-14 06:51 . 2012-04-20 19:30 449536 c:\windows\system32\mshtmled.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 161792 c:\windows\system32\msdtcuiu.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 161792 c:\windows\system32\msdtcuiu.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 956928 c:\windows\system32\msdtctm.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 956928 c:\windows\system32\msdtctm.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 428032 c:\windows\system32\msdtcprx.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 384512 c:\windows\system32\mp4sdmod.dll
+ 2008-04-14 06:51 . 2010-04-05 09:54 384512 c:\windows\system32\mp4sdmod.dll
+ 2007-04-03 06:44 . 2011-02-08 13:33 974848 c:\windows\system32\mfc42u.dll
+ 2008-04-14 06:51 . 2011-02-08 13:33 978944 c:\windows\system32\mfc42.dll
+ 2008-04-14 06:51 . 2010-09-18 06:53 953856 c:\windows\system32\mfc40u.dll
+ 2001-10-25 14:00 . 2010-09-18 06:53 954368 c:\windows\system32\mfc40.dll
+ 2008-04-14 06:51 . 2010-12-20 17:25 729088 c:\windows\system32\lsasrv.dll
+ 2008-04-14 06:51 . 2009-05-07 15:33 346624 c:\windows\system32\localspl.dll
+ 2008-04-14 06:51 . 2009-03-21 14:09 988160 c:\windows\system32\kernel32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 988160 c:\windows\system32\kernel32.dll
+ 2008-04-14 06:51 . 2010-12-22 12:34 301568 c:\windows\system32\kerberos.dll
+ 2008-04-14 06:51 . 2011-03-04 06:43 512000 c:\windows\system32\jscript.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 512000 c:\windows\system32\jscript.dll
+ 2012-07-10 12:26 . 2012-05-04 17:29 227720 c:\windows\system32\javaws.exe
+ 2012-07-10 12:26 . 2012-07-10 12:25 174064 c:\windows\system32\javaw.exe
+ 2012-07-10 12:26 . 2012-07-10 12:25 174064 c:\windows\system32\java.exe
+ 2008-04-08 16:04 . 2011-10-10 14:22 692736 c:\windows\system32\inetcomm.dll
+ 2008-04-14 06:51 . 2012-02-29 14:10 148480 c:\windows\system32\imagehlp.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 251904 c:\windows\system32\iepeers.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 251904 c:\windows\system32\iepeers.dll
+ 2008-04-14 06:51 . 2008-10-23 12:42 286720 c:\windows\system32\gdi32.dll
+ 2008-04-08 17:53 . 2012-07-13 12:45 270984 c:\windows\system32\FNTCACHE.DAT
- 2008-04-08 17:53 . 2012-07-09 07:42 270984 c:\windows\system32\FNTCACHE.DAT
+ 2008-04-14 06:51 . 2008-07-07 20:29 253952 c:\windows\system32\es.dll
+ 2008-04-14 06:51 . 2011-10-18 11:13 186880 c:\windows\system32\encdec.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 186880 c:\windows\system32\encdec.dll
+ 2008-04-13 22:30 . 2010-02-11 12:02 226880 c:\windows\system32\drivers\tcpip6.sys
+ 2008-04-13 22:50 . 2008-06-20 11:51 361600 c:\windows\system32\drivers\tcpip.sys
+ 2008-04-13 22:45 . 2011-02-17 13:18 357888 c:\windows\system32\drivers\srv.sys
+ 2008-04-13 22:25 . 2008-05-08 14:02 203136 c:\windows\system32\drivers\rmcast.sys
+ 2008-04-13 22:47 . 2011-04-21 13:37 105472 c:\windows\system32\drivers\mup.sys
+ 2008-04-13 22:47 . 2011-07-15 13:29 456320 c:\windows\system32\drivers\mrxsmb.sys
+ 2008-04-14 05:45 . 2008-06-14 17:35 272128 c:\windows\system32\drivers\bthport.sys
+ 2008-04-13 22:49 . 2011-08-17 13:49 138496 c:\windows\system32\drivers\afd.sys
+ 2008-04-14 06:51 . 2011-03-03 06:54 149504 c:\windows\system32\dnsapi.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 210968 c:\windows\system32\dllcache\wuweb.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 329240 c:\windows\system32\dllcache\wucltui.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 577048 c:\windows\system32\dllcache\wuapi.dll
+ 2008-04-14 06:52 . 2008-05-08 11:24 155648 c:\windows\system32\dllcache\wscript.exe
- 2008-04-14 06:52 . 2008-04-14 06:52 155648 c:\windows\system32\dllcache\wscript.exe
+ 2008-04-08 16:02 . 2010-07-16 11:58 219136 c:\windows\system32\dllcache\wordpad.exe
+ 2008-04-14 06:52 . 2009-04-09 23:01 530280 c:\windows\system32\dllcache\wmspdmod.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 233472 c:\windows\system32\dllcache\wmpdxm.dll
+ 2008-04-14 06:52 . 2009-07-12 10:21 233472 c:\windows\system32\dllcache\wmpdxm.dll
+ 2008-04-08 16:01 . 2009-02-06 10:10 227840 c:\windows\system32\dllcache\wmiprvse.exe
+ 2008-04-08 16:01 . 2009-02-09 10:56 453120 c:\windows\system32\dllcache\wmiprvsd.dll
+ 2008-04-14 06:52 . 2007-10-20 04:01 227328 c:\windows\system32\dllcache\wmasf.dll
+ 2008-04-14 06:52 . 2009-06-10 06:16 132096 c:\windows\system32\dllcache\wkssvc.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 132096 c:\windows\system32\dllcache\wkssvc.dll
+ 2008-04-14 06:52 . 2012-02-29 14:10 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2008-04-14 06:52 . 2011-11-25 21:57 293376 c:\windows\system32\dllcache\winsrv.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 293376 c:\windows\system32\dllcache\winsrv.dll
+ 2008-04-14 06:52 . 2011-10-14 14:47 174592 c:\windows\system32\dllcache\winmm.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 174592 c:\windows\system32\dllcache\winmm.dll
+ 2008-04-14 06:52 . 2012-05-16 07:59 668160 c:\windows\system32\dllcache\wininet.dll
+ 2008-04-14 06:52 . 2011-11-16 14:21 354816 c:\windows\system32\dllcache\winhttp.dll
+ 2005-12-21 15:34 . 2011-04-29 19:07 852480 c:\windows\system32\dllcache\vgx.dll
+ 2008-04-14 06:52 . 2011-03-04 06:43 434176 c:\windows\system32\dllcache\vbscript.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 434176 c:\windows\system32\dllcache\vbscript.dll
+ 2008-04-14 06:52 . 2010-04-16 15:38 406016 c:\windows\system32\dllcache\usp10.dll
- 2008-04-14 06:52 . 2008-04-14 06:52 406016 c:\windows\system32\dllcache\usp10.dll
+ 2008-04-14 06:52 . 2012-04-20 19:30 627712 c:\windows\system32\dllcache\urlmon.dll
- 2005-12-21 15:34 . 2008-04-14 06:52 153088 c:\windows\system32\dllcache\triedit.dll
+ 2005-12-21 15:34 . 2009-06-21 21:48 153088 c:\windows\system32\dllcache\triedit.dll
+ 2008-04-13 22:30 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2008-04-13 22:50 . 2008-06-20 11:51 361600 c:\windows\system32\dllcache\tcpip.sys
+ 2008-04-14 06:52 . 2010-08-27 08:03 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2008-04-14 06:52 . 2009-08-26 08:02 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2008-04-13 22:45 . 2011-02-17 13:18 357888 c:\windows\system32\dllcache\srv.sys
+ 2008-04-14 06:51 . 2012-06-04 04:32 152576 c:\windows\system32\dllcache\schannel.dll
+ 2008-04-14 06:51 . 2009-07-27 23:19 135168 c:\windows\system32\dllcache\shsvcs.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 135168 c:\windows\system32\dllcache\shsvcs.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2008-04-14 06:51 . 2009-12-08 09:25 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2008-04-14 06:51 . 2011-01-21 14:44 440320 c:\windows\system32\dllcache\shimgvw.dll
+ 2008-04-14 06:52 . 2009-02-09 11:25 111104 c:\windows\system32\dllcache\services.exe
+ 2008-04-14 06:51 . 2008-05-09 10:56 172032 c:\windows\system32\dllcache\scrrun.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 172032 c:\windows\system32\dllcache\scrrun.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 180224 c:\windows\system32\dllcache\scrobj.dll
+ 2008-04-14 06:51 . 2008-05-09 10:56 180224 c:\windows\system32\dllcache\scrobj.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 270848 c:\windows\system32\dllcache\sbe.dll
+ 2008-04-14 06:51 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll
+ 2008-04-14 06:51 . 2009-02-09 10:56 401408 c:\windows\system32\dllcache\rpcss.dll
+ 2008-04-14 06:51 . 2010-08-16 08:45 590848 c:\windows\system32\dllcache\rpcrt4.dll
+ 2008-04-13 22:25 . 2008-05-08 14:02 203136 c:\windows\system32\dllcache\rmcast.sys
- 2008-04-08 16:02 . 2008-04-14 06:53 139656 c:\windows\system32\dllcache\rdpwd.sys
+ 2008-04-08 16:02 . 2012-05-02 13:46 139656 c:\windows\system32\dllcache\rdpwd.sys
+ 2008-04-14 06:51 . 2009-10-12 13:40 150016 c:\windows\system32\dllcache\rastls.dll
+ 2008-04-14 06:51 . 2011-11-03 15:29 386560 c:\windows\system32\dllcache\qdvd.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 386560 c:\windows\system32\dllcache\qdvd.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 284160 c:\windows\system32\dllcache\pdh.dll
+ 2008-04-14 06:51 . 2009-03-06 14:23 284160 c:\windows\system32\dllcache\pdh.dll
+ 2008-04-14 06:51 . 2010-12-20 17:32 551936 c:\windows\system32\dllcache\oleaut32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 551936 c:\windows\system32\dllcache\oleaut32.dll
+ 2001-10-25 14:00 . 2011-09-26 09:41 220160 c:\windows\system32\dllcache\oleacc.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 249856 c:\windows\system32\dllcache\odbc32.dll
+ 2008-04-14 06:51 . 2010-11-09 14:52 249856 c:\windows\system32\dllcache\odbc32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 271360 c:\windows\system32\dllcache\oakley.dll
+ 2008-04-14 06:51 . 2009-10-13 10:34 271360 c:\windows\system32\dllcache\oakley.dll
+ 2008-04-14 06:51 . 2010-12-09 15:15 713216 c:\windows\system32\dllcache\ntdll.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 337408 c:\windows\system32\dllcache\netapi32.dll
+ 2008-04-14 06:51 . 2008-10-15 16:38 337408 c:\windows\system32\dllcache\netapi32.dll
+ 2008-04-13 22:47 . 2011-04-21 13:37 105472 c:\windows\system32\dllcache\mup.sys
- 2008-04-14 06:51 . 2008-04-14 06:51 247296 c:\windows\system32\dllcache\mswsock.dll
+ 2008-04-14 06:51 . 2008-06-20 16:04 247296 c:\windows\system32\dllcache\mswsock.dll
+ 2008-04-14 06:51 . 2009-08-05 09:01 205312 c:\windows\system32\dllcache\mswebdvd.dll
+ 2008-04-14 06:51 . 2009-09-11 14:19 136192 c:\windows\system32\dllcache\msv1_0.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 532480 c:\windows\system32\dllcache\mstime.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 532480 c:\windows\system32\dllcache\mstime.dll
+ 2008-04-08 16:02 . 2009-12-17 07:42 343552 c:\windows\system32\dllcache\mspaint.exe
- 2008-04-08 16:02 . 2008-04-14 06:52 343552 c:\windows\system32\dllcache\mspaint.exe
+ 2005-12-21 15:34 . 2010-11-09 14:52 102400 c:\windows\system32\dllcache\msjro.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 102400 c:\windows\system32\dllcache\msjro.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 449536 c:\windows\system32\dllcache\mshtmled.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 161792 c:\windows\system32\dllcache\msdtcuiu.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 161792 c:\windows\system32\dllcache\msdtcuiu.dll
- 2008-04-08 16:02 . 2008-04-14 06:51 956928 c:\windows\system32\dllcache\msdtctm.dll

[John.Ross]

Com
+ 2008-04-08 16:02 . 2008-06-12 14:24 956928 c:\windows\system32\dllcache\msdtctm.dll
+ 2008-04-08 16:02 . 2008-06-12 14:24 428032 c:\windows\system32\dllcache\msdtcprx.dll
+ 2005-12-21 15:34 . 2010-11-09 14:52 200704 c:\windows\system32\dllcache\msadox.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 200704 c:\windows\system32\dllcache\msadox.dll
+ 2005-12-21 15:34 . 2010-11-09 14:52 180224 c:\windows\system32\dllcache\msadomd.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 180224 c:\windows\system32\dllcache\msadomd.dll
+ 2005-12-21 15:34 . 2012-05-28 18:16 536576 c:\windows\system32\dllcache\msado15.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 536576 c:\windows\system32\dllcache\msado15.dll
+ 2005-12-21 15:34 . 2010-11-09 14:52 143360 c:\windows\system32\dllcache\msadco.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 143360 c:\windows\system32\dllcache\msadco.dll
+ 2005-12-21 15:34 . 2008-05-01 14:37 331776 c:\windows\system32\dllcache\msadce.dll
- 2005-12-21 15:34 . 2008-04-14 06:51 331776 c:\windows\system32\dllcache\msadce.dll
+ 2008-04-14 06:51 . 2010-04-05 09:54 384512 c:\windows\system32\dllcache\mp4sdmod.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 384512 c:\windows\system32\dllcache\mp4sdmod.dll
+ 2010-03-30 10:24 . 2010-03-30 10:24 317440 c:\windows\system32\dllcache\mp4sdecd.dll
+ 2007-04-03 06:44 . 2011-02-08 13:33 974848 c:\windows\system32\dllcache\mfc42u.dll
+ 2008-04-14 06:51 . 2011-02-08 13:33 978944 c:\windows\system32\dllcache\mfc42.dll
+ 2008-04-14 06:51 . 2010-09-18 06:53 953856 c:\windows\system32\dllcache\mfc40u.dll
+ 2001-10-25 14:00 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll
+ 2008-04-14 06:51 . 2010-12-20 17:25 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2008-04-14 06:51 . 2009-05-07 15:33 346624 c:\windows\system32\dllcache\localspl.dll
- 2008-04-08 16:02 . 2008-04-14 06:52 677888 c:\windows\system32\dllcache\lhmstsc.exe
+ 2008-04-08 16:02 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe
- 2008-04-14 06:51 . 2008-04-14 06:51 988160 c:\windows\system32\dllcache\kernel32.dll
+ 2008-04-14 06:51 . 2009-03-21 14:09 988160 c:\windows\system32\dllcache\kernel32.dll
+ 2008-04-14 06:51 . 2010-12-22 12:34 301568 c:\windows\system32\dllcache\kerberos.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 512000 c:\windows\system32\dllcache\jscript.dll
+ 2008-04-14 06:51 . 2011-03-04 06:43 512000 c:\windows\system32\dllcache\jscript.dll
+ 2008-04-08 16:04 . 2011-10-10 14:22 692736 c:\windows\system32\dllcache\inetcomm.dll
+ 2008-04-14 06:51 . 2012-02-29 14:10 148480 c:\windows\system32\dllcache\imagehlp.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 251904 c:\windows\system32\dllcache\iepeers.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 251904 c:\windows\system32\dllcache\iepeers.dll
- 2008-04-08 16:04 . 2008-04-14 06:52 744448 c:\windows\system32\dllcache\helpsvc.exe
+ 2008-04-08 16:04 . 2010-06-14 14:31 744448 c:\windows\system32\dllcache\helpsvc.exe
+ 2008-04-14 06:51 . 2008-10-23 12:42 286720 c:\windows\system32\dllcache\gdi32.dll
+ 2008-04-08 16:01 . 2009-02-09 10:56 473600 c:\windows\system32\dllcache\fastprox.dll
+ 2008-04-14 06:51 . 2008-07-07 20:29 253952 c:\windows\system32\dllcache\es.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 186880 c:\windows\system32\dllcache\encdec.dll
+ 2008-04-14 06:51 . 2011-10-18 11:13 186880 c:\windows\system32\dllcache\encdec.dll
+ 2008-04-14 06:51 . 2011-03-03 06:54 149504 c:\windows\system32\dllcache\dnsapi.dll
+ 2008-04-14 06:52 . 2008-05-07 09:07 135168 c:\windows\system32\dllcache\cscript.exe
+ 2008-04-14 06:51 . 2012-05-31 13:22 602112 c:\windows\system32\dllcache\crypt32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 602112 c:\windows\system32\dllcache\crypt32.dll
+ 2008-04-14 06:51 . 2010-08-23 16:12 617472 c:\windows\system32\dllcache\comctl32.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 617472 c:\windows\system32\dllcache\comctl32.dll
+ 2008-04-14 06:37 . 2011-02-15 12:56 290432 c:\windows\system32\dllcache\atmfd.dll
+ 2008-04-13 22:49 . 2011-08-17 13:49 138496 c:\windows\system32\dllcache\afd.sys
- 2008-04-14 06:51 . 2008-04-14 06:51 684032 c:\windows\system32\dllcache\advapi32.dll
+ 2008-04-14 06:51 . 2009-02-09 10:56 684032 c:\windows\system32\dllcache\advapi32.dll
+ 2008-04-14 06:51 . 2009-11-21 16:03 471552 c:\windows\system32\dllcache\aclayers.dll
+ 2008-04-14 06:51 . 2010-02-12 04:35 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2008-04-14 06:52 . 2008-05-07 09:07 135168 c:\windows\system32\cscript.exe
- 2008-04-14 06:51 . 2008-04-14 06:51 617472 c:\windows\system32\comctl32.dll
+ 2008-04-14 06:51 . 2010-08-23 16:12 617472 c:\windows\system32\comctl32.dll
+ 2008-04-14 06:37 . 2011-02-15 12:56 290432 c:\windows\system32\atmfd.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 684032 c:\windows\system32\advapi32.dll
+ 2008-04-14 06:51 . 2009-02-09 10:56 684032 c:\windows\system32\advapi32.dll
+ 2008-04-14 06:51 . 2010-02-12 04:35 100864 c:\windows\system32\6to4svc.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 391032 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\update\updspapi.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 759160 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\update\update.exe
- 2012-07-04 11:57 . 2010-07-05 13:13 233848 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\spuninst.exe
- 2012-05-31 13:19 . 2012-05-31 13:19 602624 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\sp3qfe\crypt32.dll
- 2012-05-31 13:22 . 2012-05-31 13:22 602112 c:\windows\SoftwareDistribution\Download\bdd028eaa713ddb20d4e1defac9064d6\sp3gdr\crypt32.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 391032 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\update\updspapi.dll
- 2012-07-04 11:57 . 2010-07-05 13:13 759160 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\update\update.exe
- 2012-07-04 11:57 . 2010-07-05 13:13 233848 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\spuninst.exe
- 2012-07-04 11:56 . 2010-07-05 13:13 391032 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\update\updspapi.dll
- 2012-07-04 11:56 . 2010-07-05 13:13 759160 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\update\update.exe
- 2012-07-04 11:56 . 2010-07-05 13:13 233848 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\spuninst.exe
- 2012-07-04 11:56 . 2012-05-02 13:45 139656 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\SP3QFE\rdpwd.sys
- 2012-07-04 11:56 . 2012-05-02 13:46 139656 c:\windows\SoftwareDistribution\Download\225374e59d8804605b4045708801c218\SP3GDR\rdpwd.sys
- 2008-04-08 16:04 . 2008-04-14 06:52 744448 c:\windows\PCHealth\HelpCtr\Binaries\HelpSvc.exe
+ 2008-04-08 16:04 . 2010-06-14 14:31 744448 c:\windows\PCHealth\HelpCtr\Binaries\helpsvc.exe
+ 2012-04-21 05:15 . 2012-04-21 05:15 630784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
- 2012-04-21 05:15 . 2012-01-31 01:38 630784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2012-07-10 12:27 . 2012-07-10 12:27 176128 c:\windows\Installer\799d7.msi
+ 2012-07-10 12:26 . 2012-07-10 12:26 457216 c:\windows\Installer\799c7.msi
+ 2012-07-10 12:25 . 2012-07-10 12:25 863744 c:\windows\Installer\799c3.msi
+ 2012-04-21 19:55 . 2012-04-21 19:55 980480 c:\windows\Installer\14a1dd9.msp
+ 2012-07-11 23:16 . 2011-07-15 13:29 456320 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2012-07-11 23:05 . 2008-06-14 17:35 272128 c:\windows\Driver Cache\i386\bthport.sys
+ 2012-07-13 12:49 . 2012-07-13 12:49 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\2c2cfe38ce01089f29bf8fca9202df87\WindowsFormsIntegration.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\0320a802a781cde2787ef293bdc50dff\System.Web.Routing.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\bd228ca01b1a66f008ed7150e65ff8a1\System.Web.Extensions.Design.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\40c3b61ac38613e2b4b0f196e86185eb\System.Web.Entity.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\2eb2c1f611526cb3eeb4dda7a9617c09\System.Web.Entity.Design.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\aaee14f02c83551e803aa50cea02961d\System.Web.DynamicData.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\1b50e199f346cfd110055d8a7bc0271b\System.Web.Abstractions.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\901d44f5b14d9a197c95dc031248c849\System.ServiceProcess.ni.dll
+ 2012-07-13 12:48 . 2012-07-13 12:48 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\df4ae071ecdd9d3893031c6ded11e37e\System.Drawing.Design.ni.dll
+ 2012-07-13 12:50 . 2012-07-13 12:50 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\5880df1ff5e02872f854efc5e055039f\AspNetMMCExt.ni.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 630784 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 630784 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2008-04-14 06:51 . 2009-11-21 16:03 471552 c:\windows\AppPatch\aclayers.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2718704$\spuninst\updspapi.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2718704$\spuninst\spuninst.exe
+ 2012-07-13 12:19 . 2008-04-14 06:51 602112 c:\windows\$NtUninstallKB2718704$\crypt32.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2707511$\spuninst\updspapi.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2707511$\spuninst\spuninst.exe
+ 2012-07-13 12:17 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2685939$\spuninst\updspapi.dll
+ 2012-07-13 12:17 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2685939$\spuninst\spuninst.exe
+ 2012-07-13 12:17 . 2008-04-14 06:53 139656 c:\windows\$NtUninstallKB2685939$\rdpwd.sys
+ 2009-12-16 11:51 . 2009-05-26 15:10 391032 c:\windows\$hf_mig$\KB955759\update\updspapi.dll
- 2009-12-16 11:51 . 2009-05-26 16:10 391032 c:\windows\$hf_mig$\KB955759\update\updspapi.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2718704\update\updspapi.dll
+ 2012-07-13 12:19 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2718704\update\update.exe
+ 2012-07-13 12:19 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2718704\spuninst.exe
+ 2012-07-11 23:01 . 2012-05-31 13:19 602624 c:\windows\$hf_mig$\KB2718704\SP3QFE\crypt32.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2707511\update\updspapi.dll
+ 2012-07-13 12:40 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2707511\update\update.exe
+ 2012-07-13 12:40 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2707511\spuninst.exe
+ 2012-07-13 12:17 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2685939\update\updspapi.dll
+ 2012-07-13 12:17 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2685939\update\update.exe
+ 2012-07-13 12:17 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2685939\spuninst.exe
+ 2012-07-11 23:01 . 2012-05-02 13:45 139656 c:\windows\$hf_mig$\KB2685939\SP3QFE\rdpwd.sys
- 2012-05-11 05:09 . 2012-02-09 15:43 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
+ 2012-07-11 23:16 . 2012-02-09 15:43 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
- 2010-10-13 05:02 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
+ 2012-07-11 23:15 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
+ 2012-05-11 05:09 . 2012-02-09 15:43 1748992 c:\windows\WinSxS\InstallTemp\4361660\GdiPlus.dll
+ 2010-10-13 05:02 . 2010-08-23 16:12 1054208 c:\windows\WinSxS\InstallTemp\4209739\comctl32.dll
+ 2008-04-14 06:53 . 2010-04-03 01:33 2365288 c:\windows\system32\WMVCore.dll
+ 2008-04-14 06:52 . 2010-08-26 15:16 4886528 c:\windows\system32\wmp.dll
+ 2008-04-14 06:52 . 2008-06-10 09:37 1026048 c:\windows\system32\WMNetmgr.dll
+ 2008-04-14 06:51 . 2012-06-08 14:25 8466944 c:\windows\system32\shell32.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 1510912 c:\windows\system32\shdocvw.dll
+ 2008-04-14 06:51 . 2009-07-17 16:17 1437696 c:\windows\system32\query.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 1437696 c:\windows\system32\query.dll
+ 2008-04-14 06:51 . 2011-11-03 15:29 1294848 c:\windows\system32\quartz.dll
+ 2008-04-14 06:51 . 2011-11-01 16:07 1288192 c:\windows\system32\ole32.dll
+ 2008-04-08 16:02 . 2011-02-02 07:58 2067456 c:\windows\system32\mstscax.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 3109376 c:\windows\system32\mshtml.dll
+ 2008-04-08 16:04 . 2012-06-02 13:19 1933848 c:\windows\system32\dllcache\wuaueng.dll
+ 2008-04-14 06:53 . 2010-04-03 01:33 2365288 c:\windows\system32\dllcache\WMVCore.dll
+ 2008-04-14 06:52 . 2010-08-26 15:16 4886528 c:\windows\system32\dllcache\wmp.dll
+ 2008-04-14 06:52 . 2008-06-10 09:37 1026048 c:\windows\system32\dllcache\WMNetmgr.dll
+ 2008-04-14 05:45 . 2012-06-13 13:55 1866112 c:\windows\system32\dllcache\win32k.sys
+ 2008-04-14 06:51 . 2012-06-08 14:25 8466944 c:\windows\system32\dllcache\shell32.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 1510912 c:\windows\system32\dllcache\shdocvw.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 1437696 c:\windows\system32\dllcache\query.dll
+ 2008-04-14 06:51 . 2009-07-17 16:17 1437696 c:\windows\system32\dllcache\query.dll
+ 2008-04-14 06:51 . 2011-11-03 15:29 1294848 c:\windows\system32\dllcache\quartz.dll
+ 2008-04-14 06:51 . 2011-11-01 16:07 1288192 c:\windows\system32\dllcache\ole32.dll
+ 2008-04-14 06:51 . 2012-06-05 15:49 1372672 c:\windows\system32\dllcache\msxml6.dll
+ 2008-04-14 06:51 . 2012-06-05 15:49 1172480 c:\windows\system32\dllcache\msxml3.dll
+ 2009-06-10 07:21 . 2009-06-10 07:21 2066432 c:\windows\system32\dllcache\mstscax.dll
+ 2005-12-21 15:34 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 3109376 c:\windows\system32\dllcache\mshtml.dll
+ 2005-12-21 15:34 . 2010-06-18 13:36 3558912 c:\windows\system32\dllcache\moviemk.exe
- 2005-12-21 15:34 . 2008-04-14 06:52 3558912 c:\windows\system32\dllcache\moviemk.exe
+ 2008-04-08 16:02 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 1025024 c:\windows\system32\dllcache\browseui.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 1025024 c:\windows\system32\dllcache\browseui.dll
+ 2008-04-14 06:51 . 2012-04-20 19:30 1025024 c:\windows\system32\browseui.dll
- 2008-04-14 06:51 . 2008-04-14 06:51 1025024 c:\windows\system32\browseui.dll
- 2012-05-05 03:14 . 2012-05-05 03:14 2194816 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3qfe\ntoskrnl.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2028544 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3qfe\ntkrpamp.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2071296 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3qfe\ntkrnlpa.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2150400 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3qfe\ntkrnlmp.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2194816 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3gdr\ntoskrnl.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2028544 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3gdr\ntkrpamp.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2071296 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3gdr\ntkrnlpa.exe
- 2012-05-05 03:14 . 2012-05-05 03:14 2150400 c:\windows\SoftwareDistribution\Download\3a4b683ecca2f07fbf154e5e144e9b49\sp3gdr\ntkrnlmp.exe
+ 2012-07-11 23:06 . 2012-05-05 03:14 2194816 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2012-07-11 23:06 . 2012-05-05 03:14 2028544 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2012-07-11 23:06 . 2012-05-05 03:14 2071296 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2012-07-11 23:06 . 2012-05-05 03:14 2150400 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2012-07-13 12:52 . 2012-07-13 12:52 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\41b44fa9b1266e8339bb499e1e20215c\System.WorkflowServices.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\507189a17291a9dd4420fa6fb0712c32\System.Workflow.ComponentModel.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\047a645e999593d7c9bbdadadea0dad4\System.Workflow.Activities.ni.dll
+ 2012-07-13 12:52 . 2012-07-13 12:52 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\69fded1580d6990f644302cfb12fb426\System.Web.Mobile.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\20540ad7c6570e5013f2ccd892738dd6\System.Web.Extensions.ni.dll
+ 2012-07-13 12:48 . 2012-07-13 12:48 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\d380f1813e27c2a086e62f0218669d67\System.Printing.ni.dll
+ 2012-07-13 12:48 . 2012-07-13 12:48 1592320 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\7253584d55b642335b4cc5e15f643813\System.Deployment.ni.dll
+ 2012-07-13 12:41 . 2012-07-13 12:41 2146304 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\443dd7f0b84c3de54b1a72be655e307c\ReachFramework.ni.dll
+ 2012-07-13 12:41 . 2012-07-13 12:41 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\489a6b1b2da652bbcedec766431f52ca\PresentationUI.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\c8b4b91f43b5f0689ef122898c209a76\Microsoft.VisualBasic.ni.dll
+ 2012-07-13 12:50 . 2012-07-13 12:50 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\fd3a7768b313f1b153b5d0603f43398d\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-07-13 12:50 . 2012-07-13 12:50 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\c10e1354588f5ecc276ffa722587f2fd\Microsoft.Build.Tasks.ni.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 3186688 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 3186688 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 5246976 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 5246976 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2012-05-11 06:10 . 2012-05-11 06:10 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-07-13 12:35 . 2012-07-13 12:35 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-07-13 12:40 . 2012-04-11 13:55 2194816 c:\windows\$NtUninstallKB2707511$\ntoskrnl.exe
+ 2012-07-13 12:40 . 2012-04-11 13:55 2028544 c:\windows\$NtUninstallKB2707511$\ntkrpamp.exe
+ 2012-07-13 12:40 . 2012-04-11 13:55 2071296 c:\windows\$NtUninstallKB2707511$\ntkrnlpa.exe
+ 2012-07-13 12:40 . 2012-04-11 13:55 2150400 c:\windows\$NtUninstallKB2707511$\ntkrnlmp.exe
+ 2012-07-11 23:01 . 2012-05-05 03:14 2194816 c:\windows\$hf_mig$\KB2707511\SP3QFE\ntoskrnl.exe
+ 2012-07-11 23:01 . 2012-05-05 03:14 2028544 c:\windows\$hf_mig$\KB2707511\SP3QFE\ntkrpamp.exe
+ 2012-07-11 23:01 . 2012-05-05 03:14 2071296 c:\windows\$hf_mig$\KB2707511\SP3QFE\ntkrnlpa.exe
+ 2012-07-11 23:01 . 2012-05-05 03:14 2150400 c:\windows\$hf_mig$\KB2707511\SP3QFE\ntkrnlmp.exe
+ 2012-07-13 12:49 . 2012-07-13 12:49 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8323ba68d61d8f6d9d66a78a034afd06\System.Windows.Forms.ni.dll
+ 2012-07-13 12:51 . 2012-07-13 12:51 11817472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\b15fecfa8589e5baf08625d35664057b\System.Web.ni.dll
+ 2012-07-13 12:42 . 2012-07-13 12:42 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\14483e2ab490f93b0bf4ca5b1b30924d\System.Design.ni.dll
+ 2012-07-13 12:40 . 2012-07-13 12:40 14329856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e4ecfaaf5417aceecb7fa8abddf06113\PresentationFramework.ni.dll
+ 2012-07-13 12:38 . 2012-07-13 12:38 12218368 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f33e2a4d9b385234406fa2d662f78875\PresentationCore.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"238d9"="c:\program files\Sfmauhzxxakyg\ugtaoiv.exe" [2010-01-25 2350634]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"238d9"="c:\program files\Sfmauhzxxakyg\ugtaoiv.exe" [2010-01-25 2350634]
"VTTimer"="VTTimer.exe" [2005-03-08 53248]
"VTTrayp"="VTtrayp.exe" [2005-03-11 147456]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-18 44544]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sprestrt\0sprestrt\0sprestrt
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"pdfSaver3"="c:\program files\PDF\pdfSaver\pdfSaver3.exe"
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe"
"STELA LITE"=c:\program files\Stela Lite\mono\StelaLite.exe
"BrowserChoice"="c:\windows\system32\browserchoice.exe" /run
"Facebook Update"="c:\documents and settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
"CTFMON.EXE"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"basicsmssmenu"="c:\program files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SoundMan"=SOUNDMAN.EXE
"VTTrayp"=VTtrayp.exe
"BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Documents and Settings\\Euromedica.EUROMEDI-09D832\\temp\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
"1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
"500:UDP"= 500:UDP:@xpsp2res.dll,-22017
.
R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [9.10.2009 13:33 16896]
R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [9.10.2009 13:33 52224]
R2 Angelnt;Angelnt;c:\windows\system32\drivers\ANGELNT.SYS [3.5.2008 10:02 51072]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [9.7.2012 17:27 654408]
R2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [9.7.2012 13:59 2673064]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [7.5.2010 14:36 92008]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [9.7.2012 17:27 22344]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\drivers\teamviewervpn.sys [9.7.2012 14:00 25088]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18.12.2008 18:13 47360]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [8.10.2009 12:53 23600]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-16 c:\windows\Tasks\User_Feed_Synchronization-{ED7F9989-D856-4C7D-B7E0-04A828701671}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 03:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
TCP: DhcpNameServer = 10.0.0.138
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-07-16 13:54
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1606980848-1757981266-682003330-1003\RemoteAccess\Profile\

r*]
"AutoConnect"=dword:00000000
.
Celkový čas: 2012-07-16 13:58:12
ComboFix-quarantined-files.txt 2012-07-16 11:58
ComboFix2.txt 2012-07-09 19:40
ComboFix3.txt 2012-07-09 13:23
ComboFix4.txt 2009-06-10 12:20
.
Před spuštěním: Volných bajtů: 20 145 520 640
Po spuštění: Volných bajtů: 20 152 885 248
.
- - End Of File - - 0D70715DAE8877DBE2C827D3015CC8CD

[John.Ross]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:02:36, on 16.7.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\TeamViewer\Version7\TeamViewer.exe
C:\Program Files\TeamViewer\Version7\tv_w32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
c:\program files\teamviewer\version7\TeamViewer_Desktop.exe
C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Basics Service - Seagate Technology LLC - C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 4583 bytes

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

[John.Ross]

gfile created on: 17.7.2012 14:06:46 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

702,42 Mb Total Physical Memory | 322,63 Mb Available Physical Memory | 45,93% Memory free
2,43 Gb Paging File | 2,02 Gb Available in Paging File | 83,12% Paging File free
Paging file location(s): c:\pagefile.sys 1824 3648 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 19,87 Gb Free Space | 53,30% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 189,84 Gb Free Space | 40,76% Space Free | Partition Type: NTFS

Computer Name: EUROMEDI-09D832 | User Name: Euromedica | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\OTL.exe (OldTimer Tools)
PRC - c:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe (Seagate Technology LLC)
PRC - C:\WINDOWS\system32\VTTrayp.exe (S3 Graphics Co., Ltd.)
PRC - C:\WINDOWS\system32\VTTimer.exe (S3 Graphics, Inc.)


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\msdmo.dll ()


========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (JavaQuickStarterService) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe (Oracle Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (Basics Service) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe (Seagate Technology LLC)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (mbr) -- C:\ComboFix\mbr.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FreshIO) -- C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys File not found
DRV - (teamviewervpn) -- C:\WINDOWS\system32\drivers\teamviewervpn.sys (TeamViewer GmbH)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (Angelnt) -- C:\WINDOWS\system32\drivers\ANGELNT.SYS (Identcode Ltd.)
DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.)
DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\alcxwdm.sys (Realtek Semiconductor Corp.)
DRV - (videX32) -- C:\WINDOWS\system32\drivers\videX32.sys (VIA Technologies, Inc.)
DRV - (ViPrt) -- C:\WINDOWS\system32\drivers\ViPrt.sys (VIA Technologies, Inc.)
DRV - (ViBus) -- C:\WINDOWS\system32\drivers\ViBus.sys (VIA Technologies, Inc.)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (aksusb) -- C:\WINDOWS\system32\drivers\aksusb.sys (Aladdin Knowledge Systems Ltd.)
DRV - (akshasp) -- C:\WINDOWS\system32\drivers\akshasp.sys (Aladdin Knowledge Systems Ltd.)
DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = Yahoo!
IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = http://search.yahoo.com/search?ei=ISO-8 ... =megaup&q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{689AF8CA-8138-4FE7-A98A-4F15802500CF}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{B35723A7-56D7-49EB-8F4C-CF2586667F54}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=SearchBox
IE - HKCU\..\SearchScopes\Yahoo!: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:3.5.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}:6.0.01
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10


FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.12.16 13:46:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions
[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2008.08.01 14:06:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2009.06.04 14:50:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Firefox\Profiles\0p4ubrxw.default\extensions
[2009.01.13 18:30:31 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Firefox\Profiles\0p4ubrxw.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\EUROMEDICA.EUROMEDI-09D832\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\0P4UBRXW.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java(TM) Platform SE 6 U20 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.07.16 13:54:05 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKLM..\Run: [VTTrayp] C:\WINDOWS\System32\VTTrayp.exe (S3 Graphics Co., Ltd.)
O4 - HKCU..\Run: [(S3 Graphics, ] Reg Error: Value error. File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Value error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{214FAABD-88BF-44DD-9E02-4E221504ED5D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012.07.17 13:55:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Recent
[2012.07.17 13:53:31 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.07.17 13:46:40 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\OTL.exe
[2012.07.12 23:53:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012.07.12 22:35:36 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\aswMBR.exe
[2012.07.12 01:16:10 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012.07.12 01:06:02 | 002,150,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012.07.12 01:06:01 | 002,194,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012.07.12 01:06:01 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012.07.12 01:06:00 | 002,071,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2012.07.12 01:05:15 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012.07.10 14:27:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Sun
[2012.07.10 14:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle
[2012.07.10 14:26:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Oracle
[2012.07.10 14:26:14 | 000,772,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll
[2012.07.10 14:26:13 | 000,227,720 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe
[2012.07.10 14:26:00 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.10 14:26:00 | 000,174,064 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.09 17:27:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2012.07.09 17:27:46 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.07.09 17:27:46 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.07.09 17:25:40 | 010,063,000 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\mbam-setup-1.61.0.1400.exe
[2012.07.09 17:13:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\backups
[2012.07.09 14:00:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\TeamViewer 7
[2012.07.09 14:00:04 | 000,025,088 | ---- | C] (TeamViewer GmbH) -- C:\WINDOWS\System32\drivers\teamviewervpn.sys
[2012.07.09 12:17:58 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\HiJackThis.exe
[2012.07.09 12:17:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Dokumenty\Downloads
[2012.07.09 09:43:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[

[John.Ross]

2012.07.09 09:15:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2012.07.09 09:15:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2012.07.09 09:15:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2012.07.09 09:15:12 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2012.07.09 09:15:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2012.07.09 09:15:11 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2012.07.09 09:15:09 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2012.07.09 09:15:09 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2012.07.09 09:15:07 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2012.07.09 09:15:07 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2012.07.09 09:15:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2012.07.09 09:15:06 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2012.07.09 09:15:05 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2012.07.09 09:15:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2012.07.09 09:15:05 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2012.07.09 09:15:04 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2012.07.09 09:15:03 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2012.07.09 09:15:03 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2012.07.09 09:14:58 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2012.07.09 09:14:58 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2012.07.09 09:14:57 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2012.07.09 09:14:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2012.07.09 09:14:54 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2012.07.09 09:14:53 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2012.07.09 09:14:53 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2012.07.09 09:14:53 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2012.07.09 09:14:52 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2012.07.09 09:14:52 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2012.07.09 09:14:51 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2012.07.09 09:14:51 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2012.07.09 09:14:50 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2012.07.09 09:14:47 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2012.07.09 09:14:45 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2012.07.09 09:14:45 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2012.07.09 09:14:44 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2012.07.09 09:14:43 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2012.07.09 09:14:40 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2012.07.09 09:14:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2012.07.09 09:14:39 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2012.07.09 09:14:39 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2012.07.09 09:14:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2012.07.09 09:14:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2012.07.09 09:14:38 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2012.07.09 09:14:38 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2012.07.09 09:14:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2012.07.09 09:14:37 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2012.07.09 09:14:37 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2012.07.09 09:14:36 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2012.07.09 09:14:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2012.07.09 09:14:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2012.07.09 09:14:35 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2012.07.09 09:14:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2012.07.09 09:14:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2012.07.09 09:14:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2012.07.09 09:14:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2012.07.09 09:14:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2012.07.09 09:14:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2012.07.09 09:14:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2012.07.09 09:14:33 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2012.07.09 09:14:32 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2012.07.09 09:14:32 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2012.07.09 09:14:32 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2012.07.09 09:14:32 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2012.07.09 09:14:30 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2012.07.09 09:14:25 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2012.07.09 09:14:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2012.07.09 09:14:24 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2012.07.09 09:14:22 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2012.07.09 09:14:21 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012.07.09 09:14:21 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012.07.09 09:14:21 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2012.07.09 09:14:21 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2012.07.09 09:14:19 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2012.07.09 09:14:18 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2012.07.09 09:14:17 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2012.07.09 09:14:17 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2012.07.09 09:14:13 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2012.07.09 09:14:13 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2012.07.09 09:14:13 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2012.07.09 09:14:12 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2012.07.09 09:14:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2012.07.09 09:14:08 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2012.07.09 09:14:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2012.07.09 09:14:07 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2012.07.09 09:14:07 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2012.07.09 09:14:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2012.07.09 09:14:06 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2012.07.09 09:14:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2012.07.09 09:14:05 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2012.07.09 09:14:05 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2012.07.09 09:14:03 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2012.07.09 09:14:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2012.07.09 09:14:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2012.07.09 09:14:02 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2012.07.09 09:14:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2012.07.09 09:13:56 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2012.07.09 09:13:55 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2012.07.09 09:13:53 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2012.07.09 09:13:49 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2012.07.09 09:13:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2012.07.09 09:13:41 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2012.07.09 09:13:41 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2012.07.09 09:13:29 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2012.07.09 09:13:28 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2012.07.09 09:13:28 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2012.07.09 09:13:28 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2012.07.09 09:13:27 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2012.07.09 09:13:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2012.07.09 09:13:25 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2012.07.09 09:13:24 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2012.07.09 09:13:24 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2012.07.09 09:13:23 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2012.07.09 09:13:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2012.07.09 09:13:22 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2012.07.09 09:13:20 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2012.07.09 09:13:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2012.07.09 09:13:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2012.07.09 09:13:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2012.07.09 09:13:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2012.07.09 09:13:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2012.07.09 09:13:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2012.07.09 09:13:15 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2012.07.09 09:13:15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2012.07.09 09:13:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2012.07.09 09:13:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2012.07.09 09:13:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2012.07.09 09:13:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2012.07.09 09:13:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2012.07.09 09:13:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2012.07.09 09:13:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2012.07.09 09:13:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2012.07.09 09:13:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2012.07.09 09:13:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2012.07.09 09:13:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2012.07.09 09:13:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2012.07.09 09:13:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2012.07.09 09:13:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2012.07.09 09:13:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2012.07.09 09:13:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2012.07.09 09:13:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2012.07.09 09:13:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2012.07.09 09:13:07 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2012.07.09 09:13:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2012.07.09 09:13:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2012.07.09 09:13:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2012.07.09 09:13:05 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2012.07.09 09:13:03 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2012.07.09 09:13:03 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2012.07.09 09:13:02 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2012.07.09 09:13:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2012.07.09 09:13:01 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2012.07.09 09:13:01 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2012.07.09 09:13:01 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2012.07.09 09:13:00 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2012.07.09 09:13:00 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2012.07.09 09:13:00 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2012.07.09 09:13:00 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2012.07.09 09:12:59 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2012.07.09 09:12:59 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2012.07.09 09:12:59 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2012.07.09 09:12:58 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2012.07.09 09:12:58 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2012.07.09 09:12:58 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2012.07.09 09:12:58 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2012.07.09 09:12:57 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2012.07.09 09:12:57 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2012.07.09 09:12:57 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2012.07.09 09:12:56 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2012.07.09 09:12:56 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2012.07.09 09:12:56 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2012.07.09 09:12:56 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2012.07.09 09:12:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2012.07.09 09:12:55 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2012.07.09 09:12:54 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2012.07.09 09:12:54 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2012.07.09 09:12:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2012.07.09 09:12:54 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2012.07.09 09:12:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2012.07.09 09:12:53 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2012.07.09 09:12:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2012.07.09 09:12:46 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2012.07.09 09:12:37 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2012.07.09 09:12:36 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2012.07.09 09:12:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2012.07.09 09:12:36 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2012.07.09 09:12:35 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2012.07.09 09:12:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2012.07.09 09:12:33 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2012.07.09 09:12:31 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2012.07.09 09:12:31 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2012.07.09 09:12:30 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2012.07.09 09:12:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2012.07.09 09:12:30 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2012.07.09 09:12:30 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2012.07.09 09:12:29 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2012.07.09 09:12:29 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2012.07.09 09:12:29 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2012.07.09 09:12:29 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2012.07.09 09:12:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2012.07.09 09:12:28 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2012.07.09 09:12:28 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2012.07.09 09:12:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2012.07.09 09:12:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2012.07.09 09:12:27 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2012.07.09 09:12:27 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2012.07.09 09:12:27 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2012.07.09 09:12:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2012.07.09 09:12:26 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2012.07.09 09:12:26 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2012.07.09 09:12:26 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2012.07.09 09:12:26 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2012.07.09 09:12:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2012.07.09 09:12:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2012.07.09 09:12:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2012.07.09 09:12:24 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2012.07.09 09:12:24 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2012.07.09 09:12:22 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2012.07.09 09:12:21 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2012.07.09 09:12:21 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2012.07.09 09:12:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2012.07.09 09:12:20 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2012.07.09 09:12:20 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2012.07.09 09:12:20 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2012.07.09 09:12:19 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2012.07.09 09:12:19 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2012.07.09 09:12:19 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2012.07.09 09:12:18 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2012.07.09 09:12:07 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2012.07.09 09:12:06 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2012.07.09 09:12:04 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2012.07.09 09:12:04 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2012.07.09 09:12:03 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2012.07.09 09:12:03 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2012.07.09 09:12:02 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2012.07.09 09:12:01 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2012.07.09 09:11:59 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2012.07.09 09:11:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2012.07.09 09:11:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2012.07.09 09:11:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2012.07.09 09:11:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2012.07.09 09:11:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2012.07.09 09:11:57 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2012.07.09 09:11:56 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2012.07.09 09:11:56 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2012.07.09 09:11:56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2012.07.09 09:11:55 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2012.07.09 09:11:55 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2012.07.09 09:11:53 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012.07.09 09:11:53 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2012.07.09 09:11:53 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2012.07.09 09:11:52 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2012.07.09 09:11:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2012.07.09 09:11:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2012.07.09 09:11:31 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2012.07.09 09:11:31 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2012.07.09 09:11:31 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2012.07.09 09:11:30 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2012.07.09 09:11:30 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2012.07.09 09:11:29 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2012.07.09 09:11:29 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2012.07.09 09:11:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2012.07.09 09:11:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2012.07.09 09:11:25 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2012.07.09 09:11:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2012.07.09 09:11:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2012.07.09 09:11:24 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2012.07.09 09:11:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2012.07.09 09:11:18 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2012.07.09 09:11:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2012.07.09 09:11:16 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2012.07.09 09:11:08 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2012.07.09 09:11:08 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2012.07.09 09:11:07 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2012.07.09 09:11:07 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2012.07.09 09:11:07 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2012.07.09 09:11:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2012.07.09 09:11:06 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2012.07.09 09:11:06 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2012.07.09 09:11:06 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2012.07.09 09:11:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2012.07.09 09:11:05 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2012.07.09 09:11:05 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2012.07.09 09:11:05 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2012.07.09 09:11:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2012.07.09 09:11:03 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2012.07.09 09:11:01 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2012.07.09 09:11:01 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2012.07.09 09:11:01 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2012.07.09 09:11:00 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2012.07.09 09:10:59 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2012.07.09 09:10:59 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2012.07.09 09:07:57 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2012.07.09 08:55:23 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012.07.09 08:55:23 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2012.07.09 08:55:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012.07.09 08:55:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2012.07.04 15:05:17 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012.07.04 14:48:34 | 000,000,000 | ---D | C] -- C:\c9a3d5c76888fb824292
[2012.07.04 14:15:29 | 000,000,000 | ---D | C] -- C:\fef31c51442c5167ce050796af952b
[2012.07.04 13:39:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(2)
[2008.12.18 18:13:53 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.sys
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.07.17 14:27:34 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{ED7F9989-D856-4C7D-B7E0-04A828701671}.job
[2012.07.17 13:56:47 | 000,100,864 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\T-Cleaner.exe
[2012.07.17 13:46:47 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\OTL.exe
[2012.07.16 13:54:05 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.07.16 12:15:10 | 000,013,728 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.07.16 12:14:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\TempFile
[2012.07.16 12:14:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.07.13 14:50:09 | 000,482,496 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.07.13 14:50:09 | 000,478,980 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.07.13 14:50:09 | 000,100,212 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.07.13 14:50:09 | 000,084,922 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.07.13 14:45:36 | 000,270,984 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.07.13 00:37:13 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.07.12 22:35:49 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\aswMBR.exe
[2012.07.12 22:33:54 | 000,000,284 | -HS- | M] () -- C:\boot.ini
[2012.07.10 14:25:39 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.10 14:25:39 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.09 17:27:50 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes Anti-Malware.lnk
[2012.07.09 17:25:54 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\mbam-setup-1.61.0.1400.exe
[2012.07.09 14:58:30 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.07.09 14:00:22 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\TeamViewer 7.lnk
[2012.07.09 13:08:24 | 000,067,584 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.07.09 12:17:58 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\HiJackThis.exe
[2012.07.09 09:18:18 | 000,035,880 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012.07.09 09:10:21 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.07.09 09:10:20 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012.07.09 09:10:20 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012.07.09 09:10:04 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012.07.09 09:05:57 | 000,022,944 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012.07.09 08:55:46 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2012.07.09 07:40:20 | 000,001,581 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\ÚČTO 2012.LNK
[2012.07.04 14:46:14 | 000,002,412 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\Google Chrome.lnk
[2012.07.02 12:23:05 | 000,025,088 | ---- | M] (TeamViewer GmbH) -- C:\WINDOWS\System32\drivers\teamviewervpn.sys
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.07.17 13:56:46 | 000,100,864 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\T-Cleaner.exe
[2012.07.09 17:27:50 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes Anti-Malware.lnk
[2012.07.09 14:00:22 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\TeamViewer 7.lnk
[2012.07.09 09:14:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012.07.09 09:13:20 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012.07.09 09:13:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012.07.09 09:12:59 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012.07.09 09:12:55 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012.07.09 09:12:41 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012.07.09 09:12:33 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012.07.09 09:11:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012.07.09 08:55:46 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2012.07.09 08:55:02 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012.07.09 08:55:02 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2012.07.09 08:55:02 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2012.07.09 08:55:02 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012.07.09 08:55:02 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2012.07.09 08:55:02 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2012.07.09 08:55:02 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2012.07.09 08:55:02 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012.07.09 08:55:02 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2012.07.09 08:55:02 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2012.07.09 08:55:02 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012.07.09 08:55:02 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012.07.09 08:55:01 | 001,246,067 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2012.07.09 08:55:01 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012.07.09 08:55:00 | 002,033,597 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2012.07.09 08:55:00 | 000,631,112 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2012.07.04 15:01:46 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2012.02.15 08:06:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.11.12 14:04:33 | 000,009,845 | ---- | C] () -- C:\WINDOWS\System32\mswoneoie.dll
[2011.11.10 09:30:51 | 001,188,443 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2011.11.10 09:30:51 | 000,005,461 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2011.08.27 03:25:39 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\msroceoid.dll
[2010.08.12 13:13:38 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ezsid.dat
[2008.12.23 13:49:30 | 000,004,936 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\.recently-used.xbel
[2008.12.18 18:14:52 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\vso_ts_preview.xml
[2008.12.18 18:13:53 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\inst.exe
[2008.12.18 18:13:53 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.cat
[2008.12.18 18:13:53 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.inf
[2008.05.13 07:50:26 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\default.pls
[2008.05.12 06:35:49 | 000,067,584 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.11 17:02:21 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\.rnd

========== LOP Check ==========

[2009.08.06 10:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ESET
[2008.04.09 13:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ScanSoft
[2008.04.08 18:44:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Seagate
[2012.07.17 14:27:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
[2008.08.01 14:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TomTom
[2010.01.18 15:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
[2009.04.16 08:47:18 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.01.18 15:40:27 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2008.12.16 15:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Bitsoft
[2008.06.10 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\DMCache
[2009.12.16 08:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\fltk.org
[2009.10.07 20:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\FreshDiagnose
[2009.10.08 12:47:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\GetRightToGo
[2012.07.04 14:33:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\GHISLER
[2008.12.23 13:49:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\gtk-2.0
[2009.10.06 13:02:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\IObit
[2008.09.24 14:30:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\LGSync
[2009.06.24 14:56:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\mojosoft
[2012.07.10 14:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Oracle
[2010.05.17 15:59:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TeamViewer
[2008.08.01 14:06:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TomTom
[2009.04.16 08:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TuneUp Software
[2009.10.06 13:08:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Vso
[2012.07.17 14:27:34 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{ED7F9989-D856-4C7D-B7E0-04A828701671}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\DOSITECH.pif:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\dositech.exe:SummaryInformation
@Alternate Data Stream - 227 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:8927A071
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:66E02052
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:6FA4C6D0

< End of report >

[John.Ross]

2012.07.09 09:15:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2012.07.09 09:15:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2012.07.09 09:15:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2012.07.09 09:15:12 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2012.07.09 09:15:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2012.07.09 09:15:11 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2012.07.09 09:15:09 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2012.07.09 09:15:09 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2012.07.09 09:15:07 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2012.07.09 09:15:07 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2012.07.09 09:15:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2012.07.09 09:15:06 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2012.07.09 09:15:05 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2012.07.09 09:15:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2012.07.09 09:15:05 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2012.07.09 09:15:04 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2012.07.09 09:15:03 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2012.07.09 09:15:03 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2012.07.09 09:14:58 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2012.07.09 09:14:58 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2012.07.09 09:14:57 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2012.07.09 09:14:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2012.07.09 09:14:54 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2012.07.09 09:14:53 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2012.07.09 09:14:53 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2012.07.09 09:14:53 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2012.07.09 09:14:52 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2012.07.09 09:14:52 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2012.07.09 09:14:51 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2012.07.09 09:14:51 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2012.07.09 09:14:50 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2012.07.09 09:14:47 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2012.07.09 09:14:45 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2012.07.09 09:14:45 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2012.07.09 09:14:44 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2012.07.09 09:14:43 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2012.07.09 09:14:40 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2012.07.09 09:14:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2012.07.09 09:14:39 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2012.07.09 09:14:39 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2012.07.09 09:14:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2012.07.09 09:14:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2012.07.09 09:14:38 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2012.07.09 09:14:38 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2012.07.09 09:14:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2012.07.09 09:14:37 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2012.07.09 09:14:37 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2012.07.09 09:14:36 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2012.07.09 09:14:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2012.07.09 09:14:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2012.07.09 09:14:35 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2012.07.09 09:14:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2012.07.09 09:14:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2012.07.09 09:14:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2012.07.09 09:14:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2012.07.09 09:14:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2012.07.09 09:14:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2012.07.09 09:14:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2012.07.09 09:14:33 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2012.07.09 09:14:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2012.07.09 09:14:32 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2012.07.09 09:14:32 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2012.07.09 09:14:32 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2012.07.09 09:14:32 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2012.07.09 09:14:30 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2012.07.09 09:14:25 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2012.07.09 09:14:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2012.07.09 09:14:24 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2012.07.09 09:14:22 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2012.07.09 09:14:21 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012.07.09 09:14:21 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012.07.09 09:14:21 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2012.07.09 09:14:21 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2012.07.09 09:14:19 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2012.07.09 09:14:18 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2012.07.09 09:14:17 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2012.07.09 09:14:17 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2012.07.09 09:14:13 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2012.07.09 09:14:13 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2012.07.09 09:14:13 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2012.07.09 09:14:12 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2012.07.09 09:14:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2012.07.09 09:14:08 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2012.07.09 09:14:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2012.07.09 09:14:07 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2012.07.09 09:14:07 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2012.07.09 09:14:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2012.07.09 09:14:06 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2012.07.09 09:14:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2012.07.09 09:14:05 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2012.07.09 09:14:05 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2012.07.09 09:14:03 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2012.07.09 09:14:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2012.07.09 09:14:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2012.07.09 09:14:02 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2012.07.09 09:14:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2012.07.09 09:13:56 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2012.07.09 09:13:55 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2012.07.09 09:13:53 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2012.07.09 09:13:49 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2012.07.09 09:13:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2012.07.09 09:13:41 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2012.07.09 09:13:41 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2012.07.09 09:13:29 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2012.07.09 09:13:28 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2012.07.09 09:13:28 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2012.07.09 09:13:28 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2012.07.09 09:13:27 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2012.07.09 09:13:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2012.07.09 09:13:25 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2012.07.09 09:13:24 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2012.07.09 09:13:24 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2012.07.09 09:13:23 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2012.07.09 09:13:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2012.07.09 09:13:22 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2012.07.09 09:13:20 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2012.07.09 09:13:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2012.07.09 09:13:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2012.07.09 09:13:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2012.07.09 09:13:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2012.07.09 09:13:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2012.07.09 09:13:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2012.07.09 09:13:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2012.07.09 09:13:15 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2012.07.09 09:13:15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2012.07.09 09:13:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2012.07.09 09:13:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2012.07.09 09:13:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2012.07.09 09:13:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2012.07.09 09:13:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2012.07.09 09:13:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2012.07.09 09:13:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2012.07.09 09:13:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2012.07.09 09:13:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2012.07.09 09:13:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2012.07.09 09:13:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2012.07.09 09:13:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2012.07.09 09:13:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2012.07.09 09:13:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2012.07.09 09:13:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2012.07.09 09:13:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2012.07.09 09:13:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2012.07.09 09:13:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2012.07.09 09:13:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2012.07.09 09:13:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2012.07.09 09:13:07 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2012.07.09 09:13:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2012.07.09 09:13:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2012.07.09 09:13:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2012.07.09 09:13:05 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2012.07.09 09:13:03 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2012.07.09 09:13:03 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2012.07.09 09:13:02 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2012.07.09 09:13:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2012.07.09 09:13:01 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2012.07.09 09:13:01 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2012.07.09 09:13:01 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2012.07.09 09:13:00 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2012.07.09 09:13:00 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2012.07.09 09:13:00 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2012.07.09 09:13:00 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2012.07.09 09:12:59 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2012.07.09 09:12:59 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2012.07.09 09:12:59 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2012.07.09 09:12:58 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2012.07.09 09:12:58 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2012.07.09 09:12:58 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2012.07.09 09:12:58 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2012.07.09 09:12:57 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2012.07.09 09:12:57 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2012.07.09 09:12:57 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2012.07.09 09:12:56 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2012.07.09 09:12:56 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2012.07.09 09:12:56 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2012.07.09 09:12:56 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2012.07.09 09:12:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2012.07.09 09:12:55 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2012.07.09 09:12:54 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2012.07.09 09:12:54 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2012.07.09 09:12:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2012.07.09 09:12:54 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2012.07.09 09:12:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2012.07.09 09:12:53 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2012.07.09 09:12:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2012.07.09 09:12:46 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2012.07.09 09:12:37 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2012.07.09 09:12:36 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2012.07.09 09:12:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2012.07.09 09:12:36 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2012.07.09 09:12:35 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2012.07.09 09:12:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2012.07.09 09:12:33 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2012.07.09 09:12:31 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2012.07.09 09:12:31 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2012.07.09 09:12:30 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2012.07.09 09:12:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2012.07.09 09:12:30 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2012.07.09 09:12:30 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2012.07.09 09:12:29 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2012.07.09 09:12:29 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2012.07.09 09:12:29 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2012.07.09 09:12:29 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2012.07.09 09:12:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2012.07.09 09:12:28 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2012.07.09 09:12:28 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2012.07.09 09:12:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2012.07.09 09:12:28 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2012.07.09 09:12:27 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2012.07.09 09:12:27 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2012.07.09 09:12:27 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2012.07.09 09:12:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2012.07.09 09:12:26 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2012.07.09 09:12:26 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2012.07.09 09:12:26 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2012.07.09 09:12:26 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2012.07.09 09:12:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2012.07.09 09:12:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2012.07.09 09:12:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2012.07.09 09:12:24 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2012.07.09 09:12:24 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2012.07.09 09:12:22 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2012.07.09 09:12:21 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2012.07.09 09:12:21 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2012.07.09 09:12:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2012.07.09 09:12:20 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2012.07.09 09:12:20 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2012.07.09 09:12:20 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2012.07.09 09:12:19 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2012.07.09 09:12:19 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2012.07.09 09:12:19 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2012.07.09 09:12:18 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2012.07.09 09:12:07 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2012.07.09 09:12:06 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2012.07.09 09:12:04 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2012.07.09 09:12:04 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2012.07.09 09:12:03 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2012.07.09 09:12:03 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2012.07.09 09:12:02 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2012.07.09 09:12:01 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2012.07.09 09:11:59 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2012.07.09 09:11:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2012.07.09 09:11:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2012.07.09 09:11:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2012.07.09 09:11:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2012.07.09 09:11:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2012.07.09 09:11:57 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2012.07.09 09:11:56 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2012.07.09 09:11:56 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2012.07.09 09:11:56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2012.07.09 09:11:55 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2012.07.09 09:11:55 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2012.07.09 09:11:53 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012.07.09 09:11:53 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2012.07.09 09:11:53 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2012.07.09 09:11:52 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2012.07.09 09:11:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2012.07.09 09:11:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2012.07.09 09:11:31 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2012.07.09 09:11:31 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2012.07.09 09:11:31 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2012.07.09 09:11:30 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2012.07.09 09:11:30 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2012.07.09 09:11:29 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2012.07.09 09:11:29 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2012.07.09 09:11:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2012.07.09 09:11:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2012.07.09 09:11:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2012.07.09 09:11:25 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2012.07.09 09:11:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2012.07.09 09:11:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2012.07.09 09:11:24 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2012.07.09 09:11:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2012.07.09 09:11:18 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2012.07.09 09:11:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2012.07.09 09:11:16 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2012.07.09 09:11:08 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2012.07.09 09:11:08 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2012.07.09 09:11:07 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2012.07.09 09:11:07 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2012.07.09 09:11:07 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2012.07.09 09:11:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2012.07.09 09:11:06 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2012.07.09 09:11:06 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2012.07.09 09:11:06 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2012.07.09 09:11:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2012.07.09 09:11:05 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2012.07.09 09:11:05 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2012.07.09 09:11:05 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2012.07.09 09:11:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2012.07.09 09:11:03 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2012.07.09 09:11:01 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2012.07.09 09:11:01 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2012.07.09 09:11:01 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2012.07.09 09:11:00 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2012.07.09 09:10:59 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2012.07.09 09:10:59 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2012.07.09 09:07:57 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2012.07.09 08:55:23 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012.07.09 08:55:23 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2012.07.09 08:55:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012.07.09 08:55:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2012.07.04 15:05:17 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2012.07.04 14:48:34 | 000,000,000 | ---D | C] -- C:\c9a3d5c76888fb824292
[2012.07.04 14:15:29 | 000,000,000 | ---D | C] -- C:\fef31c51442c5167ce050796af952b
[2012.07.04 13:39:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(2)
[2008.12.18 18:13:53 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.sys
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.07.17 14:27:34 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{ED7F9989-D856-4C7D-B7E0-04A828701671}.job
[2012.07.17 13:56:47 | 000,100,864 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\T-Cleaner.exe
[2012.07.17 13:46:47 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\OTL.exe
[2012.07.16 13:54:05 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012.07.16 12:15:10 | 000,013,728 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.07.16 12:14:32 | 000,000,000 | ---- | M] () -- C:\WINDOWS\TempFile
[2012.07.16 12:14:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.07.13 14:50:09 | 000,482,496 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.07.13 14:50:09 | 000,478,980 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.07.13 14:50:09 | 000,100,212 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.07.13 14:50:09 | 000,084,922 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.07.13 14:45:36 | 000,270,984 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.07.13 00:37:13 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.07.12 22:35:49 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\aswMBR.exe
[2012.07.12 22:33:54 | 000,000,284 | -HS- | M] () -- C:\boot.ini
[2012.07.10 14:25:39 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe
[2012.07.10 14:25:39 | 000,174,064 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe
[2012.07.09 17:27:50 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes Anti-Malware.lnk
[2012.07.09 17:25:54 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\mbam-setup-1.61.0.1400.exe
[2012.07.09 14:58:30 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.07.09 14:00:22 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\TeamViewer 7.lnk
[2012.07.09 13:08:24 | 000,067,584 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.07.09 12:17:58 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\HiJackThis.exe
[2012.07.09 09:18:18 | 000,035,880 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012.07.09 09:10:21 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012.07.09 09:10:20 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012.07.09 09:10:20 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012.07.09 09:10:04 | 000,004,249 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012.07.09 09:05:57 | 000,022,944 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012.07.09 08:55:46 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2012.07.09 07:40:20 | 000,001,581 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\ÚČTO 2012.LNK
[2012.07.04 14:46:14 | 000,002,412 | ---- | M] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\Google Chrome.lnk
[2012.07.02 12:23:05 | 000,025,088 | ---- | M] (TeamViewer GmbH) -- C:\WINDOWS\System32\drivers\teamviewervpn.sys
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.07.17 13:56:46 | 000,100,864 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\T-Cleaner.exe
[2012.07.09 17:27:50 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\Malwarebytes Anti-Malware.lnk
[2012.07.09 14:00:22 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Plocha\TeamViewer 7.lnk
[2012.07.09 09:14:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012.07.09 09:13:20 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012.07.09 09:13:01 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012.07.09 09:12:59 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012.07.09 09:12:55 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012.07.09 09:12:41 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012.07.09 09:12:33 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012.07.09 09:11:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012.07.09 08:55:46 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2012.07.09 08:55:02 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012.07.09 08:55:02 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2012.07.09 08:55:02 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2012.07.09 08:55:02 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012.07.09 08:55:02 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2012.07.09 08:55:02 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2012.07.09 08:55:02 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2012.07.09 08:55:02 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012.07.09 08:55:02 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2012.07.09 08:55:02 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2012.07.09 08:55:02 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012.07.09 08:55:02 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012.07.09 08:55:01 | 001,246,067 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2012.07.09 08:55:01 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012.07.09 08:55:00 | 002,033,597 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2012.07.09 08:55:00 | 000,631,112 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2012.07.04 15:01:46 | 000,001,912 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2012.02.15 08:06:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.11.12 14:04:33 | 000,009,845 | ---- | C] () -- C:\WINDOWS\System32\mswoneoie.dll
[2011.11.10 09:30:51 | 001,188,443 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2011.11.10 09:30:51 | 000,005,461 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2011.08.27 03:25:39 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\msroceoid.dll
[2010.08.12 13:13:38 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ezsid.dat
[2008.12.23 13:49:30 | 000,004,936 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\.recently-used.xbel
[2008.12.18 18:14:52 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\vso_ts_preview.xml
[2008.12.18 18:13:53 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\inst.exe
[2008.12.18 18:13:53 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.cat
[2008.12.18 18:13:53 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\pcouffin.inf
[2008.05.13 07:50:26 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\default.pls
[2008.05.12 06:35:49 | 000,067,584 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.04.11 17:02:21 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\.rnd

========== LOP Check ==========

[2009.08.06 10:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ESET
[2008.04.09 13:23:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ScanSoft
[2008.04.08 18:44:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Seagate
[2012.07.17 14:27:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
[2008.08.01 14:11:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TomTom
[2010.01.18 15:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
[2009.04.16 08:47:18 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
[2010.01.18 15:40:27 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2008.12.16 15:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Bitsoft
[2008.06.10 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\DMCache
[2009.12.16 08:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\fltk.org
[2009.10.07 20:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\FreshDiagnose
[2009.10.08 12:47:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\GetRightToGo
[2012.07.04 14:33:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\GHISLER
[2008.12.23 13:49:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\gtk-2.0
[2009.10.06 13:02:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\IObit
[2008.09.24 14:30:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\LGSync
[2009.06.24 14:56:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\mojosoft
[2012.07.10 14:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Oracle
[2010.05.17 15:59:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TeamViewer
[2008.08.01 14:06:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TomTom
[2009.04.16 08:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\TuneUp Software
[2009.10.06 13:08:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Vso
[2012.07.17 14:27:34 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{ED7F9989-D856-4C7D-B7E0-04A828701671}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\DOSITECH.pif:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\dositech.exe:SummaryInformation
@Alternate Data Stream - 227 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:8927A071
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:66E02052
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:6FA4C6D0

< End of report >

[John.Ross]

OTL Extras logfile created on: 17.7.2012 14:06:46 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

702,42 Mb Total Physical Memory | 322,63 Mb Available Physical Memory | 45,93% Memory free
2,43 Gb Paging File | 2,02 Gb Available in Paging File | 83,12% Paging File free
Paging file location(s): c:\pagefile.sys 1824 3648 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 19,87 Gb Free Space | 53,30% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 189,84 Gb Free Space | 40,76% Space Free | Partition Type: NTFS

Computer Name: EUROMEDI-09D832 | User Name: Euromedica | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Documents and Settings\Euromedica.EUROMEDI-09D832\temp\TeamViewer\Version5\TeamViewer.exe" = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\temp\TeamViewer\Version5\TeamViewer.exe:*:Enabled:TeamViewer -- (TeamViewer GmbH)
"C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe" = C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP -- (Hewlett-Packard Co.)
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0D499481-22C6-4B25-8AC2-6D3F6C885FB9}" = OpenOffice.org Installer 1.0
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{48B0F38D-1913-44F3-99AA-D4C55A2B038E}" = Drive Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EF69D40-4DC9-485E-95D3-B1C22F218FC8}" = upapp
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{71C97545-E547-4A8B-B0C8-61FF853270AC}" = PaperPort
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1029-7B44-A94000000001}" = Adobe Reader 9.4.5 - Czech
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3162DFC-7CA1-47A9-AA00-15BE80E3B1F8}" = 602XML Filler
"{D7716C7E-75F1-4C51-A2D5-C6A1E8311D53}" = Základní software zařízení HP Deskjet 2050 J510 series
"{EDD5F86E-CC11-4CB8-98FE-98F69DD1D215}" = Kilometrovník PRO 2008 Z
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"ALZip_is1" = ALZip
"CCleaner" = CCleaner
"Data Access Objects (DAO) 3.5" = Data Access Objects (DAO) 3.5
"Doplněk pro vytváření PDF dokumentů z Účta_is1" = Doplněk pro vytváření PDF dokumentů z Účta
"ENTERPRISE" = Microsoft Office Enterprise 2007
"hp print screen utility" = hp print screen utility
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"InstallShield_{48B0F38D-1913-44F3-99AA-D4C55A2B038E}" = Drive Manager
"Macallan Outlook Express Extraction" = Macallan Outlook Express Extraction
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.61.0.1400
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Money S3" = Money S3 START
"TeamViewer 7" = TeamViewer 7
"TomTom HOME" = TomTom HOME 2.7.4.1962
"VIA/S3G UniChrome Family Win2K/XP/Server2003 Display" = VIA/S3G Display Driver
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 11
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 12.7.2012 5:57:53 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:02:47 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:07:40 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:12:34 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:17:28 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:27:16 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:32:10 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul , verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:37:03 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul , verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:42:57 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul user32.dll, verze 5.1.2600.5512, adresa chyby 0x000095c8.

Error - 12.7.2012 6:47:51 | Computer Name = EUROMEDI-09D832 | Source = Application Error | ID = 1000
Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul , verze 5.1.2600.5512, adresa chyby 0x000095c8.

[ System Events ]
Error - 10.7.2012 8:51:17 | Computer Name = EUROMEDI-09D832 | Source = Service Control Manager | ID = 7034
Description = Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 10.7.2012 8:51:17 | Computer Name = EUROMEDI-09D832 | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 12.7.2012 16:34:41 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 12.7.2012 16:35:04 | Computer Name = EUROMEDI-09D832 | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: Fips intelppm

Error - 12.7.2012 16:36:00 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 12.7.2012 16:36:44 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 12.7.2012 17:29:58 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 12.7.2012 17:59:26 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 12.7.2012 18:25:08 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby StiSvc
s argumenty za účelem spuštění serveru: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 12.7.2012 18:40:25 | Computer Name = EUROMEDI-09D832 | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1084 při pokusu o spuštění služby EventSystem
s argumenty za účelem spuštění serveru: {1BE1F766-5536-11D1-B726-00C04FB926AF}

[ TuneUp Events ]
Error - 9.6.2009 11:02:02 | Computer Name = EUROMEDI-09D832 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 9.6.2009 11:03:46 | Computer Name = EUROMEDI-09D832 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 9.6.2009 11:04:10 | Computer Name = EUROMEDI-09D832 | Source = TuneUp Program Statistics | ID = 131840
Description =

Error - 9.6.2009 11:40:58 | Computer Name = EUROMEDI-09D832 | Source = TuneUp Program Statistics | ID = 131840
Description =


< End of report >

[John.Ross]

pořád vyskakuje okno... Microsoft Feeds Synchonization... vyskočí to okno třeba 50x za den a vyžaduje zavření, tak nevím, třeba aby to nedělalo bordel, při nějakém scanování, nebo scriptování.
Označení chyby

AppName: msfeedssync.exe AppVer: 8.0.6001.18702 ModName: user32.dll
ModVer: 5.1.2600.5512 Offset: 000095c8

[jaro3]

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (mbr) -- C:\ComboFix\mbr.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FreshIO) -- C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys File not found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes,DefaultScope = Yahoo!
IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = http://search.yahoo.com/search?ei=ISO-8 ... =megaup&q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{689AF8CA-8138-4FE7-A98A-4F15802500CF}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{B35723A7-56D7-49EB-8F4C-CF2586667F54}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=SearchBox
IE - HKCU\..\SearchScopes\Yahoo!: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:3.5.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}:6.0.01
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions
[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.06.04 14:50:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Firefox\Profiles\0p4ubrxw.default\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\EUROMEDICA.EUROMEDI-09D832\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\0P4UBRXW.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
O1 HOSTS File: ([2012.07.16 13:54:05 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Value error.)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
[11 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2012.07.13 14:50:09 | 000,482,496 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.07.13 14:50:09 | 000,478,980 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2012.07.13 14:50:09 | 000,100,212 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2012.07.13 14:50:09 | 000,084,922 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
@Alternate Data Stream - 227 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:8927A071
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:66E02052
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:6FA4C6D0

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\aswMBR.exe
C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\T-Cleaner.exe
C:\WINDOWS\System32\d3d9caps.dat
C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\System32\mswoneoie.dll
C:\WINDOWS\System32\msroceoid.dll
C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\inst.exe

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" =-
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command]
""=""%1" %*"

:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.


Description = Chybující aplikace msfeedssync.exe, verze 8.0.6001.18702, chybující
modul , verze 5.1.2600.5512, adresa chyby 0x000095c8.
po odvirování budeme řešit , napiš , jak to vypadá po OTL.

[John.Ross]

Omlouvám se za zdržení

e created on: 17.7.2012 14:06:46 - Run 1
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

702,42 Mb Total Physical Memory | 322,63 Mb Available Physical Memory | 45,93% Memory free
2,43 Gb Paging File | 2,02 Gb Available in Paging File | 83,12% Paging File free
Paging file location(s): c:\pagefile.sys 1824 3648 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 19,87 Gb Free Space | 53,30% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 189,84 Gb Free Space | 40,76% Space Free | Partition Type: NTFS

Computer Name: EUROMEDI-09D832 | User Name: Euromedica | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Plocha\OTL.exe (OldTimer Tools)
PRC - c:\Program Files\TeamViewer\Version7\TeamViewer_Desktop.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\TeamViewer\Version7\tv_w32.exe (TeamViewer GmbH)
PRC - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe (Seagate Technology LLC)
PRC - C:\WINDOWS\system32\VTTrayp.exe (S3 Graphics Co., Ltd.)
PRC - C:\WINDOWS\system32\VTTimer.exe (S3 Graphics, Inc.)


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\msdmo.dll ()


========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (TeamViewer7) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (JavaQuickStarterService) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe (Oracle Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (Basics Service) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe (Seagate Technology LLC)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (mbr) -- C:\ComboFix\mbr.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (FreshIO) -- C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys File not found
DRV - (teamviewervpn) -- C:\WINDOWS\system32\drivers\teamviewervpn.sys (TeamViewer GmbH)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (Angelnt) -- C:\WINDOWS\system32\drivers\ANGELNT.SYS (Identcode Ltd.)
DRV - (FTDIBUS) -- C:\WINDOWS\system32\drivers\ftdibus.sys (FTDI Ltd.)
DRV - (FTSER2K) -- C:\WINDOWS\system32\drivers\ftser2k.sys (FTDI Ltd.)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\alcxwdm.sys (Realtek Semiconductor Corp.)
DRV - (videX32) -- C:\WINDOWS\system32\drivers\videX32.sys (VIA Technologies, Inc.)
DRV - (ViPrt) -- C:\WINDOWS\system32\drivers\ViPrt.sys (VIA Technologies, Inc.)
DRV - (ViBus) -- C:\WINDOWS\system32\drivers\ViBus.sys (VIA Technologies, Inc.)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (aksusb) -- C:\WINDOWS\system32\drivers\aksusb.sys (Aladdin Knowledge Systems Ltd.)
DRV - (akshasp) -- C:\WINDOWS\system32\drivers\akshasp.sys (Aladdin Knowledge Systems Ltd.)
DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = Yahoo!
IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = http://search.yahoo.com/search?ei=ISO-8 ... =megaup&q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{689AF8CA-8138-4FE7-A98A-4F15802500CF}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\..\SearchScopes\{B35723A7-56D7-49EB-8F4C-CF2586667F54}: "URL" = http://search.seznam.cz/?q={searchTerms}&sourceid=SearchBox
IE - HKCU\..\SearchScopes\Yahoo!: "URL" = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:3.5.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}:6.0.01
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10


FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.12.16 13:46:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions
[2008.12.17 13:06:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2008.08.01 14:06:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Extensions\home2@tomtom.com
[2009.06.04 14:50:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Firefox\Profiles\0p4ubrxw.default\extensions
[2009.01.13 18:30:31 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Data aplikací\Mozilla\Firefox\Profiles\0p4ubrxw.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\EUROMEDICA.EUROMEDI-09D832\DATA APLIKACĂ­\MOZILLA\FIREFOX\PROFILES\0P4UBRXW.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\20.0.1132.47\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java(TM) Platform SE 6 U20 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012.07.16 13:54:05 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKLM..\Run: [VTTrayp] C:\WINDOWS\System32\VTTrayp.exe (S3 Graphics Co., Ltd.)
O4 - HKCU..\Run: [(S3 Graphics, ] Reg Error: Value error. File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... vc1dmo.cab (Reg Error: Value error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{214FAABD-88BF-44DD-9E02-4E221504ED5D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Euromedica.EUROMEDI-09D832\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O34 - HKLM BootExecute: (sprestrt)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)