Prosím o kontrolu logu
Napsal: 11 říj 2010 08:20
Nejdou spouštět exe soubory, spyware se sám vypne, nejde otestovat avastem.
Windows XP SP 3 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v7.00.5730.13 (longhorn(wmbla).070711-1130)
Log vygenerován: 11.10.2010 9:16:44
================================================================
SmallARK
================================================================
[?]NtClose -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateSection -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtDeleteKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtDeleteValueKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtDuplicateObject -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtLoadDriver -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtOpenFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtOpenKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtOpenProcess -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtOpenThread -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtQueryValueKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtRestoreKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtSetInformationFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtSetValueKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtTerminateProcess -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtWriteFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
Běžící procesy
================================================================
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
C:\PROGRAM FILES\COMMON FILES\LIGHTSCRIBE\LSSRVC.EXE
C:\WINDOWS\SYSTEM32\SLSERV.EXE
C:\PROGRAM FILES\SPYWARE TERMINATOR\SP_RSSER.EXE
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
C:\PROGRAM FILES\VIA\RAID\RAID_TOOL.EXE
C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE
C:\PROGRAM FILES\CYBERLINK\POWERDVD\PDVDSERV.EXE
C:\PROGRAM FILES\HP\HP SOFTWARE UPDATE\HPWUSCHD2.EXE
C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE
C:\PROGRAM FILES\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE
C:\PROGRAM FILES\HP\DIGITAL IMAGING\BIN\HPQIMZONE.EXE
C:\WINDOWS\SYSTEM32\SLRUNDLL.EXE
C:\PROGRAM FILES\HP\DIGITAL IMAGING\BIN\HPQSTE08.EXE
Scanner
================================================================
[?] ati2evxx.exe
Non Microsoft v System32:
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] LSSrvc.exe
Nemá okno
Soubor 7%
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] slserv.exe
Bez výrobce v System32
Nemá okno
[?] sp_rsser.exe
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Nemá okno
Soubor 70%
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] ati2evxx.exe
Non Microsoft v System32:
[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]
[?] svchost.exe
Bez výrobce
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
Skrytá cesta EXE: \.\globalroot\Device\svchost.exe\svchost.exe
Nemá okno
[S] ehtray.exe
Spouští se po startu HKLM Run [ehTray]
[?] raid_tool.exe
Spouští se po startu HKLM Run [RaidTool]
Soubor 7%
[?] atiptaxx.exe
Spouští se po startu HKLM Run [ATIPTA]
Soubor 14%
[?] PDVDServ.exe
Spouští se po startu HKLM Run [RemoteControl]
Soubor 7%
[?] hpwuSchd2.exe
Spouští se po startu HKLM Run [HP Software Update]
Soubor 7%
[?] qttask.exe
Spouští se po startu HKLM Run [QuickTime Task]
Soubor 7%
[R] AdobeARM.exe
Spouští se po startu HKLM Run [Adobe ARM]
[R] realsched.exe
Spouští se po startu HKLM Run [TkBellExe]
[R] ashDisp.exe
Spouští se po startu HKLM Run [avast!]
[R] jusched.exe
Spouští se po startu HKLM Run [SunJavaUpdateSched]
[?] SpywareTerminatorShield.Exe
Spouští se po startu HKLM Run [SpywareTerminator]
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Soubor 70%
[S] ctfmon.exe
Spouští se po startu HKCU Run [CTFMON.EXE]
[R] GoogleToolbarNotifier.exe
Spouští se po startu HKCU Run [swg]
[R] hpqtra08.exe
Spouští se po startu Po spuštění []
[?] hpqimzone.exe
EntryPoint v sekci:
|_ Celkový počet sekcí: 3
Soubor 7%
[?] slrundll.exe
Non Microsoft v System32:
[?] hpqste08.exe
Soubor 7%
Po spuštění
================================================================
HKCU Run
|_ [?][NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe
|_ [?][Active Desktop Calendar] C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe
|_ [!][SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM Run
|_ [?][RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
|_ [?][ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
|_ [?][RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
|_ [?][HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
|_ [?][HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
|_ [?][QuickTime Task] C:\Program Files\QuickTime\qttask.exe -atboottime
|_ [R][TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot
|_ [!][SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [?][KB910393] C:\WINDOWS\INF\EasyCDBlock.inf ,PerUserInstall
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp.inf ,PerUserStub
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
HKLM Winlogon Notify
|_ [?][AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll
HKLM WSystem
|_ [X][System] kdbcj.exe (Soubor nenalezen)
Po spuštění
|_ C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
Job
|_ [?][APPLES~1.JOB] C:\Program Files\Apple Software Update\SoftwareUpdate.exe
HKLM BHO
|_ [!][{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
|_ [?][{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
HKCU IE WebBrowser Toolbar
|_ [!][{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
HKCU IE Toolbar
|_ [X][{1E796980-9CC5-11D1-A83F-00C04FC99D61}] (Soubor nenalezen)
HKLM IE Toolbar
|_ [!][{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] Ati HotKey Poller
|_ Cesta: C:\WINDOWS\system32\Ati2evxx.exe
| |_ Výrobce: ATI Technologies Inc.
| |_ Popis: ATI External Event Utility EXE Module
| |_ MD5: D6C058E35B19F2999966E85433AFD760
|
|_ Jméno: Ati HotKey Poller
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency:
[?] ATI Smart
|_ Cesta: C:\WINDOWS\system32\ati2sgag.exe
| |_ Výrobce:
| |_ Popis: ATI Smart
| |_ MD5: 451D52EB47EBD597DB35B9AE2DB9BD3D
|
|_ Jméno: ATI Smart
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ:
|_ Dependency:
[X] Služba Google Update (gupdate)
|_ Cesta: C:\Program Files\Google\Update\GoogleUpdate.exe /svc
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: gupdate
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS
[?] hpqcxs08
|_ Cesta: C:\WINDOWS\system32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
| |_ Výrobce: Hewlett-Packard Co.
| |_ Popis: HP CUE Context Manager Objects
| |_ MD5: 38D6B51F04DEF7FB248FA56E4C47407E
|
|_ Jméno: hpqcxs08
|_ StartName: LocalSystem
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Win32 Share Process
|_ Dependency: RPCSS
[?] Služba HP CUE DeviceDiscovery
|_ Cesta: C:\WINDOWS\system32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
| |_ Výrobce: Hewlett-Packard Co.
| |_ Popis: HP CUE DeviceDiscovery Service
| |_ MD5: 3EE4A63539EC04EE2D4BD293985087AB
|
|_ Jméno: hpqddsvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Share Process
|_ Dependency: RPCSS
[X] Java Quick Starter
|_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: JavaQuickStarterService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] LightScribeService Direct Disc Labeling Service
|_ Cesta: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
| |_ Výrobce: Hewlett-Packard Company
| |_ Popis:
| |_ MD5: 00944D59948596721D17510C94CD3E4F
|
|_ Jméno: LightScribeService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] Net Driver HPZ12
|_ Cesta: C:\WINDOWS\System32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\WINDOWS\system32\HPZinw12.dll
| |_ Výrobce: Hewlett-Packard
| |_ Popis: Dot4Net Module
| |_ MD5: 51C6D8BFBD4EA5B62A1BA7F4469250D3
|
|_ Jméno: Net Driver HPZ12
|_ StartName: NT AUTHORITY\LocalService
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] Pml Driver HPZ12
|_ Cesta: C:\WINDOWS\System32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\WINDOWS\system32\HPZipm12.dll
| |_ Výrobce: Hewlett-Packard
| |_ Popis: PmlDrv Module
| |_ MD5: 79834AA2FBF9FE81EEBB229024F6F7FC
|
|_ Jméno: Pml Driver HPZ12
|_ StartName: NT AUTHORITY\LocalService
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] SmartLinkService
|_ Cesta: C:\WINDOWS\system32\slserv.exe
| |_ Výrobce:
| |_ Popis: User-Level Modem Service
| |_ MD5: 01EB5FDD0D86A6B68F409B16A4F7B3C7
|
|_ Jméno: SLService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency:
[!] Spyware Terminator Realtime Shield Service
|_ Cesta: C:\Program Files\Spyware Terminator\sp_rsser.exe
| |_ Výrobce: Crawler.com
| |_ Popis: Spyware Terminator Realtime Shield Service
| |_ MD5: 4A4A857713740E1564F0B7623493AF06
|
|_ Jméno: sp_rssrv
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] ati2mtag
|_ Cesta: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
| |_ Výrobce: ATI Technologies Inc.
| |_ Popis: ATI Radeon WindowsNT Miniport Driver
| |_ MD5: 56C198EC46B4AD3153AA748C89178E86
|
|_ Jméno: ati2mtag
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] VIA Rhine Family Fast Ethernet Adapter Driver Service
|_ Cesta: C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
| |_ Výrobce: VIA Technologies, Inc.
| |_ Popis: NDIS 5.0 miniport driver
| |_ MD5: B7186B33B6CF3A23841015531E6E7D68
|
|_ Jméno: FETNDISB
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] IEEE-1284.4 Driver HPZid412
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZid412.sys
| |_ Výrobce: HP
| |_ Popis: IEEE-1284.4-1999 Driver (Windows 2000)
| |_ MD5: D03D10F7DED688FECF50F8FBF1EA9B8A
|
|_ Jméno: HPZid412
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Print Class Driver for IEEE-1284.4 HPZipr12
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
| |_ Výrobce: HP
| |_ Popis: IEEE-1284.4-1999 Print Class Driver
| |_ MD5: 89F41658929393487B6B7D13C8528CE3
|
|_ Jméno: HPZipr12
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] USB to IEEE-1284.4 Translation Driver HPZius12
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZius12.sys
| |_ Výrobce: HP
| |_ Popis: 1284.4<->Usb Datalink Driver (Windows 2000)
| |_ MD5: ABCB05CCDBF03000354B9553820E39F8
|
|_ Jméno: HPZius12
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Mtlmnt5
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys
| |_ Výrobce:
| |_ Popis: mtlmnt5 driver
| |_ MD5: F9F69B483E361C642F1C34E46D3745AC
|
|_ Jméno: Mtlmnt5
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Mtlstrm
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys
| |_ Výrobce:
| |_ Popis: Data pump driver
| |_ MD5: 84E49B7921647684799FC52CB16CB327
|
|_ Jméno: Mtlstrm
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] PxHelp20
|_ Cesta: C:\WINDOWS\System32\Drivers\PxHelp20.sys
| |_ Výrobce: Sonic Solutions
| |_ Popis: Px Engine Device Driver for Windows 2000/XP
| |_ MD5: 7C81AE3C9B82BA2DA437ED4D31BC56CF
|
|_ Jméno: PxHelp20
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] RecAgent
|_ Cesta: C:\WINDOWS\system32\DRIVERS\RecAgent.sys
| |_ Výrobce:
| |_ Popis: Recorder agent driver
| |_ MD5: 2705F7BEC84FEEFD51C22357FA6CA5D5
|
|_ Jméno: RecAgent
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SmartLink AMR_PCI Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\slntamr.sys
| |_ Výrobce:
| |_ Popis: slntamr driver
| |_ MD5: ED7FC33E7A1126C310B0B39AD76636BF
|
|_ Jméno: Slntamr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SlNtHal
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Slnthal.sys
| |_ Výrobce:
| |_ Popis: HAL driver
| |_ MD5: D1B06B6F0592D47C6D8EB56509894B36
|
|_ Jméno: SlNtHal
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SlWdmSup
|_ Cesta: C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys
| |_ Výrobce:
| |_ Popis: SlWdmSup driver
| |_ MD5: 5ED1A2510ACDED86C02965D98DEE264B
|
|_ Jméno: SlWdmSup
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Spyware Terminator Driver 2
|_ Cesta: C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
| |_ Výrobce: ?
| |_ Popis: ?
| |_ MD5: 8831252BCF05FCFB5ABD116A22E552D8
|
|_ Jméno: sp_rsdrv2
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] VIA AGP Filter
|_ Cesta: C:\WINDOWS\system32\DRIVERS\viaagp1.sys
| |_ Výrobce: VIA Technologies, Inc.
| |_ Popis: VIA NT AGP Filter
| |_ MD5: 4B039BBD037B01F5DB5A144C837F283A
|
|_ Jméno: viaagp1
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] viamraid
|_ Cesta: C:\WINDOWS\system32\DRIVERS\viamraid.sys
| |_ Výrobce: VIA Technologies inc,.ltd
| |_ Popis: VIA RAID DRIVER FOR WIN 2000/XP/2003IA32
| |_ MD5: 0363E216E4EB5052969C96608934DBDE
|
|_ Jméno: viamraid
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
-----------------------------------------------------------------------------------------
TCP (1000) svchost.exe 0.0.0.0:135 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (2376) alg.exe 127.0.0.1:1025 LISTENING
TCP (2552) firefox.exe 127.0.0.1:1047 <-> 127.0.0.1:1048 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1048 <-> 127.0.0.1:1047 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1054 <-> 127.0.0.1:1055 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1055 <-> 127.0.0.1:1054 ESTABLISHED
TCP (920) jqs.exe 127.0.0.1:5152 LISTENING
TCP (920) jqs.exe 127.0.0.1:5152 CLOSE_WAIT
TCP (4) Systém 192.168.1.33:139 LISTENING
TCP (2248) UPM.exe 192.168.1.33:1254 <-> 199.7.48.190:80 ESTABLISHED
TCP (2248) UPM.exe 192.168.1.33:1255 <-> 199.7.51.190:80 ESTABLISHED
TCP (2248) UPM.exe 192.168.1.33:1256 <-> 199.7.51.190:80 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 <-> 199.7.52.190:80 ESTABLISHED
UDP (728) lsass.exe 0.0.0.0:500
UDP (332) mcrdsvc.exe 0.0.0.0:3776
UDP (728) lsass.exe 0.0.0.0:4500
UDP (1096) svchost.exe 127.0.0.1:123
UDP (196) svchost.exe 127.0.0.1:1900
UDP (1096) svchost.exe 192.168.1.33:123
UDP (4) Systém 192.168.1.33:137
UDP (4) Systém 192.168.1.33:138
UDP (196) svchost.exe 192.168.1.33:1900
Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] aswcmnos.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll
|_ MD5: 6D6416FA182FA865D265DFFA5A03C3C2
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswcmnb.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnB.dll
|_ MD5: F8DF17A0090F29EE330B34145152F38A
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswcmns.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnS.dll
|_ MD5: 7D79CD441ED208D062B326145C7B3AED
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswscan.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswScan.dll
|_ MD5: 9FB2179200238536B788CB4046C61C24
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aswengin.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswEngin.dll
|_ MD5: 144137D2E91504F551E82135673D89AE
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aswinteg.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswInteg.dll
|_ MD5: D933B267939363888A40F86017561552
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ashbase.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashBase.dll
|_ MD5: E8B0EDD5C8518D9A1F73AC0C54A94D7C
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswaux.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswAux.dll
|_ MD5: 8EA778943B7E155991AE9E3C818269AB
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ashtask.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashTask.dll
|_ MD5: 0B9DBFE71F4EB4355985EE60E6A1DC3F
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ashssqlt.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll
|_ MD5: B26CF29C64FDF7876D0E81C27C80F7BF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aavm4h.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\Aavm4h.dll
|_ MD5: 6CA1292225B47A5421E941B3CFEF48AF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aavmrpch.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AavmRpch.dll
|_ MD5: F3EAC60879AE425D81DBA70C3DA76D13
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ahresstd.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResStd.dll
|_ MD5: 816CAE36B3D430622EB4D40CF9CC1E82
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresout.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResOut.dll
|_ MD5: D3DE25C3CA9BCE6805E028C5DD304304
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresmai.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResMai.dll
|_ MD5: 60DA054E9DDFC242346B879EAAF1EBCE
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresmes.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahResMes.dll
|_ MD5: A7469E3BE8770E7015CA499BA6729568
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresp2p.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahResP2P.dll
|_ MD5: 6E5E0EE9C837229C26C3B53B2036E44D
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresns.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResNS.dll
|_ MD5: B3840EB1F44C28CA25D304FD1DA86954
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresws.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResWS.dll
|_ MD5: 0C923A24FB7E7D6B4D210537F36E5296
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] hptcpmui.dll
|_ Cesta: C:\WINDOWS\system32\HPTcpMUI.dll
|_ MD5: 5CC3838902A9257B79BD43F56D8B7275
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ spoolsv.exe (1836)
[?] mdimon.dll
|_ Cesta: C:\WINDOWS\system32\mdimon.dll
|_ MD5: CF0376023360AADD55C89BA50564AFDC
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ spoolsv.exe (1836)
[?] hpqddsvc.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
|_ MD5: 3EE4A63539EC04EE2D4BD293985087AB
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpocxi08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll
|_ MD5: 0642843485D687CB2BA37F007ECC92E4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpqcob08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
|_ MD5: 6D15B5F97EB3332D4BBE19B6FFD512F2
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqcxs08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
|_ MD5: 38D6B51F04DEF7FB248FA56E4C47407E
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpqddcmn.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
|_ MD5: 5B973EA48E154C83ADF42D0A0F57BB29
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
|_ hpqtra08.exe (476)
[?] hpzidr12.dll
|_ Cesta: C:\WINDOWS\system32\HPZidr12.dll
|_ MD5: 26AE2CA34FA4342749EC1157CB1FE954
|_ Výrobce: Hewlett-Packard
|_ Procesy
|_ svchost.exe (1924)
|_ hpqtra08.exe (476)
[?] drvinterface.dll
|_ Cesta: C:\Program Files\VIA\RAID\drvInterface.dll
|_ MD5: B2B3847C6A02F85E911559134758EEFD
|_ Výrobce: Copyright (C) 2004
|_ Procesy
|_ raid_tool.exe (3476)
[?] atipdxxx.dll
|_ Cesta: C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll
|_ MD5: 7F294407A7F58CE1BCEB1D1B033075E8
|_ Výrobce: ATI Technologies, Inc.
|_ Procesy
|_ atiptaxx.exe (3492)
[?] atipdsxx.dll
|_ Cesta: C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll
|_ MD5: 16FBB7ED1E13106AEB942441C09C008D
|_ Výrobce: ATI Technologies, Inc.
|_ Procesy
|_ atiptaxx.exe (3492)
[?] clrcengine2.dll
|_ Cesta: C:\Program Files\CyberLink\PowerDVD\CLRCEngine2.dll
|_ MD5: 535203DEA5820F3B5F3FAACE0D51252C
|_ Výrobce: CyberLink Corp.
|_ Procesy
|_ PDVDServ.exe (3500)
[?] ashuint.dll
|_ Cesta: C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
|_ MD5: FCE48F51523E38C5E74969766B353D73
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] xt1922.dll
|_ Cesta: C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
|_ MD5: 6C08604B5465DE19EAAC58C6A537D0BF
|_ Výrobce: Codejock Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruistd.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiStd.dll
|_ MD5: CB39A7024BE54E75E3B696272FDC0987
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruiout.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiOut.dll
|_ MD5: 9625471205DFC433FB73E231FC9CBB01
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruimai.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiMai.dll
|_ MD5: 02BD0FEACAA1A65F77806A3C3DEBD046
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruimes.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahRuiMes.dll
|_ MD5: 27BB54223D4AAEBBEB0E65DF776CF6C2
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruip2p.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahRuiP2P.dll
|_ MD5: E5C7E4C34E43BFD68DE1CF2034FE9AF8
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruins.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiNS.dll
|_ MD5: 99C120153031FBD057D4FA0499FFF755
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruiws.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiWS.dll
|_ MD5: 8F933065A585EAFD798DD5E49598CDCB
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] lang.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\CZECH\Lang.dll
|_ MD5: 71994A422B986B54142295E08C19F2AF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] hpqrif08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll
|_ MD5: A6E02F65BE0C48DE7101923AE70268BD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqmif08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll
|_ MD5: D0716BD0C0822A642D36E82F49F2B5B8
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpodio08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
|_ MD5: 8861AB06F667429B94DBFE97550F82D5
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqddusr.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll
|_ MD5: 1AE183708EC0CA7E8CECF98B9785D57C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqcxm08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll
|_ MD5: 9C3D089659383A5552CCA03F84FE4257
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqimzone.exe (2568)
[?] hpzipr12.dll
|_ Cesta: C:\WINDOWS\system32\HPZipr12.dll
|_ MD5: AF880166DAC5880219F748ED83902CB2
|_ Výrobce: Hewlett-Packard
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqusg.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqusg.dll
|_ MD5: 5B6748DFA56A0BE54C45B989378293E1
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotradd.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll
|_ MD5: 7DAFE566BB13C16439CBAADB43582128
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpquio08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
|_ MD5: 9507A8E70A620A36CF2CF60740B8F022
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqtra08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
|_ MD5: FD3DCCF83F459439998C8C63DAF36A11
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqtao08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
|_ MD5: 021CFC69A1874431DC88BEFC37A2A2FD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotra08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll
|_ MD5: 23D3BFA480C5DA9256DD9A97185678C4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotra08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc
|_ MD5: 6618423130584280AED437E57296114E
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpodvd09.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll
|_ MD5: A490EDE46A746E14AE6876021B6D4269
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpoddcomm09.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll
|_ MD5: 6BDA568A2AED0F84C717B5649F70C91C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] fusion.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll
|_ MD5: 7C87A5FB95777E4132B11FC3D92CAAF5
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqcc2.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll
|_ MD5: BB2BE4BA77C0C84D1A3F135D418B4659
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqutils.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll
|_ MD5: 17DA38CB41189C545E84C4682F25A0F3
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqfmrsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll
|_ MD5: B22BA6939F9230CDD87EAD85F3ECD1D9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqtray.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll
|_ MD5: 80A137E5FB9E9CC95C1DCC9300905343
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqovskn.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll
|_ MD5: 33DFCA90B4BE8C62B20CE0BEEE4CAC1D
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimvlt.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll
|_ MD5: BC33C1A2E9107E290A4B4F12894E25BD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimgrc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll
|_ MD5: 350750024696FD6496DDA08EBE5A1EA4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqntrop.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll
|_ MD5: 5BDB40C486291CA8AF13A08232BAA177
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqcxm08.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\Interop.hpqcxm08.dll
|_ MD5: 659272675EABDCCFDA85CF5892ED244B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD\13.0.0.113__9cf889f53ea9b907\LEAD.dll
|_ MD5: 648FE0D27734BB73EF04BC6789B20935
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.wrapper.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Wrapper\13.0.0.113__9cf889f53ea9b907\LEAD.Wrapper.dll
|_ MD5: 335270904FED5F3629FE0D2FCAB7BD4F
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.windows.forms.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.dll
|_ MD5: 4BBF2F7E4F0F21FDCF30F540E7331BD7
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.drawing.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Drawing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.dll
|_ MD5: B8549829AABD31329CB20367F05630EA
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqimgr.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\interop.hpqimgr\3.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll
|_ MD5: 5D9E5C12AFA844EFCC6763A29BA8A76C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimgr.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqimgr.dll
|_ MD5: F11CEBCEE8EBD44650500E790F5BEDE9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqasset.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll
|_ MD5: 6348FE0BB6230406E4401E94C3A660D8
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqmirsc.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqmirsc.dll
|_ MD5: 11DDA07E408DCDE39D4BE4FD5FFEF6D0
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqedit.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll
|_ MD5: 32DDD519C87B37C8520D3B48C1A13F96
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqvideo.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll
|_ MD5: AA50961D0889B2085C3A54B0A024643B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.windows.forms.drawingcontainer.dll
|_ Cesta: c:\windows\assembly\gac\lead.windows.forms.drawingcontainer\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.drawingcontainer.dll
|_ MD5: D086D14AE3E163DD38230CBC804C6747
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqmdmr.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll
|_ MD5: 8F8A3958A3AD696172C8D19827319E7D
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.drawing.imaging.imageprocessing.dll
|_ Cesta: c:\windows\assembly\gac\lead.drawing.imaging.imageprocessing\13.0.0.113__9cf889f53ea9b907\lead.drawing.imaging.imageprocessing.dll
|_ MD5: F5A621C69B659258E5164306A15C9CAA
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimlib.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll
|_ MD5: 268D22AD922CF3DC49962CD977B73A45
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqglutl.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll
|_ MD5: 603B55EA0E2A583D42133615C451BC5B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqvideo.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hpqvideo\3.0.0.0__a53cf5803f4c3827\Interop.hpqvideo.dll
|_ MD5: 67588302DFD1C8519311501DB3582623
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqvdcom.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll
|_ MD5: 175E8A8B8705FD9D8EC3F582930B07A9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqprrsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll
|_ MD5: 66D547A0C6D70C23BD39AA6B1868A8E4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] system.resources.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.resources\1.0.5000.0_cs_b77a5c561934e089\System.resources.dll
|_ MD5: AF8BB295854B19605349E5B7EF2F0457
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hprblog.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hprblog\3.0.0.0__a53cf5803f4c3827\Interop.hprblog.dll
|_ MD5: F89BDD4110A8F493AB2E4637F52EB1F4
|_ Výrobce:
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqcprsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll
|_ MD5: A7B5156E9D435BBDE7F080556BF547B1
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqisrtb.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqisrtb\4.0.0.0__a53cf5803f4c3827\hpqisrtb.dll
|_ MD5: 4EB6946C795B0BEF7A5CF0151347E379
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqbakup.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqbakup\3.0.0.0__a53cf5803f4c3827\hpqbakup.dll
|_ MD5: F59D6CC822F6892635B8D6D2CCDE9998
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqthumb.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll
|_ MD5: 1924C6FB611923DA4BEEC3DE6D5DC1EB
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqiface.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll
|_ MD5: A0DCB32156BDF2EB4AF72EE38141E7B7
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] ltkrn13n.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll
|_ MD5: E2CD12A09AAB75B19123E4AB807B2D25
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscoree.dll
|_ Cesta: C:\WINDOWS\system32\mscoree.dll
|_ MD5: B5B67EE09B52D7129B8041B9BD411F7B
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorwks.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
|_ MD5: BA79B29E74194882F3530FB2C4CF0903
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorjit.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
|_ MD5: 17E4D4ED3C4CF86C144195BDCB39141A
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorsn.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
|_ MD5: AB782AEB258225399B6DA1F1F33D4944
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorlib.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
|_ MD5: 7C2E09AD420E050FDBDF83445C708287
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] accessibility.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll
|_ MD5: A1B44C0A1AD71F86579A4521D5B1C024
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] system.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
|_ MD5: 0E207D5060F29D7860F88DE86DD0F7E1
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.drawing.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
|_ MD5: BCF15390DE7368639C593735BF938D7A
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.windows.forms.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
|_ MD5: 2814E9BDB75088C0B4CF6C1123F6EC8E
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.xml.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
|_ MD5: A5205B3AF85B1477AB2C2A1E12201598
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] sllights.dll
|_ Cesta: C:\WINDOWS\system32\SLLights.dll
|_ MD5: 474C5A52580D8054200C9C8ECA6485C3
|_ Výrobce: Copyright © 1999-2001
|_ Procesy
|_ slrundll.exe (2872)
[?] slmohserv.dll
|_ Cesta: C:\WINDOWS\system32\SLMOHServ.dll
|_ MD5: E57AFF42C8FD0C6FD91CECC2E1FBD876
|_ Výrobce: Copyright (C) 2002
|_ Procesy
|_ slrundll.exe (2872)
[?] hpqstp08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqstp08.rsc
|_ MD5: AFDFF5932C824757FA0BE668BE455D82
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqsem08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc
|_ MD5: 45C640EA5AF1DE59DB350962B31DC1D9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqwso08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqwso08.dll
|_ MD5: 1D0A76276AD7A836F29F447968C61CE6
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqsti08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll
|_ MD5: 0A0A339D07FF5E9989EEF1E1D476CD29
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqstp08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqstp08.dll
|_ MD5: 7C4DCFF108869D7915D39B9371BE5FFE
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] softokn3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\softokn3.dll
|_ MD5: 77CA7D5FE15C3C68233017C6FBE87DA0
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] nssdbm3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\nssdbm3.dll
|_ MD5: 46C963A1468FCDC8729555DACC83CF91
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] freebl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\freebl3.dll
|_ MD5: 324A9275A3BA33CF77A2D8D0C67F10CF
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] rpmainbrowserrecordplugin.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\rpmainbrowserrecordplugin.dll
|_ MD5: 50F9124CB00860A39934283222E39990
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] nprpffbrowserrecordext.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
|_ MD5: 9005A51C551ED70F8BD0C02054B2BD58
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] rpnpshimswf.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\thinshims\rpnpshimswf.dll
|_ MD5: 89B0D5DB4CAFC9ACC09A4863DD918158
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] deploy.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\deploy.dll
|_ MD5: 173E44647D626FC9ECAFB75801C1A6FF
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] hpi.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\hpi.dll
|_ MD5: 444B4C6BB5A208E5F3BA8583242BE715
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] java.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\java.dll
|_ MD5: 83C5B76956238620E666CEC09BF575D8
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] jp2native.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\jp2native.dll
|_ MD5: BC36C491BB79A50BAF6B6122DCDD5CAE
|_ Výrobce: ?
|_ Procesy
|_ firefox.exe (2552)
[?] net.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\net.dll
|_ MD5: D06BE260B64E46EDFA902ACDAA894CC9
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] nio.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\nio.dll
|_ MD5: D8463540466EF1C429F7C6561C11A9A4
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] regutils.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\regutils.dll
|_ MD5: 463A6F355F129C9217F564C935D46C1F
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] verify.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\verify.dll
|_ MD5: 0DF848825A95A7143DCBAAF59426D204
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] zip.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\zip.dll
|_ MD5: 4BD8D51FE0B91216864DF8CFFA4CF9FB
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] jvm.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\client\jvm.dll
|_ MD5: 9019AEBD2F7212170F739E162D09471B
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] npjp2.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
|_ MD5: 4815D67494A5BB76D7E003B3541DD54A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]
Windows XP SP 3 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v7.00.5730.13 (longhorn(wmbla).070711-1130)
Log vygenerován: 11.10.2010 9:16:44
================================================================
SmallARK
================================================================
[?]NtClose -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtCreateSection -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtDeleteKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtDeleteValueKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtDuplicateObject -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtLoadDriver -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtOpenFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[R]NtOpenKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtOpenProcess -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtOpenThread -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtQueryValueKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[R]NtRestoreKey -> C:\WINDOWS\system32\drivers\aswSP.SYS
[?]NtSetInformationFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtSetValueKey -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtTerminateProcess -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
[?]NtWriteFile -> C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
Běžící procesy
================================================================
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
C:\PROGRAM FILES\COMMON FILES\LIGHTSCRIBE\LSSRVC.EXE
C:\WINDOWS\SYSTEM32\SLSERV.EXE
C:\PROGRAM FILES\SPYWARE TERMINATOR\SP_RSSER.EXE
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
C:\PROGRAM FILES\VIA\RAID\RAID_TOOL.EXE
C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE
C:\PROGRAM FILES\CYBERLINK\POWERDVD\PDVDSERV.EXE
C:\PROGRAM FILES\HP\HP SOFTWARE UPDATE\HPWUSCHD2.EXE
C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE
C:\PROGRAM FILES\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE
C:\PROGRAM FILES\HP\DIGITAL IMAGING\BIN\HPQIMZONE.EXE
C:\WINDOWS\SYSTEM32\SLRUNDLL.EXE
C:\PROGRAM FILES\HP\DIGITAL IMAGING\BIN\HPQSTE08.EXE
Scanner
================================================================
[?] ati2evxx.exe
Non Microsoft v System32:
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] LSSrvc.exe
Nemá okno
Soubor 7%
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] slserv.exe
Bez výrobce v System32
Nemá okno
[?] sp_rsser.exe
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Nemá okno
Soubor 70%
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[S] svchost.exe
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
[?] ati2evxx.exe
Non Microsoft v System32:
[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]
[?] svchost.exe
Bez výrobce
Shodná jména, jiná cesta: SVCHOST.EXE X SVCHOST.EXE
Skrytá cesta EXE: \.\globalroot\Device\svchost.exe\svchost.exe
Nemá okno
[S] ehtray.exe
Spouští se po startu HKLM Run [ehTray]
[?] raid_tool.exe
Spouští se po startu HKLM Run [RaidTool]
Soubor 7%
[?] atiptaxx.exe
Spouští se po startu HKLM Run [ATIPTA]
Soubor 14%
[?] PDVDServ.exe
Spouští se po startu HKLM Run [RemoteControl]
Soubor 7%
[?] hpwuSchd2.exe
Spouští se po startu HKLM Run [HP Software Update]
Soubor 7%
[?] qttask.exe
Spouští se po startu HKLM Run [QuickTime Task]
Soubor 7%
[R] AdobeARM.exe
Spouští se po startu HKLM Run [Adobe ARM]
[R] realsched.exe
Spouští se po startu HKLM Run [TkBellExe]
[R] ashDisp.exe
Spouští se po startu HKLM Run [avast!]
[R] jusched.exe
Spouští se po startu HKLM Run [SunJavaUpdateSched]
[?] SpywareTerminatorShield.Exe
Spouští se po startu HKLM Run [SpywareTerminator]
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Soubor 70%
[S] ctfmon.exe
Spouští se po startu HKCU Run [CTFMON.EXE]
[R] GoogleToolbarNotifier.exe
Spouští se po startu HKCU Run [swg]
[R] hpqtra08.exe
Spouští se po startu Po spuštění []
[?] hpqimzone.exe
EntryPoint v sekci:
|_ Celkový počet sekcí: 3
Soubor 7%
[?] slrundll.exe
Non Microsoft v System32:
[?] hpqste08.exe
Soubor 7%
Po spuštění
================================================================
HKCU Run
|_ [?][NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe
|_ [?][Active Desktop Calendar] C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe
|_ [!][SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM Run
|_ [?][RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
|_ [?][ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
|_ [?][RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
|_ [?][HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
|_ [?][HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
|_ [?][QuickTime Task] C:\Program Files\QuickTime\qttask.exe -atboottime
|_ [R][TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot
|_ [!][SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [?][KB910393] C:\WINDOWS\INF\EasyCDBlock.inf ,PerUserInstall
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp.inf ,PerUserStub
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
HKLM Winlogon Notify
|_ [?][AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll
HKLM WSystem
|_ [X][System] kdbcj.exe (Soubor nenalezen)
Po spuštění
|_ C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
Job
|_ [?][APPLES~1.JOB] C:\Program Files\Apple Software Update\SoftwareUpdate.exe
HKLM BHO
|_ [!][{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
|_ [?][{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
HKCU IE WebBrowser Toolbar
|_ [!][{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
HKCU IE Toolbar
|_ [X][{1E796980-9CC5-11D1-A83F-00C04FC99D61}] (Soubor nenalezen)
HKLM IE Toolbar
|_ [!][{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] Ati HotKey Poller
|_ Cesta: C:\WINDOWS\system32\Ati2evxx.exe
| |_ Výrobce: ATI Technologies Inc.
| |_ Popis: ATI External Event Utility EXE Module
| |_ MD5: D6C058E35B19F2999966E85433AFD760
|
|_ Jméno: Ati HotKey Poller
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency:
[?] ATI Smart
|_ Cesta: C:\WINDOWS\system32\ati2sgag.exe
| |_ Výrobce:
| |_ Popis: ATI Smart
| |_ MD5: 451D52EB47EBD597DB35B9AE2DB9BD3D
|
|_ Jméno: ATI Smart
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ:
|_ Dependency:
[X] Služba Google Update (gupdate)
|_ Cesta: C:\Program Files\Google\Update\GoogleUpdate.exe /svc
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: gupdate
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS
[?] hpqcxs08
|_ Cesta: C:\WINDOWS\system32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
| |_ Výrobce: Hewlett-Packard Co.
| |_ Popis: HP CUE Context Manager Objects
| |_ MD5: 38D6B51F04DEF7FB248FA56E4C47407E
|
|_ Jméno: hpqcxs08
|_ StartName: LocalSystem
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Win32 Share Process
|_ Dependency: RPCSS
[?] Služba HP CUE DeviceDiscovery
|_ Cesta: C:\WINDOWS\system32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
| |_ Výrobce: Hewlett-Packard Co.
| |_ Popis: HP CUE DeviceDiscovery Service
| |_ MD5: 3EE4A63539EC04EE2D4BD293985087AB
|
|_ Jméno: hpqddsvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Share Process
|_ Dependency: RPCSS
[X] Java Quick Starter
|_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: JavaQuickStarterService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] LightScribeService Direct Disc Labeling Service
|_ Cesta: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
| |_ Výrobce: Hewlett-Packard Company
| |_ Popis:
| |_ MD5: 00944D59948596721D17510C94CD3E4F
|
|_ Jméno: LightScribeService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] Net Driver HPZ12
|_ Cesta: C:\WINDOWS\System32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\WINDOWS\system32\HPZinw12.dll
| |_ Výrobce: Hewlett-Packard
| |_ Popis: Dot4Net Module
| |_ MD5: 51C6D8BFBD4EA5B62A1BA7F4469250D3
|
|_ Jméno: Net Driver HPZ12
|_ StartName: NT AUTHORITY\LocalService
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] Pml Driver HPZ12
|_ Cesta: C:\WINDOWS\System32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: 27C6D03BCDB8CFEB96B716F3D8BE3E18
|
|_ ServiceDLL: C:\WINDOWS\system32\HPZipm12.dll
| |_ Výrobce: Hewlett-Packard
| |_ Popis: PmlDrv Module
| |_ MD5: 79834AA2FBF9FE81EEBB229024F6F7FC
|
|_ Jméno: Pml Driver HPZ12
|_ StartName: NT AUTHORITY\LocalService
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
[?] SmartLinkService
|_ Cesta: C:\WINDOWS\system32\slserv.exe
| |_ Výrobce:
| |_ Popis: User-Level Modem Service
| |_ MD5: 01EB5FDD0D86A6B68F409B16A4F7B3C7
|
|_ Jméno: SLService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency:
[!] Spyware Terminator Realtime Shield Service
|_ Cesta: C:\Program Files\Spyware Terminator\sp_rsser.exe
| |_ Výrobce: Crawler.com
| |_ Popis: Spyware Terminator Realtime Shield Service
| |_ MD5: 4A4A857713740E1564F0B7623493AF06
|
|_ Jméno: sp_rssrv
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:
Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] ati2mtag
|_ Cesta: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
| |_ Výrobce: ATI Technologies Inc.
| |_ Popis: ATI Radeon WindowsNT Miniport Driver
| |_ MD5: 56C198EC46B4AD3153AA748C89178E86
|
|_ Jméno: ati2mtag
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] VIA Rhine Family Fast Ethernet Adapter Driver Service
|_ Cesta: C:\WINDOWS\system32\DRIVERS\fetnd5b.sys
| |_ Výrobce: VIA Technologies, Inc.
| |_ Popis: NDIS 5.0 miniport driver
| |_ MD5: B7186B33B6CF3A23841015531E6E7D68
|
|_ Jméno: FETNDISB
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] IEEE-1284.4 Driver HPZid412
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZid412.sys
| |_ Výrobce: HP
| |_ Popis: IEEE-1284.4-1999 Driver (Windows 2000)
| |_ MD5: D03D10F7DED688FECF50F8FBF1EA9B8A
|
|_ Jméno: HPZid412
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Print Class Driver for IEEE-1284.4 HPZipr12
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
| |_ Výrobce: HP
| |_ Popis: IEEE-1284.4-1999 Print Class Driver
| |_ MD5: 89F41658929393487B6B7D13C8528CE3
|
|_ Jméno: HPZipr12
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] USB to IEEE-1284.4 Translation Driver HPZius12
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HPZius12.sys
| |_ Výrobce: HP
| |_ Popis: 1284.4<->Usb Datalink Driver (Windows 2000)
| |_ MD5: ABCB05CCDBF03000354B9553820E39F8
|
|_ Jméno: HPZius12
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Mtlmnt5
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys
| |_ Výrobce:
| |_ Popis: mtlmnt5 driver
| |_ MD5: F9F69B483E361C642F1C34E46D3745AC
|
|_ Jméno: Mtlmnt5
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Mtlstrm
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys
| |_ Výrobce:
| |_ Popis: Data pump driver
| |_ MD5: 84E49B7921647684799FC52CB16CB327
|
|_ Jméno: Mtlstrm
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] PxHelp20
|_ Cesta: C:\WINDOWS\System32\Drivers\PxHelp20.sys
| |_ Výrobce: Sonic Solutions
| |_ Popis: Px Engine Device Driver for Windows 2000/XP
| |_ MD5: 7C81AE3C9B82BA2DA437ED4D31BC56CF
|
|_ Jméno: PxHelp20
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] RecAgent
|_ Cesta: C:\WINDOWS\system32\DRIVERS\RecAgent.sys
| |_ Výrobce:
| |_ Popis: Recorder agent driver
| |_ MD5: 2705F7BEC84FEEFD51C22357FA6CA5D5
|
|_ Jméno: RecAgent
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SmartLink AMR_PCI Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\slntamr.sys
| |_ Výrobce:
| |_ Popis: slntamr driver
| |_ MD5: ED7FC33E7A1126C310B0B39AD76636BF
|
|_ Jméno: Slntamr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SlNtHal
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Slnthal.sys
| |_ Výrobce:
| |_ Popis: HAL driver
| |_ MD5: D1B06B6F0592D47C6D8EB56509894B36
|
|_ Jméno: SlNtHal
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] SlWdmSup
|_ Cesta: C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys
| |_ Výrobce:
| |_ Popis: SlWdmSup driver
| |_ MD5: 5ED1A2510ACDED86C02965D98DEE264B
|
|_ Jméno: SlWdmSup
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] Spyware Terminator Driver 2
|_ Cesta: C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
| |_ Výrobce: ?
| |_ Popis: ?
| |_ MD5: 8831252BCF05FCFB5ABD116A22E552D8
|
|_ Jméno: sp_rsdrv2
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] VIA AGP Filter
|_ Cesta: C:\WINDOWS\system32\DRIVERS\viaagp1.sys
| |_ Výrobce: VIA Technologies, Inc.
| |_ Popis: VIA NT AGP Filter
| |_ MD5: 4B039BBD037B01F5DB5A144C837F283A
|
|_ Jméno: viaagp1
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
[?] viamraid
|_ Cesta: C:\WINDOWS\system32\DRIVERS\viamraid.sys
| |_ Výrobce: VIA Technologies inc,.ltd
| |_ Popis: VIA RAID DRIVER FOR WIN 2000/XP/2003IA32
| |_ MD5: 0363E216E4EB5052969C96608934DBDE
|
|_ Jméno: viamraid
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:
lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
-----------------------------------------------------------------------------------------
TCP (1000) svchost.exe 0.0.0.0:135 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (2376) alg.exe 127.0.0.1:1025 LISTENING
TCP (2552) firefox.exe 127.0.0.1:1047 <-> 127.0.0.1:1048 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1048 <-> 127.0.0.1:1047 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1054 <-> 127.0.0.1:1055 ESTABLISHED
TCP (2552) firefox.exe 127.0.0.1:1055 <-> 127.0.0.1:1054 ESTABLISHED
TCP (920) jqs.exe 127.0.0.1:5152 LISTENING
TCP (920) jqs.exe 127.0.0.1:5152 CLOSE_WAIT
TCP (4) Systém 192.168.1.33:139 LISTENING
TCP (2248) UPM.exe 192.168.1.33:1254 <-> 199.7.48.190:80 ESTABLISHED
TCP (2248) UPM.exe 192.168.1.33:1255 <-> 199.7.51.190:80 ESTABLISHED
TCP (2248) UPM.exe 192.168.1.33:1256 <-> 199.7.51.190:80 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 <-> 199.7.52.190:80 ESTABLISHED
UDP (728) lsass.exe 0.0.0.0:500
UDP (332) mcrdsvc.exe 0.0.0.0:3776
UDP (728) lsass.exe 0.0.0.0:4500
UDP (1096) svchost.exe 127.0.0.1:123
UDP (196) svchost.exe 127.0.0.1:1900
UDP (1096) svchost.exe 192.168.1.33:123
UDP (4) Systém 192.168.1.33:137
UDP (4) Systém 192.168.1.33:138
UDP (196) svchost.exe 192.168.1.33:1900
Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] aswcmnos.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll
|_ MD5: 6D6416FA182FA865D265DFFA5A03C3C2
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswcmnb.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnB.dll
|_ MD5: F8DF17A0090F29EE330B34145152F38A
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswcmns.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswCmnS.dll
|_ MD5: 7D79CD441ED208D062B326145C7B3AED
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1508)
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswscan.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswScan.dll
|_ MD5: 9FB2179200238536B788CB4046C61C24
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aswengin.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswEngin.dll
|_ MD5: 144137D2E91504F551E82135673D89AE
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aswinteg.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswInteg.dll
|_ MD5: D933B267939363888A40F86017561552
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ashbase.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashBase.dll
|_ MD5: E8B0EDD5C8518D9A1F73AC0C54A94D7C
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aswaux.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\aswAux.dll
|_ MD5: 8EA778943B7E155991AE9E3C818269AB
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ashtask.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashTask.dll
|_ MD5: 0B9DBFE71F4EB4355985EE60E6A1DC3F
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ashssqlt.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll
|_ MD5: B26CF29C64FDF7876D0E81C27C80F7BF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] aavm4h.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\Aavm4h.dll
|_ MD5: 6CA1292225B47A5421E941B3CFEF48AF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] aavmrpch.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AavmRpch.dll
|_ MD5: F3EAC60879AE425D81DBA70C3DA76D13
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
|_ ashDisp.exe (3612)
[?] ahresstd.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResStd.dll
|_ MD5: 816CAE36B3D430622EB4D40CF9CC1E82
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresout.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResOut.dll
|_ MD5: D3DE25C3CA9BCE6805E028C5DD304304
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresmai.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResMai.dll
|_ MD5: 60DA054E9DDFC242346B879EAAF1EBCE
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresmes.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahResMes.dll
|_ MD5: A7469E3BE8770E7015CA499BA6729568
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresp2p.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahResP2P.dll
|_ MD5: 6E5E0EE9C837229C26C3B53B2036E44D
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresns.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResNS.dll
|_ MD5: B3840EB1F44C28CA25D304FD1DA86954
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] ahresws.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhResWS.dll
|_ MD5: 0C923A24FB7E7D6B4D210537F36E5296
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashServ.exe (1564)
[?] hptcpmui.dll
|_ Cesta: C:\WINDOWS\system32\HPTcpMUI.dll
|_ MD5: 5CC3838902A9257B79BD43F56D8B7275
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ spoolsv.exe (1836)
[?] mdimon.dll
|_ Cesta: C:\WINDOWS\system32\mdimon.dll
|_ MD5: CF0376023360AADD55C89BA50564AFDC
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ spoolsv.exe (1836)
[?] hpqddsvc.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
|_ MD5: 3EE4A63539EC04EE2D4BD293985087AB
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpocxi08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll
|_ MD5: 0642843485D687CB2BA37F007ECC92E4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpqcob08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
|_ MD5: 6D15B5F97EB3332D4BBE19B6FFD512F2
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqcxs08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
|_ MD5: 38D6B51F04DEF7FB248FA56E4C47407E
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
[?] hpqddcmn.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
|_ MD5: 5B973EA48E154C83ADF42D0A0F57BB29
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ svchost.exe (852)
|_ hpqtra08.exe (476)
[?] hpzidr12.dll
|_ Cesta: C:\WINDOWS\system32\HPZidr12.dll
|_ MD5: 26AE2CA34FA4342749EC1157CB1FE954
|_ Výrobce: Hewlett-Packard
|_ Procesy
|_ svchost.exe (1924)
|_ hpqtra08.exe (476)
[?] drvinterface.dll
|_ Cesta: C:\Program Files\VIA\RAID\drvInterface.dll
|_ MD5: B2B3847C6A02F85E911559134758EEFD
|_ Výrobce: Copyright (C) 2004
|_ Procesy
|_ raid_tool.exe (3476)
[?] atipdxxx.dll
|_ Cesta: C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll
|_ MD5: 7F294407A7F58CE1BCEB1D1B033075E8
|_ Výrobce: ATI Technologies, Inc.
|_ Procesy
|_ atiptaxx.exe (3492)
[?] atipdsxx.dll
|_ Cesta: C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll
|_ MD5: 16FBB7ED1E13106AEB942441C09C008D
|_ Výrobce: ATI Technologies, Inc.
|_ Procesy
|_ atiptaxx.exe (3492)
[?] clrcengine2.dll
|_ Cesta: C:\Program Files\CyberLink\PowerDVD\CLRCEngine2.dll
|_ MD5: 535203DEA5820F3B5F3FAACE0D51252C
|_ Výrobce: CyberLink Corp.
|_ Procesy
|_ PDVDServ.exe (3500)
[?] ashuint.dll
|_ Cesta: C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll
|_ MD5: FCE48F51523E38C5E74969766B353D73
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] xt1922.dll
|_ Cesta: C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll
|_ MD5: 6C08604B5465DE19EAAC58C6A537D0BF
|_ Výrobce: Codejock Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruistd.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiStd.dll
|_ MD5: CB39A7024BE54E75E3B696272FDC0987
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruiout.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiOut.dll
|_ MD5: 9625471205DFC433FB73E231FC9CBB01
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruimai.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiMai.dll
|_ MD5: 02BD0FEACAA1A65F77806A3C3DEBD046
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruimes.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahRuiMes.dll
|_ MD5: 27BB54223D4AAEBBEB0E65DF776CF6C2
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruip2p.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\ahRuiP2P.dll
|_ MD5: E5C7E4C34E43BFD68DE1CF2034FE9AF8
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruins.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiNS.dll
|_ MD5: 99C120153031FBD057D4FA0499FFF755
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] ahruiws.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\AhRuiWS.dll
|_ MD5: 8F933065A585EAFD798DD5E49598CDCB
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] lang.dll
|_ Cesta: C:\Program Files\Alwil Software\Avast4\CZECH\Lang.dll
|_ MD5: 71994A422B986B54142295E08C19F2AF
|_ Výrobce: ALWIL Software
|_ Procesy
|_ ashDisp.exe (3612)
[?] hpqrif08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll
|_ MD5: A6E02F65BE0C48DE7101923AE70268BD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqmif08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll
|_ MD5: D0716BD0C0822A642D36E82F49F2B5B8
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpodio08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
|_ MD5: 8861AB06F667429B94DBFE97550F82D5
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqddusr.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll
|_ MD5: 1AE183708EC0CA7E8CECF98B9785D57C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqcxm08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll
|_ MD5: 9C3D089659383A5552CCA03F84FE4257
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqimzone.exe (2568)
[?] hpzipr12.dll
|_ Cesta: C:\WINDOWS\system32\HPZipr12.dll
|_ MD5: AF880166DAC5880219F748ED83902CB2
|_ Výrobce: Hewlett-Packard
|_ Procesy
|_ hpqtra08.exe (476)
|_ hpqste08.exe (2936)
[?] hpqusg.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqusg.dll
|_ MD5: 5B6748DFA56A0BE54C45B989378293E1
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotradd.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll
|_ MD5: 7DAFE566BB13C16439CBAADB43582128
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpquio08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
|_ MD5: 9507A8E70A620A36CF2CF60740B8F022
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqtra08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
|_ MD5: FD3DCCF83F459439998C8C63DAF36A11
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpqtao08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
|_ MD5: 021CFC69A1874431DC88BEFC37A2A2FD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotra08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll
|_ MD5: 23D3BFA480C5DA9256DD9A97185678C4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpotra08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc
|_ MD5: 6618423130584280AED437E57296114E
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpodvd09.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll
|_ MD5: A490EDE46A746E14AE6876021B6D4269
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] hpoddcomm09.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll
|_ MD5: 6BDA568A2AED0F84C717B5649F70C91C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqtra08.exe (476)
[?] fusion.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll
|_ MD5: 7C87A5FB95777E4132B11FC3D92CAAF5
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqcc2.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll
|_ MD5: BB2BE4BA77C0C84D1A3F135D418B4659
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqutils.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll
|_ MD5: 17DA38CB41189C545E84C4682F25A0F3
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqfmrsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll
|_ MD5: B22BA6939F9230CDD87EAD85F3ECD1D9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqtray.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll
|_ MD5: 80A137E5FB9E9CC95C1DCC9300905343
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqovskn.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll
|_ MD5: 33DFCA90B4BE8C62B20CE0BEEE4CAC1D
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimvlt.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll
|_ MD5: BC33C1A2E9107E290A4B4F12894E25BD
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimgrc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll
|_ MD5: 350750024696FD6496DDA08EBE5A1EA4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqntrop.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll
|_ MD5: 5BDB40C486291CA8AF13A08232BAA177
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqcxm08.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\Interop.hpqcxm08.dll
|_ MD5: 659272675EABDCCFDA85CF5892ED244B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD\13.0.0.113__9cf889f53ea9b907\LEAD.dll
|_ MD5: 648FE0D27734BB73EF04BC6789B20935
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.wrapper.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Wrapper\13.0.0.113__9cf889f53ea9b907\LEAD.Wrapper.dll
|_ MD5: 335270904FED5F3629FE0D2FCAB7BD4F
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.windows.forms.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.dll
|_ MD5: 4BBF2F7E4F0F21FDCF30F540E7331BD7
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.drawing.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\LEAD.Drawing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.dll
|_ MD5: B8549829AABD31329CB20367F05630EA
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqimgr.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\interop.hpqimgr\3.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll
|_ MD5: 5D9E5C12AFA844EFCC6763A29BA8A76C
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimgr.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqimgr.dll
|_ MD5: F11CEBCEE8EBD44650500E790F5BEDE9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqasset.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll
|_ MD5: 6348FE0BB6230406E4401E94C3A660D8
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqmirsc.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqmirsc.dll
|_ MD5: 11DDA07E408DCDE39D4BE4FD5FFEF6D0
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqedit.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll
|_ MD5: 32DDD519C87B37C8520D3B48C1A13F96
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqvideo.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll
|_ MD5: AA50961D0889B2085C3A54B0A024643B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.windows.forms.drawingcontainer.dll
|_ Cesta: c:\windows\assembly\gac\lead.windows.forms.drawingcontainer\13.0.0.113__9cf889f53ea9b907\lead.windows.forms.drawingcontainer.dll
|_ MD5: D086D14AE3E163DD38230CBC804C6747
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqmdmr.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll
|_ MD5: 8F8A3958A3AD696172C8D19827319E7D
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] lead.drawing.imaging.imageprocessing.dll
|_ Cesta: c:\windows\assembly\gac\lead.drawing.imaging.imageprocessing\13.0.0.113__9cf889f53ea9b907\lead.drawing.imaging.imageprocessing.dll
|_ MD5: F5A621C69B659258E5164306A15C9CAA
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqimlib.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll
|_ MD5: 268D22AD922CF3DC49962CD977B73A45
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqglutl.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll
|_ MD5: 603B55EA0E2A583D42133615C451BC5B
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hpqvideo.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hpqvideo\3.0.0.0__a53cf5803f4c3827\Interop.hpqvideo.dll
|_ MD5: 67588302DFD1C8519311501DB3582623
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqvdcom.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll
|_ MD5: 175E8A8B8705FD9D8EC3F582930B07A9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqprrsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll
|_ MD5: 66D547A0C6D70C23BD39AA6B1868A8E4
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] system.resources.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.resources\1.0.5000.0_cs_b77a5c561934e089\System.resources.dll
|_ MD5: AF8BB295854B19605349E5B7EF2F0457
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] interop.hprblog.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Interop.hprblog\3.0.0.0__a53cf5803f4c3827\Interop.hprblog.dll
|_ MD5: F89BDD4110A8F493AB2E4637F52EB1F4
|_ Výrobce:
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqcprsc.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll
|_ MD5: A7B5156E9D435BBDE7F080556BF547B1
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqisrtb.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqisrtb\4.0.0.0__a53cf5803f4c3827\hpqisrtb.dll
|_ MD5: 4EB6946C795B0BEF7A5CF0151347E379
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqbakup.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqbakup\3.0.0.0__a53cf5803f4c3827\hpqbakup.dll
|_ MD5: F59D6CC822F6892635B8D6D2CCDE9998
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqthumb.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll
|_ MD5: 1924C6FB611923DA4BEEC3DE6D5DC1EB
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] hpqiface.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll
|_ MD5: A0DCB32156BDF2EB4AF72EE38141E7B7
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] ltkrn13n.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll
|_ MD5: E2CD12A09AAB75B19123E4AB807B2D25
|_ Výrobce: LEAD Technologies, Inc.
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscoree.dll
|_ Cesta: C:\WINDOWS\system32\mscoree.dll
|_ MD5: B5B67EE09B52D7129B8041B9BD411F7B
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorwks.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
|_ MD5: BA79B29E74194882F3530FB2C4CF0903
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorjit.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
|_ MD5: 17E4D4ED3C4CF86C144195BDCB39141A
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorsn.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
|_ MD5: AB782AEB258225399B6DA1F1F33D4944
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] mscorlib.dll
|_ Cesta: C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
|_ MD5: 7C2E09AD420E050FDBDF83445C708287
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] accessibility.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll
|_ MD5: A1B44C0A1AD71F86579A4521D5B1C024
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
[?] system.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
|_ MD5: 0E207D5060F29D7860F88DE86DD0F7E1
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.drawing.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
|_ MD5: BCF15390DE7368639C593735BF938D7A
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.windows.forms.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
|_ MD5: 2814E9BDB75088C0B4CF6C1123F6EC8E
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] system.xml.dll
|_ Cesta: C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
|_ MD5: A5205B3AF85B1477AB2C2A1E12201598
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ hpqimzone.exe (2568)
|_ hpqimzone.exe (2568)
[?] sllights.dll
|_ Cesta: C:\WINDOWS\system32\SLLights.dll
|_ MD5: 474C5A52580D8054200C9C8ECA6485C3
|_ Výrobce: Copyright © 1999-2001
|_ Procesy
|_ slrundll.exe (2872)
[?] slmohserv.dll
|_ Cesta: C:\WINDOWS\system32\SLMOHServ.dll
|_ MD5: E57AFF42C8FD0C6FD91CECC2E1FBD876
|_ Výrobce: Copyright (C) 2002
|_ Procesy
|_ slrundll.exe (2872)
[?] hpqstp08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqstp08.rsc
|_ MD5: AFDFF5932C824757FA0BE668BE455D82
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqsem08.rsc
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc
|_ MD5: 45C640EA5AF1DE59DB350962B31DC1D9
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqwso08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqwso08.dll
|_ MD5: 1D0A76276AD7A836F29F447968C61CE6
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqsti08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll
|_ MD5: 0A0A339D07FF5E9989EEF1E1D476CD29
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] hpqstp08.dll
|_ Cesta: C:\Program Files\HP\Digital Imaging\bin\hpqstp08.dll
|_ MD5: 7C4DCFF108869D7915D39B9371BE5FFE
|_ Výrobce: Hewlett-Packard Co.
|_ Procesy
|_ hpqste08.exe (2936)
[?] softokn3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\softokn3.dll
|_ MD5: 77CA7D5FE15C3C68233017C6FBE87DA0
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] nssdbm3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\nssdbm3.dll
|_ MD5: 46C963A1468FCDC8729555DACC83CF91
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] freebl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\freebl3.dll
|_ MD5: 324A9275A3BA33CF77A2D8D0C67F10CF
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (2552)
[?] rpmainbrowserrecordplugin.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\rpmainbrowserrecordplugin.dll
|_ MD5: 50F9124CB00860A39934283222E39990
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] nprpffbrowserrecordext.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
|_ MD5: 9005A51C551ED70F8BD0C02054B2BD58
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] rpnpshimswf.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\thinshims\rpnpshimswf.dll
|_ MD5: 89B0D5DB4CAFC9ACC09A4863DD918158
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (2552)
[?] deploy.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\deploy.dll
|_ MD5: 173E44647D626FC9ECAFB75801C1A6FF
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] hpi.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\hpi.dll
|_ MD5: 444B4C6BB5A208E5F3BA8583242BE715
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] java.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\java.dll
|_ MD5: 83C5B76956238620E666CEC09BF575D8
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] jp2native.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\jp2native.dll
|_ MD5: BC36C491BB79A50BAF6B6122DCDD5CAE
|_ Výrobce: ?
|_ Procesy
|_ firefox.exe (2552)
[?] net.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\net.dll
|_ MD5: D06BE260B64E46EDFA902ACDAA894CC9
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] nio.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\nio.dll
|_ MD5: D8463540466EF1C429F7C6561C11A9A4
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] regutils.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\regutils.dll
|_ MD5: 463A6F355F129C9217F564C935D46C1F
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] verify.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\verify.dll
|_ MD5: 0DF848825A95A7143DCBAAF59426D204
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] zip.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\zip.dll
|_ MD5: 4BD8D51FE0B91216864DF8CFFA4CF9FB
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] jvm.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\client\jvm.dll
|_ MD5: 9019AEBD2F7212170F739E162D09471B
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
[?] npjp2.dll
|_ Cesta: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
|_ MD5: 4815D67494A5BB76D7E003B3541DD54A
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ firefox.exe (2552)
================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]
Ale radeji stejne zaciname RSITem.
