problem z hramy

cawte
idem si zahrat csko a naraz nacitava a nacitava....nacitava...a nenacita ho ani menu preinstalujem hru a ajtak nic ta idem si zahrat return to castle wolfenstein a ani ten a robi to iste mam iba tie 2 hry v PC tak pradte co stym moze byt vytazenie CPU je cca 5%

mozno nejaky vir, posli log z hijackthis, ozaj tie hry su original?

cs je nonsteam a RTCW mam original

tu je log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:14:34, on 14.4.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\SoftwareDistribution\Download\Install\MPSetup_MUISKY.EXE
D:\programy\QIP\qip.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" "Microcom\ADSL DeskPorte USB"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [zFTPServer] "C:\Program Files\zFTPServer\zFTPServer.exe"
O4 - HKLM\..\Run: [Run_Student] C:\Program Files\Radix\SmartClass\Student3.exe
O4 - HKLM\..\Run: [InvisibleBrowsing] C:\Program Files\Invisible Browsing\InvisibleBrowsing.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [FreeCall] "C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe" -nosplash -minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: zFTPServer Administration.lnk = C:\Program Files\zFTPServer Administration\zFTPServerAdmin.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\programy\FRONTP~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{6AC1E0B8-51E3-4435-81AF-73639990D85B}: NameServer = 195.146.128.62 195.146.132.59
O23 - Service: Apache2.2 - Unknown owner - C:\Documents and Settings\Bbulet\Desktop\xampp\apache\bin\apache.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - Unknown owner - C:\Documents and Settings\Bbulet\Desktop\xampp\filezillaftp\filezillaserver.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe

--
End of file - 4129 bytes

hm tak co nikto nevie?

Nainštaluj najnovší directx a ovládače.

tom som uz tiez robil a tiez nic

posli log z combofixu

tu je



ComboFix 08-04-14.2 - Bbulet 2008-04-15 17:16:49.1 - NTFSx86
Systém Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1033.18.428 [GMT 2:00]
Running from: C:\Documents and Settings\Bbulet\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\msssc.dll

.
((((((((((((((((((((((((( Files Created from 2008-03-15 to 2008-04-15 )))))))))))))))))))))))))))))))
.

2008-04-15 15:18 . 2008-03-05 15:56 3,786,760 --a------ C:\WINDOWS\system32\D3DX9_37.dll
2008-04-14 13:53 . 2008-04-14 15:27 <DIR> d-------- C:\My Web Sites
2008-04-13 16:07 . 2008-04-13 16:07 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\vlc
2008-04-12 23:04 . 2008-04-12 23:04 <DIR> d-------- C:\Program Files\RealVNC
2008-04-12 21:39 . 2008-04-12 21:39 <DIR> d-------- C:\WINDOWS\system32\SiudiLoad
2008-04-12 21:39 . 2005-10-11 13:17 31,872 --a------ C:\WINDOWS\system32\drivers\siudi5.sys
2008-04-12 21:39 . 2005-10-11 13:16 27,392 --a------ C:\WINDOWS\system32\drivers\siudi5Me.sys
2008-04-12 21:31 . 2008-04-12 21:31 <DIR> d-------- C:\Program Files\Common Files\NSV
2008-04-12 17:51 . 2008-04-12 18:00 <DIR> d-------- C:\Loksim3D
2008-04-12 17:51 . 2007-02-15 02:29 81,920 --a------ C:\WINDOWS\system32\GkSui20.EXE
2008-04-12 17:43 . 2008-04-12 17:44 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\FreeCall
2008-04-12 17:38 . 2008-04-12 17:38 <DIR> d-------- C:\Program Files\FreeCall.com
2008-04-12 14:19 . 2008-04-12 14:19 <DIR> d-------- C:\WINDOWS\Cache
2008-04-12 14:15 . 2008-04-12 14:15 <DIR> d-------- C:\Program Files\Common Files\TopDomain
2008-04-12 12:48 . 2008-04-12 12:55 <DIR> d-------- C:\Program Files\zFTPServer Administration
2008-04-12 12:48 . 2008-04-12 12:55 <DIR> d-------- C:\Program Files\zFTPServer
2008-04-11 17:37 . 2008-04-15 16:35 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\Hamachi
2008-04-11 17:36 . 2008-04-11 17:48 25,280 --a------ C:\WINDOWS\system32\drivers\hamachi.sys
2008-04-11 17:10 . 2008-04-11 17:10 <DIR> d-------- C:\Program Files\MegauploadToolbar
2008-04-11 17:10 . 2008-04-15 15:27 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\MegauploadToolbar
2008-04-09 16:25 . 2008-04-09 16:29 <DIR> d-------- C:\Program Files\Winamp
2008-04-09 16:25 . 2008-04-09 16:31 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\Winamp
2008-04-08 23:42 . 2008-04-08 23:42 <DIR> d-------- C:\Program Files\Trend Micro
2008-04-08 23:11 . 2008-04-12 14:34 137 --a------ C:\WINDOWS\oports.INI
2008-04-08 20:21 . 2003-09-23 06:00 1,066,176 --a------ C:\WINDOWS\system32\MSCOMCTL32.OCX
2008-04-08 20:21 . 2000-05-22 06:00 1,066,176 --a------ C:\WINDOWS\system32\MSCOMCT3N.OCX
2008-04-08 20:21 . 2003-09-23 06:00 647,872 --a------ C:\WINDOWS\system32\MSCOMCT2.ocx
2008-04-08 20:21 . 2008-02-10 10:57 164,156 --a------ C:\WINDOWS\system32\COMCT232.OCX
2008-04-08 20:21 . 2004-03-08 23:00 152,848 --a------ C:\WINDOWS\system32\comdlg32.ocx
2008-04-08 20:21 . 2004-03-08 23:00 124,688 --a------ C:\WINDOWS\system32\MSWINSCK.OCX
2008-04-08 20:21 . 2002-12-05 18:58 109,248 --a------ C:\WINDOWS\system32\MSWINSCN.OCX
2008-04-08 20:21 . 2007-11-15 23:32 92,672 --a------ C:\WINDOWS\system32\dijpg.dll
2008-04-08 19:33 . 1998-02-09 03:00 1,455,736 --a------ C:\WINDOWS\system\VCL35.BPL
2008-04-08 19:33 . 1998-02-08 19:00 996,872 --a------ C:\WINDOWS\system\CP3240MT.DLL
2008-04-08 19:33 . 1998-05-18 10:52 458,752 --a------ C:\WINDOWS\system\COMCTL32.DLL
2008-04-08 19:33 . 1996-11-05 16:13 299,008 --a------ C:\WINDOWS\uninst.exe
2008-04-08 19:33 . 1998-02-09 03:00 245,912 --a------ C:\WINDOWS\system\VCLX35.BPL
2008-04-08 19:33 . 1998-02-09 03:00 187,392 --a------ C:\WINDOWS\system\BCBSMP35.BPL
2008-04-08 19:33 . 1998-02-08 19:00 29,952 --a------ C:\WINDOWS\system\BORLNDMM.DLL
2008-04-08 19:33 . 1997-04-22 10:16 6,272 --a------ C:\WINDOWS\system32\drivers\ASLM75.SYS
2008-04-08 19:29 . 2008-04-08 23:28 <DIR> d-------- C:\Program Files\ASUS
2008-04-08 18:49 . 2008-04-08 18:49 <DIR> d-------- C:\Program Files\Common Files\Adobe
2008-04-08 18:15 . 2008-04-08 18:22 376 --a------ C:\WINDOWS\ODBC.INI
2008-04-08 17:59 . 2008-04-08 17:59 <DIR> d-------- C:\Program Files\NetworkActiv AUTAPF 1.1
2008-04-08 15:03 . 2006-05-05 11:41 453,120 -----c--- C:\WINDOWS\system32\dllcache\mrxsmb.sys
2008-04-08 15:03 . 2005-06-28 10:21 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-04-07 19:02 . 2008-04-07 19:04 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\JustVoip
2008-04-07 16:58 . 2008-04-07 16:58 1,167 --a------ C:\WINDOWS\mozver.dat
2008-04-07 16:07 . 2008-04-07 16:07 <DIR> d-------- C:\Documents and Settings\Bbulet\Application Data\COWON
2008-04-07 16:06 . 2008-04-07 16:06 <DIR> d-------- C:\Program Files\Common Files\COWON
2008-04-07 15:50 . 2008-04-07 15:50 <DIR> d-------- C:\Program Files\Free Hide Folder
2008-04-07 15:29 . 2008-04-07 15:29 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-07 14:38 . 2008-04-07 14:38 13,646 --a------ C:\WINDOWS\system32\wpa.bak
2008-04-07 14:36 . 2008-04-10 15:12 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-04-07 14:33 . 2008-04-07 14:33 <DIR> d-------- C:\Program Files\Alwil Software
2008-04-07 14:28 . 2008-04-07 14:28 <DIR> d---s---- C:\Documents and Settings\Bbulet\UserData
2008-04-06 22:09 . 2008-04-06 22:09 529 --a------ C:\WINDOWS\eReg.dat
2008-04-06 19:52 . 2008-04-06 19:52 <DIR> d--h----- C:\WINDOWS\PIF

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-04-12 13:00 23,384 ----a-w C:\WINDOWS\system32\drivers\RockUsb.sys
2008-04-12 12:59 18,223 ----a-w C:\WINDOWS\system32\drivers\Rockeynt.sys
2008-04-12 12:59 10,752 ----a-w C:\WINDOWS\system32\RockVdd.dll
2008-04-12 12:15 6,656 ----a-w C:\WINDOWS\system32\haspvdd.dll
2008-04-12 12:15 47,616 ----a-w C:\WINDOWS\system32\drivers\Haspnt.sys
2008-04-12 12:15 458,752 ----a-w C:\WINDOWS\system32\drivers\hardlock.sys
2008-04-08 17:30 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-04-07 01:56 --------- d-----w C:\Program Files\Microcom
2008-04-07 01:47 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-04-07 01:47 --------- d-----w C:\Program Files\Analog Devices
2008-04-07 01:46 --------- d-----w C:\Program Files\SiS VGA Utilities V3.62
2008-04-07 01:38 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-29 17:45 1,146,232 ----a-w C:\WINDOWS\system32\aswBoot.exe
2008-03-29 17:35 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
2008-03-29 17:35 20,560 ----a-w C:\WINDOWS\system32\drivers\aswFsBlk.sys
2008-03-29 17:31 75,856 ----a-w C:\WINDOWS\system32\drivers\aswSP.sys
2008-03-29 17:29 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
2008-03-29 17:27 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
2008-03-29 17:26 26,944 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
2008-03-29 17:23 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr
2008-03-19 09:47 1,845,248 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-05 14:03 479,752 ----a-w C:\WINDOWS\system32\XAudio2_0.dll
2008-03-05 14:03 238,088 ----a-w C:\WINDOWS\system32\xactengine3_0.dll
2008-03-05 14:00 25,608 ----a-w C:\WINDOWS\system32\X3DAudio1_3.dll
2008-03-05 13:56 1,420,824 ----a-w C:\WINDOWS\system32\D3DCompiler_37.dll
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll
2008-02-20 05:32 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll
2008-02-16 08:59 659,456 ----a-w C:\WINDOWS\system32\wininet.dll
2008-02-05 21:07 462,864 ----a-w C:\WINDOWS\system32\d3dx10_37.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 14:00 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SiSPower"="SiSPower.dll" [2004-09-02 07:47 49152 C:\WINDOWS\system32\SiSPower.dll]
"SiSUSBRG"="C:\WINDOWS\SiSUSBrg.exe" [2002-07-12 12:15 106496]
"CnxDslTaskBar"="C:\Program Files\Microcom\ADSL DeskPorte USB\CnxDslTb.exe" [2004-06-16 07:55 233472]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-03-29 19:37 79224]
"Run_Student"="C:\Program Files\Radix\SmartClass\Student3.exe" [ ]
"InvisibleBrowsing"="C:\Program Files\Invisible Browsing\InvisibleBrowsing.exe" [ ]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 14:00 15360]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe [2008-04-07 03:45:55 331776]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"D:\\programy\\CesarFTP\\Server.exe"=
"D:\\programy\\totalcmd\\TOTALCMD.EXE"=
"D:\\programy\\TightVNC\\WinVNC.exe"=
"D:\\programy\\QIP\\qip.exe"=
"D:\\programy\\JustVoip\\JustVoip.exe"=
"C:\\Program Files\\NetworkActiv AUTAPF 1.1\\NetworkActivAUTAPFv1.1.exe"=
"D:\\Hry\\EA Games\\Battlefield 1942\\BF1942.exe"=
"D:\\Hry\\EA Games\\Ultima Online Mondain's Legacy\\AndariaClient.exe"=
"D:\\Hry\\Return to Castle Wolfenstein\\WolfMP.exe"=
"C:\\Documents and Settings\\Bbulet\\Desktop\\ES-V100July2006\\diskw\\usr\\local\\mysql\\bin\\mysqld-opt.exe"=
"C:\\Documents and Settings\\Bbulet\\Desktop\\ES-V100July2006\\diskw\\usr\\local\\apache2\\bin\\Apache.exe"=
"C:\\Documents and Settings\\Bbulet\\Desktop\\sdc212\\StrongDC.exe"=
"C:\\Program Files\\zFTPServer\\zFTPServer.exe"=
"C:\\Program Files\\FreeCall.com\\FreeCall\\FreeCall.exe"=
"C:\\Program Files\\RealVNC\\VNC4\\winvnc4.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35]
R2 DLPortIO;DriverLINX Port I/O Driver;C:\WINDOWS\system32\drivers\DLPortIO.sys [1999-01-10 12:00]
R2 HOSTNT;Hostnt;C:\WINDOWS\system32\drivers\hostnt.sys [2000-03-01 13:58]
R2 MHDRV;Mhdrv;C:\WINDOWS\system32\drivers\mhdrv.sys [2000-03-01 13:58]
R2 ROCKEYNT;ROCKEYNT;C:\WINDOWS\system32\drivers\Rockeynt.sys [2008-04-12 14:59]
R3 CnxEtP;Conexant AccessRunner USB ADSL Adapter Filter Driver;C:\WINDOWS\system32\DRIVERS\CnxEtP.sys [2004-06-16 07:51]
R3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;C:\WINDOWS\system32\DRIVERS\CnxEtU.sys [2004-06-16 07:51]
R3 CnxTgNP;Conexant AccessRunner ADSL WAN PPPoE Adapter Driver;C:\WINDOWS\system32\DRIVERS\CnxTgNP.sys [2004-06-16 07:51]
R3 PSched;QoS Packet Scheduler;C:\WINDOWS\system32\DRIVERS\psched.sys [2004-08-04 14:00]
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys [2004-06-30 08:01]
R3 TDHost;TDHost;C:\WINDOWS\system32\drivers\TDHost.sys [2002-11-26 12:04]
S4 Apache2.2;Apache2.2;"C:\Documents and Settings\Bbulet\Desktop\xampp\apache\bin\apache.exe" -k runservice []

*Newly Created Service* - CATCHME
.
**************************************************************************

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-15 17:19:17
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\MySQL]
"ImagePath"="\"C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt\" --defaults-file=\"C:\Program Files\MySQL\MySQL Server 5.0\my.ini\" MySQL"
.
Completion time: 2008-04-15 17:20:52
ComboFix-quarantined-files.txt 2008-04-15 15:20:42

Pre-Run: 5,192,314,880 bytes free
Post-Run: 5,348,593,664 bytes free
.
2008-04-15 12:52:40 --- E O F ---