ahoj. Mám problém s virem autorun.inf. Dostal se mi do počítače přes flashku a nevím, jak se ho zbavit. Počítač jsem projel antivirem a nějaké soubory odstranil. Flashdisky jsem naformátoval a ty už běží v pořádku. Jediný a pro mě dost zásadní problém je s externím harddiskem. Složky už se mi nezobrazují jako zástupci, avšak všechny složky jsou skryté a nelze jim tento attribut změnit. Prostudoval jsem haldu tipů,ale žádný mi nepomohol, Proto se s prosbou o pomoc obracím na vás. díky Vojta
přikládám log.txt, který jsem udělal podle návodu
Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojtěch Danihel at 2011-08-09 09:51:17
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 100 GB (70%) free of 142 GB
Total RAM: 1014 MB (19% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\MpIdleTask.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Vojtěch Danihel\Data aplikací\Mozilla\Firefox\Profiles\973j61i7.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{B7082FAA-CB62-4872-9106-E42DD88EDE45}:2.8, {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906, {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.8, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {ce10bf86-da68-441e-91fa-38336363e3cd}:2.5.8.6, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.3.42, DTToolbar@toolbarnet.com:1.1.2.0185, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Vojtěch Danihel\Data aplikací\Mozilla\Firefox\Profiles\973j61i7.default\extensions\
DTToolbar@toolbarnet.com
engine@conduit.com
{20a82645-c095-46ed-80e3-08825760534b}
{ce10bf86-da68-441e-91fa-38336363e3cd}
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Documents and Settings\Vojtěch Danihel\Data aplikací\Mozilla\Firefox\Profiles\973j61i7.default\searchplugins\
daemon-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-08 305328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-08 1007160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-29 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-01-29 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-08 305328]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
"LManager"=C:\Program Files\Launch Manager\LManager.exe [2009-08-18 1157128]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-08-24 18702336]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-07-17 53248]
"EgisTecLiveUpdate"=C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]
"mwlDaemon"=C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2009-09-10 349480]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"NortonOnlineBackupReminder"=C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-07-24 588648]
"PLFSetL"=C:\WINDOWS\PLFSetL.exe [2008-07-03 94208]
"snp2uvc"=C:\WINDOWS\system32\csnp2uvc.dll [2009-02-16 196608]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-02-06 1430824]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 997920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-02-02 39408]
""= []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"Olqoqc"=C:\Documents and Settings\Vojtěch Danihel\Data aplikací\Olqoqc.exe []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe
Moveslink.lnk - C:\WINDOWS\Installer\{0DBA8BCC-EC26-467F-8208-FF74064CDCF6}\_CC2B20529D5099BFD3BE27.exe
C:\Documents and Settings\Vojtěch Danihel\Nabídka Start\Programy\Po spuštění
HP Print View Resource Center.lnk - C:\Program Files\Hewlett-Packard\HP Print View Software\HP Print View Resource Center\HPPrintViewResourceCenter.exe
PandaUSBVaccine.lnk - C:\Program Files\Panda USB Vaccine\USBVaccine.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=36
"NoDriveAutoRun"=0xFFFFFFFF
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======List of files/folders created in the last 1 month======
2011-08-09 09:51:18 ----D---- C:\Program Files\trend micro
2011-08-09 09:51:17 ----D---- C:\rsit
2011-08-09 09:01:31 ----ASH---- C:\hiberfil.sys
2011-08-09 08:48:25 ----A---- C:\WINDOWS\ntbtlog.txt
2011-08-09 08:39:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Panda Security
2011-08-09 08:39:36 ----D---- C:\Program Files\Panda USB Vaccine
2011-08-08 21:45:44 ----A---- C:\WINDOWS\system32\MRT.exe
2011-08-08 21:12:52 ----D---- C:\Documents and Settings\Vojtěch Danihel\Data aplikací\Malwarebytes
2011-08-08 21:12:38 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-08-08 21:12:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-08-08 21:12:30 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-08-08 21:12:29 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-08-08 20:20:57 ----D---- C:\autorun.inf
2011-08-08 19:54:40 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-08-08 19:54:29 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-08-08 19:54:02 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-08-08 19:53:47 ----D---- C:\Program Files\Windows Media Connect 2
2011-08-08 19:53:26 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-08-08 17:19:35 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2011-08-08 17:15:54 ----D---- C:\Program Files\Microsoft Security Client
2011-08-08 17:07:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2011-07-17 09:10:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-17 09:08:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
======List of files/folders modified in the last 1 month======
2011-08-09 09:51:18 ----RD---- C:\Program Files
2011-08-09 09:51:05 ----D---- C:\WINDOWS\Temp
2011-08-09 09:27:56 ----D---- C:\WINDOWS\system32\CatRoot2
2011-08-09 09:25:19 ----D---- C:\Program Files\Counter-Strike 1.6
2011-08-09 09:12:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-08-09 09:07:03 ----SD---- C:\WINDOWS\Tasks
2011-08-09 08:49:43 ----D---- C:\Documents and Settings
2011-08-09 08:48:25 ----D---- C:\WINDOWS
2011-08-09 08:45:58 ----SHD---- C:\WINDOWS\Installer
2011-08-09 08:45:58 ----HD---- C:\Config.Msi
2011-08-09 08:45:56 ----D---- C:\Program Files\Microsoft Office
2011-08-09 08:43:58 ----AD---- C:\WINDOWS\system32
2011-08-09 08:31:34 ----D---- C:\WINDOWS\system32\CatRoot
2011-08-09 08:30:02 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-08-09 08:30:02 ----HD---- C:\WINDOWS\inf
2011-08-08 21:45:46 ----D---- C:\WINDOWS\Debug
2011-08-08 21:39:12 ----D---- C:\WINDOWS\Prefetch
2011-08-08 21:12:38 ----D---- C:\WINDOWS\system32\drivers
2011-08-08 19:56:36 ----D---- C:\Program Files\Windows Media Player
2011-08-08 19:54:21 ----A---- C:\WINDOWS\imsins.BAK
2011-08-08 19:54:07 ----A---- C:\WINDOWS\win.ini
2011-08-08 19:53:36 ----D---- C:\WINDOWS\Help
2011-08-08 19:51:56 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-08-08 19:43:06 ----D---- C:\Program Files\Common Files
2011-08-08 19:43:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2011-08-08 17:16:12 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-08-04 08:41:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-07-19 13:43:21 ----D---- C:\Documents and Settings\Vojtěch Danihel\Data aplikací\vlc
2011-07-12 20:40:19 ----HD---- C:\WINDOWS\$hf_mig$
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2008-04-15 312344]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-10-16 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2011-04-18 165648]
R1 MpKsl87c4ff4c;MpKsl87c4ff4c; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{2581EE82-121D-4460-9E3A-1FF4B7E55C5F}\MpKsl87c4ff4c.sys []
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2008-12-02 17840]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2008-12-02 15280]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2008-12-02 58800]
R1 VD_FileDisk;VD_FileDisk; C:\WINDOWS\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2008-04-14 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2008-04-14 55936]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-06-22 1574112]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2009-03-26 24072]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-08-31 5891584]
R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2009-03-02 38912]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2009-05-06 1759744]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-02-06 205232]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 akby2quj;akby2quj; C:\WINDOWS\system32\drivers\akby2quj.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HPFXBULK;HPFXBULK; C:\WINDOWS\system32\drivers\hpfxbulk.sys [2007-07-16 17432]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2009-02-03 162816]
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 SECUSB2;SECUSB2.sys, SEC SOC USBD Driver; C:\WINDOWS\System32\Drivers\SECUSB2.sys [2008-04-16 10528]
S3 slabbus;Suunto Sports Instrument driver (WDM); C:\WINDOWS\system32\DRIVERS\slabbus.sys [2007-05-09 58368]
S3 slabser;Suunto USB Serial Port Drivers; C:\WINDOWS\system32\DRIVERS\slabser.sys [2007-05-09 75776]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2008-04-16 104576]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2009-01-30 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2008-04-14 13952]
S4 sisagp;Filtr SIS sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-01-29 153376]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 11736]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-03 240160]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
R3 MWLService;MyWinLocker Service; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S2 gupdate1cafff03aafc674;Služba Google Update (gupdate1cafff03aafc674); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-30 133104]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-05-28 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-30 133104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-02-02 182768]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
autorun.inf a jak se ho zbavit
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: autorun.inf a jak se ho zbavit
Zdravim a pekny den preji 
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
Zapojte do PC vsechny USB klice (flashky, ext. disky apod.)
- Stahne a ulozte na plochu UsbFix http://www.viry.cz/forum/viewtopic.php?f=24&t=102308
- Spustte a kliknete na Deletion
- Po dokonceni sem vlozte log, pokud na Vas nevyskoci, najdete jej zde C:\UsbFix.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: autorun.inf a jak se ho zbavit
také zdravím a posílám šílenost, která je za hranicemi mého chápání a které říkate log
############################## | UsbFix 7.014 | [Deletion]
User: Vojtěch Danihel (Administrator) # VOJTA-MINI [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 09:28:13 | 10/08/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
CPU 2: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
Microsoft Windows XP Home Edition (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall: Enabled
Antivirus: Microsoft Security Essentials 3.0.8402.0 [Enabled | Updated]
RAM -> 1014 Mb
C:\ (%systemdrive%) -> Fixed drive # 139 Gb (96 Mb free - 69%) [ACER] # NTFS
D:\ -> CD-ROM
E:\ -> Fixed drive # 466 Gb (312 Mb free - 67%) [VERBATIM] # NTFS
F:\ -> Removable drive # 7 Gb (5 Mb free - 72%) [FLASH VOJTA] # FAT32
G:\ -> Removable drive # 4 Gb (3 Mb free - 76%) [] # FAT32
H:\ -> Removable drive # 15 Gb (15 Mb free - 100%) [NIKON D90] # FAT32
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\VOJTCH~1\LOCALS~1\Temp\p.dat
Not deleted ! F:\AUTORUN.INF
################## | Registry |
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{502f5e36-4008-11e0-9e53-705ab63e3076}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{d4fdd184-bd8f-11df-9e3a-705ab63e3076}
################## | Listing |
[19/06/2010 - 08:48:24 | D ] C:\acaae7e3c6dd1ad32b90eac5af
[29/05/2010 - 03:01:40 | HD ] C:\ACER
[02/02/2010 - 19:36:17 | A | 0] C:\AUTOEXEC.BAT
[08/08/2011 - 20:20:57 | D ] C:\autorun.inf
[01/11/2010 - 09:31:36 | D ] C:\Book
[29/05/2010 - 02:53:36 | RASH | 211] C:\boot.ini
[14/04/2008 - 14:00:00 | RASH | 4952] C:\Bootfont.bin
[09/08/2011 - 08:45:58 | HD ] C:\Config.Msi
[02/02/2010 - 19:36:17 | A | 0] C:\CONFIG.SYS
[09/08/2011 - 08:49:43 | D ] C:\Documents and Settings
[11/12/2010 - 18:51:45 | A | 2951] C:\dshell.txt
[09/08/2011 - 09:01:31 | ASH | 1063194624] C:\hiberfil.sys
[29/06/2010 - 19:36:02 | D ] C:\HP Universal Print Driver v5.1 PCL5 32-bit Driver
[29/06/2010 - 22:16:17 | D ] C:\HP_CP1510_full_solution_v4.0
[29/06/2010 - 20:37:22 | D ] C:\HP_CP1510_win32_PS_add_printer_package_v61.072.52.00
[24/06/2011 - 21:23:27 | D ] C:\i386
[02/02/2010 - 22:29:58 | D ] C:\Intel
[02/02/2010 - 19:36:17 | RASH | 0] C:\IO.SYS
[26/07/2009 - 10:50:52 | A | 2060] C:\MOD01SET0J00P2000X.enc
[11/09/2008 - 05:27:05 | A | 2488] C:\MOD01WOS02CSP20001.enc
[02/02/2010 - 19:36:17 | RASH | 0] C:\MSDOS.SYS
[14/04/2008 - 14:00:00 | RASH | 47564] C:\NTDETECT.COM
[14/04/2008 - 14:00:00 | RASH | 250576] C:\ntldr
[29/05/2010 - 07:47:21 | HD ] C:\OEM
[09/08/2011 - 22:38:41 | ASH | 1598029824] C:\pagefile.sys
[09/08/2011 - 09:51:18 | RD ] C:\Program Files
[10/08/2011 - 09:33:39 | SHD ] C:\RECYCLER
[02/02/2010 - 22:35:43 | A | 2088] C:\RHDSetup.log
[09/08/2011 - 10:14:53 | D ] C:\rsit
[29/05/2010 - 02:54:06 | SHD ] C:\System Volume Information
[10/08/2011 - 09:33:40 | D ] C:\UsbFix
[10/08/2011 - 09:33:41 | A | 1142] C:\UsbFix.txt
[11/09/2008 - 05:20:35 | D ] C:\VALUEADD
[10/08/2011 - 08:18:40 | D ] C:\WINDOWS
[09/08/2011 - 22:49:11 | AD ] E:\AUDIO
[10/03/2009 - 12:35:04 | AD ] E:\DOKUMENTY
[10/03/2009 - 12:34:18 | AD ] E:\FOTKY
[09/08/2011 - 14:38:15 | AD ] E:\Fotoškola
[07/03/2011 - 19:29:32 | A | 20480] E:\Guten Tag.doc
[28/10/2010 - 21:20:10 | A | 36864] E:\Hornicek.doc
[09/08/2011 - 14:36:08 | AD ] E:\Nemcina
[10/08/2011 - 09:33:40 | SHD ] E:\RECYCLER
[09/08/2011 - 17:44:01 | SHD ] E:\System Volume Information
[21/07/2011 - 20:08:56 | A | 70144] E:\zahradni afterparty prezence 2.xls
[08/07/2011 - 17:52:24 | A | 24115] E:\zahradni afterparty prezence.xlsx
[21/07/2011 - 21:04:50 | A | 63488] E:\zahradni slavnost tisk.xls
[26/06/2011 - 15:22:08 | A | 49664] E:\zslavnost.xls
[09/08/2011 - 10:33:30 | H | 16] F:\AUTORUN.INF
[09/08/2011 - 10:35:56 | D ] F:\Hudba
[09/08/2011 - 10:36:08 | D ] F:\zbytek
[09/08/2011 - 09:34:22 | D ] G:\Nová složka
[08/08/2011 - 20:30:42 | A | 629499022] G:\Z-pekla-(cz).avi
[09/08/2011 - 11:52:58 | A | 9] G:\HDINFO.CFG
[09/08/2011 - 09:29:48 | AH | 512] H:\NIKON001.DSC
[09/08/2011 - 09:29:48 | D ] H:\DCIM
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
F:\Autorun.inf -> Folder created by Panda USB Vaccine
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
H:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | Upload |
Please send the file: C:\UsbFix_Upload_Me_VOJTA-MINI.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.
################## | E.O.F |
doufám, že jsem to udělal správně. děkuji za váš čas.
############################## | UsbFix 7.014 | [Deletion]
User: Vojtěch Danihel (Administrator) # VOJTA-MINI [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 09:28:13 | 10/08/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
CPU 2: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
Microsoft Windows XP Home Edition (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall: Enabled
Antivirus: Microsoft Security Essentials 3.0.8402.0 [Enabled | Updated]
RAM -> 1014 Mb
C:\ (%systemdrive%) -> Fixed drive # 139 Gb (96 Mb free - 69%) [ACER] # NTFS
D:\ -> CD-ROM
E:\ -> Fixed drive # 466 Gb (312 Mb free - 67%) [VERBATIM] # NTFS
F:\ -> Removable drive # 7 Gb (5 Mb free - 72%) [FLASH VOJTA] # FAT32
G:\ -> Removable drive # 4 Gb (3 Mb free - 76%) [] # FAT32
H:\ -> Removable drive # 15 Gb (15 Mb free - 100%) [NIKON D90] # FAT32
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\VOJTCH~1\LOCALS~1\Temp\p.dat
Not deleted ! F:\AUTORUN.INF
################## | Registry |
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{502f5e36-4008-11e0-9e53-705ab63e3076}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{d4fdd184-bd8f-11df-9e3a-705ab63e3076}
################## | Listing |
[19/06/2010 - 08:48:24 | D ] C:\acaae7e3c6dd1ad32b90eac5af
[29/05/2010 - 03:01:40 | HD ] C:\ACER
[02/02/2010 - 19:36:17 | A | 0] C:\AUTOEXEC.BAT
[08/08/2011 - 20:20:57 | D ] C:\autorun.inf
[01/11/2010 - 09:31:36 | D ] C:\Book
[29/05/2010 - 02:53:36 | RASH | 211] C:\boot.ini
[14/04/2008 - 14:00:00 | RASH | 4952] C:\Bootfont.bin
[09/08/2011 - 08:45:58 | HD ] C:\Config.Msi
[02/02/2010 - 19:36:17 | A | 0] C:\CONFIG.SYS
[09/08/2011 - 08:49:43 | D ] C:\Documents and Settings
[11/12/2010 - 18:51:45 | A | 2951] C:\dshell.txt
[09/08/2011 - 09:01:31 | ASH | 1063194624] C:\hiberfil.sys
[29/06/2010 - 19:36:02 | D ] C:\HP Universal Print Driver v5.1 PCL5 32-bit Driver
[29/06/2010 - 22:16:17 | D ] C:\HP_CP1510_full_solution_v4.0
[29/06/2010 - 20:37:22 | D ] C:\HP_CP1510_win32_PS_add_printer_package_v61.072.52.00
[24/06/2011 - 21:23:27 | D ] C:\i386
[02/02/2010 - 22:29:58 | D ] C:\Intel
[02/02/2010 - 19:36:17 | RASH | 0] C:\IO.SYS
[26/07/2009 - 10:50:52 | A | 2060] C:\MOD01SET0J00P2000X.enc
[11/09/2008 - 05:27:05 | A | 2488] C:\MOD01WOS02CSP20001.enc
[02/02/2010 - 19:36:17 | RASH | 0] C:\MSDOS.SYS
[14/04/2008 - 14:00:00 | RASH | 47564] C:\NTDETECT.COM
[14/04/2008 - 14:00:00 | RASH | 250576] C:\ntldr
[29/05/2010 - 07:47:21 | HD ] C:\OEM
[09/08/2011 - 22:38:41 | ASH | 1598029824] C:\pagefile.sys
[09/08/2011 - 09:51:18 | RD ] C:\Program Files
[10/08/2011 - 09:33:39 | SHD ] C:\RECYCLER
[02/02/2010 - 22:35:43 | A | 2088] C:\RHDSetup.log
[09/08/2011 - 10:14:53 | D ] C:\rsit
[29/05/2010 - 02:54:06 | SHD ] C:\System Volume Information
[10/08/2011 - 09:33:40 | D ] C:\UsbFix
[10/08/2011 - 09:33:41 | A | 1142] C:\UsbFix.txt
[11/09/2008 - 05:20:35 | D ] C:\VALUEADD
[10/08/2011 - 08:18:40 | D ] C:\WINDOWS
[09/08/2011 - 22:49:11 | AD ] E:\AUDIO
[10/03/2009 - 12:35:04 | AD ] E:\DOKUMENTY
[10/03/2009 - 12:34:18 | AD ] E:\FOTKY
[09/08/2011 - 14:38:15 | AD ] E:\Fotoškola
[07/03/2011 - 19:29:32 | A | 20480] E:\Guten Tag.doc
[28/10/2010 - 21:20:10 | A | 36864] E:\Hornicek.doc
[09/08/2011 - 14:36:08 | AD ] E:\Nemcina
[10/08/2011 - 09:33:40 | SHD ] E:\RECYCLER
[09/08/2011 - 17:44:01 | SHD ] E:\System Volume Information
[21/07/2011 - 20:08:56 | A | 70144] E:\zahradni afterparty prezence 2.xls
[08/07/2011 - 17:52:24 | A | 24115] E:\zahradni afterparty prezence.xlsx
[21/07/2011 - 21:04:50 | A | 63488] E:\zahradni slavnost tisk.xls
[26/06/2011 - 15:22:08 | A | 49664] E:\zslavnost.xls
[09/08/2011 - 10:33:30 | H | 16] F:\AUTORUN.INF
[09/08/2011 - 10:35:56 | D ] F:\Hudba
[09/08/2011 - 10:36:08 | D ] F:\zbytek
[09/08/2011 - 09:34:22 | D ] G:\Nová složka
[08/08/2011 - 20:30:42 | A | 629499022] G:\Z-pekla-(cz).avi
[09/08/2011 - 11:52:58 | A | 9] G:\HDINFO.CFG
[09/08/2011 - 09:29:48 | AH | 512] H:\NIKON001.DSC
[09/08/2011 - 09:29:48 | D ] H:\DCIM
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
F:\Autorun.inf -> Folder created by Panda USB Vaccine
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
H:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | Upload |
Please send the file: C:\UsbFix_Upload_Me_VOJTA-MINI.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.
################## | E.O.F |
doufám, že jsem to udělal správně. děkuji za váš čas.
Re: autorun.inf a jak se ho zbavit
Ano udelal jste to spravne, jak se chova PC nyni 
Slozky autorun.inf tam jsou vytvorene ale jsou neskodne - vytvoril je USBFix jako ochranu proti zapsani skodliveho autorun.inf
Slozky autorun.inf tam jsou vytvorene ale jsou neskodne - vytvoril je USBFix jako ochranu proti zapsani skodliveho autorun.inf"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: autorun.inf a jak se ho zbavit
Vše funguje tak, jak má! bezva, děkuji vám moc. Je to moje první zkušenost s tímto fórem a jsem moc spokojenej. Tak hodně úspěchu v řešení dalších případů.
vojta
vojta
Re: autorun.inf a jak se ho zbavit
Znovu spusťte Usbfix a zvolte možnost Uninstall. OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner (viz muj podpis)Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: autorun.inf a jak se ho zbavit
Dobrý den,
mám problém s autorun.inf na externím disku. Do HDD se mi nerozšířil tomu zabránil NOD32. Projel jsem to USBfixem a po načtení externího disku už NOD32 nehází žádnou ceduly s virem. Pokud ale klikni na autorun.inf ihned se cedule objeví. Autorun.inf nemohu nijak upravovat ani smazat protože je pro čtení. Stačí to pouze takto ošetřený? Radši bych tam ten autorun vůbec neviděl.
############################## | UsbFix 7.014 | [Deletion]
User: Michi (Administrator) # CRAZYHORSE [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 00:18:20 | 11/08/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: AMD Athlon(tm) Dual Core Processor 4450e
CPU 2: AMD Athlon(tm) Dual Core Processor 4450e
Systém Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 2
Internet Explorer 6.0.2900.2180
Windows Firewall: Disabled /!\
Antivirus: ESET Smart Security 4.2 4.2 [Enabled | Updated]
Firewall: ESET personal firewall 4.2.64.12 [Enabled]
RAM -> 2047 Mb
C:\ (%systemdrive%) -> Fixed drive # 75 Gb (51 Mb free - 68%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Fixed drive # 932 Gb (430 Mb free - 46%) [Silverblue Saphire] # NTFS
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\Michi\LOCALS~1\Temp\bdc.exe
Deleted ! C:\DOCUME~1\Michi\LOCALS~1\Temp\KK.EXE
Deleted ! C:\WINDOWS\regedit.com
Not deleted ! E:\Autorun.inf
################## | Registry |
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\E
################## | Listing |
[01/07/2011 - 18:52:00 | A | 0] C:\AUTOEXEC.BAT
[10/08/2011 - 23:59:02 | RASHD ] C:\autorun.inf
[01/07/2011 - 18:58:36 | RSH | 223] C:\boot.ini
[25/10/2001 - 14:00:00 | RASH | 4952] C:\Bootfont.bin
[01/07/2011 - 18:52:00 | A | 0] C:\CONFIG.SYS
[01/07/2011 - 19:02:33 | A | 86] C:\CSB.LOG
[10/08/2011 - 23:29:56 | D ] C:\Documents and Settings
[02/07/2011 - 21:22:17 | D ] C:\Fraps
[01/07/2011 - 18:52:00 | RASH | 0] C:\IO.SYS
[01/07/2011 - 18:52:00 | RASH | 0] C:\MSDOS.SYS
[03/08/2004 - 22:38:34 | RASH | 47564] C:\NTDETECT.COM
[03/08/2004 - 22:59:38 | RASH | 250048] C:\ntldr
[01/07/2011 - 19:07:06 | D ] C:\NVIDIA
[10/08/2011 - 23:56:37 | ASH | 2145386496] C:\pagefile.sys
[11/08/2011 - 00:12:22 | RD ] C:\Program Files
[11/08/2011 - 00:04:04 | D ] C:\Qoobox
[11/08/2011 - 00:25:12 | SHD ] C:\RECYCLER
[01/07/2011 - 19:00:04 | A | 347] C:\RHDSetup.log
[01/07/2011 - 18:55:27 | SHD ] C:\System Volume Information
[11/08/2011 - 00:25:12 | D ] C:\UsbFix
[11/08/2011 - 00:25:12 | A | 1075] C:\UsbFix.txt
[11/08/2011 - 00:25:11 | D ] C:\WINDOWS
[11/08/2011 - 00:19:49 | SHD ] E:\$RECYCLE.BIN
[17/08/2004 - 15:49:10 | RASH | 95034] E:\autorun.inf
[17/07/2011 - 09:36:03 | D ] E:\hauken
[03/08/2011 - 23:43:58 | D ] E:\Michi
[11/08/2011 - 00:25:12 | SHD ] E:\RECYCLER
[01/07/2011 - 19:07:58 | SHD ] E:\System Volume Information
[09/01/2011 - 18:04:50 | AD ] E:\TOSHIBA
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | Upload |
Please send the file: C:\UsbFix_Upload_Me_CRAZYHORSE.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.
################## | E.O.F |
Děkuji za pomoc
mám problém s autorun.inf na externím disku. Do HDD se mi nerozšířil tomu zabránil NOD32. Projel jsem to USBfixem a po načtení externího disku už NOD32 nehází žádnou ceduly s virem. Pokud ale klikni na autorun.inf ihned se cedule objeví. Autorun.inf nemohu nijak upravovat ani smazat protože je pro čtení. Stačí to pouze takto ošetřený? Radši bych tam ten autorun vůbec neviděl.
############################## | UsbFix 7.014 | [Deletion]
User: Michi (Administrator) # CRAZYHORSE [ ]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 00:18:20 | 11/08/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com
CPU: AMD Athlon(tm) Dual Core Processor 4450e
CPU 2: AMD Athlon(tm) Dual Core Processor 4450e
Systém Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 2
Internet Explorer 6.0.2900.2180
Windows Firewall: Disabled /!\
Antivirus: ESET Smart Security 4.2 4.2 [Enabled | Updated]
Firewall: ESET personal firewall 4.2.64.12 [Enabled]
RAM -> 2047 Mb
C:\ (%systemdrive%) -> Fixed drive # 75 Gb (51 Mb free - 68%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Fixed drive # 932 Gb (430 Mb free - 46%) [Silverblue Saphire] # NTFS
################## | Files # Infected Folders |
Deleted ! C:\DOCUME~1\Michi\LOCALS~1\Temp\bdc.exe
Deleted ! C:\DOCUME~1\Michi\LOCALS~1\Temp\KK.EXE
Deleted ! C:\WINDOWS\regedit.com
Not deleted ! E:\Autorun.inf
################## | Registry |
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\E
################## | Listing |
[01/07/2011 - 18:52:00 | A | 0] C:\AUTOEXEC.BAT
[10/08/2011 - 23:59:02 | RASHD ] C:\autorun.inf
[01/07/2011 - 18:58:36 | RSH | 223] C:\boot.ini
[25/10/2001 - 14:00:00 | RASH | 4952] C:\Bootfont.bin
[01/07/2011 - 18:52:00 | A | 0] C:\CONFIG.SYS
[01/07/2011 - 19:02:33 | A | 86] C:\CSB.LOG
[10/08/2011 - 23:29:56 | D ] C:\Documents and Settings
[02/07/2011 - 21:22:17 | D ] C:\Fraps
[01/07/2011 - 18:52:00 | RASH | 0] C:\IO.SYS
[01/07/2011 - 18:52:00 | RASH | 0] C:\MSDOS.SYS
[03/08/2004 - 22:38:34 | RASH | 47564] C:\NTDETECT.COM
[03/08/2004 - 22:59:38 | RASH | 250048] C:\ntldr
[01/07/2011 - 19:07:06 | D ] C:\NVIDIA
[10/08/2011 - 23:56:37 | ASH | 2145386496] C:\pagefile.sys
[11/08/2011 - 00:12:22 | RD ] C:\Program Files
[11/08/2011 - 00:04:04 | D ] C:\Qoobox
[11/08/2011 - 00:25:12 | SHD ] C:\RECYCLER
[01/07/2011 - 19:00:04 | A | 347] C:\RHDSetup.log
[01/07/2011 - 18:55:27 | SHD ] C:\System Volume Information
[11/08/2011 - 00:25:12 | D ] C:\UsbFix
[11/08/2011 - 00:25:12 | A | 1075] C:\UsbFix.txt
[11/08/2011 - 00:25:11 | D ] C:\WINDOWS
[11/08/2011 - 00:19:49 | SHD ] E:\$RECYCLE.BIN
[17/08/2004 - 15:49:10 | RASH | 95034] E:\autorun.inf
[17/07/2011 - 09:36:03 | D ] E:\hauken
[03/08/2011 - 23:43:58 | D ] E:\Michi
[11/08/2011 - 00:25:12 | SHD ] E:\RECYCLER
[01/07/2011 - 19:07:58 | SHD ] E:\System Volume Information
[09/01/2011 - 18:04:50 | AD ] E:\TOSHIBA
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
################## | Upload |
Please send the file: C:\UsbFix_Upload_Me_CRAZYHORSE.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.
################## | E.O.F |
Děkuji za pomoc
Re: autorun.inf a jak se ho zbavit
Zdravim michier
Prectete si prosim pravidla fora
U nas plati, ze kazdy user ma na svuj problem svuj thread\topi\tema
Zalozte si tedy prosim sve tema, at se nam to tu neplete
Dekuji
Zde
Prectete si prosim pravidla fora U nas plati, ze kazdy user ma na svuj problem svuj thread\topi\tema Zalozte si tedy prosim sve tema, at se nam to tu nepleteDekuji
Zde
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?