Restarty PC po zapnuti (Win XP) - prosim o kontrolu logu
Napsal: 26 bře 2011 12:53
Zdravím ve spolek a obracím se na Vás s prosbou o kontrolu logu. Už několikrát mi zde bylo pomoženo a jsem za to velmi vděčný...
Řeším problém na PC u rodičů. PC se po startu a následné snaze zavést Windows XP několikrát samo restartuje. Cca po 3-4 restartu se pak windows spustí a pracují normálně.
PC jsem se snažil vyčistit NOD 32 i MBAM, vše se po odstranění několika malwareovců zdálo být v pořádku nicméně problém přetrvává...
Zde je log z RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jana at 2011-03-26 12:48:37
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 120 GB (78%) free of 153 GB
Total RAM: 1023 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:48:39, on 26.3.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Mixer.exe
C:\WINDOWS\ZSSnp211.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Jana\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Jana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ZSSnp211] C:\WINDOWS\ZSSnp211.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4692 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ZSSnp211"=C:\WINDOWS\ZSSnp211.exe [2007-04-06 57344]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-10-07 1461080]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2011-03-26 12:42:57 ----A---- C:\WINDOWS\imsins.BAK
2011-03-18 11:06:52 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-03-18 11:06:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-03-18 11:06:38 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-03-18 11:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-03-18 11:06:27 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-03-18 11:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-03-18 11:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-03-18 11:06:12 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2011-03-18 11:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-03-18 11:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-03-18 11:05:55 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-03-18 11:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-03-18 11:05:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-03-18 11:05:39 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-03-18 11:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-03-18 11:05:28 ----DC---- C:\WINDOWS\$NtUninstallKB972270$
2011-03-18 11:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-03-18 11:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-03-18 11:05:11 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-03-18 11:05:06 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-03-18 11:05:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-03-18 11:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-03-18 11:04:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-03-18 11:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-03-18 11:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-03-18 11:04:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-03-18 11:04:28 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-03-18 11:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-03-18 11:04:14 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-03-18 11:04:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-03-18 11:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-03-18 11:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-03-18 11:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-03-18 11:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-03-18 11:03:43 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-03-18 11:03:36 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2011-03-18 11:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2011-03-18 11:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-03-18 11:03:06 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-03-18 10:57:13 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-03-01 17:31:23 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 months======
2011-03-26 12:48:39 ----D---- C:\Program Files\trend micro
2011-03-26 12:48:37 ----D---- C:\WINDOWS\temp
2011-03-26 12:47:42 ----D---- C:\WINDOWS\Prefetch
2011-03-26 12:44:13 ----D---- C:\Program Files\Mozilla Firefox
2011-03-26 12:43:46 ----HD---- C:\WINDOWS\$hf_mig$
2011-03-26 12:43:45 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-26 12:43:44 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-03-26 12:43:44 ----D---- C:\WINDOWS\system32
2011-03-26 12:43:41 ----D---- C:\WINDOWS
2011-03-26 12:29:40 ----D---- C:\Documents and Settings\Jana\Data aplikací\Skype
2011-03-26 11:21:19 ----D---- C:\Documents and Settings\Jana\Data aplikací\skypePM
2011-03-25 16:22:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-21 09:59:02 ----A---- C:\WINDOWS\NeroDigital.ini
2011-03-19 14:49:29 ----A---- C:\WINDOWS\wincmd.ini
2011-03-19 14:48:58 ----D---- C:\Dokumenty
2011-03-19 14:05:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-03-19 14:05:20 ----D---- C:\Program Files\ESET
2011-03-19 14:01:26 ----D---- C:\Program Files\Google
2011-03-19 13:57:05 ----RD---- C:\Program Files
2011-03-19 13:55:55 ----SHD---- C:\WINDOWS\Installer
2011-03-19 13:54:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-19 13:54:13 ----D---- C:\WINDOWS\system32\drivers
2011-03-19 13:54:13 ----D---- C:\WINDOWS\Minidump
2011-03-18 20:16:27 ----D---- C:\WINDOWS\AppPatch
2011-03-18 11:06:55 ----HD---- C:\WINDOWS\inf
2011-03-18 11:06:32 ----D---- C:\WINDOWS\WinSxS
2011-03-18 11:05:19 ----D---- C:\Program Files\Movie Maker
2011-03-18 11:04:08 ----D---- C:\Program Files\Outlook Express
2011-03-18 11:03:29 ----D---- C:\Program Files\Internet Explorer
2011-03-18 10:55:19 ----D---- C:\WINDOWS\system32\CatRoot_bak
2011-03-18 10:55:19 ----D---- C:\WINDOWS\system32\CatRoot
2011-03-18 10:47:23 ----D---- C:\WINDOWS\Help
2011-03-01 17:31:25 ----RD---- C:\Program Files\Skype
2011-03-01 17:31:23 ----D---- C:\Program Files\Common Files
2011-03-01 17:31:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-02-27 12:09:15 ----D---- C:\Filmy
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2003-03-19 18688]
R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2003-10-28 20016]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-17 41216]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-10-07 55256]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-10-07 73760]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-17 701440]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-03-01 373518]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-10-07 32072]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NVENET;NVIDIA nForce MCP Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2002-11-27 80896]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZSMC211;ZSMC USB PC Camera (ZS211); C:\WINDOWS\System32\Drivers\ZS211.sys [2007-06-13 1469312]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-10-07 472280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-10 135664]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-10-07 20680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
-----------------EOF-----------------
Děkuji moc za analýzu, případně návod, jak předejít restartování PC po jeho zapnutí...
Pt Ostravak
Řeším problém na PC u rodičů. PC se po startu a následné snaze zavést Windows XP několikrát samo restartuje. Cca po 3-4 restartu se pak windows spustí a pracují normálně.
PC jsem se snažil vyčistit NOD 32 i MBAM, vše se po odstranění několika malwareovců zdálo být v pořádku nicméně problém přetrvává...
Zde je log z RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jana at 2011-03-26 12:48:37
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 120 GB (78%) free of 153 GB
Total RAM: 1023 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:48:39, on 26.3.2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Mixer.exe
C:\WINDOWS\ZSSnp211.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Jana\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Jana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ZSSnp211] C:\WINDOWS\ZSSnp211.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4692 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"ZSSnp211"=C:\WINDOWS\ZSSnp211.exe [2007-04-06 57344]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-10-07 1461080]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2011-03-26 12:42:57 ----A---- C:\WINDOWS\imsins.BAK
2011-03-18 11:06:52 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-03-18 11:06:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-03-18 11:06:38 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-03-18 11:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-03-18 11:06:27 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-03-18 11:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-03-18 11:06:18 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-03-18 11:06:12 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2011-03-18 11:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-03-18 11:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-03-18 11:05:55 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-03-18 11:05:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-03-18 11:05:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-03-18 11:05:39 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-03-18 11:05:33 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-03-18 11:05:28 ----DC---- C:\WINDOWS\$NtUninstallKB972270$
2011-03-18 11:05:23 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-03-18 11:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-03-18 11:05:11 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-03-18 11:05:06 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-03-18 11:05:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-03-18 11:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-03-18 11:04:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-03-18 11:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-03-18 11:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-03-18 11:04:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-03-18 11:04:28 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-03-18 11:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-03-18 11:04:14 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-03-18 11:04:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-03-18 11:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-03-18 11:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-03-18 11:03:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-03-18 11:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-03-18 11:03:43 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-03-18 11:03:36 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2011-03-18 11:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2011-03-18 11:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-03-18 11:03:06 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-03-18 10:57:13 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-03-01 17:31:23 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 months======
2011-03-26 12:48:39 ----D---- C:\Program Files\trend micro
2011-03-26 12:48:37 ----D---- C:\WINDOWS\temp
2011-03-26 12:47:42 ----D---- C:\WINDOWS\Prefetch
2011-03-26 12:44:13 ----D---- C:\Program Files\Mozilla Firefox
2011-03-26 12:43:46 ----HD---- C:\WINDOWS\$hf_mig$
2011-03-26 12:43:45 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-26 12:43:44 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-03-26 12:43:44 ----D---- C:\WINDOWS\system32
2011-03-26 12:43:41 ----D---- C:\WINDOWS
2011-03-26 12:29:40 ----D---- C:\Documents and Settings\Jana\Data aplikací\Skype
2011-03-26 11:21:19 ----D---- C:\Documents and Settings\Jana\Data aplikací\skypePM
2011-03-25 16:22:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-21 09:59:02 ----A---- C:\WINDOWS\NeroDigital.ini
2011-03-19 14:49:29 ----A---- C:\WINDOWS\wincmd.ini
2011-03-19 14:48:58 ----D---- C:\Dokumenty
2011-03-19 14:05:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-03-19 14:05:20 ----D---- C:\Program Files\ESET
2011-03-19 14:01:26 ----D---- C:\Program Files\Google
2011-03-19 13:57:05 ----RD---- C:\Program Files
2011-03-19 13:55:55 ----SHD---- C:\WINDOWS\Installer
2011-03-19 13:54:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-19 13:54:13 ----D---- C:\WINDOWS\system32\drivers
2011-03-19 13:54:13 ----D---- C:\WINDOWS\Minidump
2011-03-18 20:16:27 ----D---- C:\WINDOWS\AppPatch
2011-03-18 11:06:55 ----HD---- C:\WINDOWS\inf
2011-03-18 11:06:32 ----D---- C:\WINDOWS\WinSxS
2011-03-18 11:05:19 ----D---- C:\Program Files\Movie Maker
2011-03-18 11:04:08 ----D---- C:\Program Files\Outlook Express
2011-03-18 11:03:29 ----D---- C:\Program Files\Internet Explorer
2011-03-18 10:55:19 ----D---- C:\WINDOWS\system32\CatRoot_bak
2011-03-18 10:55:19 ----D---- C:\WINDOWS\system32\CatRoot
2011-03-18 10:47:23 ----D---- C:\WINDOWS\Help
2011-03-01 17:31:25 ----RD---- C:\Program Files\Skype
2011-03-01 17:31:23 ----D---- C:\Program Files\Common Files
2011-03-01 17:31:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-02-27 12:09:15 ----D---- C:\Filmy
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2003-03-19 18688]
R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2003-10-28 20016]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-17 41216]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-10-07 55256]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-10-07 73760]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-17 701440]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-03-01 373518]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-10-07 32072]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NVENET;NVIDIA nForce MCP Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2002-11-27 80896]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZSMC211;ZSMC USB PC Camera (ZS211); C:\WINDOWS\System32\Drivers\ZS211.sys [2007-06-13 1469312]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-10-07 472280]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-10 135664]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-10-07 20680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
-----------------EOF-----------------
Děkuji moc za analýzu, případně návod, jak předejít restartování PC po jeho zapnutí...
Pt Ostravak
stáhněte
.