Záseky PC

[taringa]

včera mi začala nepříjemná věc,zacali záseky počítače.Každé 2 minuty byl asi 30 sekundový zásek.právě ted jak sem psal byl.Myslel sem že je to jen nejaky prehraty ale po 8 hodinách sem zapl PC a zase.Newím jestli je to vir nebo málo místa na disku,ale to místo asi ne protože nikdy mi to nedelalo ted nemuzu používat PC ani hrát World of Warcraft,skoro nic.prosím mrknete na to

[Rudy]

Dejte log z RSIT: http://viry.cz/forum/viewtopic.php?f=24&t=81939 .

[taringa]

tu je

Logfile of random's system information tool 1.07 (written by random/random)
Run by Martin Vlček at 2010-05-15 18:58:56
Systém Microsoft Windows XP Professional Service Pack 2
System drive E: has 290 MB (4%) free of 7 GB
Total RAM: 959 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:59:09, on 15.5.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
C:\crdphService.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
C:\Vpnservice.exe
E:\Program Files\Application Updater\ApplicationUpdater.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
E:\Program Files\ICQ6Toolbar\ICQ Service.exe
E:\WINDOWS\system32\nvsvc32.exe
c:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
E:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
E:\WINDOWS\system32\WgaTray.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\RUNDLL32.EXE
E:\WINDOWS\RTHDCPL.EXE
E:\WINDOWS\UMStor\Res.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
E:\Program Files\Search Settings\SearchSettings.exe
E:\WINDOWS\system32\ctfmon.exe
D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\RSIT.exe
E:\Program Files\trend micro\Martin Vlček.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - E:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (file missing)
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - E:\Program Files\Search Settings\SearchSettings.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - e:\program files\google\googletoolbar1.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - E:\Program Files\Search Settings\SearchSettings.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - E:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - E:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (file missing)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - E:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [EasyTuneVPro] E:\Program Files\Gigabyte\ET5Pro\ETcall.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [USB Storage Toolbox] E:\WINDOWS\UMStor\Res.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SearchSettings] E:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [AODAssist.exe] E:\Program Files\AMD\AMD OverDrive\AODAssist.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Orb] "E:\Program Files\Winamp Remote\bin\OrbTray.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = D:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: Download All by FlashGet - E:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - E:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - d:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\System32\browseui.dll
O23 - Service: Application Updater - Spigot, Inc. - E:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: COMODO EasyVPN VNC Service (CrdphService) - COMODO - C:\crdphService.exe
O23 - Service: COMODO EasyVPN Service (EasyVpnAdpt) - Unknown owner - C:\Vpnservice.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: ICQ Service - Unknown owner - E:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - E:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - E:\Program Files\WinPcap\rpcapd.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - c:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 8173 bytes

======Scheduled tasks folder======

E:\WINDOWS\tasks\AppleSoftwareUpdate.job
E:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
E:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
E:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - e:\program files\google\googletoolbar1.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - E:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-12-17 737776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - E:\Program Files\Ask.com\GenericAskToolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - E:\Program Files\Search Settings\SearchSettings.dll [2010-01-08 1109504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - E:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - E:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll []
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - E:\Program Files\Ask.com\GenericAskToolbar.dll []
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-12-09 958200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EasyTuneVPro"=E:\Program Files\Gigabyte\ET5Pro\ETcall.exe []
"NvCplDaemon"=E:\WINDOWS\system32\NvCpl.dll [2006-10-31 7634944]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=E:\WINDOWS\system32\NvMcTray.dll [2006-10-31 86016]
"RTHDCPL"=E:\WINDOWS\RTHDCPL.EXE [2007-07-05 16380416]
"NeroFilterCheck"=E:\WINDOWS\system32\NeroCheck.exe []
"USB Storage Toolbox"=E:\WINDOWS\UMStor\Res.EXE [2005-09-14 65536]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-06-10 1447168]
"DAEMON Tools-1033"=C:\Program Files\D-Tools\daemon.exe [2003-10-02 81920]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe []
"SearchSettings"=E:\Program Files\Search Settings\SearchSettings.exe [2010-01-08 974848]
"AODAssist.exe"=E:\Program Files\AMD\AMD OverDrive\AODAssist.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=E:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Orb"=E:\Program Files\Winamp Remote\bin\OrbTray.exe [2008-04-01 507904]
"SUPERAntiSpyware"=D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-05-06 2017280]

E:\Documents and Settings\Martin Vlček\Nabídka Start\Programy\Po spuštění
Stardock ObjectDock.lnk - D:\Program Files\Stardock\ObjectDock\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\MCPClient]
E:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll [2005-01-31 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
E:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - E:\PROGRA~1\COMMON~1\Stardock\MCPCore.dll [2005-05-10 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=D:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=4294967295

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\ICQ6\ICQ.exe"="E:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"E:\Program Files\Metin2_TESTER\metin2.bin"="E:\Program Files\Metin2_TESTER\metin2.bin:*:Enabled:metin2"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Disabled:Half-Life Launcher"
"C:\Program Files\World of Warcraft\WoW-2.4.3-to-3.0.2-enUS-Win-Final-downloader.exe"="C:\Program Files\World of Warcraft\WoW-2.4.3-to-3.0.2-enUS-Win-Final-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\Pando Networks\Media Booster\PMB.exe"="E:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"D:\Program Files\Team17\Worms2\frontend.exe"="D:\Program Files\Team17\Worms2\frontend.exe:*:Enabled:Worms 2 Frontend"
"D:\Age of empires II\age2_x1.exe"="D:\Age of empires II\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"E:\Documents and Settings\Mamamamamkakakaka\Local Settings\temp\~os6.tmp\rlvknlg.exe"="E:\Documents and Settings\Mamamamamkakakaka\Local Settings\temp\~os6.tmp\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"D:\Program Files\Strategy First\Disciples II Gold\Rise of the Elves\Discipl2.exe"="D:\Program Files\Strategy First\Disciples II Gold\Rise of the Elves\Discipl2.exe:*:Enabled:Disciples II v3.01"
"C:\C4\Civilization4.exe"="C:\C4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4"
"C:\Program Files\EA SPORTS\NHL 09\nhl2009.exe"="C:\Program Files\EA SPORTS\NHL 09\nhl2009.exe:*:Disabled:nhl2009"
"D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe"="D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Disabled:BattlefrontII"
"e:\program files\relevantknowledge\rlvknlg.exe"="e:\program files\relevantknowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"D:\Program Files\ICQ6.5\ICQ.exe"="D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"D:\Program Files\EA Sports\NHL 09\nhl2009.exe"="D:\Program Files\EA Sports\NHL 09\nhl2009.exe:*:Disabled:nhl2009"
"D:\Program Files\Valve\hl.exe"="D:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"E:\Documents and Settings\Mamamamamkakakaka\Local Settings\Data aplikací\Skype\Plugin Manager\skypePM.exe"="E:\Documents and Settings\Mamamamamkakakaka\Local Settings\Data aplikací\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"E:\WINDOWS\system32\winver.exe"="E:\WINDOWS\system32\winver.exe:*:Enabled:winver"
"E:\Program Files\Winamp Remote\bin\Orb.exe"="E:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"E:\Program Files\Winamp Remote\bin\OrbTray.exe"="E:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"E:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="E:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\EasyVPN.exe"="C:\EasyVPN.exe:*:Enabled:COMODO EasyVPN"
"C:\Program Files\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\age2_x1.exe"="C:\Program Files\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\age2_x1.exe:*:Disabled:Age of Empires II Expansion"
"E:\Program Files\Skype\Phone\Skype.exe"="E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Age Of Empires The Conqeors and The Kings\empires2.exe"="C:\Program Files\Age Of Empires The Conqeors and The Kings\empires2.exe:*:Enabled:Age of Empires II"
"C:\Program Files\Age Of Empires The Conqeors and The Kings\age2_x1.exe"="C:\Program Files\Age Of Empires The Conqeors and The Kings\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"E:\WINDOWS\system32\dplaysvr.exe"="E:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:iw3mp"
"C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe"="C:\Program Files\EA GAMES\Need for Speed Most Wanted\speed.exe:*:Enabled:speed"
"E:\Documents and Settings\Mamamamamkakakaka\Local Settings\Data aplikací\Skype\Phone\Skype.exe"="E:\Documents and Settings\Mamamamamkakakaka\Local Settings\Data aplikací\Skype\Phone\Skype.exe:*:Enabled:Skype"
"E:\Program Files\Hamachi\hamachi.exe"="E:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\NHL09\nhl 2009\nhl2009.exe"="C:\Program Files\NHL09\nhl 2009\nhl2009.exe:*:Enabled:nhl2009"
"D:\Program Files\Valve\hlds.exe"="D:\Program Files\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"D:\Warcraft III\Warcraft III.exe"="D:\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-05-15 17:30:49 ----DC---- E:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2010-05-15 17:29:53 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\SUPERAntiSpyware.com
2010-05-15 17:29:15 ----D---- E:\Program Files\Common Files\Wise Installation Wizard
2010-04-29 17:28:20 ----DC---- E:\Documents and Settings\All Users\Data aplikací\COMODO
2010-04-28 17:27:44 ----DC---- E:\Documents and Settings\All Users\Data aplikací\Vso
2010-04-28 17:22:58 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\Vso
2010-04-28 17:22:58 ----AC---- E:\Documents and Settings\Martin Vlček\Data aplikací\inst.exe
2010-04-28 14:11:39 ----A---- E:\WINDOWS\unvise.exe
2010-04-27 18:14:52 ----D---- E:\Program Files\Common Files\Stardock
2010-04-26 14:45:12 ----A---- E:\WINDOWS\system32\ff_vfw.dll.manifest
2010-04-26 14:45:10 ----A---- E:\WINDOWS\system32\ff_vfw.dll
2010-04-16 19:51:05 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\IGN_DLM

======List of files/folders modified in the last 1 months======

2010-05-15 18:59:05 ----D---- E:\WINDOWS\Prefetch
2010-05-15 18:59:05 ----D---- E:\Program Files\trend micro
2010-05-15 18:58:57 ----D---- E:\WINDOWS\temp
2010-05-15 18:56:41 ----D---- E:\WINDOWS\system32\ias
2010-05-15 18:55:49 ----D---- E:\WINDOWS\system32
2010-05-15 18:54:27 ----D---- E:\WINDOWS
2010-05-15 18:54:27 ----D---- E:\Program Files\RelevantKnowledge
2010-05-15 18:54:26 ----RD---- E:\Program Files
2010-05-15 17:35:32 ----D---- E:\WINDOWS\system32\CatRoot2
2010-05-15 17:30:22 ----SHD---- E:\WINDOWS\Installer
2010-05-15 17:29:15 ----D---- E:\Program Files\Common Files
2010-05-15 13:29:48 ----SDC---- E:\Documents and Settings\Martin Vlček\Data aplikací\Microsoft
2010-05-15 12:29:01 ----SD---- E:\WINDOWS\Tasks
2010-05-15 11:47:05 ----HD---- E:\WINDOWS\inf
2010-05-15 11:47:05 ----D---- E:\WINDOWS\system32\drivers
2010-05-15 11:22:41 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\Hamachi
2010-05-15 08:29:01 ----A---- E:\WINDOWS\SchedLgU.Txt
2010-05-08 20:16:35 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\dvdcss
2010-05-02 19:03:02 ----D---- E:\WINDOWS\Minidump
2010-04-29 20:51:54 ----DC---- E:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-29 20:51:53 ----RSD---- E:\WINDOWS\assembly
2010-04-29 20:51:49 ----D---- E:\Program Files\Common Files\Microsoft Shared
2010-04-29 20:51:25 ----RSD---- E:\WINDOWS\Fonts
2010-04-29 17:29:38 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\COMODO
2010-04-29 17:28:50 ----DC---- E:\WINDOWS\system32\DRVSTORE
2010-04-28 16:32:38 ----RSHDC---- E:\WINDOWS\system32\dllcache
2010-04-27 20:06:12 ----HD---- E:\Program Files\InstallShield Installation Information
2010-04-26 21:13:32 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\Adobe
2010-04-25 16:48:52 ----ADC---- E:\Documents and Settings\All Users\Data aplikací\Temp
2010-04-20 17:49:17 ----DC---- E:\Documents and Settings\Martin Vlček\Data aplikací\ICQ
2010-04-20 15:04:59 ----N---- E:\WINDOWS\Setup1.exe
2010-04-20 15:04:58 ----A---- E:\WINDOWS\ST6UNST.EXE
2010-04-19 15:39:23 ----D---- E:\WINDOWS\WinSxS
2010-04-19 15:36:31 ----D---- E:\WINDOWS\system32\Adobe
2010-04-17 11:20:38 ----A---- E:\WINDOWS\TextSpy.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; E:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 easdrv;easdrv; E:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-06-10 53256]
R1 ElbyCDIO;ElbyCDIO Driver; E:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-12-18 26024]
R1 epfwtdir;epfwtdir; E:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-06-10 34312]
R1 prodrv06;StarForce Protection Environment Driver v6; E:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 SASDIFSV;SASDIFSV; \??\D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 eamon;EAMON; E:\WINDOWS\system32\DRIVERS\eamon.sys [2008-06-10 39944]
R3 hamachi;Hamachi Network Interface; E:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-11-24 25280]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; E:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-07-18 4547584]
R3 nv;nv; E:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-10-31 3964256]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; E:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-11-27 58368]
R3 nvnetbus;NVIDIA Network Bus Enumerator; E:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-11-27 19968]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; E:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; E:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; E:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; E:\WINDOWS\System32\DRIVERS\usbohci.sys [2004-08-03 17024]
S3 acmdcf2w;acmdcf2w; E:\WINDOWS\system32\drivers\acmdcf2w.sys []
S3 ad7d6ws5;ad7d6ws5; E:\WINDOWS\system32\drivers\ad7d6ws5.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-03-08 4027840]
S3 Arp1394;Protokol 1394 ARP Client; E:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-03 60800]
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\E:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 ATP;Comodo EasyVPN Miniport Driver; E:\WINDOWS\system32\DRIVERS\cmdatp.sys [2008-12-10 17424]
S3 catchme;catchme; \??\E:\DOCUME~1\Vlk_2\LOCALS~1\Temp\catchme.sys []
S3 ET5Drv;ET5Drv; \??\E:\WINDOWS\System32\Drivers\ET5Drv.sys []
S3 gdrv;gdrv; \??\E:\WINDOWS\gdrv.sys []
S3 GVTDrv;GVTDrv; \??\E:\WINDOWS\system32\Drivers\GVTDrv.sys []
S3 HidUsb;Ovladač třídy standardu HID; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 MarkFun_NT;MarkFun_NT; \??\E:\Program Files\Gigabyte\ET5Pro\markfun.w32 []
S3 NIC1394;1394 Net Driver; E:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-03 61824]
S3 nm;Ovladač programu Sledování sítě; E:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-03 40320]
S3 pcouffin;VSO Software pcouffin; E:\WINDOWS\System32\Drivers\pcouffin.sys [2010-04-28 47360]
S3 sermouse;Ovladač sériové myši; E:\WINDOWS\System32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Třída USB Printer; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; E:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; E:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S4 IntelIde;IntelIde; E:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Application Updater;Application Updater; E:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
R2 CrdphService;COMODO EasyVPN VNC Service; C:\crdphService.exe [2009-08-11 491768]
R2 EasyVpnAdpt;COMODO EasyVPN Service; C:\Vpnservice.exe [2010-01-12 34552]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-06-10 468224]
R2 ICQ Service;ICQ Service; E:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
R2 NVSvc;NVIDIA Display Driver Service; E:\WINDOWS\system32\nvsvc32.exe [2006-10-31 155715]
R2 StarWindServiceAE;StarWind AE Service; c:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 UMWdf;Windows User Mode Driver Framework; E:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-06-10 19200]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe []
S3 IDriverT;InstallDriver Table Manager; E:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LPDSVC;Tiskový server TCP/IP; E:\WINDOWS\System32\tcpsvcs.exe [2001-10-25 19456]
S3 npggsvc;nProtect GameGuard Service; E:\WINDOWS\system32\GameMon.des [2009-02-24 3117818]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); E:\Program Files\WinPcap\rpcapd.exe -d -f E:\Program Files\WinPcap\rpcapd.ini []
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe []
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

[taringa]

zaseky zatim zmizely hodinu mi zo projizdelo a lecilo SUPERAntiSpyware ale radsi zkontroluj mozna se to sekat zas zacne

[Rudy]

No, nějaké to svinstvo tam vidím.