VIRY.CZ

Dobrý den,

prosím o pomoc, náhle se mi spomalil internet. Děkuji za pomoc.

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by Jelínkovi at 2014-03-24 14:13:56
Running from C:\Users\Jelínkovi\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.8.800.168 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
ATI Catalyst Install Manager (HKLM\...\{6D1261A7-4CC9-07C7-B352-C90333D3BEF1}) (Version: 3.0.750.0 - ATI Technologies, Inc.)
avast! Free Antivirus (HKLM\...\avast) (Version: 8.0.1497.0 - AVAST Software)
AVG PC TuneUp 2014 (cs-CZ) (Version: 14.0.1001.229 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM\...\AVG PC TuneUp) (Version: 14.0.1001.229 - AVG)
AVG PC TuneUp 2014 (Version: 14.0.1001.229 - AVG) Hidden
Bandicam (HKLM\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield Heroes (HKLM\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions)
Bundled software uninstaller (HKLM\...\bi_uninstaller) (Version: - ) <==== ATTENTION
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2009.1110.2225.40230 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.1110.2225.40230 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.1110.2225.40230 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.1110.2225.40230 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2009.1110.2225.40230 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2009.1110.2225.40230 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.1110.2225.40230 - ATI) Hidden
CCC Help Czech (Version: 2009.1110.2224.40230 - Název společnosti:) Hidden
CCC Help English (Version: 2009.1110.2224.40230 - ATI) Hidden
ccc-core-static (Version: 2009.1110.2225.40230 - Název společnosti:) Hidden
ccc-utility (Version: 2009.1110.2225.40230 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
Codec Pack - All In 1 6.0.3.0 (HKLM\...\Cool's_Codec_pack_4.12) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Facebook Video Calling 2.0.0.447 (HKLM\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Gameforge Live 1.10.0 "Legend" (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.10.0 - Gameforge)
Gameiki Mod Installer (HKCU\...\Gameiki) (Version: - )
GameMaker 8.1 (HKCU\...\GameMaker81) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
Hunting Unlimited 2010 (HKLM\...\Hunting Unlimited 2010_is1) (Version: - Break For Games)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (Version: 3.0.1 - Riot Games) Hidden
LemurLeap 3.0.0 (HKLM\...\LemurLeap) (Version: 3.0.0 - LemurLeap) <==== ATTENTION
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (Version: 14.0.4763.1011 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM\...\{34D9106C-A947-47ED-B4AB-764736350769}) (Version: 1.6.1 - MINECRAFTinstall.net)
Minecraft1.6.4 (HKLM\...\Minecraft1.6.4) (Version: - )
Mount&Blade (HKLM\...\Mount&Blade) (Version: - )
Mozilla Firefox 28.0 (x86 cs) (HKLM\...\Mozilla Firefox 28.0 (x86 cs)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
Mumble 1.2.4 (HKLM\...\{FD8F9644-A572-44AD-84B0-21CA46CB7DC6}) (Version: 1.2.4 - Thorvald Natvig)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Pando Media Booster (HKLM\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Pokki (HKCU\...\Pokki) (Version: 0.267.1.208 - Pokki)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Seznam Software (HKCU\...\SeznamInstall) (Version: - Seznam.cz)
Skype Click to Call (HKLM\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.1.15383.6004 - Microsoft Corporation)
Skype™ 6.13 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Tanks (HKLM\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
World of Warplanes (HKLM\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1) (Version: - Wargaming.net)

==================== Restore Points =========================

18-03-2014 13:21:44 Windows Update
23-03-2014 15:33:24 Installed Windows Movie Maker 2.6

==================== Hosts content: ==========================

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {017FD13E-4D2A-4EE8-A98E-4F59FA41E421} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-15] (Google Inc.)
Task: {1D6C1977-D282-4011-8CDD-785A3B830A71} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\AVG PC TuneUp 2014\OneClick.exe [2013-10-30] (AVG)
Task: {4737E8BF-FC75-4E8E-B2CC-D72279921A4F} - System32\Tasks\Registry Optimizer_UPDATES => C:\Program Files\WinZip Registry Optimizer\Winzipro.exe
Task: {5E21BA7C-6E82-4C1B-90B7-3AF5E5CC3022} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {6EAADA39-14D4-49BB-9CE7-2F5E0BB1059E} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {A534B712-C3BF-46D0-83B2-09272AF4A93F} - System32\Tasks\Registry Optimizer_DEFAULT => C:\Program Files\WinZip Registry Optimizer\Winzipro.exe
Task: {A71CC1AC-618B-4D93-949F-2BC224F1B8B2} - System32\Tasks\Registry Optimizer => C:\Program Files\WinZip Registry Optimizer\Winzipro.exe
Task: {AC2DBEB4-F7EC-4971-8AE0-617F329E4BBC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2567377071-2905614178-690849522-1000
Task: {B16D7F6B-51FF-4A46-80D4-5E5C9E5132FB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2567377071-2905614178-690849522-1000UA => C:\Users\Jelínkovi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-06] (Facebook Inc.)
Task: {B23802CC-6B55-47F3-97FF-18400ECA9268} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2567377071-2905614178-690849522-1000Core => C:\Users\Jelínkovi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-06] (Facebook Inc.)
Task: {EE6C9D7E-858E-41BE-AA54-41F726B5D7CC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-15] (Google Inc.)
Task: {F6AE4A68-8181-4D78-B79B-C053BF1D79AD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {FE4B05BC-4EE4-489A-A6E5-A9ADD593B233} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2567377071-2905614178-690849522-1000Core.job => C:\Users\Jelínkovi\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2567377071-2905614178-690849522-1000UA.job => C:\Users\Jelínkovi\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Registry Optimizer_DEFAULT.job => C:\Program Files\WinZip Registry Optimizer\Winzipro.exe
Task: C:\Windows\Tasks\Registry Optimizer_UPDATES.job => C:\Program Files\WinZip Registry Optimizer\Winzipro.exe

==================== Loaded Modules (whitelisted) =============

2014-03-24 13:02 - 2014-03-24 08:56 - 02283520 _____ () C:\Program Files\AVAST Software\Avast\defs\14032400\algo.dll
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-12-05 19:24 - 2013-12-05 19:24 - 02017608 _____ () C:\Users\Jelínkovi\AppData\Local\Pokki\ocdeskband_0.dll
2014-02-10 18:14 - 2014-02-10 19:13 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2013-10-30 11:27 - 2013-10-30 11:27 - 00501560 _____ () C:\Program Files\AVG PC TuneUp 2014\avgreplibx.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 00569856 _____ () C:\Users\Jelínkovi\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 01400846 _____ () C:\Users\Jelínkovi\AppData\Local\Pokki\Engine\avcodec-54.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 00151054 _____ () C:\Users\Jelínkovi\AppData\Local\Pokki\Engine\avutil-51.dll
2013-09-07 03:11 - 2013-09-07 03:11 - 00222734 _____ () C:\Users\Jelínkovi\AppData\Local\Pokki\Engine\avformat-54.dll
2008-10-24 11:29 - 2008-10-24 11:29 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2014-02-22 16:37 - 2014-02-22 16:37 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-03-18 16:25 - 2014-03-18 16:25 - 03642480 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-09-15 10:42 - 2013-09-15 10:42 - 16177544 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: Adaptér miniportu Microsoft Virtual WiFi
Description: Adaptér miniportu Microsoft Virtual WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (03/23/2014 10:25:58 PM) (Source: Google Update) (User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/22/2014 03:18:31 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: TuneUpUtilitiesService32.exe, verze: 14.0.1001.229, časové razítko: 0x5270ddfb
Název chybujícího modulu: TuneUpUtilitiesService32.exe, verze: 14.0.1001.229, časové razítko: 0x5270ddfb
Kód výjimky: 0xc0000005
Posun chyby: 0x0001715f
ID chybujícího procesu: 0x170
Čas spuštění chybující aplikace: 0xTuneUpUtilitiesService32.exe0
Cesta k chybující aplikaci: TuneUpUtilitiesService32.exe1
Cesta k chybujícímu modulu: TuneUpUtilitiesService32.exe2
ID zprávy: TuneUpUtilitiesService32.exe3

Error: (03/20/2014 06:50:51 AM) (Source: Application Hang) (User: )
Description: Program firefox.exe verze 28.0.0.5186 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 16e0

Čas spuštění: 01cf4387b61dbd4a

Čas ukončení: 33

Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe

ID hlášení: 8e727ffa-aff3-11e3-a4b7-90e6ba6fcb27

Error: (03/19/2014 04:23:05 PM) (Source: Google Update) (User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/19/2014 07:21:05 AM) (Source: Google Update) (User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/19/2014 07:04:47 AM) (Source: Google Update) (User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/16/2014 07:59:22 AM) (Source: MsiInstaller) (User: Jelínkovi-PC)
Description: Product: Spelunky HD -- Error 1308. Source file not found: C:\Users\Jelínkovi\AppData\Roaming\Mossmouth\Spelunky HD 1.0.0\install\FC49507\VACE.exe. Verify that the file exists and that you can access it.

Error: (03/09/2014 08:52:24 PM) (Source: Application Hang) (User: )
Description: Program firefox.exe verze 27.0.1.5156 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: dcc

Čas spuštění: 01cf3b6fd7dc29bf

Čas ukončení: 30

Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe

ID hlášení: 5166a4f3-a7c4-11e3-a5d8-90e6ba6fcb27

Error: (03/06/2014 03:29:16 PM) (Source: Application Error) (User: )
Description: Název chybující aplikace: firefox.exe, verze: 27.0.1.5156, časové razítko: 0x52fc0faa
Název chybujícího modulu: xul.dll, verze: 27.0.1.5156, časové razítko: 0x52fc0f79
Kód výjimky: 0xc0000005
Posun chyby: 0x001560c7
ID chybujícího procesu: 0x9b0
Čas spuštění chybující aplikace: 0xfirefox.exe0
Cesta k chybující aplikaci: firefox.exe1
Cesta k chybujícímu modulu: firefox.exe2
ID zprávy: firefox.exe3

Error: (03/06/2014 11:34:34 AM) (Source: Application Error) (User: )
Description: Název chybující aplikace: TuneUpUtilitiesService32.exe, verze: 14.0.1001.229, časové razítko: 0x5270ddfb
Název chybujícího modulu: TuneUpUtilitiesService32.exe, verze: 14.0.1001.229, časové razítko: 0x5270ddfb
Kód výjimky: 0xc0000005
Posun chyby: 0x00018f85
ID chybujícího procesu: 0x4b0
Čas spuštění chybující aplikace: 0xTuneUpUtilitiesService32.exe0
Cesta k chybující aplikaci: TuneUpUtilitiesService32.exe1
Cesta k chybujícímu modulu: TuneUpUtilitiesService32.exe2
ID zprávy: TuneUpUtilitiesService32.exe3


System errors:
=============
Error: (03/24/2014 09:26:51 AM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (03/23/2014 06:58:51 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (03/23/2014 09:07:41 AM) (Source: EventLog) (User: )
Description: Předchozí vypnutí systému (9:05:09, ‎23.‎3.‎2014) bylo neočekávané.

Error: (03/22/2014 07:59:06 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (03/22/2014 04:53:01 PM) (Source: EventLog) (User: )
Description: Předchozí vypnutí systému (16:51:05, ‎22.‎3.‎2014) bylo neočekávané.

Error: (03/22/2014 03:18:55 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (03/22/2014 03:18:51 PM) (Source: Service Control Manager) (User: )
Description: Služba AVG PC TuneUp Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/21/2014 04:29:47 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (03/21/2014 06:54:06 AM) (Source: EventLog) (User: )
Description: Předchozí vypnutí systému (6:51:50, ‎21.‎3.‎2014) bylo neočekávané.

Error: (03/18/2014 06:23:40 PM) (Source: Microsoft-Windows-HAL) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.


Microsoft Office Sessions:
=========================
Error: (03/23/2014 10:25:58 PM) (Source: Google Update)(User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/22/2014 03:18:31 PM) (Source: Application Error)(User: )
Description: TuneUpUtilitiesService32.exe14.0.1001.2295270ddfbTuneUpUtilitiesService32.exe14.0.1001.2295270ddfbc00000050001715f17001cf45d99738f213C:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exeC:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exed80f7dce-b1cc-11e3-a93a-90e6ba6fcb27

Error: (03/20/2014 06:50:51 AM) (Source: Application Hang)(User: )
Description: firefox.exe28.0.0.518616e001cf4387b61dbd4a33C:\Program Files\Mozilla Firefox\firefox.exe8e727ffa-aff3-11e3-a4b7-90e6ba6fcb27

Error: (03/19/2014 04:23:05 PM) (Source: Google Update)(User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/19/2014 07:21:05 AM) (Source: Google Update)(User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/19/2014 07:04:47 AM) (Source: Google Update)(User: Jelínkovi-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (03/16/2014 07:59:22 AM) (Source: MsiInstaller)(User: Jelínkovi-PC)
Description: Product: Spelunky HD -- Error 1308. Source file not found: C:\Users\Jelínkovi\AppData\Roaming\Mossmouth\Spelunky HD 1.0.0\install\FC49507\VACE.exe. Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (03/09/2014 08:52:24 PM) (Source: Application Hang)(User: )
Description: firefox.exe27.0.1.5156dcc01cf3b6fd7dc29bf30C:\Program Files\Mozilla Firefox\firefox.exe5166a4f3-a7c4-11e3-a5d8-90e6ba6fcb27

Error: (03/06/2014 03:29:16 PM) (Source: Application Error)(User: )
Description: firefox.exe27.0.1.515652fc0faaxul.dll27.0.1.515652fc0f79c0000005001560c79b001cf39280a26a7f6C:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Mozilla Firefox\xul.dllb187ff38-a53b-11e3-b303-90e6ba6fcb27

Error: (03/06/2014 11:34:34 AM) (Source: Application Error)(User: )
Description: TuneUpUtilitiesService32.exe14.0.1001.2295270ddfbTuneUpUtilitiesService32.exe14.0.1001.2295270ddfbc000000500018f854b001cf3927a269248fC:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exeC:\Program Files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exee843e136-a51a-11e3-b303-90e6ba6fcb27


==================== Memory info ===========================

Percentage of memory in use: 35%
Total physical RAM: 3327.12 MB
Available physical RAM: 2149.38 MB
Total Pagefile: 6652.52 MB
Available Pagefile: 5360.73 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.91 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:232.88 GB) (Free:18.96 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:218.23 GB) (Free:91.41 GB) NTFS
Drive f: (rld-twdsi) (CDROM) (Total:8.34 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D9B3496E)

Partition: GPT Partition Type.

==================== End Of Log ============================

Zdravím!
Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

tady je:


ComboFix 14-03-24.01 - Jelínkovi 24.03.2014 19:41:49.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3327.2102 [GMT 1:00]
Spuštěný z: c:\users\JelÝnkovi\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-24 do 2014-03-24 )))))))))))))))))))))))))))))))
.
.
2014-03-24 18:52 . 2014-03-24 18:52 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2014-03-24 18:52 . 2014-03-24 18:52 -------- d-----w- c:\users\Jelˇnkovi\AppData\Local\temp
2014-03-24 18:52 . 2014-03-24 18:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-24 18:33 . 2014-03-24 18:52 -------- d-----w- c:\users\Jelínkovi\AppData\Local\temp
2014-03-24 18:24 . 2014-03-24 18:24 -------- d-----w- c:\users\Jelínkovi\AppData\Roaming\Media Player Classic
2014-03-24 13:12 . 2014-03-24 13:14 -------- d-----w- C:\FRST
2014-03-24 12:50 . 2014-03-24 12:50 -------- d-----w- c:\users\Jelínkovi\AppData\Local\ElevatedDiagnostics
2014-03-23 15:34 . 2014-03-23 15:34 -------- d-----w- c:\users\Jelínkovi\AppData\Local\WMTools Downloaded Files
2014-03-23 15:34 . 2014-03-23 15:34 -------- d-----w- c:\program files\Movie Maker 2.6
2014-03-21 06:00 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0AF956F4-04D8-4200-AC1A-74B834E2EBA4}\mpengine.dll
2014-03-14 14:47 . 2014-01-28 02:07 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-03-14 14:47 . 2014-02-04 02:04 509440 ----a-w- c:\windows\system32\qedit.dll
2014-03-14 14:47 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-14 14:46 . 2014-01-29 02:06 381440 ----a-w- c:\windows\system32\wer.dll
2014-02-26 19:45 . 2014-02-26 19:45 -------- d-----w- c:\windows\Migration
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-11 17:01 . 2014-02-10 17:14 139648 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-02-11 17:01 . 2014-02-10 17:56 282296 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-02-11 17:01 . 2014-02-10 17:14 282296 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-02-10 19:05 . 2014-02-10 17:14 282296 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-02-10 18:13 . 2014-02-10 17:14 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-02-10 17:14 . 2014-02-10 17:14 138056 ----a-w- c:\users\Jelínkovi\AppData\Roaming\PnkBstrK.sys
2014-02-10 17:14 . 2014-02-10 17:14 138056 ----a-w- c:\users\Jelínkovi\AppData\Roaming\PnkBstrK.sys
2013-12-31 09:05 . 2013-12-31 09:05 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-24 23:09 . 2014-02-12 07:28 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-01-14 20728480]
"Akamai NetSession Interface"="c:\users\Jelínkovi\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Gameiki"="c:\program files\Gameiki\Gameiki Mod Installer\Gameiki Mod Installer.exe" [2014-02-14 228864]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-11-10 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-09-18 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"cz.seznam.software.autoupdate"="c:\users\Jelínkovi\AppData\Roaming\Seznam.cz\szninstall.exe" -c
"cz.seznam.software.szndesktop"="c:\users\Jelínkovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-09-17 1343400]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-31 243128]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-08-30 66336]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exe [2013-10-30 1739064]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG PC TuneUp 2014\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 14:02 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-15 05:35]
.
2014-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-15 05:35]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
Trusted Zone: aeriagames.com
TCP: DhcpNameServer = 192.168.29.1
FF - ProfilePath - c:\users\Jelínkovi\AppData\Roaming\Mozilla\Firefox\Profiles\5f1aehan.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-03-24 19:55:31
ComboFix-quarantined-files.txt 2014-03-24 18:55
ComboFix2.txt 2014-03-24 18:32
.
Před spuštěním: Volných bajtů: 42 457 907 200
Po spuštění: Volných bajtů: 42 410 971 136
.
- - End Of File - - 72754E8583D4D6E64736A6CB4B939688
A36C5E4F47E84449FF07ED3517B43A31

Přesuňte ComboFix na kořenový adresář c:\. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Folder::
c:\users\Jelínkovi\AppData\Local\Akamai

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"=-

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší v průzkumníku windows (nebo jiném souborovém manažeru) přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

nový log:

ComboFix 14-03-24.01 - Jelínkovi 24.03.2014 21:09:47.3.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3327.2038 [GMT 1:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: c:\users\JelÝnkovi\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-24 do 2014-03-24 )))))))))))))))))))))))))))))))
.
.
2014-03-24 20:20 . 2014-03-24 20:20 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2014-03-24 20:20 . 2014-03-24 20:20 -------- d-----w- c:\users\Jelˇnkovi\AppData\Local\temp
2014-03-24 20:20 . 2014-03-24 20:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-24 18:33 . 2014-03-24 20:20 -------- d-----w- c:\users\Jelínkovi\AppData\Local\temp
2014-03-24 18:24 . 2014-03-24 18:24 -------- d-----w- c:\users\Jelínkovi\AppData\Roaming\Media Player Classic
2014-03-24 13:12 . 2014-03-24 13:14 -------- d-----w- C:\FRST
2014-03-24 12:50 . 2014-03-24 12:50 -------- d-----w- c:\users\Jelínkovi\AppData\Local\ElevatedDiagnostics
2014-03-23 15:34 . 2014-03-23 15:34 -------- d-----w- c:\users\Jelínkovi\AppData\Local\WMTools Downloaded Files
2014-03-23 15:34 . 2014-03-23 15:34 -------- d-----w- c:\program files\Movie Maker 2.6
2014-03-21 06:00 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0AF956F4-04D8-4200-AC1A-74B834E2EBA4}\mpengine.dll
2014-03-14 14:47 . 2014-01-28 02:07 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-03-14 14:47 . 2014-02-04 02:04 509440 ----a-w- c:\windows\system32\qedit.dll
2014-03-14 14:47 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-03-14 14:46 . 2014-01-29 02:06 381440 ----a-w- c:\windows\system32\wer.dll
2014-02-26 19:45 . 2014-02-26 19:45 -------- d-----w- c:\windows\Migration
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-11 17:01 . 2014-02-10 17:14 139648 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-02-11 17:01 . 2014-02-10 17:56 282296 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-02-11 17:01 . 2014-02-10 17:14 282296 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-02-10 19:05 . 2014-02-10 17:14 282296 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-02-10 18:13 . 2014-02-10 17:14 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-02-10 17:14 . 2014-02-10 17:14 138056 ----a-w- c:\users\Jelínkovi\AppData\Roaming\PnkBstrK.sys
2014-02-10 17:14 . 2014-02-10 17:14 138056 ----a-w- c:\users\Jelínkovi\AppData\Roaming\PnkBstrK.sys
2013-12-31 09:05 . 2013-12-31 09:05 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-24 23:09 . 2014-02-12 07:28 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-01-14 20728480]
"Akamai NetSession Interface"="c:\users\Jelínkovi\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Gameiki"="c:\program files\Gameiki\Gameiki Mod Installer\Gameiki Mod Installer.exe" [2014-02-14 228864]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-11-10 98304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-09-18 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"cz.seznam.software.autoupdate"="c:\users\Jelínkovi\AppData\Roaming\Seznam.cz\szninstall.exe" -c
"cz.seznam.software.szndesktop"="c:\users\Jelínkovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-09-17 1343400]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-31 243128]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-08-30 66336]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG PC TuneUp 2014\TuneUpUtilitiesService32.exe [2013-10-30 1739064]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG PC TuneUp 2014\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 14:02 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-15 05:35]
.
2014-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-15 05:35]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
Trusted Zone: aeriagames.com
TCP: DhcpNameServer = 192.168.29.1
FF - ProfilePath - c:\users\Jelínkovi\AppData\Roaming\Mozilla\Firefox\Profiles\5f1aehan.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-03-24 21:22:12
ComboFix-quarantined-files.txt 2014-03-24 20:22
ComboFix2.txt 2014-03-24 18:55
ComboFix3.txt 2014-03-24 18:32
.
Před spuštěním: Volných bajtů: 42 380 615 680
Po spuštění: Volných bajtů: 42 355 195 904
.
- - End Of File - - ECD24EB7727E04B70674500EBBDE12E0
A36C5E4F47E84449FF07ED3517B43A31

Udělal jsem chybu v návodu. CFScript je třeba uložit rovněž na kořenový adresář c:\. Jinak ve vašem případě CF nebude mazat. Omlouvám se a zkuste znovu se stejným skriptem.