Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
dyndy1
Návštěvník
Návštěvník
Příspěvky: 2
Registrován: 09 bře 2011 16:22

kontrola logu

#1 Příspěvek od dyndy1 »

Dobrý den,
prosil bych o zkontrolování logu protože se mi v počítači oběvilo několik infikovaných souborů.. Nalezl je avast pred několika týdny a dnešním dnem mi poskitovatel zablokoval pripojeni k internetu..

Kód: Vybrat vše

Windows XP SP 2 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Log vygenerován: 9.3.2011 16:05:48
================================================================

SmallARK
================================================================
[R]NtAddBootEntry                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtAllocateVirtualMemory          -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtClose                          -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateEvent                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateEventPair                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateIoCompletion             -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateKey                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateMutant                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateSection                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateSemaphore                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtCreateTimer                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtDeleteBootEntry                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtDeleteKey                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtDeleteValueKey                 -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtDuplicateObject                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtEnumerateKey                   -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtEnumerateValueKey              -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtFreeVirtualMemory              -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtLoadDriver                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtModifyBootEntry                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtNotifyChangeKey                -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtNotifyChangeMultipleKeys       -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenEvent                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenEventPair                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenIoCompletion               -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenKey                        -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenMutant                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenProcess                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenSection                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenSemaphore                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenThread                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtOpenTimer                      -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtProtectVirtualMemory           -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtQueryKey                       -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtQueryObject                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtQueryValueKey                  -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtRenameKey                      -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtRestoreKey                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetBootEntryOrder              -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetBootOptions                 -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetSystemInformation           -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetSystemPowerState            -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSetValueKey                    -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtShutdownSystem                 -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtSystemDebugControl             -> C:\WINDOWS\system32\drivers\aswSnx.SYS
[R]NtVdmControl                     -> C:\WINDOWS\system32\drivers\aswSnx.SYS



Běžící procesy
================================================================

C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
 |_ MD5: B921D1790A8EF84B2DBDEEEF4909FBA1
 |_Výrobce:  ATI Technologies Inc.

C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
 |_ MD5: B921D1790A8EF84B2DBDEEEF4909FBA1
 |_Výrobce:  ATI Technologies Inc.

C:\PROGRAM FILES\LENOVO\HOTKEY\TPHKLOAD.EXE
 |_ MD5: 88D609BFDEB7E013E9E491434190BA43
 |_Výrobce:  Lenovo Group Limited

C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\EEBSVC.EXE
 |_ MD5: ABDD5AD016AFFD34AD40E944CE94BF59
 |_Výrobce:  SEIKO EPSON CORPORATION

C:\WINDOWS\EXPLORER.EXE
 |_ MD5: D5D29D130497E6A74E3FCD54778FA01B
 |_Výrobce:  Microsoft Corporation

C:\WINDOWS\SYSTEM32\TP4MON.EXE
 |_ MD5: A96AF827B35A43EB3AAC24FC77D1B35D
 |_Výrobce:  IBM Corporation

C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE
 |_ MD5: 6B87742F27B087AF7FD4ADC2DB685DE0
 |_Výrobce:  Advanced Micro Devices Inc.

C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\E_FATIGCE.EXE
 |_ MD5: C59C2E8A24E556C84C26EF5F972DFD44
 |_Výrobce:  SEIKO EPSON CORPORATION

C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\E_FATIGCE.EXE
 |_ MD5: C59C2E8A24E556C84C26EF5F972DFD44
 |_Výrobce:  SEIKO EPSON CORPORATION

C:\PROGRAM FILES\THINKPAD\UTILITIES\PWMDBSVC.EXE
 |_ MD5: 2709ADBAC45DE94174EEDB0882404B25
 |_Výrobce:  

C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE
 |_ MD5: 4C08FB7ACB28689B586D986D3F5826CF
 |_Výrobce:  ATI Technologies Inc.


Scanner
================================================================
[?] ati2evxx.exe                                                                   
Non Microsoft v System32:                                                          
                                                     
[?] ati2evxx.exe                                                                   
Non Microsoft v System32:                                                          
                                                     
[?] tphkload.exe                                                                   
Nemá okno                                                                          
Soubor                        7%
                                                     
[?] eEBSvc.exe                                                                     
Nemá okno                                                                          
Soubor                        7%
                                                     
[S, novf!] explorer.exe                                                            
Ověřený Microsoft:            Ne
Spouští se po startu          HKLM Winlogon [Shell]
Soubor                        25%
                                                     
[S] PresentationFontCache.exe                                                      
EntryPoint v sekci:                                                                
|_ Celkový počet sekcí:       3
Podvržená cesta modulu:       (01020000) [DLL] ?
                                                     
[?] tp4mon.exe                                                                     
Non Microsoft v System32:                                                          
Spouští se po startu          HKLM Run [TrackPointSrv]
                                                     
[R] virtscrl.exe                                                                   
Spouští se po startu          HKLM Run [LenovoAutoScrollUtility]
                                                     
[?] MOM.exe                                                                        
EntryPoint v sekci:                                                                
|_ Celkový počet sekcí:       3
Podvržená cesta modulu:       (00DB0000) [DLL] ?
Podvržená cesta modulu:       (01160000) [DLL] ?
Soubor                        14%
                                                     
[R] DrgToDsc.exe                                                                   
Spouští se po startu          HKLM Run [RoxioDragToDisc]
                                                     
[S] rundll32.exe                                                                   
Spouští se po startu          HKLM IC [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
Podvržená cesta modulu:       (04590000) [DLL] ?
                                                     
[R] jusched.exe                                                                    
Spouští se po startu          HKLM Run [SunJavaUpdateSched]
                                                     
[R] AvastUI.exe                                                                    
Spouští se po startu          HKLM Run [avast]
                                                     
[S] ctfmon.exe                                                                     
Spouští se po startu          HKCU Run [CTFMON.EXE]
                                                     
[R] uTorrent.exe                                                                   
Spouští se po startu          HKCU Run [uTorrent]
EntryPoint v sekci:           UPX1
|_ Celkový počet sekcí:       3
                                                     
[?] E_FATIGCE.EXE                                                                  
Non Microsoft v System32:                                                          
Spouští se po startu          HKCU Run [Epson Stylus SX420W(Síť)]
                                                     
[?] E_FATIGCE.EXE                                                                  
Non Microsoft v System32:                                                          
Spouští se po startu          HKCU Run [Epson Stylus SX420W(Síť)]
                                                     
[?] PWMDBSVC.exe                                                                   
Nemá okno                                                                          
Soubor                        7%
                                                     
[?] CCC.exe                                                                        
EntryPoint v sekci:                                                                
|_ Celkový počet sekcí:       3
Podvržená cesta modulu:       (00DC0000) [DLL] ?
Podvržená cesta modulu:       (03620000) [DLL] ?
Podvržená cesta modulu:       (03770000) [DLL] ?
Podvržená cesta modulu:       (04170000) [DLL] ?
Podvržená cesta modulu:       (041A0000) [DLL] ?
Podvržená cesta modulu:       (041D0000) [DLL] ?
Podvržená cesta modulu:       (04830000) [DLL] ?
Podvržená cesta modulu:       (04960000) [DLL] ?
Podvržená cesta modulu:       (049A0000) [DLL] ?
Podvržená cesta modulu:       (04C30000) [DLL] ?
Podvržená cesta modulu:       (04CC0000) [DLL] ?
Podvržená cesta modulu:       (04D00000) [DLL] ?
Podvržená cesta modulu:       (04E70000) [DLL] ?
Podvržená cesta modulu:       (04EF0000) [DLL] ?
Podvržená cesta modulu:       (04FD0000) [DLL] ?
Podvržená cesta modulu:       (051D0000) [DLL] ?
Podvržená cesta modulu:       (053B0000) [DLL] ?
Podvržená cesta modulu:       (05570000) [DLL] ?
Podvržená cesta modulu:       (059B0000) [DLL] ?
Podvržená cesta modulu:       (05D20000) [DLL] ?
Podvržená cesta modulu:       (06030000) [DLL] ?
Podvržená cesta modulu:       (065F0000) [DLL] ?
Soubor                        14%
                                                     

Po spuštění
================================================================

HKCU Run
 |_ [?][Epson Stylus SX420W(Síť)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE /FU C:\WINDOWS\TEMP\E_S2A4.tmp /EF HKCU
 |  |_ MD5: C59C2E8A24E556C84C26EF5F972DFD44
 |  |_ Výrobce:  SEIKO EPSON CORPORATION
 |
 |_ [?][EPSON SX420W Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE /FU C:\WINDOWS\TEMP\E_SE.tmp /EF HKCU
    |_ MD5: C59C2E8A24E556C84C26EF5F972DFD44
    |_ Výrobce:  SEIKO EPSON CORPORATION


HKLM Run
 |_ [?][TrackPointSrv] C:\WINDOWS\system32\tp4mon.exe
 |  |_ MD5: A96AF827B35A43EB3AAC24FC77D1B35D
 |  |_ Výrobce:  IBM Corporation
 |
 |_ [?][StartCCC]                    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun
 |  |_ MD5: 079F6B4B26810F621AFD4CE1D0E64401
 |  |_ Výrobce:  Advanced Micro Devices, Inc.
 |
 |_ [R][PWRMGRTR]                    C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL ,PwrMgrBkGndMonitor
 |  |_ MD5: 43D0DB1CE5507CA951919D27010D5F1F
 |  |_ Výrobce:  Lenovo Group Limited
 |
 |_ [R][avast]                       C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui
    |_ MD5: 2E9A1A6555C20424FC6DCC3AF21F4D68
    |_ Výrobce:  AVAST Software


HKLM ShellServiceObjectDelayLoad
 |_ [?][WebCheck]                    C:\WINDOWS\system32\webcheck.dll
 |  |_ MD5: 0FA3E1D8D5D5080EE6A46D3A5DCE6C67
 |  |_ Výrobce:  Microsoft Corporation
 |
 |_ [?][SysTray]                     C:\WINDOWS\system32\stobject.dll
    |_ MD5: 0D1A3596234F5462AC42306C6BE716D0
    |_ Výrobce:  Microsoft Corporation


HKLM IC
 |_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
 |_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
 |  |_ MD5: F8995D4274D3D7E32BE7812B872BCC13
 |  |_ Výrobce:  
 |
 |_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
 |  |_ MD5: 97BF5E6CB8D2498286096D35644517C5
 |  |_ Výrobce:  
 |
 |_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp.inf ,PerUserStub
 |  |_ MD5: F2A04BA95B5514DBBFA06C4A5B60560B
 |  |_ Výrobce:  
 |
 |_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
    |_ MD5: 
    |_ Výrobce:  Microsoft Corporation


HKLM Winlogon
 |_ [?][Shell]                       C:\WINDOWS\Explorer.exe
    |_ MD5: D5D29D130497E6A74E3FCD54778FA01B
    |_ Výrobce:  Microsoft Corporation


HKLM Winlogon Notify
 |_ [?][AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll
    |_ MD5: 80F67FFAB8467F5CDEFE4B444F60E14A
    |_ Výrobce:  ATI Technologies Inc.


Job
 |_ [?][PMTask.job]                  C:\PROGRA~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE
    |_ MD5: 1EE5C4CAFAF081D4CE415F6812600574
    |_ Výrobce:  



HKLM BHO
 |_ [?][{9421DD08-935F-4701-A9CA-22DF90AC4EA6}] C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    |_ MD5: EA3329E06D7C794B788CEADA90AB7000
    |_ Výrobce:  SEIKO EPSON CORPORATION / CyCom Technology Corp.


HKCU IE WebBrowser Toolbar
 |_ [X][{D4027C7F-154A-4066-A1AD-4243D8127440}]  (Soubor nenalezen)

HKLM IE Toolbar
 |_ [?][{9421DD08-935F-4701-A9CA-22DF90AC4EA6}] C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    |_ MD5: EA3329E06D7C794B788CEADA90AB7000
    |_ Výrobce:  SEIKO EPSON CORPORATION / CyCom Technology Corp.


Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] Ati HotKey Poller
 |_ Cesta: C:\WINDOWS\system32\Ati2evxx.exe
 |   |_ Výrobce:  ATI Technologies Inc.
 |   |_ Popis: ATI External Event Utility EXE Module
 |   |_ MD5: B921D1790A8EF84B2DBDEEEF4909FBA1
 |   
 |_ Jméno:  Ati HotKey Poller
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  
 |_ Dependency: 

[?] EpsonBidirectionalService
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
 |   |_ Výrobce:  SEIKO EPSON CORPORATION
 |   |_ Popis: eEBAPI Core Process module
 |   |_ MD5: ABDD5AD016AFFD34AD40E944CE94BF59
 |   
 |_ Jméno:  EpsonBidirectionalService
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[X] Java Quick Starter
 |_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 
 |   
 |_ Jméno:  JavaQuickStarterService
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: 

[?] Power Manager DBC Service
 |_ Cesta: C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
 |   |_ Výrobce:  
 |   |_ Popis: PWMDBSVC Module
 |   |_ MD5: 2709ADBAC45DE94174EEDB0882404B25
 |   
 |_ Jméno:  Power Manager DBC Service
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: RPCSS

[?] Lenovo Hotkey Client Loader
 |_ Cesta: C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
 |   |_ Výrobce:  Lenovo Group Limited
 |   |_ Popis: ThinkPad Message Client Loader
 |   |_ MD5: 88D609BFDEB7E013E9E491434190BA43
 |   
 |_ Jméno:  TPHKLOAD
 |_ StartName: LocalSystem
 |_ Typ spouštění:  Auto Start
 |_ Status: Spuštěno
 |_ Typ:  Win32 Own Process
 |_ Dependency: IBMPMSVC


Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] aeaudio
 |_ Cesta: C:\WINDOWS\system32\drivers\aeaudio.sys
 |   |_ Výrobce:  Andrea Electronics Corporation
 |   |_ Popis: Andrea Audio Noise Cancellation Driver
 |   |_ MD5: 86CE50364EF3241401632FD4A805FCF9
 |   
 |_ Jméno:  aeaudio
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] TP-LINK Wireless N Adapter Service
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\athw.sys
 |   |_ Výrobce:  Atheros Communications, Inc.
 |   |_ Popis: Driver for Atheros AR5008 Wireless Network Adapter
 |   |_ MD5: 736E05492CA713890AC903FEED27A972
 |   
 |_ Jméno:  AR5416
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] ati2mtag
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
 |   |_ Výrobce:  ATI Technologies Inc.
 |   |_ Popis: ATI Radeon WindowsNT Miniport Driver
 |   |_ MD5: 5A13723FB8BFDD2090DEFB2D0CB98A27
 |   
 |_ Jméno:  ati2mtag
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] Broadcom NetXtreme Gigabit Ethernet
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\b57xp32.sys
 |   |_ Výrobce:  Broadcom Corporation
 |   |_ Popis: Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver.
 |   |_ MD5: 66DD574749C38153C6067EBBA929BEFC
 |   
 |_ Jméno:  b57w2k
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] HSFHWATI
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\HSFHWATI.sys
 |   |_ Výrobce:  Conexant Systems, Inc.
 |   |_ Popis: HSFHWATI WDM driver
 |   |_ MD5: 36B13BC557C0E28B1BFB65AEBF4CE5FF
 |   
 |_ Jméno:  HSFHWATI
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] HSF_DPV
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
 |   |_ Výrobce:  Conexant Systems, Inc.
 |   |_ Popis: HSF_DP driver
 |   |_ MD5: C9F4E7DA78A02623ABF78A4A34CE79B1
 |   
 |_ Jméno:  HSF_DPV
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] smwdm
 |_ Cesta: C:\WINDOWS\system32\drivers\smwdm.sys
 |   |_ Výrobce:  Analog Devices, Inc.
 |   |_ Popis: SoundMAX Integrated Digital Audio 
 |   |_ MD5: 858934C454BDC6664C752BF0CD3EAEAE
 |   
 |_ Jméno:  smwdm
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] TPHKDRV
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
 |   |_ Výrobce:  Lenovo Group Limited
 |   |_ Popis: ThinkPad Hotkey Driver
 |   |_ MD5: 8AEF2188630F5ECD79AD9ABBA630630B
 |   
 |_ Jméno:  TPHKDRV
 |_ StartName: 
 |_ Typ spouštění:  System Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] TPPWRIF
 |_ Cesta: C:\WINDOWS\System32\drivers\Tppwrif.sys
 |   |_ Výrobce:  
 |   |_ Popis: 
 |   |_ MD5: 44672DE6CEA9569C21C4B7A8D2560750
 |   
 |_ Jméno:  TPPWRIF
 |_ StartName: 
 |_ Typ spouštění:  System Start
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] IBM PS/2 TrackPoint Filter Driver
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\TwoTrack.sys
 |   |_ Výrobce:  IBM Corporation
 |   |_ Popis: IBM PS/2 TrackPoint Mouse Filter Driver
 |   |_ MD5: 17687545F77A648AF7F9F1064EB61191
 |   
 |_ Jméno:  TwoTrack
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 

[?] winachsf
 |_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
 |   |_ Výrobce:  Conexant Systems, Inc.
 |   |_ Popis: HSF_CNXT driver
 |   |_ MD5: C1D5CBD8AA0D674DA1BA1BB189696396
 |   
 |_ Jméno:  winachsf
 |_ StartName: 
 |_ Typ spouštění:  Ruční spuštění
 |_ Status: Spuštěno
 |_ Typ:  Kernel Driver
 |_ Dependency: 


lNetStat
================================================================
Typ:  PID       Proces              Local <-> Remote                             Status
-----------------------------------------------------------------------------------------
TCP (1132)    svchost.exe         0.0.0.0:135                                  LISTENING
TCP (4)       Systém              0.0.0.0:445                                  LISTENING
TCP (1336)    uTorrent.exe        0.0.0.0:28800                                LISTENING
TCP (2904)    alg.exe             127.0.0.1:1052                               LISTENING
TCP (3872)    firefox.exe         127.0.0.1:1081 <-> 127.0.0.1:1082            ESTABLISHED
TCP (3872)    firefox.exe         127.0.0.1:1082 <-> 127.0.0.1:1081            ESTABLISHED
TCP (3872)    firefox.exe         127.0.0.1:1132 <-> 127.0.0.1:1133            ESTABLISHED
TCP (3872)    firefox.exe         127.0.0.1:1133 <-> 127.0.0.1:1132            ESTABLISHED
TCP (3872)    firefox.exe         127.0.0.1:2402 <-> 127.0.0.1:12080           ESTABLISHED
TCP (3872)    firefox.exe         127.0.0.1:2636 <-> 127.0.0.1:12080           ESTABLISHED
TCP (612)     jqs.exe             127.0.0.1:5152                               LISTENING
TCP (612)     jqs.exe             127.0.0.1:5152                               CLOSE_WAIT
TCP (1336)    uTorrent.exe        127.0.0.1:10000                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12025                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12080                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:2402           ESTABLISHED
TCP (1692)    AvastSvc.exe        127.0.0.1:12080 <-> 127.0.0.1:2636           ESTABLISHED
TCP (1692)    AvastSvc.exe        127.0.0.1:12110                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12119                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12143                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12465                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12563                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12993                              LISTENING
TCP (1692)    AvastSvc.exe        127.0.0.1:12995                              LISTENING
TCP (4)       Systém              172.16.10.102:139                            LISTENING
TCP (1256)    AvastUI.exe         172.16.10.102:1100                           CLOSE_WAIT
TCP (1256)    AvastUI.exe         172.16.10.102:1101                           CLOSE_WAIT
TCP (1256)    AvastUI.exe         172.16.10.102:1103                           CLOSE_WAIT
TCP (1256)    AvastUI.exe         172.16.10.102:1105                           CLOSE_WAIT
TCP (1692)    AvastSvc.exe        172.16.10.102:2403 <-> 64.12.242.140:80      ESTABLISHED
TCP (1692)    AvastSvc.exe        172.16.10.102:2566                           LAST_ACK
TCP (1692)    AvastSvc.exe        172.16.10.102:2567                           LAST_ACK
TCP (0)       172.16.10.102:2619                           TIME_WAIT
TCP (3140)    UPM.exe             172.16.10.102:2624                           CLOSE_WAIT
TCP (1336)    uTorrent.exe        172.16.10.102:2625                           LAST_ACK
TCP (3140)    UPM.exe             172.16.10.102:2626 <-> 199.7.48.190:80       ESTABLISHED
TCP (3140)    UPM.exe             172.16.10.102:2627 <-> 199.7.52.190:80       ESTABLISHED
TCP (0)       172.16.10.102:2630                           TIME_WAIT
TCP (0)       172.16.10.102:2632                           TIME_WAIT
TCP (0)       172.16.10.102:2634                           TIME_WAIT
TCP (0)       172.16.10.102:2635                           TIME_WAIT
TCP (1692)    AvastSvc.exe        172.16.10.102:2637                           CLOSE_WAIT
TCP (3140)    UPM.exe             172.16.10.102:2638 <-> 199.7.71.190:80       ESTABLISHED
UDP (892)     snmp.exe            0.0.0.0:161 <-> 199.7.71.190:80              ESTABLISHED
UDP (4)       Systém              0.0.0.0:445                                  
UDP (844)     lsass.exe           0.0.0.0:500                                  
UDP (1292)    svchost.exe         0.0.0.0:1025                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1030                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1031                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1032                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1033                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1034                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1035                                 
UDP (1292)    svchost.exe         0.0.0.0:1041                                 
UDP (1628)    eEBSvc.exe          0.0.0.0:1057                                 
UDP (1292)    svchost.exe         0.0.0.0:1148                                 
UDP (1292)    svchost.exe         0.0.0.0:1346                                 
UDP (1292)    svchost.exe         0.0.0.0:1354                                 
UDP (1292)    svchost.exe         0.0.0.0:1355                                 
UDP (1292)    svchost.exe         0.0.0.0:1356                                 
UDP (844)     lsass.exe           0.0.0.0:4500                                 
UDP (1336)    uTorrent.exe        0.0.0.0:28800                                
UDP (1172)    svchost.exe         127.0.0.1:123                                
UDP (1436)    svchost.exe         127.0.0.1:1900                               
UDP (1172)    svchost.exe         172.16.10.102:123                            
UDP (4)       Systém              172.16.10.102:137                            
UDP (4)       Systém              172.16.10.102:138                            
UDP (1436)    svchost.exe         172.16.10.102:1900                           
UDP (1336)    uTorrent.exe        172.16.10.102:1900                           

Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] enppmon.dll
 |_ Cesta: C:\WINDOWS\system32\enppmon.dll
 |_ MD5: B17DC579EB3948462E8E35F26FB2D32B
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ spoolsv.exe (272)

[?] eebrsvc.dll
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBRsvc.dll
 |_ MD5: 8D6D80315A238D049AE8A33C1EE632F8
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)

[?] eeblpdev.dll
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBLPDEV.DLL
 |_ MD5: 89971C511861513C5C12EE71C537E21A
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)

[?] eebipdev.dll
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBIPDev.DLL
 |_ MD5: 65BB5D319081E4EC2880A78A0091A84B
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)

[?] eebnwdev.dll
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBNWDev.dll
 |_ MD5: 59CDF93DFA24264E6D75E1E3C00CD27F
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)

[?] eebmsdev.dll
 |_ Cesta: C:\Program Files\Common Files\EPSON\EBAPI\eEBMSDev.dll
 |_ MD5: 2510150D2BB54115141E83F3205B6013
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)

[?] eebutil.dll
 |_ Cesta: C:\WINDOWS\system32\EEBUtil.dll
 |_ MD5: 78E3A1BE942B6CA69C01BAD7263D888C
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ eEBSvc.exe (1628)
     |_ E_FATIGCE.EXE (1596)

[?] pwrmgrrt.dll
 |_ Cesta: C:\PROGRA~1\ThinkPad\UTILIT~1\US\PWRMGRRT.DLL
 |_ MD5: 0837E2358A6B930C11FBF593C77AAD30
 |_ Výrobce:  
 |_ Procesy
     |_ explorer.exe (248)

[?] eptbl.dll
 |_ Cesta: C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
 |_ MD5: EA3329E06D7C794B788CEADA90AB7000
 |_ Výrobce:  SEIKO EPSON CORPORATION / CyCom Technology Corp.
 |_ Procesy
     |_ explorer.exe (248)

[?] shlxthdl.dll
 |_ Cesta: C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
 |_ MD5: 471FFDCF899BDCF4167F10E8F898FDC5
 |_ Výrobce:  OpenOffice.org
 |_ Procesy
     |_ explorer.exe (248)

[?] stlport_vc7145.dll
 |_ Cesta: C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\stlport_vc7145.dll
 |_ MD5: 3FCB5A2E173B70945C4C80191792AE81
 |_ Výrobce:  STLport Consulting, Inc.
 |_ Procesy
     |_ explorer.exe (248)

[?] system.serviceprocess.resources.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
 |_ MD5: 771ACB780438AF60DFF84931731B6C8B
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ PresentationFontCache.exe (356)

[?] mom.implementation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3559.24653__90ba9c70f846762e\MOM.Implementation.DLL
 |_ MD5: 1114DDFD138237EDDF99FC418AD63D7C
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ MOM.exe (708)
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] log.foundation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3309.28601__90ba9c70f846762e\LOG.Foundation.DLL
 |_ MD5: 14D1332BD5DEDABD1C85A5D74EB4BADA
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ MOM.exe (708)
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] mom.foundation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3309.28626__90ba9c70f846762e\MOM.Foundation.DLL
 |_ MD5: 2995D06505645FE3E58CF270A6653DC8
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ MOM.exe (708)
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] ccc.implementation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3559.24652__90ba9c70f846762e\CCC.Implementation.DLL
 |_ MD5: AC50FC5A1581ADDF271659721B781FBB
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ MOM.exe (708)
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] newaem.foundation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3309.28603__90ba9c70f846762e\NEWAEM.Foundation.DLL
 |_ MD5: 9D5F0100CEF5AB1DB7111E0004E61003
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ MOM.exe (708)
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] log.foundation.implementation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3559.24651__90ba9c70f846762e\LOG.Foundation.Implementation.dll
 |_ MD5: A515847B59DD4F6C273C5755D33400FB
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ CCC.exe (3080)

[?] log.foundation.implementation.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3309.28626__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
 |_ MD5: 80AFA16C347A60BA6ECABCFB7351585D
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ CCC.exe (3080)

[?] log.foundation.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3309.28614__90ba9c70f846762e\LOG.Foundation.Private.dll
 |_ MD5: DF8EA7C61BAD44D22867A1B9AEE4E3D8
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ MOM.exe (708)
     |_ CCC.exe (3080)

[?] cdrtc.dll
 |_ Cesta: C:\WINDOWS\system32\cdrtc.dll
 |_ MD5: 4F9CB399D68CC5AD8982EFD4CB613436
 |_ Výrobce:  Sonic Solutions
 |_ Procesy
     |_ DrgToDsc.exe (736)

[?] cdral.dll
 |_ Cesta: C:\WINDOWS\system32\cdral.dll
 |_ MD5: 3C81024A164F37290FE4B4BB62458D86
 |_ Výrobce:  Sonic Solutions
 |_ Procesy
     |_ DrgToDsc.exe (736)

[?] pwrmgrro.dll
 |_ Cesta: C:\PROGRA~1\ThinkPad\UTILIT~1\US\PWRMGRRO.DLL
 |_ MD5: 0B801269F3F32A2FBADA378942762BAF
 |_ Výrobce:  
 |_ Procesy
     |_ rundll32.exe (1216)

[?] uiautomationprovider.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\UIAutomationProvider\3.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
 |_ MD5: 793CA48332EEAC6FBAB070117A6D2754
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] pwmuictl.dll
 |_ Cesta: C:\PROGRA~1\ThinkPad\UTILIT~1\PWMUICtl.DLL
 |_ MD5: 9C421DAE611B9082FD19BD5173699BCE
 |_ Výrobce:  Lenovo Group Limited
 |_ Procesy
     |_ rundll32.exe (1216)

[?] presentationframework.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
 |_ MD5: 7F0CF140AF66F61230C0BC109E03C489
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)
     |_ rundll32.exe (1216)

[?] presentationcore.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
 |_ MD5: 7D08776FCBDF1E60D667337358D638D8
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] windowsbase.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
 |_ MD5: 2905FEE5771462AD32F925FEA7099469
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] presentationui.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\PresentationUI\3.0.0.0__31bf3856ad364e35\PresentationUI.dll
 |_ MD5: F18D22D9B090E40A714767B6BDFE51DA
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] system.printing.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
 |_ MD5: 91A4D51776826677962A7DA4995BA8B6
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] reachframework.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
 |_ MD5: A8FDA2657195B698E3ED3A9981B72E27
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] uiautomationtypes.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\UIAutomationTypes\3.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
 |_ MD5: 695E9043B858A6F2A61CCFF6F9ABA9B5
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ rundll32.exe (1216)

[?] pwmuiaux.resources.dll
 |_ Cesta: C:\PROGRA~1\ThinkPad\UTILIT~1\EN-US\PWMUIAux.resources.dll
 |_ MD5: 3EE6A66CA81B953347F06A7D24E911DD
 |_ Výrobce:  Lenovo Group Limited
 |_ Procesy
     |_ rundll32.exe (1216)

[?] pwrmgr.dll
 |_ Cesta: C:\Program Files\ThinkPad\Utilities\PWRMGR.DLL
 |_ MD5: 34AA4B0240D0D08B5393BB53B0185755
 |_ Výrobce:  Lenovo Group Limited
 |_ Procesy
     |_ rundll32.exe (1216)

[?] uilangres.dll
 |_ Cesta: C:\Program Files\AVAST Software\Avast\1029\uiLangRes.dll
 |_ MD5: 90D30A6258DE49EC66FF7E45A0D03331
 |_ Výrobce:  AVAST Software
 |_ Procesy
     |_ AvastUI.exe (1256)

[?] eebapi.dll
 |_ Cesta: C:\WINDOWS\system32\EEBAPI.dll
 |_ MD5: 6B62CE038EA379D59A94C35618102AB0
 |_ Výrobce:  SEIKO EPSON CORPORATION
 |_ Procesy
     |_ E_FATIGCE.EXE (1596)

[?] cli.foundation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3309.28604__90ba9c70f846762e\CLI.Foundation.DLL
 |_ MD5: F73739BA177C749156F4BA29B314FC6A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] mscorlib.resources.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
 |_ MD5: A838E1FD3A32C28913A0883082F9487D
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ CCC.exe (3080)

[?] system.windows.forms.resources.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
 |_ MD5: D2FFCFE2204BABFBE329712D8781DF1E
 |_ Výrobce:  Microsoft Corporation
 |_ Procesy
     |_ CCC.exe (3080)

[?] aticccom.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.DLL
 |_ MD5: AB8D7C1B5C5EB5E8649CE865FAD5C819
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] aem.server.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3559.24556__90ba9c70f846762e\AEM.Server.DLL
 |_ MD5: D9F6F3C696DF5B9CA99C006B7D4D5E1A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] aem.server.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Server.Shared.DLL
 |_ MD5: 8EB085B26E602CB4A1203F4F1F8AC6F4
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] aem.plugin.hotkeys.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
 |_ MD5: DAC86F8AA223FA55ADBC94BD2033DF7F
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.plugin.winmessages.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3309.28629__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
 |_ MD5: 1EB5C58C9B446A13A8319EF513E8B5E8
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] dem.graphics.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3309.28630__90ba9c70f846762e\DEM.Graphics.DLL
 |_ MD5: 814B9D77B93F0F10D1619483E39A6141
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] dem.os.i0602.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3309.28630__90ba9c70f846762e\DEM.OS.I0602.DLL
 |_ MD5: 03571509EC8C5CDA4C347E5398AE0E29
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] dem.os.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3309.28645__90ba9c70f846762e\DEM.OS.DLL
 |_ MD5: DC3CA97FE07A5E4387D53E3D77B4A7A7
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] atidemos.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3559.24558__90ba9c70f846762e\ATIDEMOS.DLL
 |_ MD5: EFE1421243B4CDFBA19A1B77C3066A4A
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] aem.plugin.gd.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
 |_ MD5: CEAA5823BD0ECCB77675DE53CFC59F23
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] resourcemanagement.foundation.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3309.28612__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
 |_ MD5: 986F472CDCD90453BBB0643A235ACE09
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] dem.graphics.i0812.dll
 |_ Cesta: C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
 |_ MD5: ACFD0D2CD67C478673F2EAB1CB4D9D79
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] apm.server.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3559.24557__90ba9c70f846762e\APM.Server.DLL
 |_ MD5: E89F82E79C5FF14F55C94601D0AC7C89
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] apm.foundation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3309.28626__90ba9c70f846762e\APM.Foundation.DLL
 |_ MD5: 0EB0FF2B6755532976080CAB065F202C
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)
     |_ CCC.exe (3080)

[?] atixclib.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.DLL
 |_ MD5: EE850C95ED088E8835F2425EE551296F
 |_ Výrobce:   
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.runtime.extension.eeu.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3559.24555__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
 |_ MD5: 728953A8759A1EC1671CBE69B574782D
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.plugin.eeu.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3309.28627__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
 |_ MD5: 34138AC5853DF0E420904C4B0EB58898
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] resourcemanagement.foundation.implementation.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3559.24686__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
 |_ MD5: 94FB9C9BA3C05D2A1F319080BFFDA6D6
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displaysmanager.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3559.24579__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
 |_ MD5: 4EA20E52174D8E8D55A23E06EC0B76FF
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3559.24565__90ba9c70f846762e\CLI.Component.Dashboard.dll
 |_ MD5: FB8BAF80513D6F0501AE091561566641
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.mmvideo.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3559.24608__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
 |_ MD5: AA4C872677B064DCA315898B7A202779
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.customformats.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3309.28627__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
 |_ MD5: 3F96DEA77D74A25D49B3572CF8E4AF08
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicecrt.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
 |_ MD5: E33C52534769A338F82FA2FA9F7F0561
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicecrt.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
 |_ MD5: 26D77AE2B9600DF557CDF50D3811E654
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicecrt.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
 |_ MD5: 4EE13D5EA60A071E0E17E9A9483D8CE9
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicecv.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
 |_ MD5: 6FCD5D3E4170BA294FD2188DF92D27FE
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicecv.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
 |_ MD5: 84C2BDB0072817C2A44D80A69F9327BB
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicedfp.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3559.24606__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
 |_ MD5: FCBEBA0DF5CD31A919783D56B86578CC
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicedfp.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
 |_ MD5: 87E6CCA5694E6855AD34E7E7B968931B
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicelcd.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3559.24618__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
 |_ MD5: C322B0E907B69B1F8690D0110410768B
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicelcd.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3559.24618__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
 |_ MD5: 388149821D56C9E28E624098946FE1B7
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicelcd.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
 |_ MD5: 3B5211F0135BEDC6463CB2722D367A51
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicelcd.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3559.24586__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
 |_ MD5: 19777879A99743D6273827AA1DE7C8EC
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.deviceproperty.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3559.24606__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
 |_ MD5: D5F8201A644C21C68A5B112447734554
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.deviceproperty.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3309.28624__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
 |_ MD5: 1FF7F1098DAC0DA6280D6FC9B8D89E6F
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicetv.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3559.24638__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
 |_ MD5: 7EA4EA54A2BF3843AFBCFC9BC24A5C0B
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.devicetv.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
 |_ MD5: 31C2A9E6D8FEFA62759318A7F85EA646
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displayscolour2.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3559.24582__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
 |_ MD5: 6943FC45CA3BF514AE62CE1CAF3A8AAD
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displayscolour2.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3559.24585__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
 |_ MD5: 0602BB7587355A55533D977A542A730C
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displayscolour2.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3309.28632__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
 |_ MD5: B962A41EECF27644D7B6159060A5DB9C
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displaysmanager.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3559.24570__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
 |_ MD5: 01DE79C44FA4568D47E2622FC421B772
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displaysoptions.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3559.24617__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
 |_ MD5: E690BD925B98F86A7823B6E897F3E306
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displaysoptions.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3559.24617__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
 |_ MD5: 9FBC05DC66C46EB2045CD945A1AF7395
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.displaysoptions.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
 |_ MD5: 14018ABDB92B40A145E24C441F5C4361
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.hotkeyshandling.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3559.24569__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
 |_ MD5: 93BE90557B5F3F7FAB08686CED19AA82
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.hotkeyshandling.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
 |_ MD5: C60E27CDFE13E60CA4104FD64C6BF489
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.infocentre.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3559.24581__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
 |_ MD5: F7E18C2E40C2C456CE2CE0EF827FB171
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.infocentre.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3559.24581__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
 |_ MD5: 3C92B62E1FEB48379451333C48CE76A0
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.mmvideo.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
 |_ MD5: CEF7E381AB19A2D710D57BA198488CA7
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.mmvideo.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
 |_ MD5: 4D2D6C3B8280D48C33745ACC44894702
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.mmvideo.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3559.24633__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
 |_ MD5: 1118CB4F1CB2C84BC517DF8930AB54D7
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.powerplay3.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Dashboard\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll
 |_ MD5: 76A300BCFA7D05500C98111AE8BCD2D6
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.powerplay3.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Runtime\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll
 |_ MD5: 1F120F31233E33E0F1D21D8CFB055AAD
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.powerplay3.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Shared.dll
 |_ MD5: F23EA7F044C97EF2CC41234DEA9C4F0A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.radeon3d.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3559.24624__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
 |_ MD5: D8227D3C166AA24EFA8BD9A6315421F5
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.radeon3d.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3559.24624__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
 |_ MD5: 2E60A75F3C2DD25642C185898DA2EC56
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.radeon3d.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
 |_ MD5: 4936982F43A4F23856B398B3D9DD1589
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.radeon3d.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3559.24625__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
 |_ MD5: AE2EE57D4177D6E9143B5334ECCA25F1
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.transcode.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3309.28644__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
 |_ MD5: BA8E4DEF946325D96EF2DA87ECFFC594
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.transcode.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3559.24658__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
 |_ MD5: 937777DD7B5799B329B458C9DAC33B28
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.aspect.welcome.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3559.24659__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
 |_ MD5: 301B491AEF4659F97EAF95976335C1F3
 |_ Výrobce:  Advanced Mirco Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.dashboard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3559.24568__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
 |_ MD5: 7BE248A00D9A03F2BAC0CF98AF04D890
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.dashboard.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
 |_ MD5: 26BEB141BA70FD1427C69A3D8EC27A79
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3559.24560__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
 |_ MD5: 482B377D1BE4E759366C7AA20CF77E83
 |_ Výrobce:  Advanced Mirco Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.runtime.shared.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3309.28637__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
 |_ MD5: 54387B3763BA5C91A4C6FA8E5916B2DF
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3309.28618__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
 |_ MD5: 62B845865FD089CEE940E682A7793253
 |_ Výrobce:  Advanced Mirco Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3559.24575__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
 |_ MD5: 8B3321F895D3138E517E0BE585C73D5A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.caste.graphics.wizard.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3309.28631__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
 |_ MD5: D38601320578FB9235E6A3634AE5FE20
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.client.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3309.28611__90ba9c70f846762e\CLI.Component.Client.Shared.dll
 |_ MD5: 3EB71BB5571DB026448FB00C80961D5A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.client.shared.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3309.28621__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
 |_ MD5: 1F3D9B7CF4749DE1BBCA442142976A15
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.dashboard.shared.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3309.28624__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
 |_ MD5: 31F3A43DDF0FE42F88DE86004003E01F
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.runtime.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3559.24557__90ba9c70f846762e\CLI.Component.Runtime.dll
 |_ MD5: F26DBFF48DA61D56B3A51EA5107EB236
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.runtime.shared.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3309.28628__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
 |_ MD5: 805A0D817C61A2778E5859689FC7CBB8
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.skinfactory.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3559.24559__90ba9c70f846762e\CLI.Component.SkinFactory.dll
 |_ MD5: 151D868E420E3A3DDF0E35EF63E76AD1
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.systemtray.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3559.24647__90ba9c70f846762e\CLI.Component.Systemtray.dll
 |_ MD5: 8C497BF72A3DC9FED5B1BE114E64B828
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.wizard.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3559.24574__90ba9c70f846762e\CLI.Component.Wizard.dll
 |_ MD5: 39E7974DF4A354722C6879324158A5A0
 |_ Výrobce:  Advanced Micro Devices, Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.wizard.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3309.28620__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
 |_ MD5: F26996E9C8D91F5825A692DF8E169506
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.wizard.shared.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3309.28627__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
 |_ MD5: E40BC3251F860437C4D9068CC9284F80
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.foundation.private.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3309.28608__90ba9c70f846762e\CLI.Foundation.Private.dll
 |_ MD5: F6F72C70C12AAC66C5B9EFCBEF484188
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.foundation.xmanifest.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3309.28669__90ba9c70f846762e\CLI.Foundation.XManifest.dll
 |_ MD5: A4EC9E917285A39F6FE7FA40669AAA03
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] wbocx.ocx
 |_ Cesta: C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-I~1\32\wbocx.ocx
 |_ MD5: 0BE92B27DC8C7B6035A5EC373FC2B619
 |_ Výrobce:  Stardock Corporation
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.actions.ccaa.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3309.28608__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
 |_ MD5: 05E8A9B52EC52DD611B748D80F3B212B
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.plugin.dppe.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
 |_ MD5: B8D8FB4D41FB3DF6F3A24495F6B5E0E9
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.plugin.reg.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3309.28645__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
 |_ MD5: A2C0E7F8793569C4CC8CA0D5301F283E
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] aem.plugin.source.kit.server.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3559.24667__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
 |_ MD5: 9FBE6A7E95FE8B8D0E7C5EF8E3F66C0A
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] cli.component.runtime.shared.dll
 |_ Cesta: C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3309.28617__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
 |_ MD5: E46C94064B485BB0ADFB8ED53CCFD598
 |_ Výrobce:  Advanced Micro Devices Inc.
 |_ Procesy
     |_ CCC.exe (3080)

[?] softokn3.dll
 |_ Cesta: C:\Program Files\Mozilla Firefox\softokn3.dll
 |_ MD5: 9FC405765FABE03D708DDD2909E6FC70
 |_ Výrobce:  Mozilla Foundation
 |_ Procesy
     |_ firefox.exe (3872)

[?] nssdbm3.dll
 |_ Cesta: C:\Program Files\Mozilla Firefox\nssdbm3.dll
 |_ MD5: 3D92A3102A75D75CF165BB2503DB2D05
 |_ Výrobce:  Mozilla Foundation
 |_ Procesy
     |_ firefox.exe (3872)

[?] freebl3.dll
 |_ Cesta: C:\Program Files\Mozilla Firefox\freebl3.dll
 |_ MD5: 45BDA3D349DA131FAF7192C3C6124D3B
 |_ Výrobce:  Mozilla Foundation
 |_ Procesy
     |_ firefox.exe (3872)


Výpis souborů
================================================================
\System32:
[?] accwiz.exe     25     ncmpny,      {D43EB0D9}
[?] appwiz.cpl     25     ncmpny,      {D778EC2F}
[?] athw.sys       7      no vrfy,     {B7EAB6B5}
[?] batt.dll       25     ncmpny,      {51CEDC38}
[?] calc.exe       25     ncmpny,      {78B14F4C}
[?] cdral.dll      7      no vrfy,     {3A48EE44}
[?] cdrtc.dll      7      no vrfy,     {5DC5309D}
[?] certmgr.dll    12     ncmpny,      {222963F2}
[?] ciadmin.dll    12     ncmpny,      {A9C65D8F}
[?] cleanmgr.exe   25     ncmpny,      {1FB43BBE}
[?] clipbrd.exe    12     ncmpny,      {B4B78B26}
[?] clipsrv.exe    12     ncmpny,      {1D5DF46A}
[?] cmd.exe        25     ncmpny,      {6956172B}
[?] cmdial32.dll   12     ncmpny,      {34846D95}
[?] cmdl32.exe     12     ncmpny,      {A0FB007E}
[?] cmstp.exe      12     ncmpny,      {188F3720}
[?] comdlg32.dll   12     ncmpny,      {20B31C01}
[?] comres.dll     25     ncmpny,      {52536147}
[?] conime.exe     12     ncmpny,      {364E1361}
[?] credui.dll     25     ncmpny,      {B1350494}
[?] cryptui.dll    12     ncmpny,      {741659E9}
[?] cscript.exe    12     ncmpny,      {0520CA66}
[?] cscui.dll      25     ncmpny,      {CF9FCE55}
[?] desk.cpl       25     ncmpny,      {A53582A2}
[?] deskadp.dll    25     ncmpny,      {69410ACF}
[?] deskmon.dll    12     ncmpny,      {3BE0CA61}
[?] deskperf.dll   25     ncmpny,      {BD8D942D}
[?] devmgr.dll     12     ncmpny,      {CE973FA3}
[?] diskcopy.dll   25     ncmpny,      {9409B7F4}
[?] dmdlgs.dll     25     ncmpny,      {1E2FABC7}
[?] dpvoice.dll    12     ncmpny,      {B61780E3}
[?] dskquoui.dll   12     ncmpny,      {85AE5AFC}
[?] dsquery.dll    12     ncmpny,      {0AB71F7A}
[?] dsuiext.dll    25     ncmpny,      {9F8A60E1}
[?] dxmasf.dll     25     ncmpny,      {75227D5C}
[?] EBAPI.dll      7      no vrfy,     {4B25F1C1}
[?] EEBAPI.dll     7      no vrfy,     {1BC732DD}
[?] EEBDSCVR.dll   7      no vrfy,     {CE2AAA8C}
[?] EEBSDKIF.dll   7      no vrfy,     {3D815118}
[?] EEBUtil.dll    7      no vrfy,     {072F13D5}
[?] els.dll        25     ncmpny,      {428BA03F}
[?] enppmon.dll    7      no vrfy,     {AD9D14BD}
[?] enppui.dll     7      no vrfy,     {87166BEF}
[?] ensppmon.dll   7      no vrfy,     {AD9D14BD}
[?] ensppui.dll    7      no vrfy,     {87166BEF}
[?] eventvwr.exe   25     ncmpny,      {4DEC974A}
[?] filemgmt.dll   12     ncmpny,      {B2353E54}
[?] fldrclnr.dll   25     ncmpny,      {5AF5A637}
[?] fontext.dll    25     ncmpny,      {524E0532}
[?] fsquirt.exe    25     ncmpny,      {173C17BE}
[?] gcdef.dll      25     ncmpny,      {E9D1856A}
[?] gpedit.dll     12     ncmpny,      {9772063B}
[?] hdwwiz.cpl     25     ncmpny,      {4DBF5FC5}
[?] hnetwiz.dll    25     ncmpny,      {FF679213}
[?] hotplug.dll    25     ncmpny,      {394F4DE9}
[?] icmui.dll      25     ncmpny,      {47157194}
[?] ieaksie.dll    12     ncmpny,      {19BC0050}
[?] iernonce.dll   12     ncmpny,      {6B57FD05}
[?] iexpress.exe   12     ncmpny,      {4C543A3A}
[?] inetcpl.cpl    25     ncmpny,      {BFE53519}
[?] input.dll      12     ncmpny,      {0770EA92}
[?] intl.cpl       25     ncmpny,      {60B842B0}
[?] irclass.dll    25     ncmpny,      {B130F0BA}
[?] irprops.cpl    25     ncmpny,      {2BD7697A}
[?] javacpl.cpl    14     no vrfy,     {5C79500A}
[?] joy.cpl        25     ncmpny,      {3E752D13}
[?] keymgr.dll     25     ncmpny,      {7E530D7F}
[?] main.cpl       25     ncmpny,      {C5496DB3}
[?] mdminst.dll    25     ncmpny,      {2DA64E74}
[?] mmc.exe        12     ncmpny,      {8B410B3D}
[?] mmcshext.dll   12     ncmpny,      {0AEF4A3E}
[?] mmsys.cpl      25     ncmpny,      {37771001}
[?] mobsync.exe    25     ncmpny,      {603574E6}
[?] msdtc.exe      25     ncmpny,      {69FD35F0}
[?] msdxm.ocx      25     ncmpny,      {0268B713}
[?] msgina.dll     25     ncmpny,      {8F1A3CE6}
[?] msident.dll    12     ncmpny,      {C28C9390}
[?] msieftp.dll    25     ncmpny,      {4B7A98FE}
[?] mspaint.exe    25     ncmpny,      {905E26A0}
[?] mstask.dll     25     ncmpny,      {BEF0624B}
[?] mycomput.dll   12     ncmpny,      {2AA226B9}
[?] mydocs.dll     25     ncmpny,      {C3BAEB89}
[?] ncpa.cpl       25     ncmpny,      {FDA47642}
[?] netplwiz.dll   25     ncmpny,      {16B9157D}
[?] netshell.dll   25     ncmpny,      {0CD64E41}
[?] newdev.dll     25     ncmpny,      {AB2CA521}
[?] notepad.exe    25     ncmpny,      {C0C33EF7}
[?] nslookup.exe   12     ncmpny,      {4A114E3D}
[?] ntbackup.exe   12     ncmpny,      {4EC79185}
[?] ntlanui2.dll   25     ncmpny,      {2930A5A9}
[?] ntsd.exe       12     ncmpny,      {92353A47}
[?] nusrmgr.cpl    25     ncmpny,      {9DCC3A47}
[?] odbcad32.exe   25     ncmpny,      {CB0BC712}
[?] perfmon.exe    25     ncmpny,      {CA257AD6}
[?] photowiz.dll   25     ncmpny,      {248411F4}
[?] plugin.ocx     12     ncmpny,      {45FF1542}
[?] powercfg.cpl   25     ncmpny,      {F990EF78}
[?] printui.dll    25     ncmpny,      {67DC9CFD}
[?] quartz.dll     25     ncmpny,      {7FC7D2C6}
[?] rasdlg.dll     25     ncmpny,      {5C632359}
[?] regedt32.exe   25     ncmpny,      {6667547B}
[?] remotepg.dll   25     ncmpny,      {76186940}
[?] runonce.exe    25     ncmpny,      {34CBDE73}
[?] scrobj.dll     12     ncmpny,      {D0B032C1}
[?] setupapi.dll   25     ncmpny,      {D6BE7705}
[?] shimgvw.dll    25     ncmpny,      {4316A9B1}
[?] shrpubw.exe    25     ncmpny,      {620048B5}
[?] shscrap.dll    25     ncmpny,      {D52996B5}
[?] sigverif.exe   25     ncmpny,      {0E816B2D}
[?] sndrec32.exe   12     ncmpny,      {8ADB1222}
[?] sndvol32.exe   25     ncmpny,      {8ABF2A50}
[?] srrstr.dll     12     ncmpny,      {B533E4A6}
[?] sti_ci.dll     25     ncmpny,      {B59CDC03}
[?] stobject.dll   25     ncmpny,      {F0FC5F8E}
[?] sxs.dll        12     ncmpny,      {22405348}
[?] syncui.dll     25     ncmpny,      {2EF945C9}
[?] sysdm.cpl      25     ncmpny,      {8D406E13}
[?] sysmon.ocx     12     ncmpny,      {DC36D70B}
[?] sysocmgr.exe   25     ncmpny,      {15302D86}
[?] taskmgr.exe    25     ncmpny,      {D69736A1}
[?] tcpmonui.dll   25     ncmpny,      {BDEFC171}
[?] telephon.cpl   25     ncmpny,      {9FE9DA83}
[?] themeui.dll    12     ncmpny,      {FB128207}
[?] timedate.cpl   25     ncmpny,      {6FDB709C}
[?] url.dll        25     ncmpny,      {60381055}
[?] verifier.exe   12     ncmpny,      {D34F1628}
[?] webcheck.dll   25     ncmpny,      {E9C31DA2}
[?] wiaacmgr.exe   25     ncmpny,      {C5977942}
[?] wiadefui.dll   25     ncmpny,      {F1692F9C}
[?] winntbbu.dll   25     ncmpny,      {A99B6F8C}
[?] write.exe      25     ncmpny,      {069E41A9}
[?] wscript.exe    25     ncmpny,      {011FC710}
[?] wscui.cpl      25     ncmpny,      {806D47AA}
[?] wsecedit.dll   12     ncmpny,      {6936F6C2}
[?] wuaucpl.cpl    25     ncmpny,      {175A0CA1}
[?] zipfldr.dll    25     ncmpny,      {AB743F0A}

\Drivers:
[?] athw.sys     7     no vrfy,      {B7EAB6B5}
[?] TPPWRIF.SYS  12    ncmpny,       {42D9EFBE}

Access violations - HKCU
================================================================


================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119506
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: kontrola logu

#2 Příspěvek od Rudy »

V logu nic nebezpečného není vidět. Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
dyndy1
Návštěvník
Návštěvník
Příspěvky: 2
Registrován: 09 bře 2011 16:22

Re: kontrola logu

#3 Příspěvek od dyndy1 »

ComboFix 11-03-09.01 - WarezBos 10.03.2011 0:24.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.894.251 [GMT 1:00]
Spuštěný z: c:\documents and settings\WarezBos\Dokumenty\Stažené soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\regedit.exe . . . je infikován!!
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-09 do 2011-03-09 )))))))))))))))))))))))))))))))
.
.
2011-03-09 20:34 . 2011-03-09 20:34 -------- d-----w- c:\windows\Sun
2011-03-09 15:04 . 2011-03-09 15:04 -------- d-----w- c:\program files\Ultimate Process Manager
2011-03-06 18:19 . 2007-11-06 23:19 655872 ----a-w- c:\windows\system32\msvcr90.dll
2011-03-06 18:19 . 2009-08-24 09:15 761152 ----a-w- c:\windows\system32\msvcr100.dll
2011-03-06 14:11 . 2011-02-23 14:54 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-03-06 14:11 . 2011-02-23 14:56 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-03-06 14:11 . 2011-02-23 14:55 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-03-06 14:11 . 2011-02-23 14:55 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-03-06 14:11 . 2011-02-23 14:56 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-03-06 14:11 . 2011-02-23 14:55 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-03-06 14:11 . 2011-02-23 14:55 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-03-06 14:11 . 2011-02-23 14:54 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-03-06 14:10 . 2011-02-23 15:04 40648 ----a-w- c:\windows\avastSS.scr
2011-03-06 14:10 . 2011-02-23 15:04 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-03-06 14:10 . 2011-03-06 14:10 -------- d-----w- c:\program files\AVAST Software
2011-03-06 14:10 . 2011-03-06 14:10 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-03-06 13:58 . 2011-03-06 13:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-02-26 10:33 . 2011-02-26 10:33 -------- d-----w- c:\program files\AVG
2011-02-26 10:33 . 2011-03-02 14:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\avg9
2011-02-13 21:12 . 2011-02-13 21:12 -------- d-----w- c:\documents and settings\WarezBos\Data aplikací\OpenOffice.org
2011-02-13 21:09 . 2011-02-13 21:09 -------- d-----w- c:\program files\OpenOffice.org 3
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
------- Sigcheck -------
.
[-] 2007-06-05 16:11 . 06E906CC21EA8364D9F9680E816B9ED4 . 817152 . . [2001.12.4414.258] . . c:\windows\system32\comres.dll
.
[-] 2007-06-05 . D5D29D130497E6A74E3FCD54778FA01B . 1183232 . . [6.00.2900.2180] . . c:\windows\explorer.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-12-21 395128]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TrackPointSrv"="tp4mon.exe" [2004-08-17 82432]
"LenovoAutoScrollUtility"="c:\program files\Lenovo\VIRTSCRL\virtscrl.exe" [2010-04-01 43960]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-29 61440]
"RoxioDragToDisc"="c:\program files\Lenovo\Drag-to-Disc\DrgToDsc.exe" [2007-03-13 1116920]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2010-11-05 517480]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-02-23 3451496]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^WarezBos^Nabídka Start^Programy^Po spuštění^OpenOffice.org 3.2.lnk]
path=c:\documents and settings\WarezBos\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.2.lnk
backup=c:\windows\pss\OpenOffice.org 3.2.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
2009-12-03 09:12 976320 ----a-w- c:\program files\Epson Software\Event Manager\EEventManager.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Program Files\\EpsonNet\\EpsonNet Setup\\tool10\\ENEasyApp.exe"=
"c:\\Program Files\\MATLAB\\R2008a\\bin\\win32\\MATLAB.exe"=
"c:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3845:TCP"= 3845:TCP:znexr
.
R0 DozeHDD;DozeHDD;c:\windows\system32\drivers\DOZEHDD.SYS [21.12.2010 22:49 24304]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [6.3.2011 15:11 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [6.3.2011 15:11 301528]
R1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\drivers\smiif32.sys [21.12.2010 19:03 13680]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6.3.2011 15:11 19544]
R2 DozeSvc;Lenovo Doze Mode Service;c:\program files\ThinkPad\Utilities\DOZESVC.EXE [21.12.2010 22:49 132456]
R2 Power Manager DBC Service;Power Manager DBC Service;c:\program files\ThinkPad\Utilities\PWMDBSVC.exe [21.12.2010 22:49 53248]
R2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\Lenovo\HOTKEY\tphkload.exe [21.12.2010 19:03 99328]
R2 TPHKSVC;On Screen Display;c:\program files\Lenovo\HOTKEY\TPHKSVC.exe [21.12.2010 19:03 64440]
R3 HSFHWATI;HSFHWATI;c:\windows\system32\drivers\HSFHWATI.sys [18.10.2005 15:52 235904]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\Lenovo\HOTKEY\micmute.exe [21.12.2010 19:03 45496]
S2 yauyyir;Windows Time;c:\windows\system32\svchost.exe -k netsvcs [17.8.2004 16:49 14336]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
yauyyir
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-09 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2010-12-21 00:29]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = hxxp://www.google.com/support/chrome/bin/reque ... s=5.1.2600
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\WarezBos\Data aplikací\Mozilla\Firefox\Profiles\y7xmb45s.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: avast! WebRep: wrc@avast.com - c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
MSConfigStartUp-Infium - c:\docume~1\WarezBos\LOCALS~1\Temp\Rar$EX15.437\QIP Infium JadrisPack\qip.exe
MSConfigStartUp-WinampAgent - c:\program files\Winamp\winampa.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-10 00:37
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\yauyyir]
"ServiceDll"="c:\windows\system32\jprsf.dll"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\cscui.dll
.
- - - - - - - > 'explorer.exe'(3152)
c:\windows\System32\cscui.dll
c:\windows\system32\MSCTF.dll
c:\windows\system32\NETSHELL.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\ibmpmsvc.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\EPSON\EBAPI\eEBSVC.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\LENOVO\HOTKEY\tposdsvc.exe
c:\program files\Lenovo\HOTKEY\TPONSCR.exe
c:\program files\Lenovo\Zoom\TpScrex.exe
c:\windows\System32\snmp.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\tp4mon.exe
c:\windows\system32\rundll32.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\rundll32.exe
.
**************************************************************************
.
Celkový čas: 2011-03-10 00:44:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-03-09 23:44
.
Před spuštěním: 2 452 086 784
Po spuštění: 2 365 493 248
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - F32EF1F23C2B4CA5C2975DA2DE512B8D
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119506
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: kontrola logu

#4 Příspěvek od Rudy »

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
Driver::
yauyyir

FCopy::
c:\windows\servicepackfiles\i386\regedit.exe | c:\windows\regedit.exe
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“