VIRY.CZ

Zdravím a zároveň žádám o pomoc, poslední dobou se mi neustále odpojuje připojení k internetu, byl u nás i technik a na nic nepřišel a na centrále taky nemají problém, tak si myslím, že je to virus, prosím tedy o kontrolu logu, děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Martin Doubrava at 2011-07-22 16:02:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 90 GB (59%) free of 153 GB
Total RAM: 895 MB (22% free)


=========Mozilla firefox=========

ProfilePath - C:\Users\Martin Doubrava\AppData\Roaming\Mozilla\Firefox\Profiles\a2pr4pk3.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{7b13ec3e-999a-4b70-b9cb-2617b8323822}:3.3.3.2, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
prefs.js - "keyword.URL" - "chrome://browser-region/locale/region.properties"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=Software602 Form Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Martin Doubrava\AppData\Roaming\Mozilla\Firefox\Profiles\a2pr4pk3.default\extensions\
{32a1fd71-835e-4b11-8e54-886fda0b4c89}
{7b13ec3e-999a-4b70-b9cb-2617b8323822}

C:\Users\Martin Doubrava\AppData\Roaming\Mozilla\Firefox\Profiles\a2pr4pk3.default\searchplugins\
qip-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\Martin Doubrava\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2011-02-03 141184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-05 988480]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.vp31"=vp31vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-07-22 15:26:03 ----D---- C:\Program Files\trend micro
2011-07-22 15:25:57 ----D---- C:\rsit
2011-07-21 10:21:21 ----RA---- C:\Windows\setup_rangers.exe
2011-07-20 15:07:25 ----D---- C:\ProgramData\Enkord
2011-07-15 13:06:39 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\Islands2
2011-07-13 07:19:59 ----A---- C:\Windows\system32\KernelBase.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-13 07:19:58 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-13 07:19:57 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-13 07:19:56 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-13 07:19:48 ----A---- C:\Windows\system32\kernel32.dll
2011-07-13 07:19:46 ----A---- C:\Windows\system32\winsrv.dll
2011-07-13 07:19:46 ----A---- C:\Windows\system32\conhost.exe
2011-07-13 07:19:35 ----A---- C:\Windows\system32\win32k.sys
2011-07-03 19:30:36 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\TheKingOfFire
2011-07-03 17:22:23 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\World-Loom
2011-07-02 08:13:26 ----D---- C:\Windows\system32\SPReview
2011-06-29 07:39:21 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-06-29 07:39:09 ----A---- C:\Windows\system32\mssrch.dll
2011-06-29 07:39:08 ----A---- C:\Windows\system32\tquery.dll
2011-06-29 07:39:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-06-29 07:39:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-06-29 07:39:06 ----A---- C:\Windows\system32\mssph.dll
2011-06-29 07:39:05 ----A---- C:\Windows\system32\mssvp.dll
2011-06-29 07:39:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-06-29 07:39:04 ----A---- C:\Windows\system32\mssphtb.dll
2011-06-29 07:39:03 ----A---- C:\Windows\system32\msscntrs.dll

======List of files/folders modified in the last 1 month======

2011-07-22 16:02:29 ----D---- C:\Windows\Temp
2011-07-22 15:26:16 ----D---- C:\Windows\Prefetch
2011-07-22 15:26:03 ----RD---- C:\Program Files
2011-07-22 06:40:48 ----D---- C:\Windows\system32\config
2011-07-21 11:56:11 ----SHD---- C:\Windows\Installer
2011-07-21 11:53:41 ----SHD---- C:\System Volume Information
2011-07-21 10:21:21 ----D---- C:\Windows
2011-07-21 09:36:25 ----D---- C:\Windows\System32
2011-07-21 09:36:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-07-21 09:36:24 ----D---- C:\Windows\inf
2011-07-20 15:07:25 ----AHD---- C:\ProgramData
2011-07-15 16:40:40 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\Hamachi
2011-07-13 09:16:11 ----D---- C:\Windows\winsxs
2011-07-13 09:13:26 ----D---- C:\Windows\system32\DriverStore
2011-07-13 08:01:31 ----A---- C:\Windows\system32\MRT.exe
2011-07-13 08:00:22 ----A---- C:\Windows\win.ini
2011-07-13 07:19:30 ----D---- C:\Windows\system32\catroot
2011-07-13 07:19:16 ----D---- C:\Windows\system32\catroot2
2011-07-12 14:57:16 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\vlc
2011-07-11 09:23:35 ----D---- C:\Users\Martin Doubrava\AppData\Roaming\Islands
2011-07-08 10:21:51 ----AD---- C:\ProgramData\TEMP
2011-07-04 13:43:51 ----A---- C:\Windows\system32\aswBoot.exe
2011-07-04 10:57:30 ----D---- C:\Windows\Microsoft.NET
2011-07-04 10:30:36 ----RSD---- C:\Windows\assembly
2011-07-04 08:04:31 ----D---- C:\ProgramData\Awem
2011-07-03 12:25:37 ----D---- C:\Program Files\Mozilla Firefox
2011-07-03 04:52:33 ----D---- C:\Windows\rescache
2011-07-03 03:58:15 ----SHD---- C:\Boot
2011-07-03 03:47:22 ----D---- C:\Program Files\Windows Mail
2011-07-03 03:47:21 ----D---- C:\Program Files\Windows Sidebar
2011-07-03 03:47:21 ----D---- C:\Program Files\Windows Portable Devices
2011-07-03 03:47:21 ----D---- C:\Program Files\Windows Media Player
2011-07-03 03:47:21 ----D---- C:\Program Files\Windows Journal
2011-07-03 03:47:21 ----D---- C:\Program Files\Internet Explorer
2011-07-03 03:47:21 ----D---- C:\Program Files\DVD Maker
2011-07-03 03:47:20 ----D---- C:\Program Files\Windows Photo Viewer
2011-07-03 03:47:19 ----D---- C:\Windows\servicing
2011-07-03 03:47:19 ----D---- C:\Windows\ehome
2011-07-03 03:47:19 ----D---- C:\Program Files\Windows Defender
2011-07-03 03:47:07 ----D---- C:\Windows\system32\sysprep
2011-07-03 03:47:07 ----D---- C:\Windows\system32\oobe
2011-07-03 03:47:07 ----D---- C:\Windows\system32\migration
2011-07-03 03:47:07 ----D---- C:\Windows\system32\en-US
2011-07-03 03:47:07 ----D---- C:\Windows\system32\da-DK
2011-07-03 03:47:07 ----D---- C:\Windows\PolicyDefinitions
2011-07-03 03:47:06 ----D---- C:\Windows\system32\Setup
2011-07-03 03:47:06 ----D---- C:\Windows\system32\cs-CZ
2011-07-03 03:47:06 ----D---- C:\Windows\system32\cs
2011-07-03 03:47:06 ----D---- C:\Windows\system32\AdvancedInstallers
2011-07-03 03:47:05 ----D---- C:\Windows\system32\sppui
2011-07-03 03:47:05 ----D---- C:\Windows\system32\manifeststore
2011-07-03 03:47:05 ----D---- C:\Windows\system32\es-ES
2011-07-03 03:47:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-07-03 03:47:04 ----D---- C:\Windows\system32\drivers
2011-07-03 03:47:03 ----D---- C:\Windows\system32\wbem
2011-07-03 03:47:03 ----D---- C:\Windows\system32\migwiz
2011-07-03 03:47:02 ----D---- C:\Windows\system32\Dism
2011-07-03 03:46:38 ----RSD---- C:\Windows\Fonts
2011-07-03 03:46:37 ----D---- C:\Windows\AppPatch
2011-07-03 03:46:21 ----D---- C:\Windows\system32\Boot
2011-07-03 03:43:57 ----D---- C:\Windows\system32\drivers\UMDF
2011-07-02 08:20:08 ----A---- C:\Windows\system32\msclmd.dll
2011-06-29 15:09:19 ----D---- C:\Program Files\Microsoft Office
2011-06-27 13:21:46 ----D---- C:\ProgramData\Playrix Entertainment

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\Windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-17 691696]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-07-04 25432]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-07-04 441176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-07-04 309848]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-07-04 43608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-07-04 19544]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
R3 ADM851X;Infineon ADM851X USB To Fast Ethernet MII Adapter Driver; C:\Windows\system32\DRIVERS\ADM851X.SYS [2007-05-08 31744]
R3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet - adaptér; C:\Windows\system32\DRIVERS\l260x86.sys [2009-07-14 29184]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-12-01 4179968]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-14 1131008]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2011-05-16 25280]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2007-07-31 7680]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-07-14 1068032]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\Windows\System32\drivers\sfdrv01.sys [2005-08-10 50688]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\Windows\System32\drivers\sfsync02.sys [2005-08-10 19968]
S1 MpKsl08c5864e;MpKsl08c5864e; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{16286B6A-4B0E-41A7-AD25-A63759BD4976}\MpKsl08c5864e.sys []
S1 MpKsl0a6c1296;MpKsl0a6c1296; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DF1D422F-5DE6-421E-A000-591D402654A4}\MpKsl0a6c1296.sys []
S1 MpKsl22f51de3;MpKsl22f51de3; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{54BD0F38-5588-47B3-902C-7230E5E4A60F}\MpKsl22f51de3.sys []
S1 MpKsl29b25983;MpKsl29b25983; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{19E1554C-554B-4F1F-B37A-00DDE7AD23AC}\MpKsl29b25983.sys []
S1 MpKsl3300d656;MpKsl3300d656; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B8A92CF5-6D78-4703-BC1E-5C239BF89787}\MpKsl3300d656.sys []
S1 MpKsl346a5226;MpKsl346a5226; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{54C2BCCC-BC0E-4B51-A32B-A5C5552FE749}\MpKsl346a5226.sys []
S1 MpKsl8a9d9848;MpKsl8a9d9848; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E3968E11-7686-41B7-866D-5933CA0F6B0C}\MpKsl8a9d9848.sys []
S1 MpKsl9f940231;MpKsl9f940231; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9FF15BA1-99F0-4A80-A119-7E2AB192999A}\MpKsl9f940231.sys []
S1 MpKsla367d985;MpKsla367d985; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{155160F6-2450-4A60-B4AA-95C6014D9FE6}\MpKsla367d985.sys []
S1 MpKslac17e847;MpKslac17e847; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F64077D0-2C38-40A5-8C47-112B5DFCB733}\MpKslac17e847.sys []
S1 MpKslc48bdbca;MpKslc48bdbca; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6FDC2760-CB37-45B8-82FB-271BD6E6614D}\MpKslc48bdbca.sys []
S1 MpKsld3e0bda5;MpKsld3e0bda5; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EAFA0DF5-6800-408A-8B17-F16A4E4A18CA}\MpKsld3e0bda5.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 asqz8t51;asqz8t51; C:\Windows\system32\drivers\asqz8t51.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;Ovladač WinUSB; C:\Windows\system32\drivers\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-03-14 84520]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-12-01 720896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-14 1343400]

Ještě poprosím o log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Tady je ten log ...

ComboFix 11-07-23.04 - Martin Doubrava 24.07.2011 9:29.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.895.119 [GMT 2:00]
Spuštěný z: c:\users\Martin Doubrava\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Martin Doubrava\AppData\Roaming\log.txt
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-24 do 2011-07-24 )))))))))))))))))))))))))))))))
.
.
2011-07-24 07:38 . 2011-07-24 07:39 -------- d-----w- c:\users\Martin Doubrava\AppData\Local\temp
2011-07-24 07:38 . 2011-07-24 07:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-23 14:30 . 2011-07-13 03:39 6881616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{95F0D1F5-CDE5-44C7-80EF-B8ADE27BB3C8}\mpengine.dll
2011-07-22 13:26 . 2011-07-22 14:02 -------- d-----w- c:\program files\trend micro
2011-07-22 13:25 . 2011-07-22 14:02 -------- d-----w- C:\rsit
2011-07-21 08:21 . 2003-09-25 18:28 1261056 ----a-r- c:\windows\setup_rangers.exe
2011-07-20 13:07 . 2011-07-20 13:07 -------- d-----w- c:\programdata\Enkord
2011-07-15 11:06 . 2011-07-20 10:19 -------- d-----w- c:\users\Martin Doubrava\AppData\Roaming\Islands2
2011-07-03 17:30 . 2011-07-03 17:30 -------- d-----w- c:\users\Martin Doubrava\AppData\Roaming\TheKingOfFire
2011-07-03 15:22 . 2011-07-03 15:22 -------- d-----w- c:\users\Martin Doubrava\AppData\Roaming\World-Loom
2011-07-03 10:25 . 2011-07-03 10:25 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-07-03 10:25 . 2011-07-03 10:25 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-07-02 06:13 . 2011-07-02 06:13 -------- d-----w- c:\windows\system32\SPReview
2011-06-29 05:39 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-29 05:39 . 2011-05-04 04:32 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-29 05:39 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-29 05:39 . 2011-05-04 04:28 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-29 05:39 . 2011-05-04 04:32 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-29 05:39 . 2011-05-04 04:28 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-29 05:39 . 2011-05-04 04:32 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-29 05:39 . 2011-05-04 04:32 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-29 05:39 . 2011-05-04 04:28 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-29 05:39 . 2011-05-04 04:32 59392 ----a-w- c:\windows\system32\msscntrs.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-04 11:43 . 2011-05-28 11:46 40112 ----a-w- c:\windows\avastSS.scr
2011-07-04 11:43 . 2011-05-28 11:46 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2011-05-28 11:46 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-07-04 11:36 . 2011-05-28 11:46 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2011-05-28 11:46 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:32 . 2011-05-28 11:46 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2011-05-28 11:46 54104 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-07-04 11:32 . 2011-05-28 11:46 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-07-02 06:20 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-06-29 05:45 . 2011-05-18 06:39 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-02 07:55 . 2011-06-02 07:55 94208 ----a-w- c:\windows\DIIUnin.exe
2011-06-02 07:55 . 2011-06-02 07:55 2829 ----a-w- c:\windows\DIIUnin.pif
2011-05-28 02:53 . 2011-06-15 11:07 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-05-24 17:14 . 2010-11-13 12:04 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-05-16 17:01 . 2011-05-16 17:01 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2011-05-08 17:54 . 2011-04-27 15:01 86528 ----a-w- c:\windows\bnetunin.exe
2011-05-04 02:52 . 2010-12-13 23:05 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-03 04:30 . 2011-06-15 11:07 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 02:46 . 2011-06-15 11:07 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-29 02:46 . 2011-06-15 11:07 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 02:46 . 2011-06-15 11:07 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-27 02:17 . 2011-06-15 11:07 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-27 02:17 . 2011-06-15 11:07 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-27 02:17 . 2011-06-15 11:06 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-03 10:25 . 2011-03-28 19:53 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R1 MpKsl08c5864e;MpKsl08c5864e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{16286B6A-4B0E-41A7-AD25-A63759BD4976}\MpKsl08c5864e.sys [x]
R1 MpKsl0a6c1296;MpKsl0a6c1296;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DF1D422F-5DE6-421E-A000-591D402654A4}\MpKsl0a6c1296.sys [x]
R1 MpKsl22f51de3;MpKsl22f51de3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{54BD0F38-5588-47B3-902C-7230E5E4A60F}\MpKsl22f51de3.sys [x]
R1 MpKsl29b25983;MpKsl29b25983;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{19E1554C-554B-4F1F-B37A-00DDE7AD23AC}\MpKsl29b25983.sys [x]
R1 MpKsl3300d656;MpKsl3300d656;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B8A92CF5-6D78-4703-BC1E-5C239BF89787}\MpKsl3300d656.sys [x]
R1 MpKsl346a5226;MpKsl346a5226;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{54C2BCCC-BC0E-4B51-A32B-A5C5552FE749}\MpKsl346a5226.sys [x]
R1 MpKsl8a9d9848;MpKsl8a9d9848;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E3968E11-7686-41B7-866D-5933CA0F6B0C}\MpKsl8a9d9848.sys [x]
R1 MpKsl9f940231;MpKsl9f940231;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9FF15BA1-99F0-4A80-A119-7E2AB192999A}\MpKsl9f940231.sys [x]
R1 MpKsla367d985;MpKsla367d985;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{155160F6-2450-4A60-B4AA-95C6014D9FE6}\MpKsla367d985.sys [x]
R1 MpKslac17e847;MpKslac17e847;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F64077D0-2C38-40A5-8C47-112B5DFCB733}\MpKslac17e847.sys [x]
R1 MpKslc48bdbca;MpKslc48bdbca;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6FDC2760-CB37-45B8-82FB-271BD6E6614D}\MpKslc48bdbca.sys [x]
R1 MpKsld3e0bda5;MpKsld3e0bda5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EAFA0DF5-6800-408A-8B17-F16A4E4A18CA}\MpKsld3e0bda5.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-14 1343400]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-17 691696]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [2011-03-14 84520]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
S3 ADM851X;Infineon ADM851X USB To Fast Ethernet MII Adapter Driver;c:\windows\system32\DRIVERS\ADM851X.SYS [2007-05-08 31744]
S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet - adaptér;c:\windows\system32\DRIVERS\l260x86.sys [2009-07-13 29184]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Martin Doubrava\AppData\Roaming\Mozilla\Firefox\Profiles\a2pr4pk3.default\
FF - prefs.js: browser.search.selectedEngine - QIP Search
FF - prefs.js: browser.startup.homepage - http://www.seznam.cz
FF - prefs.js: keyword.URL - chrome://browser-region/locale/region.properties
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe
HKLM-Run-NBKeyScan - c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3752452856-862218091-1426833358-1000\Software\SecuROM\License information*]
"datasecu"=hex:3f,5b,05,e6,8a,ca,29,59,0e,99,26,49,02,07,0a,f3,02,49,c3,a8,7c,
e5,b7,d1,6c,5a,b7,35,0f,e2,41,a7,96,64,76,20,d7,be,0f,e0,6a,f0,a1,72,d2,11,\
"rkeysecu"=hex:43,f3,aa,9f,21,6c,4b,dd,45,a2,00,f9,87,61,78,b2
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-07-24 09:42:08
ComboFix-quarantined-files.txt 2011-07-24 07:42
.
Před spuštěním: Volných bajtů: 100 058 550 272
Po spuštění: Volných bajtů: 106 515 693 568
.
- - End Of File - - AA7A200BF4E4B8768A17CCEE7129E6E7

Něco málo CF smazal, zbytek logu vypadá čistý. Nastala nějaká změna?

no neustále se internet odpojuje, takže změna bohužel ne ...

1. Zkuste restartovat modem, příp. další síť. prvek v datové cestě.
2. Proveďte reset TCP/IP protokolu: Startmenu>přík. řádek>(napsat) netsh int ip reset>OK. Restartujte PC. Máte-li parametry sítě zadány ručně, budte je muset po restartu PC znovu zadat.

to jsem vše zkoušel už dříve, ale bohužel nic ...

Ještě zkuste reinstal ovladačů síť. karty.