VIRY.CZ

Zdravím,
pekne vás prosím o vyriešenie problému s počítačom, ktorému všetko trvá večnosť. Začiatkom roka mi krachol, menil sa zdroj, matičná doska a nejaké veci, mesiac fungoval ako tak dobre (až na to že hučí ako pokazený vysávač ), ale teraz keď chcem ísť na nejakú stránku trvá to skoro minútu čo mi ju načíta. Silný problém mám s videami tie sekajú v nepravidelných intervaloch či už na youtube, na nejakej online stránke so seriálmi a najnovšie aj v obyčajnom prehrávači. Ale zvuk ide bez problémov. Za pomoc vopred ďakujem

Prikladám log z RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lilly at 2016-03-09 14:38:48
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 4 GB (7%) free of 60 GB
Total RAM: 1920 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:39:37, on 9.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\sistray.exe
C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\DriverToolkit\DriverToolkit.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\SpeedFan\speedfan.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Lilly\Desktop\RSIT.exe
C:\Program Files\trend micro\Lilly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://safesearch.avira.com/#web/result?source=art&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\Antivirus\avgnt.exe" /min
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [Web Companion] C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Utility Tray.lnk = C:\Windows\System32\sistray.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 7092 bytes

======Scheduled tasks folder======

C:\Windows\tasks\DriverToolkit Autorun.job - C:\Program Files\DriverToolkit\DriverToolkit.exe --autorun
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/?clid=6826"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1223183.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\searchplugins\
bing-lavasoft.xml
firmy.cz-120407.xml
mapy.cz-120407.xml
seznam.cz-120407.xml
videa.seznam.cz-120407.xml
zbozi.cz-120407.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-29 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-29 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-05-22 1833504]
"avgnt"=C:\Program Files\Avira\Antivirus\avgnt.exe [2016-03-08 807392]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-01-27 66328]
"SiSPower"=SiSPower.dll,ModeAgent []
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"=DevDetect.exe -autorun []
"Web Companion"=C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [2016-03-09 1474320]
"cz.seznam.software.autoupdate"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC"=C:\Program Files\Google\Chrome\Application\chrome.exe [2016-02-18 746648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverPack Notifier]
C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe --run startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Utility Tray.lnk - C:\Windows\System32\sistray.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-03-09 14:38:50 ----D---- C:\Program Files\trend micro
2016-03-09 14:38:48 ----D---- C:\rsit
2016-03-09 13:30:25 ----D---- C:\Program Files\AdwCleaner
2016-02-16 17:31:01 ----D---- C:\Users\Lilly\AppData\Roaming\BitTorrent
2016-02-11 18:51:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-11 18:51:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-11 18:51:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-11 18:51:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-11 18:51:40 ----A---- C:\Windows\system32\appraiser.dll
2016-02-11 18:51:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-11 18:51:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-11 18:51:14 ----A---- C:\Windows\system32\ole32.dll
2016-02-11 18:50:42 ----A---- C:\Windows\system32\shell32.dll
2016-02-11 18:50:41 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-11 18:50:41 ----A---- C:\Windows\system32\authui.dll
2016-02-11 18:50:41 ----A---- C:\Windows\explorer.exe
2016-02-11 18:50:22 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-11 18:50:22 ----A---- C:\Windows\system32\InkEd.dll
2016-02-11 18:50:06 ----A---- C:\Windows\system32\ntdll.dll
2016-02-11 18:50:06 ----A---- C:\Windows\system32\EncDec.dll
2016-02-11 18:50:06 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-11 18:50:04 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-02-11 18:50:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-11 18:50:03 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\kernel32.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\advapi32.dll
2016-02-11 18:50:02 ----A---- C:\Windows\system32\msorcl32.dll
2016-02-11 18:50:02 ----A---- C:\Windows\system32\kerberos.dll
2016-02-11 18:50:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-11 18:50:02 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-11 18:50:01 ----A---- C:\Windows\system32\winsrv.dll
2016-02-11 18:50:01 ----A---- C:\Windows\system32\smss.exe
2016-02-11 18:50:01 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-11 18:50:01 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-11 18:50:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-11 18:50:01 ----A---- C:\Windows\system32\conhost.exe
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\wdigest.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\sspicli.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\srcore.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\srclient.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\schannel.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\secur32.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\rstrui.exe
2016-02-11 18:50:00 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\lsass.exe
2016-02-11 18:50:00 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-11 18:50:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-11 18:50:00 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\credssp.dll
2016-02-11 18:50:00 ----A---- C:\Windows\system32\auditpol.exe
2016-02-11 18:50:00 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-11 18:49:59 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-11 18:49:59 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-11 18:49:59 ----A---- C:\Windows\system32\msobjs.dll
2016-02-11 18:49:59 ----A---- C:\Windows\system32\msaudite.dll
2016-02-11 18:49:59 ----A---- C:\Windows\system32\adtschema.dll
2016-02-11 18:49:39 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-11 18:49:38 ----A---- C:\Windows\system32\win32k.sys
2016-02-11 18:49:32 ----A---- C:\Windows\system32\urlmon.dll
2016-02-11 18:49:31 ----A---- C:\Windows\system32\ieui.dll
2016-02-11 18:49:31 ----A---- C:\Windows\system32\ieframe.dll
2016-02-11 18:49:28 ----A---- C:\Windows\system32\mshtml.dll
2016-02-11 18:49:27 ----A---- C:\Windows\system32\iertutil.dll
2016-02-11 18:49:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-11 18:49:09 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-11 18:49:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-11 18:49:09 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-11 18:49:09 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-11 18:49:08 ----A---- C:\Windows\system32\occache.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\inseng.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-11 18:49:08 ----A---- C:\Windows\system32\iernonce.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-11 18:49:08 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-11 18:49:07 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-11 18:49:05 ----A---- C:\Windows\system32\webcheck.dll
2016-02-11 18:49:05 ----A---- C:\Windows\system32\msrating.dll
2016-02-11 18:49:04 ----A---- C:\Windows\system32\iesetup.dll
2016-02-11 18:49:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-11 18:49:03 ----A---- C:\Windows\system32\wininet.dll
2016-02-11 18:49:01 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-11 18:48:57 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-11 18:48:56 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-11 18:48:55 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-11 18:48:50 ----A---- C:\Windows\system32\jscript9.dll
2016-02-11 18:48:49 ----A---- C:\Windows\system32\jscript.dll
2016-02-11 18:48:48 ----A---- C:\Windows\system32\vbscript.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wups2.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wups.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wudriver.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wucltux.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wuapp.exe
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wuapi.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-11 18:48:24 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-11 17:05:55 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2016-03-09 14:39:06 ----D---- C:\Windows\system32\catroot2
2016-03-09 14:38:58 ----D---- C:\Windows\Temp
2016-03-09 14:38:54 ----D---- C:\Windows\winsxs
2016-03-09 14:38:50 ----RD---- C:\Program Files
2016-03-09 12:54:21 ----D---- C:\Program Files\SpeedFan
2016-03-09 12:16:24 ----D---- C:\Windows\system32\config
2016-03-09 12:15:25 ----D---- C:\Users\Lilly\AppData\Roaming\Seznam.cz
2016-03-08 16:24:30 ----D---- C:\Windows\system32\drivers
2016-03-04 15:02:22 ----D---- C:\KMPlayer
2016-03-03 17:26:03 ----D---- C:\Windows\system32\Tasks
2016-03-03 17:26:03 ----D---- C:\Program Files\Opera
2016-03-02 20:44:19 ----D---- C:\ProgramData\Package Cache
2016-03-02 20:41:42 ----D---- C:\Windows
2016-03-02 16:24:31 ----SHD---- C:\Windows\Installer
2016-02-26 20:47:45 ----SD---- C:\Windows\system32\GWX
2016-02-26 20:47:18 ----SHD---- C:\System Volume Information
2016-02-23 20:52:24 ----AD---- C:\Windows\System32
2016-02-23 20:52:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-23 20:52:00 ----D---- C:\Windows\inf
2016-02-21 18:05:55 ----D---- C:\Windows\system32\NDF
2016-02-12 18:46:23 ----D---- C:\Windows\Microsoft.NET
2016-02-12 18:39:08 ----RSD---- C:\Windows\assembly
2016-02-12 12:02:35 ----SD---- C:\Windows\system32\CompatTel
2016-02-12 12:02:35 ----D---- C:\Windows\system32\appraiser
2016-02-12 12:02:35 ----D---- C:\Windows\AppPatch
2016-02-12 12:02:33 ----D---- C:\Windows\system32\cs-CZ
2016-02-12 12:02:33 ----D---- C:\Windows\cs-CZ
2016-02-12 12:02:31 ----D---- C:\Program Files\Windows Journal
2016-02-12 12:02:23 ----D---- C:\Windows\system32\en-US
2016-02-12 12:02:23 ----D---- C:\Program Files\Internet Explorer
2016-02-11 21:06:40 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 21:03:58 ----D---- C:\Windows\system32\MRT
2016-02-11 20:52:45 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SiSide;SiSide; C:\Windows\system32\DRIVERS\siside.sys [2003-03-25 4096]
R0 sisidex;sisidex; C:\Windows\system32\drivers\sisidex.sys [2002-10-17 49024]
R0 sisperf;Add Performance Filter Driver; C:\Windows\system32\drivers\sisperf.sys [2002-08-20 9472]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-03-08 136272]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2015-04-16 37896]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SiSkp;SiSkp; C:\Windows\system32\DRIVERS\srvkp.sys [2007-01-23 16896]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2015-06-10 31848]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-03-08 109016]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-03-08 60544]
R2 giveio;giveio; \??\C:\Windows\system32\giveio.sys [1996-04-03 5248]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 speedfan;speedfan; \??\C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-19 4172832]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-07-27 25016]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2006-11-02 20992]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2014-01-23 51928]
R3 SiS315;SiS315; C:\Windows\system32\DRIVERS\sisgrp.sys [2007-01-23 317952]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2015-05-18 23456]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-22 2361952]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\Antivirus\avguard.exe [2016-03-08 466504]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\Antivirus\sched.exe [2016-03-08 466504]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2016-01-27 260456]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 TeamViewer;TeamViewer 11; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-12-14 6889232]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files\Avira\Antivirus\avmailc7.exe [2016-03-08 955736]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\Antivirus\avwebg7.exe [2016-03-08 1424880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S2 LavasoftTcpService;LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2016-03-09 2751760]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-15 147624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-11-05 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Log z Adw:

# AdwCleaner v5.101 - Logfile created 09/03/2016 at 20:01:06
# Updated 07/03/2016 by Xplode
# Database : 2016-03-08.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x86)
# Username : Lilly - LILLY-PC
# Running from : C:\Users\Lilly\Desktop\AdwCleaner.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\DriverToolkit
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
[-] Folder Deleted : C:\Users\Lilly\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\Lilly\AppData\Local\eSupport.com
[-] Folder Deleted : C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}

***** [ Files ] *****

[-] File Deleted : C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\extensions\vb@yandex.ru.xpi
[-] File Deleted : C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\extensions\yasearch@yandex.ru.xpi
[-] File Deleted : C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\searchplugins\bing-lavasoft.xml
[-] File Deleted : C:\Windows\system32\lavasofttcpservice.dll
[-] File Deleted : C:\Windows\system32\LavasoftTcpServiceOff.ini

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : DRIVERTOOLKIT AUTORUN

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{20B9C05C-99C9-4BAB-B596-FB0C0E1C9F55}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{AD4409E5-23C2-412B-849D-8FC0635B4073}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{AEE9D70C-6C9E-4B27-9F2C-8F14E95BEEF6}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{DD20920E-515A-4342-85E3-FC9A9FDA55C2}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{92FDEF05-B35E-4806-B87F-8B66AB649997}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{9F0BF664-B611-4C53-AEEA-FDBFCE6E3CA3}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{A8BD93E8-F6AE-4F02-828D-DE47FEC4D375}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKCU\Software\eSupport.com
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]

***** [ Web browsers ] *****

[-] [C:\Users\Lilly\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.searchguru.info/?pid=357&r=2013/12/08&hid=9945940003705936861&lg=EN&cc=SK&unqvl=43

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [2692 bytes] - [09/03/2016 20:01:06]
C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [2703 bytes] - [09/03/2016 13:38:18]
C:\Program Files\AdwCleaner\AdwCleaner[S2].txt - [2788 bytes] - [09/03/2016 19:50:35]

########## EOF - C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [2953 bytes] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lilly at 2016-03-10 16:43:56
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 4 GB (7%) free of 60 GB
Total RAM: 1920 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:44:12, on 10.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe
C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\sistray.exe
C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Lilly\Desktop\RSIT.exe
C:\Program Files\trend micro\Lilly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\Antivirus\avgnt.exe" /min
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [Web Companion] C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Utility Tray.lnk = C:\Windows\System32\sistray.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 6390 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/?clid=6826"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1223183.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\searchplugins\
firmy.cz-120407.xml
mapy.cz-120407.xml
seznam.cz-120407.xml
videa.seznam.cz-120407.xml
zbozi.cz-120407.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-29 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-29 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-05-22 1833504]
"avgnt"=C:\Program Files\Avira\Antivirus\avgnt.exe [2016-03-08 807392]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-01-27 66328]
"SiSPower"=SiSPower.dll,ModeAgent []
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"=DevDetect.exe -autorun []
"Web Companion"=C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [2016-03-09 1474320]
"cz.seznam.software.autoupdate"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC"=C:\Program Files\Google\Chrome\Application\chrome.exe [2016-02-18 746648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverPack Notifier]
C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe --run startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Utility Tray.lnk - C:\Windows\System32\sistray.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-03-09 14:52:56 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-09 14:52:55 ----A---- C:\Windows\system32\seclogon.dll
2016-03-09 14:52:52 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 14:52:50 ----A---- C:\Windows\system32\mfds.dll
2016-03-09 14:51:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-09 14:51:33 ----A---- C:\Windows\system32\ntdll.dll
2016-03-09 14:51:32 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-09 14:51:31 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-09 14:51:31 ----A---- C:\Windows\system32\kerberos.dll
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\advapi32.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\wdigest.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\sspicli.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\srcore.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\smss.exe
2016-03-09 14:51:30 ----A---- C:\Windows\system32\schannel.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-09 14:51:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-09 14:51:30 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\srclient.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\secur32.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\rstrui.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\msobjs.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\msaudite.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\lsass.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\credssp.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\auditpol.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\adtschema.dll
2016-03-09 14:51:03 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wudriver.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wucltux.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuapi.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wups2.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wups.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wuapp.exe
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\olepro32.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-09 14:50:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-09 14:50:31 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-09 14:50:31 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-09 14:50:30 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\occache.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-09 14:50:30 ----A---- C:\Windows\system32\iernonce.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-09 14:50:29 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\inseng.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 14:50:29 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 14:50:28 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 14:50:26 ----A---- C:\Windows\system32\webcheck.dll
2016-03-09 14:50:26 ----A---- C:\Windows\system32\msrating.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\iesetup.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-09 14:50:22 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 14:50:20 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 14:50:18 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 14:50:13 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 14:50:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-09 14:50:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-09 14:50:05 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 14:50:03 ----A---- C:\Windows\system32\mshtml.dll
2016-03-09 14:49:58 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\generaltel.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\appraiser.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\aeinv.dll
2016-03-09 14:48:42 ----A---- C:\Windows\system32\invagent.dll
2016-03-09 14:48:42 ----A---- C:\Windows\system32\devinv.dll
2016-03-09 14:48:41 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-09 14:48:41 ----A---- C:\Windows\system32\acmigration.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\lpk.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\fontsub.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\atmfd.dll
2016-03-09 14:48:38 ----A---- C:\Windows\system32\dciman32.dll
2016-03-09 14:48:38 ----A---- C:\Windows\system32\atmlib.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-09 14:48:24 ----A---- C:\Windows\system32\wmp.dll
2016-03-09 14:48:22 ----A---- C:\Windows\system32\wmploc.DLL
2016-03-09 14:48:22 ----A---- C:\Windows\system32\spwmp.dll
2016-03-09 14:48:22 ----A---- C:\Windows\system32\dxmasf.dll
2016-03-09 14:48:18 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-03-09 14:38:50 ----D---- C:\Program Files\trend micro
2016-03-09 14:38:48 ----D---- C:\rsit
2016-03-09 13:30:25 ----D---- C:\Program Files\AdwCleaner
2016-02-16 17:31:01 ----D---- C:\Users\Lilly\AppData\Roaming\BitTorrent
2016-02-11 18:51:14 ----A---- C:\Windows\system32\ole32.dll
2016-02-11 18:50:42 ----A---- C:\Windows\system32\shell32.dll
2016-02-11 18:50:41 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-11 18:50:41 ----A---- C:\Windows\system32\authui.dll
2016-02-11 18:50:41 ----A---- C:\Windows\explorer.exe
2016-02-11 18:50:22 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-11 18:50:22 ----A---- C:\Windows\system32\InkEd.dll
2016-02-11 18:50:06 ----A---- C:\Windows\system32\EncDec.dll
2016-02-11 18:50:06 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-11 18:50:03 ----A---- C:\Windows\system32\kernel32.dll
2016-02-11 18:50:02 ----A---- C:\Windows\system32\msorcl32.dll
2016-02-11 18:50:01 ----A---- C:\Windows\system32\winsrv.dll
2016-02-11 18:50:01 ----A---- C:\Windows\system32\conhost.exe
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-11 18:50:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-11 18:49:59 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-11 18:49:59 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-11 18:49:39 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-11 17:05:55 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2016-03-10 16:44:00 ----D---- C:\Windows\Temp
2016-03-09 20:41:01 ----D---- C:\Windows\system32\config
2016-03-09 20:13:23 ----AD---- C:\Windows\System32
2016-03-09 20:13:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-09 20:13:22 ----D---- C:\Windows\inf
2016-03-09 20:10:22 ----D---- C:\Users\Lilly\AppData\Roaming\Seznam.cz
2016-03-09 20:01:29 ----D---- C:\Windows\system32\Tasks
2016-03-09 20:01:27 ----D---- C:\Windows\Tasks
2016-03-09 20:01:08 ----RD---- C:\Program Files
2016-03-09 19:07:19 ----D---- C:\Windows\Microsoft.NET
2016-03-09 17:35:31 ----RSD---- C:\Windows\assembly
2016-03-09 17:09:52 ----D---- C:\Windows\winsxs
2016-03-09 17:05:08 ----D---- C:\Windows\system32\cs-CZ
2016-03-09 17:05:06 ----D---- C:\Windows\system32\drivers
2016-03-09 17:04:59 ----D---- C:\Windows\system32\en-US
2016-03-09 17:04:53 ----D---- C:\Program Files\Internet Explorer
2016-03-09 17:04:48 ----D---- C:\Windows\system32\appraiser
2016-03-09 17:04:43 ----D---- C:\Program Files\Windows Media Player
2016-03-09 17:04:40 ----D---- C:\Windows\system32\DriverStore
2016-03-09 15:42:11 ----SHD---- C:\Windows\Installer
2016-03-09 15:42:11 ----D---- C:\ProgramData\Microsoft Help
2016-03-09 15:32:41 ----D---- C:\Windows\system32\MRT
2016-03-09 15:21:15 ----A---- C:\Windows\system32\MRT.exe
2016-03-09 15:19:13 ----SHD---- C:\System Volume Information
2016-03-09 14:39:06 ----D---- C:\Windows\system32\catroot2
2016-03-09 12:54:21 ----D---- C:\Program Files\SpeedFan
2016-03-04 15:02:22 ----D---- C:\KMPlayer
2016-03-03 17:26:03 ----D---- C:\Program Files\Opera
2016-03-02 20:44:19 ----D---- C:\ProgramData\Package Cache
2016-03-02 20:41:42 ----D---- C:\Windows
2016-02-26 20:47:45 ----SD---- C:\Windows\system32\GWX
2016-02-21 18:05:55 ----D---- C:\Windows\system32\NDF
2016-02-12 12:02:35 ----SD---- C:\Windows\system32\CompatTel
2016-02-12 12:02:35 ----D---- C:\Windows\AppPatch
2016-02-12 12:02:33 ----D---- C:\Windows\cs-CZ
2016-02-12 12:02:31 ----D---- C:\Program Files\Windows Journal

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SiSide;SiSide; C:\Windows\system32\DRIVERS\siside.sys [2003-03-25 4096]
R0 sisidex;sisidex; C:\Windows\system32\drivers\sisidex.sys [2002-10-17 49024]
R0 sisperf;Add Performance Filter Driver; C:\Windows\system32\drivers\sisperf.sys [2002-08-20 9472]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-03-08 136272]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2015-04-16 37896]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SiSkp;SiSkp; C:\Windows\system32\DRIVERS\srvkp.sys [2007-01-23 16896]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2015-06-10 31848]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-03-08 109016]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-03-08 60544]
R2 giveio;giveio; \??\C:\Windows\system32\giveio.sys [1996-04-03 5248]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 speedfan;speedfan; \??\C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-19 4172832]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-07-27 25016]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2006-11-02 20992]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2014-01-23 51928]
R3 SiS315;SiS315; C:\Windows\system32\DRIVERS\sisgrp.sys [2007-01-23 317952]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2015-05-18 23456]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-22 2361952]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\Antivirus\avguard.exe [2016-03-08 466504]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\Antivirus\sched.exe [2016-03-08 466504]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2016-01-27 260456]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LavasoftTcpService;LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2016-03-09 2751760]
R2 TeamViewer;TeamViewer 11; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-12-14 6889232]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files\Avira\Antivirus\avmailc7.exe [2016-03-08 955736]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\Antivirus\avwebg7.exe [2016-03-08 1424880]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-02-08 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-15 147624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-11-05 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lilly at 2016-03-11 18:06:32
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 7 GB (12%) free of 60 GB
Total RAM: 1920 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:07:08, on 11.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\GWX\GWX.exe
C:\Windows\notepad.exe
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe
C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\sistray.exe
C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Lilly\Desktop\RSIT.exe
C:\Program Files\trend micro\Lilly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#web/result?source=art&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#web/result?source=art&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\Antivirus\avgnt.exe" /min
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKCU\..\Run: [Web Companion] C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Utility Tray.lnk = C:\Windows\System32\sistray.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 6328 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/?clid=6826"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1223183.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Lilly\AppData\Roaming\Mozilla\Firefox\Profiles\dc0q90fo.default\searchplugins\
firmy.cz-120407.xml
mapy.cz-120407.xml
seznam.cz-120407.xml
videa.seznam.cz-120407.xml
zbozi.cz-120407.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-29 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-29 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-05-22 1833504]
"avgnt"=C:\Program Files\Avira\Antivirus\avgnt.exe [2016-03-08 807392]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-01-27 66328]
"SiSPower"=SiSPower.dll,ModeAgent []
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"=DevDetect.exe -autorun []
"Web Companion"=C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [2016-03-09 1474320]
"cz.seznam.software.autoupdate"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Lilly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"GoogleChromeAutoLaunch_D9D1D687D124F7E45EDF0FC5D6656EEC"=C:\Program Files\Google\Chrome\Application\chrome.exe [2016-02-18 746648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverPack Notifier]
C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe --run startup []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Utility Tray.lnk - C:\Windows\System32\sistray.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-03-11 17:52:16 ----D---- C:\_OTM
2016-03-09 14:52:56 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-09 14:52:55 ----A---- C:\Windows\system32\seclogon.dll
2016-03-09 14:52:52 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 14:52:50 ----A---- C:\Windows\system32\mfds.dll
2016-03-09 14:51:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-09 14:51:33 ----A---- C:\Windows\system32\ntdll.dll
2016-03-09 14:51:32 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-09 14:51:31 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-09 14:51:31 ----A---- C:\Windows\system32\kerberos.dll
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-09 14:51:31 ----A---- C:\Windows\system32\advapi32.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\wdigest.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\sspicli.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\srcore.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\smss.exe
2016-03-09 14:51:30 ----A---- C:\Windows\system32\schannel.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-09 14:51:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-09 14:51:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-09 14:51:30 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\srclient.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\secur32.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\rstrui.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\msobjs.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\msaudite.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\lsass.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\credssp.dll
2016-03-09 14:51:29 ----A---- C:\Windows\system32\auditpol.exe
2016-03-09 14:51:29 ----A---- C:\Windows\system32\adtschema.dll
2016-03-09 14:51:03 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wudriver.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wucltux.dll
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-09 14:51:02 ----A---- C:\Windows\system32\wuapi.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wups2.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wups.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wuapp.exe
2016-03-09 14:51:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-03-09 14:51:01 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\olepro32.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-09 14:50:49 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-09 14:50:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-09 14:50:31 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-09 14:50:31 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-09 14:50:30 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\occache.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-09 14:50:30 ----A---- C:\Windows\system32\iernonce.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-09 14:50:30 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-09 14:50:29 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\inseng.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 14:50:29 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-09 14:50:29 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 14:50:28 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 14:50:26 ----A---- C:\Windows\system32\webcheck.dll
2016-03-09 14:50:26 ----A---- C:\Windows\system32\msrating.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\iesetup.dll
2016-03-09 14:50:25 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-09 14:50:22 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 14:50:20 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 14:50:18 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 14:50:13 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 14:50:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-09 14:50:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-09 14:50:05 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 14:50:03 ----A---- C:\Windows\system32\mshtml.dll
2016-03-09 14:49:58 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\generaltel.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\appraiser.dll
2016-03-09 14:48:43 ----A---- C:\Windows\system32\aeinv.dll
2016-03-09 14:48:42 ----A---- C:\Windows\system32\invagent.dll
2016-03-09 14:48:42 ----A---- C:\Windows\system32\devinv.dll
2016-03-09 14:48:41 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-09 14:48:41 ----A---- C:\Windows\system32\acmigration.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\lpk.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\fontsub.dll
2016-03-09 14:48:39 ----A---- C:\Windows\system32\atmfd.dll
2016-03-09 14:48:38 ----A---- C:\Windows\system32\dciman32.dll
2016-03-09 14:48:38 ----A---- C:\Windows\system32\atmlib.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-09 14:48:30 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-09 14:48:29 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-09 14:48:28 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-09 14:48:24 ----A---- C:\Windows\system32\wmp.dll
2016-03-09 14:48:22 ----A---- C:\Windows\system32\wmploc.DLL
2016-03-09 14:48:22 ----A---- C:\Windows\system32\spwmp.dll
2016-03-09 14:48:22 ----A---- C:\Windows\system32\dxmasf.dll
2016-03-09 14:48:18 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-03-09 14:38:50 ----D---- C:\Program Files\trend micro
2016-03-09 14:38:48 ----D---- C:\rsit
2016-03-09 13:30:25 ----D---- C:\Program Files\AdwCleaner
2016-02-16 17:31:01 ----D---- C:\Users\Lilly\AppData\Roaming\BitTorrent

======List of files/folders modified in the last 1 month======

2016-03-11 18:06:41 ----D---- C:\Windows\Temp
2016-03-11 18:02:21 ----D---- C:\Windows\system32\config
2016-03-11 18:01:59 ----D---- C:\Windows\Microsoft.NET
2016-03-11 17:52:22 ----D---- C:\Windows\Tasks
2016-03-11 15:49:47 ----D---- C:\Users\Lilly\AppData\Roaming\Seznam.cz
2016-03-09 20:13:23 ----AD---- C:\Windows\System32
2016-03-09 20:13:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-09 20:13:22 ----D---- C:\Windows\inf
2016-03-09 20:01:29 ----D---- C:\Windows\system32\Tasks
2016-03-09 20:01:08 ----RD---- C:\Program Files
2016-03-09 17:35:31 ----RSD---- C:\Windows\assembly
2016-03-09 17:09:52 ----D---- C:\Windows\winsxs
2016-03-09 17:05:08 ----D---- C:\Windows\system32\cs-CZ
2016-03-09 17:05:06 ----D---- C:\Windows\system32\drivers
2016-03-09 17:04:59 ----D---- C:\Windows\system32\en-US
2016-03-09 17:04:53 ----D---- C:\Program Files\Internet Explorer
2016-03-09 17:04:48 ----D---- C:\Windows\system32\appraiser
2016-03-09 17:04:43 ----D---- C:\Program Files\Windows Media Player
2016-03-09 17:04:40 ----D---- C:\Windows\system32\DriverStore
2016-03-09 15:42:11 ----SHD---- C:\Windows\Installer
2016-03-09 15:42:11 ----D---- C:\ProgramData\Microsoft Help
2016-03-09 15:32:41 ----D---- C:\Windows\system32\MRT
2016-03-09 15:21:15 ----A---- C:\Windows\system32\MRT.exe
2016-03-09 15:19:13 ----SHD---- C:\System Volume Information
2016-03-09 14:39:06 ----D---- C:\Windows\system32\catroot2
2016-03-09 12:54:21 ----D---- C:\Program Files\SpeedFan
2016-03-04 15:02:22 ----D---- C:\KMPlayer
2016-03-03 17:26:03 ----D---- C:\Program Files\Opera
2016-03-02 20:44:19 ----D---- C:\ProgramData\Package Cache
2016-03-02 20:42:01 ----D---- C:\Windows\Minidump
2016-03-02 20:41:42 ----D---- C:\Windows
2016-02-26 20:47:45 ----SD---- C:\Windows\system32\GWX
2016-02-21 18:05:55 ----D---- C:\Windows\system32\NDF
2016-02-12 12:02:35 ----SD---- C:\Windows\system32\CompatTel
2016-02-12 12:02:35 ----D---- C:\Windows\AppPatch
2016-02-12 12:02:33 ----D---- C:\Windows\cs-CZ
2016-02-12 12:02:31 ----D---- C:\Program Files\Windows Journal

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SiSide;SiSide; C:\Windows\system32\DRIVERS\siside.sys [2003-03-25 4096]
R0 sisidex;sisidex; C:\Windows\system32\drivers\sisidex.sys [2002-10-17 49024]
R0 sisperf;Add Performance Filter Driver; C:\Windows\system32\drivers\sisperf.sys [2002-08-20 9472]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-03-08 136272]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2015-04-16 37896]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SiSkp;SiSkp; C:\Windows\system32\DRIVERS\srvkp.sys [2007-01-23 16896]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2015-06-10 31848]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-03-08 109016]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-03-08 60544]
R2 giveio;giveio; \??\C:\Windows\system32\giveio.sys [1996-04-03 5248]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 speedfan;speedfan; \??\C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-19 4172832]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-07-27 25016]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2006-11-02 20992]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2014-01-23 51928]
R3 SiS315;SiS315; C:\Windows\system32\DRIVERS\sisgrp.sys [2007-01-23 317952]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2015-05-18 23456]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-22 2361952]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\Antivirus\avguard.exe [2016-03-08 466504]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\Antivirus\sched.exe [2016-03-08 466504]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2016-01-27 260456]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LavasoftTcpService;LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2016-03-09 2751760]
R2 TeamViewer;TeamViewer 11; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-12-14 6889232]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files\Avira\Antivirus\avmailc7.exe [2016-03-08 955736]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\Antivirus\avwebg7.exe [2016-03-08 1424880]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-18 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-02-08 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-15 147624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-11-05 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------

Dvouklikem na soubor spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

O15 - Trusted Zone: http://*.webcompanion.com

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Vykonané! Hlásim, že internet už šľape ako má čiže vrela vďaka za pomoc. Len ten problém s prehrávaním videí nejako neprestáva. Hoc ak si spustím youtube tam sa mi to zdá bez sekania, online stránky haprujú i naďalej a ak chcem spustiť nejaký prehrávač v pc či už KM player alebo BS tak pri otvorení filmu, ktorý ani nenačíta pc zamrzne a je potrebný reštart. To bude asi nejaká systémová chyba alebo s grafikou? Karta by mala byť nová, ovládače by mali fungovať tiež aaaleebo?

To nevím, kde by ta chyba mohla být, začněme od reinstalu těch přehrávačů.

Po reinštale BS bez zmeny, spustím zamrzne celý pc ... KM mi v poriadku spustí len nejaký seriál (čo je divné) a film je akosi posunutý obraz zo zvukom, ale nie je to o zlej kvalite filmu, robí to asi pri každom čo som skúšala :X

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Nie som si istá či to má byť log z toho programu alebo znova s RSIT, ale predpokladam že z programu, keby niečo rsit vložím neskôr ... ale nájdené dve hrozby ...


Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 14.3.2016
Čas skenování: 12:57
Protokol: scan virus.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2016.03.14.03
Databáze rootkitů: v2016.03.12.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Lilly

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 339234
Uplynulý čas: 31 min, 24 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 2
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\Conduit, , [59528cfb9108da5c4faad1b450b4a858],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1737263434-2482415813-2992170951-1001\SOFTWARE\Conduit, , [2b80097e2a6f43f37b7dc2c3be462fd1],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Když MBAM, potom log z něho. Tento je správný a vše, co nalezl smažte.

Vykonané! Ale problém s videami to neodstránilo :X