Zde je log:
Kód: Vybrat vše
Windows XP SP 3 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v7.00.6000.17023 (vista_gdr.100222-0012)
Log vygenerován: 14.4.2010 20:59:19
================================================================
SmallARK
================================================================
[?]NtClose -> C:\WINDOWS\system32\drivers\Vax347b.sys
[R]NtCreateKey -> C:\WINDOWS\system32\drivers\Lbd.sys
[?]NtCreatePagingFile -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtEnumerateKey -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtEnumerateValueKey -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtOpenKey -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtQueryKey -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtQueryValueKey -> C:\WINDOWS\system32\drivers\Vax347b.sys
[?]NtSetSystemPowerState -> C:\WINDOWS\system32\drivers\Vax347b.sys
[R]NtSetValueKey -> C:\WINDOWS\system32\drivers\Lbd.sys
MBR ROOTKIT DETECTED!
Běžící procesy
================================================================
C:\ACER\EMANAGER\ANBMSERV.EXE
|_ MD5: C10D0FAE427EA464EDEA2EE5DC40F056
|_Výrobce: OSA Technologies Inc.
C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\MDM.EXE
|_ MD5: 7CF1B716372B89568AE4C0FE769F5869
|_Výrobce: Microsoft Corporation
C:\WINDOWS\SYSTEM32\IGFXTRAY.EXE
|_ MD5: D24B9B36C06CA0ACF7CA2C69D9BB25B5
|_Výrobce: Intel Corporation
C:\WINDOWS\SYSTEM32\HKCMD.EXE
|_ MD5: 66A5047DF0C0CEC911B95B5B1E24CEBC
|_Výrobce: Intel Corporation
C:\ACER\EPM\EPM-DM.EXE
|_ MD5: DD1B2BD5DCBF614E91BD12814607DB70
|_Výrobce: Acer Value Labs, USA
C:\WINDOWS\SAMSUNG\LASERSMMGR\SSMMGR.EXE
|_ MD5: C7DCBF3539FDDBD7914B1B5F07809709
|_Výrobce: Samsung Electronics.
Scanner
================================================================
[R] avgrsx.exe
Podobná jména: AVGRSX.EXE X AVGNSX.EXE
[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]
[?] anbmServ.exe
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 8
Soubor 63%
[?] mdm.exe
Ověřený Microsoft: Ne
Nemá okno
Soubor 12%
[R] avgnsx.exe
Podobná jména: AVGNSX.EXE X AVGRSX.EXE
[?] igfxtray.exe
Non Microsoft v System32:
Spouští se po startu HKLM Run [IgfxTray]
[?] hkcmd.exe
Non Microsoft v System32:
Spouští se po startu HKLM Run [HotKeysCmds]
[?] EPM-DM.exe
Spouští se po startu HKLM Run [epm-dm]
Soubor 7%
[?] SSMMgr.exe
Spouští se po startu HKLM Run [Samsung LBP SM]
Soubor 7%
[R] avgtray.exe
Spouští se po startu HKLM Run [AVG9_TRAY]
[S] ctfmon.exe
Spouští se po startu HKCU Run [CTFMON.EXE]
[R] avgcmgr.exe
ROOTKIT? Skrytá cesta
Spouští se po startu HKCU Run [CTFMON.EXE]
Jiná ImageBase 00000000h
BaseAddress
Skrytá cesta EXE:
Podvržená cesta modulu: (00000000)
Po spuštění
================================================================
HKLM Run
|_ [?][IgfxTray] C:\WINDOWS\system32\igfxtray.exe
| |_ MD5: D24B9B36C06CA0ACF7CA2C69D9BB25B5
| |_ Výrobce: Intel Corporation
|
|_ [?][HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
| |_ MD5: 66A5047DF0C0CEC911B95B5B1E24CEBC
| |_ Výrobce: Intel Corporation
|
|_ [?][epm-dm] c:\acer\epm\epm-dm.exe
| |_ MD5: DD1B2BD5DCBF614E91BD12814607DB70
| |_ Výrobce: Acer Value Labs, USA
|
|_ [?][Samsung LBP SM] C:\WINDOWS\Samsung\LaserSMMgr\ssmmgr.exe /autorun
|_ MD5: C7DCBF3539FDDBD7914B1B5F07809709
|_ Výrobce: Samsung Electronics.
HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
| |_ MD5: F8995D4274D3D7E32BE7812B872BCC13
| |_ Výrobce:
|
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
| |_ MD5: 97BF5E6CB8D2498286096D35644517C5
| |_ Výrobce:
|
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp11.inf ,PerUserStub
| |_ MD5: C50E7DA8003BF4B222248B9DB4104290
| |_ Výrobce:
|
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
| |_ MD5:
| |_ Výrobce: Microsoft Corporation
|
|_ [?][{8b15971b-5355-4c82-8c07-7e181ea07608}] C:\WINDOWS\INF\fxsocm.inf ,Fax.UnInstall.PerUser
|_ MD5: EA033A5354902D454BE55E8F0150DEA1
|_ Výrobce:
HKLM Winlogon Notify
|_ [?][igfxcui] C:\WINDOWS\system32\igfxsrvc.dll
|_ MD5: 3C29995B8199D4ACCEBF29B0C143E44F
|_ Výrobce: Intel Corporation
Po spuštění
|_ C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
| |_ MD5: C2FF17734176CD15221C10044EF0BA1A
| |_ Výrobce: Adobe Systems, Inc.
|
|_ C:\Program Files\Microsoft Office\Office\OSA9.EXE
| |_ MD5: 33052FB3E2CE1457EAE7EC9BBCBC366B
| |_ Výrobce: Microsoft Corporation
|
|_ [?][OpenOffice.org 2.4.lnk] C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
|_ MD5: 8EA08EA240A08CB6AD9FE44B6E35BAA7
|_ Výrobce:
HKCU IE WebBrowser Toolbar
|_ [X][{A057A204-BACC-4D26-9990-79A187E2698E}] (Soubor nenalezen)
HKLM IE Toolbar
|_ [X][{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] (Soubor nenalezen)
Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[!] Notebook Manager Service
|_ Cesta: C:\Acer\eManager\anbmServ.exe
| |_ Výrobce: OSA Technologies Inc.
| |_ Popis: Service Program for Acer eManager
| |_ MD5: C10D0FAE427EA464EDEA2EE5DC40F056
|
|_ Jméno: anbmService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency:
[?] Ati HotKey Poller
|_ Cesta: C:\WINDOWS\system32\Ati2evxx.exe
| |_ Výrobce: ?
| |_ Popis: ?
| |_ MD5: 59D1A07A686D994838AEE1DB258E3654
|
|_ Jméno: Ati HotKey Poller
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ:
|_ Dependency:
[?] Machine Debug Manager
|_ Cesta: C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Machine Debug Manager
| |_ MD5: 7CF1B716372B89568AE4C0FE769F5869
|
|_ Jméno: MDM
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency: RPCSS
Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[X] General Purpose USB Driver (adildr.sys)
|_ Cesta: System32\Drivers\adildr.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: ADILOADER
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ: Kernel Driver
|_ Dependency:
[X] arnkn
|_ Cesta: C:\WINDOWS\system32\drivers\arnkn.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: arnkn
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Zastaveno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Broadcom 440x 10/100 Integrated Controller XP Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
| |_ Výrobce: Broadcom Corporation
| |_ Popis: Broadcom Corporation NDIS 5.1 ethernet driver
| |_ MD5: E727776A56A51B7E6B7C87C02EA8B405
|
|_ Jméno: bcm4sbxp
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Conexant AMC Audio
|_ Cesta: C:\WINDOWS\system32\drivers\camcaud.sys
| |_ Výrobce: Conexant Systems Inc.
| |_ Popis: Conexant WDM AC97 Audio Driver
| |_ MD5: 5A94E9D6E2716E38183959D8F4C2A5A9
|
|_ Jméno: CAMCAUD
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] CAMCHALA
|_ Cesta: C:\WINDOWS\system32\drivers\camchal.sys
| |_ Výrobce: Conexant Systems Inc.
| |_ Popis: Conexant AmcHal Driver
| |_ MD5: E7E737BC125D6BEB50669FF4B61CED19
|
|_ Jméno: CAMCHALA
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[X] cjlsn
|_ Cesta: C:\WINDOWS\system32\drivers\cjlsn.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: cjlsn
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Zastaveno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Acer EPM System Hardware Driver
|_ Cesta: C:\WINDOWS\system32\drivers\epm-shd.sys
| |_ Výrobce: Acer Value Labs, USA
| |_ Popis: Acer EPM SHD ECV-TO
| |_ MD5: B1DFE92234A62AB304DDC033F4EDFDB1
|
|_ Jméno: EpmShd
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Ethernet Packet Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\ethpdrv.sys
| |_ Výrobce: Gemfor s.r.o.
| |_ Popis: Ethernet Packet Driver
| |_ MD5: 076B1A923259F7A10998FA234A01D629
|
|_ Jméno: Ethpdrv
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] HSFHWICH
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
| |_ Výrobce: Conexant Systems, Inc.
| |_ Popis: HSFHWICH WDM driver
| |_ MD5: EECF0C3B62040F26C62B6579794C702E
|
|_ Jméno: HSFHWICH
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] HSF_DP
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
| |_ Výrobce: Conexant Systems, Inc.
| |_ Popis: HSF_DP driver
| |_ MD5: 4683B5D9566B8653D4580C407C8D0FBC
|
|_ Jméno: HSF_DP
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] ialm
|_ Cesta: C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
| |_ Výrobce: Intel Corporation
| |_ Popis: Intel Graphics Miniport Driver
| |_ MD5: DA58A8BE6A445835F603720C4BC8837E
|
|_ Jméno: ialm
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] INPROCOMM IPN2220 Wireless LAN Card Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\i2220ntx.sys
| |_ Výrobce: Inprocomm, Inc.
| |_ Popis: NT 5 (NDIS 5.1/5.0) x86 Driver
| |_ MD5: 3CCEAAF1D5D341BFB3E60E81E84E5611
|
|_ Jméno: IPN2220
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] mdmxsdk
|_ Cesta: C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
| |_ Výrobce: Conexant
| |_ Popis: Diagnostic Interface DRIVER
| |_ MD5: EEAEA6514BA7C9D273B5E87C4E1AAB30
|
|_ Jméno: mdmxsdk
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] MxlW2k
|_ Cesta: C:\WINDOWS\system32\drivers\MxlW2k.sys
| |_ Výrobce: MusicMatch, Inc.
| |_ Popis: MusicMatch Access Layer KMD
| |_ MD5: A1520761F42DBB06DB7929D6FA9753EA
|
|_ Jméno: MxlW2k
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] NSC Infrared Device Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\nscirda.sys
| |_ Výrobce: National Semiconductor Corporation
| |_ Popis: NSC Fast Infrared Driver.
| |_ MD5: 2ADC0CA9945C65284B3D19BC18765974
|
|_ Jméno: NSCIRDA
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Upper Class Filter Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
| |_ Výrobce: NewTech Infosystems, Inc.
| |_ Popis: NTI CD-ROM Filter Driver
| |_ MD5: 15A72D5B8F0B6A718207F14BD5EBB8FF
|
|_ Jméno: NTIDrvr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] PDIHWCTL
|_ Cesta: C:\WINDOWS\system32\drivers\pdihwctl.sys
| |_ Výrobce: Portrait Displays, Inc.
| |_ Popis: PdiHwCtl NT kernel-mode driver
| |_ MD5: 274FB48DC92E0EC012D4D8D866CFAF8A
|
|_ Jméno: PDIHWCTL
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Synaptics TouchPad Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\SynTP.sys
| |_ Výrobce: Synaptics, Inc.
| |_ Popis: Synaptics Touchpad Driver
| |_ MD5: 6C218301F37CB01AA29DD9AE688653BD
|
|_ Jméno: SynTP
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] tifm21
|_ Cesta: C:\WINDOWS\system32\drivers\tifm21.sys
| |_ Výrobce: Texas Instruments
| |_ Popis: tifm21.sys
| |_ MD5: FCBAF94B58AD03ACA117C7DF0EB5F446
|
|_ Jméno: tifm21
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Vax347b
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Vax347b.sys
| |_ Výrobce:
| |_ Popis: Plug and Play BIOS Extension
| |_ MD5: CB3400D696BEE266C38CAE330C2B4337
|
|_ Jméno: Vax347b
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Vax347s
|_ Cesta: C:\WINDOWS\System32\Drivers\Vax347s.sys
| |_ Výrobce:
| |_ Popis: SCSI miniport
| |_ MD5: 113E4B318BBAA7483CA4E582A4D63F49
|
|_ Jméno: Vax347s
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] winachsf
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
| |_ Výrobce: Conexant Systems, Inc.
| |_ Popis: HSF_CNXT driver
| |_ MD5: 2A8C145E9E9E63B0071DA4F35544AB9D
|
|_ Jméno: winachsf
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
-----------------------------------------------------------------------------------------
TCP (1204) svchost.exe 0.0.0.0:135 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (1888) anbmServ.exe 0.0.0.0:2804 LISTENING
TCP (2784) alg.exe 127.0.0.1:1028 LISTENING
TCP (3404) firefox.exe 127.0.0.1:1053 <-> 127.0.0.1:1054 ESTABLISHED
TCP (3404) firefox.exe 127.0.0.1:1054 <-> 127.0.0.1:1053 ESTABLISHED
TCP (3404) firefox.exe 127.0.0.1:1065 <-> 127.0.0.1:1066 ESTABLISHED
TCP (3404) firefox.exe 127.0.0.1:1066 <-> 127.0.0.1:1065 ESTABLISHED
TCP (4) Systém 192.168.5.11:139 LISTENING
TCP (1672) UPM.exe 192.168.5.11:1159 <-> 199.7.48.190:80 ESTABLISHED
TCP (1672) UPM.exe 192.168.5.11:1160 <-> 199.7.52.190:80 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 <-> 92.123.72.91:80 ESTABLISHED
UDP (944) lsass.exe 0.0.0.0:500
UDP (944) lsass.exe 0.0.0.0:4500
UDP (1888) anbmServ.exe 0.0.0.0:9999
UDP (1364) svchost.exe 127.0.0.1:123
UDP (1936) svchost.exe 127.0.0.1:1900
UDP (1364) svchost.exe 192.168.5.11:123
UDP (4) Systém 192.168.5.11:137
UDP (4) Systém 192.168.5.11:138
UDP (1936) svchost.exe 192.168.5.11:1900
Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] pdfshell.dll
|_ Cesta: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\pdfshell.dll
|_ MD5: 3CC6645EB13AF3BC924AF0C38DCC768B
|_ Výrobce: Adobe Systems, Inc.
|_ Procesy
|_ explorer.exe (1920)
[?] cnmlm50.dll
|_ Cesta: C:\WINDOWS\system32\CNMLM50.DLL
|_ MD5: 038BDAD2319A7813B3762511AF7ECFB0
|_ Výrobce: CANON INC.
|_ Procesy
|_ spoolsv.exe (816)
[?] ipmitrans.dll
|_ Cesta: C:\Acer\eManager\IpmiTrans.dll
|_ MD5: 680A40E23A111842A5D240040D806817
|_ Výrobce: OSA Technologies Inc. Taiwan Branch
|_ Procesy
|_ anbmServ.exe (1888)
[?] sysapi.dll
|_ Cesta: C:\Acer\eManager\sysapi.dll
|_ MD5: E5B0C995E60FFE9DCEE3EF4819065BFC
|_ Výrobce: OSA Technologies Inc. Taiwan Branch
|_ Procesy
|_ anbmServ.exe (1888)
[?] nbapi.dll
|_ Cesta: C:\Acer\eManager\nbapi.dll
|_ MD5: 0D3C225272E5F8192110711DA9F1D227
|_ Výrobce: OSA Technologies Inc. Taiwan Branch
|_ Procesy
|_ anbmServ.exe (1888)
[?] cpuid_dll.dll
|_ Cesta: C:\Acer\eManager\cpuid_dll.dll
|_ MD5: 2CBD8B58E0616A6626BB25DF9707D8E7
|_ Výrobce: OSA Technologies, Inc.
|_ Procesy
|_ anbmServ.exe (1888)
[?] uwinapi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\uwinapi.dll
|_ MD5: 658A72B010DCF3E0D500FC613F29F8A1
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.exe (3292)
|_ soffice.bin (3336)
[?] xcr680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\xcr680mi.dll
|_ MD5: A4B858BAD028082EC916B0FE1DEF634A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] vos3msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\vos3MSC.dll
|_ MD5: 3E2CF99B873F317F779C36B9409D6FAD
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] vcl680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\vcl680mi.dll
|_ MD5: C547340B4E6AB41DB608604EC1531AB5
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] utl680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\utl680mi.dll
|_ MD5: 28B741747B5840B34AE68298D11A0B44
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] unsafe_uno_uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\unsafe_uno_uno.dll
|_ MD5: 2547605BDA29CA7EF1C0BE4FFAFDBB6A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] ucpfile1.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\ucpfile1.dll
|_ MD5: 201F7FC9B7A3955012BCFD2064BD8E77
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] ucbhelper4msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\ucbhelper4MSC.dll
|_ MD5: 42B030DA24398CB4916685F1C599455F
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] ucb1.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\ucb1.dll
|_ MD5: 7185B135405C8FC05848566A41BAEB45
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] tl680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\tl680mi.dll
|_ MD5: 3C3A0037D6A290A1E56C6DE0F05936D4
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] tk680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\tk680mi.dll
|_ MD5: 98924B8C37C5E935E21FF759B351BEEE
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sysmgr1.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sysmgr1.uno.dll
|_ MD5: C0514A3390E46212CDC99E301B97F27B
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] svt680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\svt680mi.dll
|_ MD5: 517A5C4ED402CDB9A24EE5D7514BCD0A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] svl680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\svl680mi.dll
|_ MD5: 0E5BB37ECA00B69A6E1D2323E3E97A01
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] store3.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\store3.dll
|_ MD5: B177F14B46E7A8A7DE8C66F863FF253A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] stocservices.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\stocservices.uno.dll
|_ MD5: 6140F08EBB54A803ECCCE78E8E590566
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sot680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sot680mi.dll
|_ MD5: 0A43BA1242CFB622BE5FF2D5D0B73A7F
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sfx680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sfx680mi.dll
|_ MD5: 72FD2E0BB7F2DBF283BE8A4C833BABC8
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sb680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sb680mi.dll
|_ MD5: E32470CCA5E02A669A464A02409ADDD1
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sax.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sax.uno.dll
|_ MD5: C15836F89BB07EE298BDA250490F4670
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] salhelper3msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\salhelper3MSC.dll
|_ MD5: 9F5C4FF7364A481E25C9C128A659DD9D
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] sal3.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\sal3.dll
|_ MD5: F58167DE6AFD5355AEDA78FD7F75F108
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] reg3.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\reg3.dll
|_ MD5: 2CBCB8B4F050A4E2053CD521119988C1
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] purpenvhelper3msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\purpenvhelper3MSC.dll
|_ MD5: 138D7691C6254154F1A6BEEA449E968C
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] oleautobridge.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\oleautobridge.uno.dll
|_ MD5: 242C30CD7DEFA95732D902D3D90E400C
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] msci_uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\msci_uno.dll
|_ MD5: 9A95B6ABA35095F995C763E62CAC68E2
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] localebe1.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\localebe1.uno.dll
|_ MD5: 9771DB00C472372D948983312E0BFD3C
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] libxml2.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\libxml2.dll
|_ MD5: DA3275A38341DB3C391A00F4B7395317
|_ Výrobce:
|_ Procesy
|_ soffice.bin (3336)
[?] jvmfwk3.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\jvmfwk3.dll
|_ MD5: 8ED97C6326A687A95159434286CF4498
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] jvmaccess3msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\jvmaccess3MSC.dll
|_ MD5: F9A95AC34522BBA0C154D770A22BA75B
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] j680mi_g.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\j680mi_g.dll
|_ MD5: 844DD0E3244112E99AED7AF58147543C
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] icuuc36.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\icuuc36.dll
|_ MD5: A29AE8E093940D28CC30104163E61421
|_ Výrobce: IBM Corporation and others
|_ Procesy
|_ soffice.bin (3336)
[?] i18nisolang1msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\i18nisolang1MSC.dll
|_ MD5: 66C24313EBB493F275C22EA84DEEE7BC
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] fwl680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\fwl680mi.dll
|_ MD5: B139A431D8612DE94CA2D14DBD3C3AEC
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] fwk680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\fwk680mi.dll
|_ MD5: DE4FB8F59296582DE3746D2A142BB933
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] fwi680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\fwi680mi.dll
|_ MD5: E914F093FEDBEEAA5D380F7B846507DD
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] fwe680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\fwe680mi.dll
|_ MD5: 5EE165B97C8F2738DC5E2777F0D41D1F
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] emser680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\emser680mi.dll
|_ MD5: 0D2FCA2993FDB7C45B7083CDFC7A6815
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] cppuhelper3msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\cppuhelper3MSC.dll
|_ MD5: B36E18050E95C43484FF4F7601E56D14
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] cppu3.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\cppu3.dll
|_ MD5: 5363EBE21F15DF1DE9BB0A6ACD444ADC
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] configmgr2.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\configmgr2.uno.dll
|_ MD5: 249EE7AAEF665E2CC9456F1A43C99CBD
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] comphelp4msc.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\comphelp4MSC.dll
|_ MD5: 18508D33FA5E0F8274DCA7D7A980436A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] bootstrap.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\bootstrap.uno.dll
|_ MD5: 171199DEF9657892C3E80BF89EAD3F7D
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] behelper.uno.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\behelper.uno.dll
|_ MD5: 1F3CCCF8E5B67F772A1257BEB9990F11
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] basegfx680mi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.4\program\basegfx680mi.dll
|_ MD5: 7305117D3D0E301ED54304C0CB269238
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ soffice.bin (3336)
[?] softokn3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\softokn3.dll
|_ MD5: D1B52536361FF56B6577DAB14CB4324C
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (3404)
[?] nssdbm3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\nssdbm3.dll
|_ MD5: FD681C2136EF9FE31E529693084B215E
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (3404)
[?] freebl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\freebl3.dll
|_ MD5: 62BE2F433743CD6B5E7CF25CB6FE9079
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (3404)
[?] swsupport.dll
|_ Cesta: C:\WINDOWS\system32\Macromed\Common\SwSupport.dll
|_ MD5: 2224574514CFEF41EAADD9ED49467F2E
|_ Výrobce: Macromedia, Inc.
|_ Procesy
|_ firefox.exe (3404)
Výpis souborů
================================================================
\System32:
[?] aamd532.dll 7 no vrfy, {AE405302}
[?] ACDV.dll 7 no vrfy, {3C40310C}
[!] ActiveSkin.ocx ACTIVE~1.OCX 70 no vrfy, cx (.data)?, {FBF71504}
[X] BDEADMIN.CPL 100 ncmpny, cx (CODE)?, {382A6037}
[?] CNMCP50.exe 14 no vrfy, {1CC0CDDD}
[?] CNMLM50.DLL 7 no vrfy, {F72578C6}
[?] CNMVS50.DLL 12 ncmpny, {1DDD068E}
[X] DBCLIENT.DLL 100 ncmpny, cx (CODE)?, time mism., {EA8F6D0A}
[?] getpntid.exe 12 ncmpny, {DF4BD894}
[?] Hmpg12.dll 12 ncmpny, {545D768D}
[?] HMPV2_ENC.dll HMPV2_~1.DLL 12 ncmpny, {FF5C9D66}
[?] HMPV2_ENC_MMX.dll HMPV2_~2.DLL 12 ncmpny, {044FA13D}
[?] INETWH32.dll 7 no vrfy, {6E59F68C}
[X] IZArcACE.dat 100 ncmpny, cx (CODE)?, {64512DD7}
[X] IZArcARJ.dat 100 ncmpny, cx (CODE)?, {6A77B506}
[X] IZArcBH.dat 100 ncmpny, cx (CODE)?, {2C76298A}
[X] IZArcJAR.dat 100 ncmpny, cx (CODE)?, {E1B73AB8}
[X] IZArcLHA.dat 100 ncmpny, cx (CODE)?, {0DF9907E}
[X] IZArcRAR.dat 100 ncmpny, cx (CODE)?, {9B419BB8}
[X] IZArcZip.dat 100 ncmpny, cx (CODE)?, {8BD3A0C7}
[?] MFC42D.DLL 12 ncmpny, {4977942C}
[?] MFCO42D.DLL 12 ncmpny, {C6CC44BC}
[?] msexch35.dll 12 ncmpny, {A3DE78F7}
[?] msexcl35.dll 12 ncmpny, {9A854518}
[?] msjet35.dll 12 ncmpny, {567835AC}
[?] msjt4jlt.dll 12 ncmpny, {F9C834EA}
[?] msltus35.dll 12 ncmpny, {78DE4B1F}
[?] mspdox35.dll 12 ncmpny, {AE37A713}
[?] MSRDO20.DLL 12 ncmpny, {17058418}
[?] msrepl35.dll 12 ncmpny, {B7843B57}
[?] msrpfs35.dll 12 ncmpny, {86DD4FE4}
[?] mstext35.dll 12 ncmpny, {F70A78A1}
[?] MSVCRTD.DLL 12 ncmpny, {11A4C7E9}
[?] multiplex_vcd.dll MULTIP~1.DLL 12 ncmpny, {94FEB3A7}
[?] OLE32(3)(2).DLL OLE32(~1.DLL 12 ncmpny, {6B1671AA}
[?] OLECLI32(3)(2).DLL OLECLI~3.DLL 12 ncmpny, {D1290580}
[?] OUTLWAB.DLL 12 ncmpny, {1832171B}
[?] Pcdlib32.dll 7 no vrfy, {26EAC65E}
[?] PixologyIRISS011.dll PIXOLO~1.DLL 7 no vrfy, {52DB72C0}
[?] Pvmjpg21.dll 14 no vrfy, {A8B02206}
[?] RDOCURS.DLL 12 ncmpny, {4D094B02}
[?] RPCSS(3)(2).DLL RPCSS(~1.DLL 12 ncmpny, {42EA3347}
[?] shdocvw(2)(2)(2)(3).dll SH908A~1.DLL 12 ncmpny, {715AC139}
[?] SHLWAPI(3)(2).DLL SHLWAP~3.DLL 12 ncmpny, {6EF9B1A3}
[?] sporder.dll 12 ncmpny, {AF58C62D}
[?] ToolbarInetInstall.ocx TOOLBA~1.OCX 7 no vrfy, {F3B92941}
[?] URLMON(3)(2).DLL URLMON~2.DLL 12 ncmpny, {7AC86DE6}
[!] vboxs430.dll 63 no vrfy, cx (WeijunLi)?, {0280C064}
[?] WININET(3)(2).DLL WININE~3.DLL 12 ncmpny, {420DB055}
[?] _000009_.tmp(2)(2).dll _00000~3.DLL 12 ncmpny, {DEC97A8A}
[?] _000009_.tmp(2)(2).dll _00000~3.DLL 12 ncmpny, {DEC97A8A}
\Drivers:
[!] direci2c.dll 63 no vrfy, cx (.pdi)?, {532625B9}
[?] epm-shd.sys 7 no vrfy, {90F86138}
[?] ethpdrv.sys 14 no vrfy, {9689C7C9}
[?] EyeOneDp.sys 25 ncmpny, {80D32041}
[?] FTD2XX.sys 7 no vrfy, {22357BC1}
[?] i1.sys 14 no vrfy, {DB4DAB95}
[?] MxlW2k.sys 7 no vrfy, {7C586197}
[?] NTIDrvr.sys 14 no vrfy, {71F0D0B5}
[?] osaio.sys 7 no vrfy, {DC72F1B5}
[?] osanbm.sys 7 no vrfy, {E42E245F}
[?] pdihwctl.sys 14 no vrfy, {956AC324}
[?] Vax347b.sys 25 ncmpny, {AD115FD2}
[?] Vax347s.sys 25 ncmpny, {E64EA938}
Access violations - HKCU
================================================================
================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]
Přispějete na provoz fóra?