br4n0 píše:
Áno, chytil si INF/Autorun.
Postupne spusti (win+r):
Kód:
attrib -h -a -r c:\autorun.inf | del /f c:\autorun.inf | md c:\autorun.inf | attrib -h -a -r d:\autorun.inf | del /f d:\autorun.inf | md d:\autorun.inf
reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 /f
reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer /v NoDriveTypeAutoRun /t REG_DWORD /d 149 /f
A pošli
UPM logNo spravil som to dúfam dobre a teraz sem dávam ten log, ale inak vopred ďakujem lebo mi už ide otvoriž priamo tie disky:
Windows XP SP 3 (build 2600)
Boot Mode: Normal
Overení sùborù Microsoftu: Áno
Whitelist: Áno
Internet Explorer v7.00.5730.13 (longhorn(wmbla).070711-1130)
Log vygenerovaný:31.1.2009 10:57:16
================================================================
SmallARK
================================================================
Bežiace procesy
================================================================
C:\WINDOWS\ATK0100\HCONTROL.EXE
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPENH.EXE
C:\PROGRAM FILES\WIRELESS CONSOLE 2\WCOURIER.EXE
C:\PROGRAM FILES\ASUS\WLAN CARD UTILITIES\CENTER.EXE
C:\PROGRAM FILES\ASUS\POWER4 GEAR\BATTERYLIFE.EXE
C:\PROGRAM FILES\ESET\NOD32KUI.EXE
C:\WINDOWS\SYSTEM32\ASWLSVC.EXE
C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTMNG.EXE
C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\MDM.EXE
C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSA2DP.EXE
C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTHSP.EXE
C:\PROGRAM FILES\ESET\NOD32KRN.EXE
C:\WINDOWS\SYSTEM32\NVSVC32.EXE
C:\WINDOWS\ATK0100\ATKOSD.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\DESKTOP\ULTIMATE PROCESS MANAGER\UPM.EXE
C:\PROGRAM FILES\OPERA\OPERA.EXE
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\DESKTOP\ULTIMATE PROCESS MANAGER\UPM.EXE
Scanner
================================================================
[S] explorer.exe
Spúša sa po štarte HKLM Winlogon [Shell]
[?] HControl.exe
Spúša sa po štarte HKLM Run [HControl]
[R] SOUNDMAN.EXE
Spúša sa po štarte HKLM Run [SoundMan]
[?] SynTPEnh.exe
Spúša sa po štarte HKLM Run [SynTPEnh]
[?] wcourier.exe
Bez výrobcu
Spúša sa po štarte HKLM Run [Wireless Console 2]
Súbor 12%
[?] Center.exe
Spúša sa po štarte HKLM Run [Control Center]
Súbor 7%
[?] BatteryLife.exe
Spúša sa po štarte HKLM Run [Power_Gear]
Súbor 7%
[?] nod32kui.exe
Spúša sa po štarte HKLM Run [nod32kui]
Súbor 14%
[S] ctfmon.exe
Spúša sa po štarte HKCU Run [ctfmon.exe]
[?] ASWLSVC.exe
Bez výrobcu v System32
Súbor 12%
[?] TosBtMng.exe
Súbor 7%
[?] mdm.exe
Overený Microsoft: Nie
Nemá okno
Súbor 12%
[?] TosA2dp.exe
Súbor 7%
[?] TosBtHSP.exe
Súbor 7%
[?] nod32krn.exe
Súbor 7%
[?] nvsvc32.exe
Non Microsoft v System32:
[?] UPM.exe
Súbor 7%
[?] opera.exe
Súbor 14%
[?] UPM.exe
Súbor 7%
Po spustení
================================================================
HKLM Run
|_ [?][HControl] C:\WINDOWS\ATK0100\HControl.exe
|_ [?][NvCplDaemon] C:\WINDOWS\system32\NvCpl.dll ,NvStartup
|_ [?][nwiz] nwiz.exe /install
|_ [?][SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
|_ [?][Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
|_ [?][Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
|_ [?][Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
|_ [?][nod32kui] C:\Program Files\Eset\nod32kui.exe /WAITSERVICE
HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Súbor nebol nájdený)
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Súbor nebol nájdený)
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp11.inf ,PerUserStub
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll
Po spustení
|_ C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
Služby (Zobraz bežiace: True, Zobraz zastavené: False, Zobraz i bezpeèné: False)
================================================================
[?] ASWLSVC
|_ Cesta: C:\WINDOWS\system32\ASWLSVC.exe
| |_ Výrobca:
| |_ Popis:
| |_ MD5: B0A338125EBB7E34F153A91A32040FAC
|
|_ Meno: ASWLSVC
|_ StartName: LocalSystem
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ:
|_ Dependency:
[?] Machine Debug Manager
|_ Cesta: C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
| |_ Výrobca: Microsoft Corporation
| |_ Popis: Machine Debug Manager
| |_ MD5: 7CF1B716372B89568AE4C0FE769F5869
|
|_ Meno: MDM
|_ StartName: LocalSystem
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ:
|_ Dependency: RPCSS
[?] NOD32 Kernel Service
|_ Cesta: C:\Program Files\Eset\nod32krn.exe
| |_ Výrobca: Eset
| |_ Popis: NOD32 Kernel Service
| |_ MD5: C0C81A2BE22F496B26B3E1EF3F559B83
|
|_ Meno: NOD32krn
|_ StartName: LocalSystem
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ:
|_ Dependency:
[?] NVIDIA Display Driver Service
|_ Cesta: C:\WINDOWS\system32\nvsvc32.exe
| |_ Výrobca: NVIDIA Corporation
| |_ Popis: NVIDIA Driver Helper Service, Version 82.04
| |_ MD5: 11B4FD6D2FC7D81885DC33ED2BD02D9D
|
|_ Meno: NVSvc
|_ StartName: LocalSystem
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ: Win32 Own Process
|_ Dependency:
Ovládaèe (Zobraz bežiace: True, Zobraz zastavené: False, Zobraz i bezpeèné: False)
================================================================
[?] AMD Processor Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\AmdK8.sys
| |_ Výrobca: Advanced Micro Devices
| |_ Popis: AMD Processor Driver
| |_ MD5: 59301936898AE62245A6F09C0ABA9475
|
|_ Meno: AmdK8
|_ StartName:
|_ Typ spúšania: System Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] ASUS 802.11 Network Adapter Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
| |_ Výrobca: Broadcom Corporation
| |_ Popis: Broadcom 802.11 Network Adapter wireless driver
| |_ MD5: E7DEBB46B9EF1F28932E533BE4A3D1A9
|
|_ Meno: BCM43XX
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] HSFHWSIS
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSFHWSIS.sys
| |_ Výrobca: Conexant Systems, Inc.
| |_ Popis: HSFHWSIS WDM driver
| |_ MD5: CDE49F97554BB3D3BB067070BA5AA6D4
|
|_ Meno: HSFHWSIS
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] HSF_DPV
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
| |_ Výrobca: Conexant Systems, Inc.
| |_ Popis: HSF_DP driver
| |_ MD5: 099BE8742E5D479170619C6962A6578C
|
|_ Meno: HSF_DPV
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] AEGIS Protocol (IEEE 802.1x) v2.3.1.9
|_ Cesta: C:\WINDOWS\system32\DRIVERS\mdc8021x.sys
| |_ Výrobca: Meetinghouse Data Communications
| |_ Popis: IEEE 802.1X Protocol Driver
| |_ MD5: D7010580BF4E45D5E793A1FE75758C69
|
|_ Meno: MDC8021X
|_ StartName:
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] mdmxsdk
|_ Cesta: C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
| |_ Výrobca: Conexant
| |_ Popis: Diagnostic Interface DRIVER
| |_ MD5: 3C318B9CD391371BED62126581EE9961
|
|_ Meno: mdmxsdk
|_ StartName:
|_ Typ spúšania: Auto Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] ATK0100 ACPI UTILITY
|_ Cesta: C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
| |_ Výrobca:
| |_ Popis: ATK0100 ACPI Utility
| |_ MD5: E333010A50BF603ACC350F6019E9CE02
|
|_ Meno: MTsensor
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] nv
|_ Cesta: C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
| |_ Výrobca: NVIDIA Corporation
| |_ Popis: NVIDIA Compatible Windows 2000 Miniport Driver, Version 82.04
| |_ MD5: 9A9713705C888412A01E4B5EF1193959
|
|_ Meno: nv
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] rimsptsk
|_ Cesta: C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
| |_ Výrobca: REDC
| |_ Popis: RICOH MS Driver
| |_ MD5: 5338E12CC00F6CE1B11E252FFF25AC1E
|
|_ Meno: rimsptsk
|_ StartName:
|_ Typ spúšania: Boot Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] risdptsk
|_ Cesta: C:\WINDOWS\system32\DRIVERS\risdptsk.sys
| |_ Výrobca: REDC
| |_ Popis: RICOH SD/MMC Driver
| |_ MD5: C5B1E7188D110AA23961F29ABBAD8A47
|
|_ Meno: risdptsk
|_ StartName:
|_ Typ spúšania: Boot Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] Realtek 10/100/1000 NIC Family all in one NDIS XP Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
| |_ Výrobca: Realtek Semiconductor Corporation
| |_ Popis: Realtek 10/100/1000 NDIS 5.1 Driver
| |_ MD5: 7F0413BDD7D53EB4C7A371E7F6F84DF1
|
|_ Meno: RTL8023xp
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] USB2.0 1.3M Web Cam
|_ Cesta: C:\WINDOWS\System32\Drivers\SynMini.sys
| |_ Výrobca: Syntek America Inc.
| |_ Popis: Syntek Universal Serial Bus 2.0 Video Mini Driver
| |_ MD5: 431A1871E820B1B354C46953CFAC470C
|
|_ Meno: SynMini
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] USB2.0 1.3M Web Cam Still Image
|_ Cesta: C:\WINDOWS\System32\Drivers\SynScan.sys
| |_ Výrobca: Syntek America Inc.
| |_ Popis: Syntek Universal Serial Bus 2.0 Still Image Driver
| |_ MD5: 5C139675C92F9254B0AC08FC53840321
|
|_ Meno: SynScan
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] Synaptics TouchPad Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\SynTP.sys
| |_ Výrobca: Synaptics, Inc.
| |_ Popis: Synaptics Touchpad Driver
| |_ MD5: 37CF9DAD5C9073CDCCC215F771A2CD68
|
|_ Meno: SynTP
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] TCP/IP Protocol Driver
|_ Cesta: C:\WINDOWS\system32\DRIVERS\tcpip.sys
| |_ Výrobca: Microsoft Corporation
| |_ Popis: TCP/IP Protocol Driver
| |_ MD5: 37D8387CBD4437C55F454209BE10EF11
|
|_ Meno: Tcpip
|_ StartName:
|_ Typ spúšania: System Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency: IPSec
[?] Bluetooth Port Driver from Toshiba
|_ Cesta: C:\WINDOWS\system32\DRIVERS\tosporte.sys
| |_ Výrobca: TOSHIBA Corporation
| |_ Popis: TOSHIBA Bluetooth Port Emulation Driver
| |_ MD5: E46FB54BE8A2A395FE96633B838BAAFE
|
|_ Meno: tosporte
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] Bluetooth RFCOMM from TOSHIBA
|_ Cesta: C:\WINDOWS\System32\Drivers\tosrfcom.sys
| |_ Výrobca: TOSHIBA Corporation
| |_ Popis: Bluetooth RFCOMM Driver
| |_ MD5: D185BE751021BCF1E5D58566D408314A
|
|_ Meno: Tosrfcom
|_ StartName:
|_ Typ spúšania: System Start
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
[?] winachsf
|_ Cesta: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
| |_ Výrobca: Conexant Systems, Inc.
| |_ Popis: HSF_CNXT driver
| |_ MD5: 1DF99547A328D589366FB8EC66292161
|
|_ Meno: winachsf
|_ StartName:
|_ Typ spúšania: Ruèné spustenie
|_ Status: Spustené
|_ Typ: Kernel Driver
|_ Dependency:
lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
----------------------------------------------------------------------------------------
TCP (1320) svchost.exe 0.0.0.0:135 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (4) Systém 20.20.20.5:139 LISTENING
TCP (0) 20.20.20.5:1135 TIME_WAIT
TCP (1756) UPM.exe 20.20.20.5:1147 CLOSE_WAIT
TCP (1756) UPM.exe 20.20.20.5:1148 <-> 199.7.52.190:80 ESTABLISHED
TCP (1756) UPM.exe 20.20.20.5:1149 <-> 199.7.52.190:80 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 LISTENING
UDP (1096) lsass.exe 0.0.0.0:500
UDP (1524) svchost.exe 0.0.0.0:1025
UDP (1524) svchost.exe 0.0.0.0:1033
UDP (1524) svchost.exe 0.0.0.0:1040
UDP (1524) svchost.exe 0.0.0.0:1119
UDP (1096) lsass.exe 0.0.0.0:4500
UDP (1468) svchost.exe 20.20.20.5:123
UDP (4) Systém 20.20.20.5:137
UDP (4) Systém 20.20.20.5:138
UDP (1576) svchost.exe 20.20.20.5:1900
UDP (1468) svchost.exe 127.0.0.1:123
UDP (1576) svchost.exe 127.0.0.1:1900
Moduly (Zobraz i bezpeèné: False, Len bez výrobcu: True, Zobraz registrované: False)
================================================================
[?] uxtheme.dll
|_ Cesta: C:\WINDOWS\system32\uxtheme.dll
|_ MD5: 1979D74C2DFB05FA630DBAC1BDC3AC25
|_ Výrobca: Microsoft Corporation
|_ Procesy
|_ winlogon.exe (1036)
|_ lsass.exe (1096)
|_ svchost.exe (1256)
|_ svchost.exe (1320)
|_ svchost.exe (1468)
|_ svchost.exe (1524)
|_ svchost.exe (1576)
|_ spoolsv.exe (196)
|_ explorer.exe (612)
|_ HControl.exe (804)
|_ SOUNDMAN.EXE (872)
|_ SynTPEnh.exe (888)
|_ wcourier.exe (1008)
|_ Center.exe (996)
|_ BatteryLife.exe (1048)
|_ nod32kui.exe (1160)
|_ ctfmon.exe (1220)
|_ ASWLSVC.exe (1280)
|_ TosBtMng.exe (1308)
|_ TosA2dp.exe (1772)
|_ TosBtHSP.exe (1788)
|_ nod32krn.exe (2040)
|_ nvsvc32.exe (296)
|_ svchost.exe (340)
|_ ATKOSD.exe (1652)
|_ alg.exe (1724)
|_ UPM.exe (4000)
|_ opera.exe (2080)
|_ UPM.exe (1756)
[?] sfc_os.dll
|_ Cesta: C:\WINDOWS\system32\sfc_os.dll
|_ MD5: EF052090FC026B0141AE14B164B41DF7
|_ Výrobca: Microsoft Corporation
|_ Procesy
|_ winlogon.exe (1036)
|_ svchost.exe (1468)
|_ spoolsv.exe (196)
|_ UPM.exe (1756)
[?] imon.dll
|_ Cesta: C:\WINDOWS\system32\imon.dll
|_ MD5: A1155C7F2D214404EA03DFC6EA346954
|_ Výrobca: Eset
|_ Procesy
|_ lsass.exe (1096)
|_ svchost.exe (1320)
|_ svchost.exe (1468)
|_ svchost.exe (1524)
|_ svchost.exe (1576)
|_ nod32krn.exe (2040)
|_ alg.exe (1724)
|_ UPM.exe (4000)
|_ opera.exe (2080)
|_ UPM.exe (1756)
[?] pr_imon.dll
|_ Cesta: C:\Program Files\ESET\pr_imon.dll
|_ MD5: 0AF0025493D953C114DEE4A3B30364A3
|_ Výrobca:
|_ Procesy
|_ lsass.exe (1096)
|_ svchost.exe (1320)
|_ svchost.exe (1468)
|_ svchost.exe (1524)
|_ svchost.exe (1576)
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
|_ alg.exe (1724)
|_ UPM.exe (4000)
|_ opera.exe (2080)
|_ UPM.exe (1756)
[?] tbtmon.dll
|_ Cesta: C:\WINDOWS\system32\TBTMon.dll
|_ MD5: D6385B6A3C92085BF603397A602FEA4B
|_ Výrobca: Toshiba America Business Solutions, Inc.
|_ Procesy
|_ spoolsv.exe (196)
[?] tosbtapi.dll
|_ Cesta: C:\WINDOWS\system32\TosBtAPI.dll
|_ MD5: 51704DA558EFB08E01DD763F3DC39777
|_ Výrobca: TOSHIBA CORPORATION.
|_ Procesy
|_ spoolsv.exe (196)
|_ TosBtMng.exe (1308)
[?] tosbdapi.dll
|_ Cesta: C:\WINDOWS\system32\TosBdAPI.dll
|_ MD5: 3D8F7CB3824F6F83E22E7873230C0112
|_ Výrobca: TOSHIBA CORPORATION.
|_ Procesy
|_ spoolsv.exe (196)
|_ TosA2dp.exe (1772)
|_ TosBtHSP.exe (1788)
[?] nodshex.dll
|_ Cesta: C:\Program Files\ESET\nodshex.dll
|_ MD5: 6FD08C008310638074AA2ECC1DC566F9
|_ Výrobca:
|_ Procesy
|_ explorer.exe (612)
[?] nvshell.dll
|_ Cesta: C:\WINDOWS\system32\nvshell.dll
|_ MD5: 2AA2A92D9F8E324EA25B41181C474192
|_ Výrobca: ?
|_ Procesy
|_ explorer.exe (612)
[?] msimg32.dll
|_ Cesta: C:\Program Files\Wireless Console 2\MSIMG32.dll
|_ MD5: 49D80B114D3672A51478870E8E2AD561
|_ Výrobca: Microsoft Corporation
|_ Procesy
|_ wcourier.exe (1008)
|_ opera.exe (2080)
[?] aegise5.dll
|_ Cesta: C:\Program Files\ASUS\WLAN Card Utilities\AegisE5.dll
|_ MD5: 0A4F1C9EA4F7B352583816B9B5F24C1B
|_ Výrobca: Meetinghouse Data Communications
|_ Procesy
|_ Center.exe (996)
[?] atkmethod.dll
|_ Cesta: C:\Program Files\ASUS\Power4 Gear\ATKMETHOD.dll
|_ MD5: F08C9F3B57FB16F1C69A009F8C85AB66
|_ Výrobca: ASUSTeK Computer Inc.
|_ Procesy
|_ BatteryLife.exe (1048)
[?] nod32rui.dll
|_ Cesta: C:\Program Files\ESET\nod32rui.dll
|_ MD5: 065ED9B892E0B4582EB76C403D8665D4
|_ Výrobca:
|_ Procesy
|_ nod32kui.exe (1160)
[?] pr_upd.dll
|_ Cesta: C:\Program Files\ESET\pr_upd.dll
|_ MD5: ECC88CADDFB323163A2A0E9599243BFD
|_ Výrobca:
|_ Procesy
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
[?] pu_upd.dll
|_ Cesta: C:\Program Files\ESET\pu_upd.dll
|_ MD5: AD6E192F3151BB11356D44378EB3E9E9
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pr_amon.dll
|_ Cesta: C:\Program Files\ESET\pr_amon.dll
|_ MD5: 45CF6B26867FA1D608E06F56C9E6866E
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
[?] pu_amon.dll
|_ Cesta: C:\Program Files\ESET\pu_amon.dll
|_ MD5: C26C912992CC1D083F3A93969C855A33
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pr_nod32.dll
|_ Cesta: C:\Program Files\ESET\pr_nod32.dll
|_ MD5: F72680E32C9A40561CC6EE82A7A1EABF
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
[?] pu_nod32.dll
|_ Cesta: C:\Program Files\ESET\pu_nod32.dll
|_ MD5: 14B84D9CB50DEA088F2945DB2450AC0A
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pu_imon.dll
|_ Cesta: C:\Program Files\ESET\pu_imon.dll
|_ MD5: 120AED06A88423DE05854E266778A235
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pu_dmon.dll
|_ Cesta: C:\Program Files\ESET\pu_dmon.dll
|_ MD5: 053D5304F1BA3B4568120DE33EAE9A1B
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pr_dmon.dll
|_ Cesta: C:\Program Files\ESET\pr_dmon.dll
|_ MD5: 412832C37F879D4D4766F1D3EAC17D70
|_ Výrobca:
|_ Procesy
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
[?] pu_emon.dll
|_ Cesta: C:\Program Files\ESET\pu_emon.dll
|_ MD5: E973865562363DE07296B0D9F9DBBFD4
|_ Výrobca: Eset
|_ Procesy
|_ nod32kui.exe (1160)
[?] pr_emon.dll
|_ Cesta: C:\Program Files\ESET\pr_emon.dll
|_ MD5: 06EE90E57ECF79C052AE76923BC302A7
|_ Výrobca:
|_ Procesy
|_ nod32kui.exe (1160)
|_ nod32krn.exe (2040)
[?] toscommapi.dll
|_ Cesta: C:\WINDOWS\system32\TosCommAPI.dll
|_ MD5: A76DF641A730A0DC0BFFAAA30F5BFA81
|_ Výrobca:
|_ Procesy
|_ TosBtMng.exe (1308)
[?] lcwizard.dll
|_ Cesta: C:\WINDOWS\system32\LCWizard.dll
|_ MD5: 657C6AA3840796FB89B11144CF437E7D
|_ Výrobca: TOSHIBA CORPORATION
|_ Procesy
|_ TosBtMng.exe (1308)
|_ TosBtHSP.exe (1788)
[?] toshidapi.dll
|_ Cesta: C:\WINDOWS\system32\TosHidAPI.dll
|_ MD5: 3C88B8C3B5850204414CB46532FD8B84
|_ Výrobca:
|_ Procesy
|_ TosBtMng.exe (1308)
[?] tosbtload.dll
|_ Cesta: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtLoad.dll
|_ MD5: 7F33FD57775C2DBD0BCCC82FE9F180D2
|_ Výrobca:
|_ Procesy
|_ TosBtMng.exe (1308)
[?] tosbtsddb.dll
|_ Cesta: C:\WINDOWS\system32\TosBtSDDB.dll
|_ MD5: 5840B7A99910EB86B7ACCEC8AEB5164C
|_ Výrobca: TOSHIBA CORPORATION.
|_ Procesy
|_ TosBtMng.exe (1308)
[?] tosavdtapi.dll
|_ Cesta: C:\WINDOWS\system32\TosAvdtAPI.dll
|_ MD5: 568B61C1F1C0E27DE75C408731021AD4
|_ Výrobca: TOSHIBA CORPORATION.
|_ Procesy
|_ TosA2dp.exe (1772)
[?] tossndplug.dll
|_ Cesta: C:\WINDOWS\system32\TosSndPlug.dll
|_ MD5: FDB3B57D0657372259567A940E5C5F6A
|_ Výrobca: TOSHIBA CORPORATION.
|_ Procesy
|_ TosA2dp.exe (1772)
|_ TosBtHSP.exe (1788)
[?] nod32krr.dll
|_ Cesta: C:\Program Files\ESET\nod32krr.dll
|_ MD5: E9B4E1D3DEEE65D86ECFE91CCF92A4D6
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[?] ps_upd.dll
|_ Cesta: C:\Program Files\ESET\ps_upd.dll
|_ MD5: D37AE2DD6DF4D9186C1F95E2BCADF686
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[?] ps_amon.dll
|_ Cesta: C:\Program Files\ESET\ps_amon.dll
|_ MD5: 9F490118D594AED7B2996A920EE18D77
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[?] ps_nod32.dll
|_ Cesta: C:\Program Files\ESET\ps_nod32.dll
|_ MD5: 6D2A464101FF5F775E965AF8D5884107
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[?] ps_dmon.dll
|_ Cesta: C:\Program Files\ESET\ps_dmon.dll
|_ MD5: B96A6F0B6A04EE6A9B558581329E2BCF
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[?] ps_emon.dll
|_ Cesta: C:\Program Files\ESET\ps_emon.dll
|_ MD5: 70B348A886E0823DFF62EF36DB75C71D
|_ Výrobca: Eset
|_ Procesy
|_ nod32krn.exe (2040)
[!] opera.dll
|_ Cesta: C:\Program Files\Opera\opera.dll
|_ MD5: 211DBE623B2F2743468B6606DF30058D
|_ Výrobca: Opera Software
|_ Procesy
|_ opera.exe (2080)
