Reload explorer.exe

Dobry den, uz dlhsi cas mam problem s tym, ze ak si kliknem na nejaky adresar cez Tento PC (resp. v pravom okne Prieskumnika), tak sa mi cca 10-15 minut v sec intervaloch reloaduje explorer.exe.

V automatickej kontrole hijackthis.log, ktorej adresu tu uvadzate nevidim nic podozrive...

Vopred dakujem za pomoc a pripajam aj hijackthis.log aj combo.log.:

Logfile of Trend Micro HijackThis v2.0.2
=========================
Scan saved at 18:09:06, on 20.07.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\UPCSmartGuard\Anti-Virus\fsgk32st.exe
C:\Program Files\UPCSmartGuard\Common\FSMA32.EXE
C:\Program Files\UPCSmartGuard\Anti-Virus\FSGK32.EXE
C:\Program Files\UPCSmartGuard\Common\FSMB32.EXE
D:\Programy\NortonGhost\GhostStartService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\UPCSmartGuard\Common\FCH32.EXE
C:\Program Files\UPCSmartGuard\Anti-Virus\fssm32.exe
C:\Program Files\UPCSmartGuard\Common\FAMEH32.EXE
C:\Program Files\UPCSmartGuard\Anti-Virus\fsqh.exe
C:\Program Files\UPCSmartGuard\FSAUA\program\fsaua.exe
C:\Program Files\UPCSmartGuard\FWES\Program\fsdfwd.exe
C:\Program Files\UPCSmartGuard\FSAUA\program\fsus.exe
C:\Program Files\UPCSmartGuard\Anti-Virus\fsav32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
D:\Programy\NortonGhost\GhostStartTrayApp.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\UPCSmartGuard\Common\FSM32.EXE
C:\Program Files\UPCSmartGuard\FSGUI\fsguidll.exe
D:\Programy\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GhostStartTrayApp] D:\Programy\NortonGhost\GhostStartTrayApp.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\UPCSmartGuard\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\UPCSmartGuard\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1275210071-1060284298-1343024091-1007\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Prevziať pomocou FDM - file://D:\Programy\Free Download Manager\dllink.htm
O8 - Extra context menu item: Prevziať video pomocou FDM - file://D:\Programy\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Prevziať vybrané pomocou FDM - file://D:\Programy\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Prevziať všetko pomocou FDM - file://D:\Programy\Free Download Manager\dlall.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v ... 1139570465
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\UPCSmartGuard\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\UPCSmartGuard\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\UPCSmartGuard\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\UPCSmartGuard\Common\FSMA32.EXE
O23 - Service: GhostStartService - Symantec Corporation - D:\Programy\NortonGhost\GhostStartService.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 6372 bytes

-------------------------------

ComboFix 08-07-14.2 - IK 2008-07-20 18:13:51.3 - NTFSx86
=======================================
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.1.1029.18.209 [GMT 2:00]
Running from: C:\Documents and Settings\All Users\Plocha\ComboFix.exe
* Resident AV is active


WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-06-20 to 2008-07-20 )))))))))))))))))))))))))))))))
.

2008-07-20 16:25 . 2008-07-20 16:29 <DIR> d-------- C:\Documents and Settings\testik\Data aplikací\Spyware Terminator
2008-07-20 16:22 . 2005-03-18 23:18 <DIR> d-------- C:\Documents and Settings\testik\WINDOWS
2008-07-20 16:22 . 2005-03-18 23:19 <DIR> d---s---- C:\Documents and Settings\testik\UserData
2008-07-20 16:22 . 2005-03-17 04:39 <DIR> d-------- C:\Documents and Settings\testik\Plocha
2008-07-20 16:22 . 2005-03-17 04:39 <DIR> d--h----- C:\Documents and Settings\testik\Okolní tiskárny
2008-07-20 16:22 . 2005-03-17 04:39 <DIR> d--h----- C:\Documents and Settings\testik\Okolní síť
2008-07-20 16:22 . 2008-07-20 16:24 <DIR> dr------- C:\Documents and Settings\testik\Oblíbené položky
2008-07-20 16:22 . 2005-03-17 20:40 <DIR> d--h----- C:\Documents and Settings\testik\Šablony
2008-07-20 16:22 . 2005-03-17 04:39 <DIR> dr------- C:\Documents and Settings\testik\Nabídka Start
2008-07-20 16:22 . 2008-07-20 16:24 <DIR> dr------- C:\Documents and Settings\testik\Dokumenty
2008-07-20 16:22 . 2005-03-18 23:16 <DIR> d-------- C:\Documents and Settings\testik\Data aplikací\Symantec
2008-07-20 16:22 . 2005-03-18 23:17 <DIR> d-------- C:\Documents and Settings\testik\Data aplikací\ACD Systems
2008-07-20 16:22 . 2008-07-20 16:25 <DIR> dr-h----- C:\Documents and Settings\testik\Data aplikací
2008-07-20 16:22 . 2008-07-20 16:31 <DIR> d-------- C:\Documents and Settings\testik
2008-07-20 16:18 . 2001-08-17 21:12 60,416 --a--c--- C:\WINDOWS\system32\dllcache\brserwdm.sys
2008-07-20 16:18 . 2001-10-24 11:49 39,552 --a--c--- C:\WINDOWS\system32\dllcache\brparwdm.sys
2008-07-20 16:18 . 2001-08-17 20:11 31,529 --a--c--- C:\WINDOWS\system32\dllcache\brzwlan.sys
2008-07-20 16:18 . 2001-10-24 11:49 13,824 --a--c--- C:\WINDOWS\system32\dllcache\bulltlp3.sys
2008-07-20 16:18 . 2001-08-17 21:12 11,008 --a--c--- C:\WINDOWS\system32\dllcache\brusbmdm.sys
2008-07-20 16:18 . 2001-08-17 21:12 10,368 --a--c--- C:\WINDOWS\system32\dllcache\brusbscn.sys
2008-07-20 16:18 . 2001-10-24 12:24 9,728 --a--c--- C:\WINDOWS\system32\dllcache\brserif.dll
2008-07-20 16:18 . 2001-10-24 12:24 5,120 --a--c--- C:\WINDOWS\system32\dllcache\brscnrsm.dll
2008-07-20 16:18 . 2001-08-17 21:12 3,168 --a--c--- C:\WINDOWS\system32\dllcache\brparimg.sys
2008-07-20 16:16 . 2001-10-24 12:24 382,592 --a--c--- C:\WINDOWS\system32\dllcache\atidrab.dll
2008-07-20 16:15 . 2001-08-17 21:28 762,780 --a--c--- C:\WINDOWS\system32\dllcache\3cwmcru.sys
2008-07-20 16:14 . 2008-04-14 08:06 2,147,328 --a--c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-07-20 14:16 . 2008-07-20 14:16 <DIR> d-------- C:\WINDOWS\LastGood
2008-07-20 12:46 . 2008-07-20 14:22 1,374 --a------ C:\WINDOWS\imsins.BAK
2008-07-20 00:10 . 2008-04-14 08:51 651,264 --------- C:\WINDOWS\system32\dot3ui.dll
2008-07-20 00:09 . 2008-07-20 00:09 <DIR> d-------- C:\WINDOWS\system32\cs
2008-07-20 00:07 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0411.dll
2008-07-20 00:06 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0404.dll
2008-07-20 00:03 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0804.dll
2008-07-20 00:00 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0401.dll
2008-07-19 23:59 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt0412.dll
2008-07-19 23:58 . 2007-04-02 23:56 19,456 --a--c--- C:\WINDOWS\system32\dllcache\agt040d.dll
2008-07-19 23:50 . 2008-04-14 07:55 2,957,312 -----c--- C:\WINDOWS\system32\dllcache\wmploc.dll
2008-07-19 23:43 . 2008-04-13 22:06 144,384 --------- C:\WINDOWS\system32\drivers\hdaudbus.sys
2008-07-19 23:43 . 2008-04-14 00:10 10,240 --------- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-07-17 21:35 . 2008-07-17 21:35 <DIR> d-------- C:\Documents and Settings\VK\Data aplikací\F-Secure
2008-07-16 20:19 . 2008-07-18 22:13 <DIR> d-------- C:\Documents and Settings\VK\Data aplikací\Spyware Terminator
2008-07-16 18:49 . 2008-07-20 17:49 <DIR> d-------- C:\Program Files\Crawler
2008-07-16 18:47 . 2008-07-20 14:23 <DIR> d-------- C:\Documents and Settings\Ivica\Data aplikací\Spyware Terminator
2008-07-13 18:17 . 2005-03-18 23:18 <DIR> d-------- C:\Documents and Settings\VK\WINDOWS
2008-07-13 18:17 . 2005-03-18 23:19 <DIR> d---s---- C:\Documents and Settings\VK\UserData
2008-07-13 18:17 . 2008-07-17 21:37 <DIR> d-------- C:\Documents and Settings\VK\Plocha
2008-07-13 18:17 . 2005-03-17 04:39 <DIR> d--h----- C:\Documents and Settings\VK\Okolní tiskárny
2008-07-13 18:17 . 2005-03-17 04:39 <DIR> d--h----- C:\Documents and Settings\VK\Okolní síť
2008-07-13 18:17 . 2008-07-13 18:18 <DIR> dr------- C:\Documents and Settings\VK\Oblíbené položky
2008-07-13 18:17 . 2005-03-17 20:40 <DIR> d--h----- C:\Documents and Settings\VK\Šablony
2008-07-13 18:17 . 2005-03-17 04:39 <DIR> dr------- C:\Documents and Settings\VK\Nabídka Start
2008-07-13 18:17 . 2008-07-13 18:18 <DIR> dr------- C:\Documents and Settings\VK\Dokumenty
2008-07-13 18:17 . 2005-03-18 23:16 <DIR> d-------- C:\Documents and Settings\VK\Data aplikací\Symantec
2008-07-13 18:17 . 2005-03-18 23:17 <DIR> d-------- C:\Documents and Settings\VK\Data aplikací\ACD Systems
2008-07-13 18:17 . 2008-07-17 21:35 <DIR> dr-h----- C:\Documents and Settings\VK\Data aplikací
2008-07-13 18:17 . 2008-07-18 22:28 <DIR> d-------- C:\Documents and Settings\VK
2008-07-12 21:44 . 2008-07-16 21:04 <DIR> d-------- C:\Documents and Settings\Ivica\Data aplikací\F-Secure
2008-07-12 21:36 . 2008-07-12 21:52 51,072 --a------ C:\WINDOWS\system32\drivers\fsdfw.sys
2008-07-12 21:36 . 2008-07-12 21:52 30,016 --a------ C:\WINDOWS\system32\drivers\fsndis5.sys
2008-07-12 21:34 . 2008-07-12 21:35 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\F-Secure
2008-07-12 21:28 . 2008-07-12 21:58 <DIR> d-------- C:\Program Files\UPCSmartGuard
2008-07-12 21:25 . 2008-07-12 21:25 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\fssg
2008-07-12 21:19 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys
2008-07-11 21:41 . 2008-07-11 21:41 <DIR> d-------- C:\Documents and Settings\Ivica\Plocha
2008-07-11 21:18 . 2008-07-11 21:18 0 --a------ C:\WINDOWS\nsreg.dat
2008-06-20 19:49 . 2008-06-20 19:49 247,296 -----c--- C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 19:49 . 2008-06-20 19:49 147,968 -----c--- C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 13:51 . 2008-06-20 13:51 361,600 -----c--- C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 13:08 . 2008-06-20 13:08 225,856 -----c--- C:\WINDOWS\system32\dllcache\tcpip6.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-20 14:25 --------- d-----w C:\Program Files\Spyware Terminator
2008-07-20 12:23 --------- d-----w C:\Program Files\WinClamAVShield
2008-07-18 19:57 --------- d-----w C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2008-07-16 16:46 141,312 ----a-w C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-07-14 19:11 --------- d-----w C:\Documents and Settings\Ivica\Data aplikací\Free Download Manager
2008-06-20 17:49 247,296 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-14 17:35 272,128 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-05-09 10:56 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:56 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll
2008-05-09 10:56 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:56 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll
2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe
2008-05-07 09:07 135,168 ----a-w C:\WINDOWS\system32\cscript.exe
2008-05-07 05:12 1,290,752 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-01-12 22:12 22,072 ----a-w C:\Documents and Settings\Ivica\Data aplikací\GDIPFONTCACHEV1.DAT
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 08:52 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"GhostStartTrayApp"="D:\Programy\NortonGhost\GhostStartTrayApp.exe" [2002-08-14 16:21 94208]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2003-10-30 09:46 155648]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2003-10-30 09:33 118784]
"F-Secure Manager"="C:\Program Files\UPCSmartGuard\Common\FSM32.EXE" [2007-04-26 19:12 183208]
"F-Secure TNB"="C:\Program Files\UPCSmartGuard\FSGUI\TNBUtil.exe" [2007-04-26 19:10 740208]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-07-16 18:46 1817600]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 08:52 15360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"DisallovRun"= 1 (0x1)
"NoSaveSetting"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.xvid"= xvid.dll
"msacm.divxa32"= msaud32_divx.acm

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"D:\\Programy\\Vidomi\\slave.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"D:\\Programy\\Free Download Manager\\fdm.exe"=
"C:\\Program Files\\Media Player Classic\\mplayerc.exe"=
"%windir%\\system32\\sessmgr.exe"=

R0 FSFW;F-Secure Firewall Driver;C:\WINDOWS\system32\drivers\fsdfw.sys [2008-07-12 21:52]
R1 F-Secure HIPS;F-Secure HIPS;C:\Program Files\UPCSmartGuard\HIPS\fshs.sys [2008-07-12 21:49]
R1 GhPciScan;GhostPciScanner;D:\Programy\NortonGhost\ghpciscan.sys [2002-08-14 16:11]
R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2008-07-16 18:46]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\UPCSmartGuard\Anti-Virus\minifilter\fsgk.sys [2007-04-26 19:07]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2008-04-14 00:26]
S3 FlarionDTM;Flarion DTM Network Interface;C:\WINDOWS\system32\DRIVERS\FlrnDTM.sys [2005-05-26 16:06]
S3 NCHSSVAD;SoundTap Recorder;C:\WINDOWS\system32\drivers\nchssvad.sys [2008-02-10 17:14]
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM);C:\WINDOWS\system32\DRIVERS\sea1bus.sys [2007-01-04 13:01]
S4 F-Secure Filter;F-Secure File System Filter;C:\Program Files\UPCSmartGuard\Anti-Virus\Win2K\FSfilter.sys [2007-04-26 19:08]
S4 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\UPCSmartGuard\Anti-Virus\Win2K\FSrec.sys [2007-04-26 19:08]

.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-20 18:20:27
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


**************************************************************************
.
Completion time: 2008-07-20 18:24:22
ComboFix-quarantined-files.txt 2008-07-20 16:23:06
ComboFix2.txt 2008-07-19 19:36:29

Adresářů: 7, Volných bajtů: 5,000,286,208
Adresářů: 9, Volných bajtů: 4,991,037,440

158 --- E O F --- 2008-07-20 12:22:29

Zdravim,

otvorte Poznamkovy blok a skopirujte don tento kod:



Subor ulozte ako typ "Vsetky subory" pod menom "%nieco.reg%" -> Spustite ho -> OK


Dajte vediet vysledok.

Kedze neviem, ako mam vzniknuty subor spustit - tak som rucne zmenila hodnoty v prislusnom kluci pre "DisallovRun" a "NoSaveSetting" z 1 na 0...

... problem stale pretrvava... :'(

Skus mi na mail poslat log zo SysInspectoru.

Este jedna vec - hned po nainstalovani NB som mala problem s tym, ze napriek tomu, ze som potvrdila vsade kde sa len dalo, ze chcem vsetko otvarat v 1 okne, windows tvrdohlavo otvaral na kazdy dvoj-klik nove okno... no a to sa potom zmenilo na to, ze uz na adresar nemozem dvoj-kliknut bez toho, aby sa (presne som to zmerala) 5min
v sec intervaloch nereloadoval explorer.exe (takze na prehliadanie pouzivam prieskumnika a adresare otvaram len klikom v lavej casti...)