Dostal se ke mně jeden starší PC, odstranil jsem přebytečné programy, pročistil od malwaru a chtěl bych Vás poprosit o preventivní kontrolu, zda-li se zde nenachází nějaká ta havět
-Případně ještě jestli nemáte tip na dobrý antivir, používám roky Avast ale poměrně hodně zpomaluje PC. Předem děkuji za pomoc a přikládám log z RSIT
.Logfile of random's system information tool 1.10 (written by random/random)
Run by Lucie at 2016-07-03 19:57:34
Microsoft Windows 7 Ultimate
System drive C: has 65 GB (65%) free of 100 GB
Total RAM: 3071 MB (68% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\6m5lf9cw.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
D:\Programy\Mozilla Firefox\plugins\
NPOFFICE.DLL
C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\6m5lf9cw.default\searchplugins\
daemon-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-06-10 6775512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
D:\Programy\ICQ7.0\ICQ.exe silent loginmode=4 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
D:\Programy\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
C:\Program Files\Pando Networks\Media Booster\PMB.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayNC Launcher]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\38A880~1.141\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.xvid"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-03 19:57:35 ----D---- C:\Program Files\trend micro
2016-07-03 19:57:34 ----D---- C:\rsit
2016-07-03 17:07:13 ----D---- C:\Program Files\Defraggler
2016-07-03 16:49:57 ----RASH---- C:\MSDOS.SYS
2016-07-03 16:49:57 ----RASH---- C:\IO.SYS
2016-07-03 16:45:31 ----D---- C:\Users\Lucie\AppData\Roaming\GHISLER
2016-07-03 16:45:31 ----D---- C:\Program Files\totalcmd
2016-07-03 16:45:31 ----A---- C:\Windows\UC.PIF
2016-07-03 16:45:31 ----A---- C:\Windows\RAR.PIF
2016-07-03 16:45:31 ----A---- C:\Windows\PKZIP.PIF
2016-07-03 16:45:31 ----A---- C:\Windows\PKUNZIP.PIF
2016-07-03 16:45:31 ----A---- C:\Windows\LHA.PIF
2016-07-03 16:45:31 ----A---- C:\Windows\ARJ.PIF
2016-07-03 16:34:03 ----D---- C:\Windows\pss
2016-07-03 16:29:58 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2016-07-03 16:29:58 ----A---- C:\Windows\system32\drivers\mwac.sys
2016-07-03 16:29:58 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2016-07-03 16:22:43 ----D---- C:\Program Files\Adobe
======List of files/folders modified in the last 1 month======
2016-07-03 19:57:52 ----D---- C:\Windows\Prefetch
2016-07-03 19:57:35 ----RD---- C:\Program Files
2016-07-03 19:17:58 ----D---- C:\Windows\system32\config
2016-07-03 19:07:16 ----SHD---- C:\System Volume Information
2016-07-03 19:07:15 ----D---- C:\Windows\Temp
2016-07-03 18:46:25 ----D---- C:\Windows\System32
2016-07-03 18:46:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-07-03 18:42:17 ----D---- C:\Windows\inf
2016-07-03 18:42:16 ----D---- C:\ProgramData\NVIDIA
2016-07-03 18:42:11 ----D---- C:\Windows
2016-07-03 17:20:52 ----SHD---- C:\Windows\Installer
2016-07-03 17:20:52 ----D---- C:\Windows\system32\Tasks
2016-07-03 17:11:17 ----D---- C:\Windows\SoftwareDistribution
2016-07-03 17:08:07 ----HD---- C:\ProgramData
2016-07-03 17:08:05 ----D---- C:\Windows\system32\drivers
2016-07-03 17:03:43 ----D---- C:\Program Files\Common Files
2016-07-03 17:03:29 ----D---- C:\Windows\winsxs
2016-07-03 16:58:06 ----HD---- C:\Program Files\InstallShield Installation Information
2016-07-03 16:55:01 ----D---- C:\Windows\system32\catroot2
2016-07-03 16:42:48 ----D---- C:\Users\Lucie\AppData\Roaming\Guitar Pro 6
2016-07-03 16:42:03 ----D---- C:\ProgramData\ICQ
2016-07-03 16:39:21 ----D---- C:\Users\Lucie\AppData\Roaming\BSplayer
2016-07-03 16:37:09 ----D---- C:\ProgramData\Avira
2016-07-03 16:36:14 ----RSD---- C:\Windows\Fonts
2016-07-03 16:29:58 ----D---- C:\ProgramData\Malwarebytes
2016-07-03 16:29:08 ----D---- C:\Users\Lucie\AppData\Roaming\Adobe
2016-07-03 16:29:06 ----D---- C:\Program Files\Internet Explorer
2016-07-03 16:29:06 ----D---- C:\Program Files\Common Files\Adobe
2016-07-03 16:22:35 ----D---- C:\ProgramData\Adobe
2016-07-03 16:18:54 ----D---- C:\Users\Lucie\AppData\Roaming\DAEMON Tools Lite
2016-07-03 16:18:51 ----D---- C:\Windows\Panther
2016-07-03 16:18:51 ----D---- C:\Windows\Logs
2016-07-03 15:10:09 ----D---- C:\ProgramData\Skype
2016-07-03 15:10:07 ----D---- C:\Users\Lucie\AppData\Roaming\Skype
2016-07-03 15:06:52 ----D---- C:\Windows\Minidump
2016-06-05 12:25:57 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-06-05 12:04:17 ----D---- C:\Windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-05 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-19 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-04-19 281760]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-04-19 25888]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-08-04 2744800]
R3 netr73;RT73 USB - ovladač karty pro bezdrátovou síť LAN pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr73.sys [2009-07-14 545792]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 dump_wmimmc;dump_wmimmc; \??\C:\Program Files\NCsoft\Lineage II\system\GameGuard\dump_wmimmc.sys []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\Lucie\AppData\Local\Temp\IPG5D41.tmp []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 NPPTNT2;NPPTNT2; \??\C:\Windows\system32\npptNT2.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-01-07 608872]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-01 154440]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-05 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-01 154440]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\system32\GameMon.des [2009-10-11 3369044]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
.
Přispějete na provoz fóra?