Pomalé PC a pomalé prohlížení internetu Vyřešeno

[hadjan]

Ok podařilo se mi na netu najit odinstalátor BitDefender http://www.antivirovecentrum.cz/navody/jak-odinstalovat-bitdefender.aspx jelikož v Pc jsem to nikde nenašel dokonce ani složky nic a po stažení a spuštění tohoto programku vše Ok tak jsem provedli ty testy dle tvého postupu a tady jsou sceny

ComboFix 12-01-01.04 - Kypr Jan 02.01.2012 16:16:50.3.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2012.1565 [GMT 1:00]
Spuštěný z: c:\documents and settings\Kypr Jan\Plocha\Vyčištění PC\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Kypr Jan\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
FILE ::
"c:\windows\000001_.tmp"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_SASDIFSV
-------\Service_SASDIFSV
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-02 do 2012-01-02 )))))))))))))))))))))))))))))))
.
.
2012-01-01 20:32 . 2008-04-14 07:51 33792 ------w- c:\program files\Messenger\custsat.dll
2012-01-01 20:32 . 2008-04-14 07:51 9728 ------w- c:\windows\system32\rwnh.dll
2012-01-01 20:32 . 2008-04-14 07:51 10752 ------w- c:\windows\system32\smtpapi.dll
2012-01-01 20:32 . 2008-04-14 07:51 81920 ------w- c:\windows\system32\ieencode.dll
2012-01-01 20:31 . 2006-12-28 23:31 19569 ----a-w- c:\windows\000001_.tmp
2012-01-01 10:59 . 2012-01-01 10:59 -------- d-----w- c:\documents and settings\Kypr Jan\Data aplikací\Malwarebytes
2012-01-01 10:59 . 2012-01-01 10:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-01-01 10:59 . 2012-01-01 10:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-01-01 10:59 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-26 09:16 . 2010-10-21 08:45 25216 ----a-w- c:\windows\system32\drivers\lgusbmodem.sys
2011-12-26 09:16 . 2010-10-21 08:45 20864 ----a-w- c:\windows\system32\drivers\lgusbdiag.sys
2011-12-26 09:16 . 2010-10-21 08:45 13056 ----a-w- c:\windows\system32\drivers\lgusbbus.sys
2011-12-26 09:16 . 2011-12-26 09:16 -------- d-----w- c:\program files\LG Electronics
2011-12-26 09:14 . 2011-10-18 18:53 6439528 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-12-10 21:08 . 2011-12-10 21:08 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Readon
2011-12-07 21:31 . 2011-12-07 21:32 -------- d-----w- c:\documents and settings\Kypr Jan\Local Settings\Data aplikací\Readon_Technology
2011-12-07 21:30 . 2011-12-07 21:32 -------- d-----w- c:\program files\Readon Technology
2011-12-05 14:07 . 2011-12-05 14:07 -------- d-----w- c:\documents and settings\Kypr Jan\Data aplikací\Unity
2011-12-05 13:47 . 2011-12-05 13:47 -------- d-----w- c:\documents and settings\Kypr Jan\Local Settings\Data aplikací\Unity
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-23 14:40 . 2002-09-20 17:41 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-19 12:05 . 2011-06-10 19:04 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-04 19:13 . 2002-09-20 18:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 19:13 . 2002-09-20 18:05 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:13 . 2002-09-20 18:04 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 11:23 . 2011-02-02 14:38 385024 ------w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2002-09-20 18:04 1288192 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:32 . 2002-09-20 18:03 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-26 10:49 . 2002-09-20 17:12 2029056 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-26 10:49 . 2002-09-20 17:12 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-18 17:10 . 2011-03-22 23:41 64616 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-10-18 11:13 . 2002-09-20 18:03 186880 ----a-w- c:\windows\system32\encdec.dll
2011-10-14 17:58 . 2011-03-22 23:41 20064872 ----a-w- c:\windows\RTHDCPL.EXE
2011-10-10 14:22 . 2011-02-01 19:17 692736 ----a-w- c:\windows\system32\inetcomm.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-01_19.47.43 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-01-02 15:27 . 2012-01-02 15:27 16384 c:\windows\Temp\Perflib_Perfdata_2b0.dat
+ 2011-02-02 18:51 . 2008-04-13 23:15 26368 c:\windows\system32\drivers\usbstor.sys
+ 2011-02-02 14:37 . 2008-04-14 07:51 33792 c:\windows\system32\dllcache\custsat.dll
- 2011-02-01 19:21 . 2011-02-02 19:27 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2011-02-01 19:21 . 2012-01-01 21:12 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2012-01-01 21:12 . 2012-01-01 21:12 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012012010120120102\index.dat
+ 2011-02-01 19:21 . 2012-01-01 21:12 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2011-02-01 19:21 . 2011-02-02 19:27 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2009-01-07 17:21 . 2009-01-07 16:21 121856 c:\windows\system32\xmllite.dll
+ 2009-01-07 17:21 . 2008-04-14 07:52 121856 c:\windows\system32\xmllite.dll
+ 2011-02-12 11:37 . 2008-04-14 07:52 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
- 2011-02-12 11:37 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2001-10-25 14:00 . 2008-06-20 17:49 247296 c:\windows\system32\mswsock.dll
- 2001-10-25 14:00 . 2008-06-20 16:04 247296 c:\windows\system32\mswsock.dll
+ 2012-01-01 20:32 . 2008-04-14 07:51 189440 c:\windows\system32\inetsrv\smtpadm.dll
+ 2012-01-01 20:32 . 2008-04-14 07:51 221696 c:\windows\system32\inetsrv\seo.dll
- 2008-06-20 17:49 . 2008-06-20 16:04 247296 c:\windows\system32\dllcache\mswsock.dll
+ 2008-06-20 17:49 . 2008-06-20 17:49 247296 c:\windows\system32\dllcache\mswsock.dll
+ 2011-12-25 04:40 . 2011-12-25 04:40 819200 c:\windows\Installer\39eb545.msp
+ 2012-01-02 14:48 . 2012-01-02 14:48 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\78a1fad679b26b82f2d9c9556b1f97c7\System.Web.Extensions.Design.ni.dll
+ 2012-01-02 14:47 . 2012-01-02 14:47 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\fe51abb7dbe89bdc61d386fbfa1b7b11\System.Web.Entity.ni.dll
+ 2012-01-02 14:48 . 2012-01-02 14:48 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\9be8189bfa6701d7ab4170cafe4fe4b7\System.Web.Entity.Design.ni.dll
+ 2012-01-02 14:47 . 2012-01-02 14:47 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\514a82a3c43eccbb77ffd06fb1db7cda\System.Web.DynamicData.ni.dll
+ 2008-03-20 17:06 . 2008-03-20 17:06 1480232 c:\windows\system32\LegitCheckControl.dll
+ 2011-12-26 08:59 . 2011-12-26 08:59 4368896 c:\windows\Installer\39eb54e.msp
+ 2012-01-02 14:47 . 2012-01-02 14:47 2405888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\b93ebb290e5ba9c2e3d8837758864f4c\System.Web.Extensions.ni.dll
+ 2012-01-02 14:47 . 2012-01-02 14:47 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\c0a3538e77c3b846ea35b6bab8498992\System.ServiceModel.Web.ni.dll
- 2011-02-13 07:26 . 2011-02-13 07:26 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2012-01-02 14:27 . 2012-01-02 14:27 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
"BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-10-15 375000]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Documents and Settings\\Kypr Jan\\Data aplikací\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\InterVideo\\DVD7\\WinDVD.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [20.7.2011 11:24 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [1.2.2011 20:24 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.7.2011 11:24 20568]
R2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [15.10.2009 14:06 223464]
R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [18.3.2011 14:17 22504]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [1.1.2012 11:59 652872]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [23.3.2011 1:04 116224]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [1.1.2012 11:59 20464]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [1.2.2011 21:14 47360]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [23.3.2011 0:41 1691480]
S3 tgiul50;tgiul50;c:\windows\system32\drivers\tgiulnt5.sys [15.3.2011 16:01 138528]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 94.74.192.252 94.74.192.244
DPF: DirectAnimation Java Classes
DPF: Microsoft XML Parser for Java
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-02 16:27
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547161642-261478967-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(968)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3544)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2012-01-02 16:30:46 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-02 15:30
ComboFix2.txt 2012-01-01 21:39
ComboFix3.txt 2012-01-01 19:50
.
Před spuštěním: Volných bajtů: 35 194 822 656
Po spuštění: Volných bajtů: 35 214 974 976
.
- - End Of File - - 2F16EE14FA4CDA5B1520284BDC966E18


Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:44:38, on 2.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Kypr Jan\Plocha\Vyčištění PC\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 4166 bytes

[Reklama]

[Žbeky]

Smaž c:\windows\000001_.tmp

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

[hadjan]

uděláno dle postupu ale Pc už se jeví lépe ale ještě to není 100%
nový log.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:35:57, on 2.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Kypr Jan\Plocha\Vyčištění PC\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 4215 bytes

[Žbeky]

Fixni: O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

Co znamená ne100%?

[hadjan]

Fixnuto

100% znamená že to ještě není úplně on jeví se mi pořád pomale spouštění internetu a dost pomalý start systému ale to se mi muže zdát ale jinak i tak díky za čas který semnou a mým problémem promrháš ale sám bych to jistě nikdy nezvlád jedině Formátem a novou instalací systému ale to nerad dělám jedine v krajni nouzi ještě jednou dík a klobouk dolů......

PS: ještě jeden malí dotaz je nějaký jednoduchý návod na nastavení domáci sítě mezi 3 PC systémy XP Profesional a co je ktomu za potřebý všechny 3 mám propojene roitrem ale nevím zda k síti stačí to propojení přes roitr nebo bych musel dokoupit křížove kabely na propojení ale to je jen takový dotaz nad rámec ještě jednou dík

[Žbeky]

S PC už asi víc nenaděláme.

Stačí ti router (ne roiter), nic víc nemusíš kupovat.

Dej tu pak vyřešeno