Samovolný reštart PC

[petergabor]

Zdravím vás, Začal sa mi samovoľne reštartovať počítač najprv občas a teraz po každom štarte. Nabehne plocha a po chvíli sa sám reštartuje. V Safe móde beží bez problémov. Cez F8 menu som zadal "nereštartovať PC pri chybe systému" a po nabehnutí Windowsu hodilo "modrú smrť", kde napísalo súbor "SCSIPORT.SYS". Za každú pomoc ďakujem.
Tu je log z RSITu:

Logfile of random's system information tool 1.08 (written by random/random)
Run by ANO at 2011-04-26 12:08:17
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive H: has 222 GB (93%) free of 238 GB
Total RAM: 1022 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:08:25, on 26.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode with network support

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\Explorer.EXE
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
H:\Documents and Settings\ANO\Desktop\RSIT.exe
H:\Program Files\trend micro\ANO.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.ati.com/online/hydravision
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: (no name) - {BA0BACB5-FC95-451E-94D2-4959AB0949D2} - (no file)
O2 - BHO: (no name) - {C2A1C5CB-C0EF-4689-9436-F62CCA1C5383} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] H:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "H:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [StartCCC] H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RemoteControl] "H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SaveNow] H:\Program Files\SaveNow\SaveNow.exe
O4 - HKLM\..\Run: [WinampAgent] "H:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "H:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [FixCamera] H:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp325] H:\WINDOWS\tsnp325.exe
O4 - HKLM\..\Run: [snp325] H:\WINDOWS\vsnp325.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "H:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "H:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [WrtMon.exe] H:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] H:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -update plugin
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = H:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://H:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.explorertool.net/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.explorertool.net/redirect.php (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: h:\windows\system32\nwprovau.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - H:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - H:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - H:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe

--
End of file - 8282 bytes

======Scheduled tasks folder======

H:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
H:\WINDOWS\tasks\Norton Security Scan for ANO.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - H:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-29 297648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2006-12-18 231160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-29 843832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0BACB5-FC95-451E-94D2-4959AB0949D2}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2006-12-18 231160]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-29 297648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"High Definition Audio Property Page Shortcut"=H:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]
"SoundMAXPnP"=H:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"SoundMAX"=H:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]
"StartCCC"=H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RemoteControl"=H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"SaveNow"=H:\Program Files\SaveNow\SaveNow.exe [2002-03-08 194048]
"WinampAgent"=H:\Program Files\Winamp\Winampa.exe []
"Acrobat Assistant 7.0"=H:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2006-01-12 483328]
""= []
"FixCamera"=H:\WINDOWS\FixCamera.exe [2007-07-11 20480]
"tsnp325"=H:\WINDOWS\tsnp325.exe [2007-04-21 270336]
"snp325"=H:\WINDOWS\vsnp325.exe [2007-05-10 835584]
"Share-to-Web Namespace Daemon"=H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [2002-04-17 69632]
"SSBkgdUpdate"=H:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-09-28 185896]
"OpwareSE4"=H:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-10-11 75304]
"WrtMon.exe"=H:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe [2006-09-20 20480]
"egui"=H:\Program Files\ESET\ESET Smart Security\egui.exe [2010-11-08 2219184]
"KernelFaultCheck"=H:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-07-13 68856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=H:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe [2010-11-26 233936]

H:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - H:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
McAfee Security Scan Plus.lnk - H:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
Microsoft Office.lnk - H:\Program Files\Microsoft Office\Office10\OSA.EXE
Picture Package Menu.lnk - H:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
Picture Package VCD Maker.lnk - H:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
H:\WINDOWS\system32\Ati2evxx.dll [2007-06-27 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - H:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\ICQ6\ICQ.exe"="H:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\uTorrent\utorrent.exe"="H:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"H:\Program Files\Skype\Plugin Manager\skypePM.exe"="H:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-04-26 12:08:18 ----D---- H:\Program Files\trend micro
2011-04-26 12:08:17 ----D---- H:\rsit
2011-04-26 11:49:53 ----A---- H:\WINDOWS\system32\drivers\mouhid.sys
2011-04-26 11:49:48 ----A---- H:\WINDOWS\system32\drivers\hidusb.sys
2011-04-26 11:49:30 ----A---- H:\WINDOWS\ntbtlog.txt

======List of files/folders modified in the last 1 months======

2011-04-26 12:08:18 ----RD---- H:\Program Files
2011-04-26 12:03:27 ----D---- H:\Documents and Settings
2011-04-26 12:02:28 ----D---- H:\WINDOWS\system32\CatRoot2
2011-04-26 12:02:18 ----D---- H:\WINDOWS
2011-04-26 11:57:06 ----D---- H:\WINDOWS\Temp
2011-04-26 11:53:56 ----D---- H:\WINDOWS\system32
2011-04-26 11:53:56 ----A---- H:\WINDOWS\system32\PerfStringBackup.INI
2011-04-26 11:50:09 ----D---- H:\WINDOWS\system32\drivers
2011-04-26 11:49:46 ----HD---- H:\WINDOWS\inf

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iviVD;iviVD; H:\WINDOWS\system32\DRIVERS\iviVD.sys [2005-11-16 45056]
R1 AFS2K;AFS2k; H:\WINDOWS\system32\drivers\AFS2K.sys [2004-10-08 35840]
R1 cdrbsdrv;cdrbsdrv; H:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 epfwtdi;epfwtdi; H:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; H:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-02-28 12032]
R3 Epfwndis;Eset Personal Firewall; H:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; H:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; H:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; H:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-12 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-03-01 90496]
R3 usbstor;USB Mass Storage Driver; H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 ehdrv;ehdrv; H:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S1 intelppm;Intel Processor Driver; H:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
S2 Angelnt;Angelnt; H:\WINDOWS\System32\Drivers\ANGELNT.SYS [2009-01-31 51072]
S2 eamon;eamon; H:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
S2 epfw;epfw; H:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512]
S2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
S2 NwlnkNb;NWLink NetBIOS; H:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-02-28 63232]
S2 NwlnkSpx;NWLink SPX/SPXII Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-02-28 55936]
S3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; H:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312]
S3 AEAudioService;AEAudio Service; H:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872]
S3 ati2mtag;ati2mtag; H:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-06-27 2303488]
S3 CCDECODE;Closed Caption Decoder; H:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; H:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; H:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; H:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SenFiltService;SenFilt Service; H:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]
S3 SLIP;BDA Slip De-Framer; H:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNP325;USB PC Camera (SNPSTD325); H:\WINDOWS\system32\DRIVERS\snp325.sys [2007-07-24 10394624]
S3 sonypvs1;Sony Digital Imaging Video2; H:\WINDOWS\system32\DRIVERS\sonypvs1.sys [2002-10-15 102220]
S3 streamip;BDA IPSink; H:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;USB Audio Driver (WDM); H:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Microsoft USB Generic Parent Driver; H:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; H:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; H:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;World Standard Teletext Codec; H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 Ati HotKey Poller;Ati HotKey Poller; H:\WINDOWS\system32\Ati2evxx.exe [2007-06-27 483328]
S2 ATI Smart;ATI Smart; H:\WINDOWS\system32\ati2sgag.exe [2007-06-29 520192]
S2 ekrn;ESET Service; H:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-11-08 810144]
S2 gupdate;Služba Google Update (gupdate); H:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-09 135664]
S2 UMWdf;Windows User Mode Driver Framework; H:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 Adobe LM Service;Adobe LM Service; H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-29 69632]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; H:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-11-08 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-17 182768]
S3 idsvc;Windows CardSpace; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Také zdravím!

Log vypadá čistý. Máte nainstalovány všechny systémové záplaty?

[petergabor]

Aktualizácie boli stále zapnuté, takže malo by to byť v pohode. Akurát ten počítač nebol zapnutý od vtedy, ako sa začal reštartovať...cca mesiac.
Skúšal som aj v boot menu windowsu "last known configuration", ale bez výsledku..urobilo to isté.
Napadla ma ešte RAMka, ale keď PC beží v safe mode bez problémov!?!

[Rudy]

Zkuste udělat sken MBR: http://www2.gmer.net/mbr/mbr.exe . Utilita vytvoří krátký log a ten sem zkopírujte.

[petergabor]

Hlásim sa po dlhšej dobe..nejak nevydal čas ..
Tu je log s MBR:

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: Generic_ rev.9602 -> Harddisk1\DR2 -> \Device\00000072

device: opened successfully
user: error reading MBR
error: Read Požiadavka nemôže byť splnená pre chybu na vstupno-výstupnom zariadení.
kernel: MBR read successfully
BIOS signateure not found



Pripomínam, že všetky logy robím v Safe mode.

[Rudy]

V MBR je nějaký problém. Nevím ale, zda je pšokozen virem, nebo jinak. Zkuste TDSSKiller:

Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.

[petergabor]

Nenašiel nič:

2011/05/01 16:31:31.0031 1708 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/05/01 16:31:32.0078 1708 ================================================================================
2011/05/01 16:31:32.0078 1708 SystemInfo:
2011/05/01 16:31:32.0078 1708
2011/05/01 16:31:32.0078 1708 OS Version: 5.1.2600 ServicePack: 3.0
2011/05/01 16:31:32.0078 1708 Product type: Workstation
2011/05/01 16:31:32.0078 1708 ComputerName: NIE-D3554CCA46E
2011/05/01 16:31:32.0078 1708 UserName: ANO
2011/05/01 16:31:32.0078 1708 Windows directory: H:\WINDOWS
2011/05/01 16:31:32.0078 1708 System windows directory: H:\WINDOWS
2011/05/01 16:31:32.0078 1708 Processor architecture: Intel x86
2011/05/01 16:31:32.0078 1708 Number of processors: 2
2011/05/01 16:31:32.0078 1708 Page size: 0x1000
2011/05/01 16:31:32.0078 1708 Boot type: Safe boot with network
2011/05/01 16:31:32.0078 1708 ================================================================================
2011/05/01 16:31:32.0406 1708 Initialize success
2011/05/01 16:31:38.0656 0468 ================================================================================
2011/05/01 16:31:38.0656 0468 Scan started
2011/05/01 16:31:38.0656 0468 Mode: Manual;
2011/05/01 16:31:38.0656 0468 ================================================================================
2011/05/01 16:31:40.0500 0468 ACPI (8fd99680a539792a30e97944fdaecf17) H:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/01 16:31:40.0562 0468 ACPIEC (9859c0f6936e723e4892d7141b1327d5) H:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/01 16:31:40.0671 0468 ADIHdAudAddService (d392183cc5379e302e50ceba635248eb) H:\WINDOWS\system32\drivers\ADIHdAud.sys
2011/05/01 16:31:40.0750 0468 AEAudioService (9f59ae2de835641fbb0c6afd80d8fa9b) H:\WINDOWS\system32\drivers\AEAudio.sys
2011/05/01 16:31:40.0828 0468 aec (8bed39e3c35d6a489438b8141717a557) H:\WINDOWS\system32\drivers\aec.sys
2011/05/01 16:31:40.0906 0468 AFD (7e775010ef291da96ad17ca4b17137d7) H:\WINDOWS\System32\drivers\afd.sys
2011/05/01 16:31:40.0953 0468 AFS2K (0ebb674888cbdefd5773341c16dd6a07) H:\WINDOWS\system32\drivers\AFS2K.sys
2011/05/01 16:31:41.0234 0468 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) H:\WINDOWS\System32\Drivers\ANGELNT.SYS
2011/05/01 16:31:41.0453 0468 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) H:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/01 16:31:41.0484 0468 atapi (9f3a2f5aa6875c72bf062c712cfa2674) H:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/01 16:31:41.0640 0468 ati2mtag (9a6bfd014090c96a2f3708d98e5a3f40) H:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/05/01 16:31:41.0750 0468 Atmarpc (9916c1225104ba14794209cfa8012159) H:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/01 16:31:41.0812 0468 audstub (d9f724aa26c010a217c97606b160ed68) H:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/01 16:31:41.0906 0468 Beep (da1f27d85e0d1525f6621372e7b685e9) H:\WINDOWS\system32\drivers\Beep.sys
2011/05/01 16:31:41.0953 0468 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) H:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/01 16:31:42.0000 0468 CCDECODE (0be5aef125be881c4f854c554f2b025c) H:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/01 16:31:42.0093 0468 Cdaudio (c1b486a7658353d33a10cc15211a873b) H:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/01 16:31:42.0187 0468 Cdfs (c885b02847f5d2fd45a24e219ed93b32) H:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/01 16:31:42.0265 0468 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) H:\WINDOWS\system32\drivers\cdrbsdrv.sys
2011/05/01 16:31:42.0328 0468 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) H:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/01 16:31:42.0656 0468 Disk (044452051f3e02e7963599fc8f4f3e25) H:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/01 16:31:42.0718 0468 dmboot (d992fe1274bde0f84ad826acae022a41) H:\WINDOWS\system32\drivers\dmboot.sys
2011/05/01 16:31:42.0812 0468 dmio (7c824cf7bbde77d95c08005717a95f6f) H:\WINDOWS\system32\drivers\dmio.sys
2011/05/01 16:31:42.0890 0468 dmload (e9317282a63ca4d188c0df5e09c6ac5f) H:\WINDOWS\system32\drivers\dmload.sys
2011/05/01 16:31:42.0953 0468 DMusic (8a208dfcf89792a484e76c40e5f50b45) H:\WINDOWS\system32\drivers\DMusic.sys
2011/05/01 16:31:43.0078 0468 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) H:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/01 16:31:43.0156 0468 eamon (1ceb779239965000b8f6adee17d4515b) H:\WINDOWS\system32\DRIVERS\eamon.sys
2011/05/01 16:31:43.0218 0468 ehdrv (7d300a43a7bd8769e0f901bf9e1ae367) H:\WINDOWS\system32\DRIVERS\ehdrv.sys
2011/05/01 16:31:43.0312 0468 epfw (15bfe00f030ea20955117bb0677e9668) H:\WINDOWS\system32\DRIVERS\epfw.sys
2011/05/01 16:31:43.0343 0468 Epfwndis (52310e0e603d7da79ecca7d764937a91) H:\WINDOWS\system32\DRIVERS\Epfwndis.sys
2011/05/01 16:31:43.0406 0468 epfwtdi (bdde7dd8fcdb1de7e879bb320b0605c0) H:\WINDOWS\system32\DRIVERS\epfwtdi.sys
2011/05/01 16:31:43.0500 0468 Fastfat (38d332a6d56af32635675f132548343e) H:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/01 16:31:43.0562 0468 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) H:\WINDOWS\system32\DRIVERS\fdc.sys
2011/05/01 16:31:43.0625 0468 Fips (d45926117eb9fa946a6af572fbe1caa3) H:\WINDOWS\system32\drivers\Fips.sys
2011/05/01 16:31:43.0671 0468 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) H:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/05/01 16:31:43.0734 0468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) H:\WINDOWS\system32\drivers\fltmgr.sys
2011/05/01 16:31:43.0812 0468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) H:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/01 16:31:43.0843 0468 Ftdisk (6ac26732762483366c3969c9e4d2259d) H:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/01 16:31:43.0921 0468 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) H:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/01 16:31:44.0062 0468 HdAudAddService (f58d2900c66a1e773e3375098e0e9337) H:\WINDOWS\system32\drivers\HdAudio.sys
2011/05/01 16:31:44.0125 0468 HDAudBus (573c7d0a32852b48f3058cfd8026f511) H:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/05/01 16:31:44.0218 0468 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) H:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/01 16:31:44.0343 0468 HTTP (f80a415ef82cd06ffaf0d971528ead38) H:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/01 16:31:44.0484 0468 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) H:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/05/01 16:31:44.0531 0468 Imapi (083a052659f5310dd8b6a6cb05edcf8e) H:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/01 16:31:44.0703 0468 intelppm (8c953733d8f36eb2133f5bb58808b66b) H:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/01 16:31:44.0781 0468 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) H:\WINDOWS\system32\drivers\ip6fw.sys
2011/05/01 16:31:44.0828 0468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) H:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/01 16:31:44.0890 0468 IpInIp (b87ab476dcf76e72010632b5550955f5) H:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/01 16:31:44.0968 0468 IpNat (cc748ea12c6effde940ee98098bf96bb) H:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/01 16:31:45.0015 0468 IPSec (23c74d75e36e7158768dd63d92789a91) H:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/01 16:31:45.0062 0468 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) H:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/01 16:31:45.0171 0468 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) H:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/01 16:31:45.0234 0468 iviVD (7bd8ff29fecc1f4ef5b26ce3ffa80ae8) H:\WINDOWS\system32\DRIVERS\iviVD.sys
2011/05/01 16:31:45.0312 0468 Kbdclass (463c1ec80cd17420a542b7f36a36f128) H:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/01 16:31:45.0343 0468 kmixer (692bcf44383d056aed41b045a323d378) H:\WINDOWS\system32\drivers\kmixer.sys
2011/05/01 16:31:45.0468 0468 KSecDD (b467646c54cc746128904e1654c750c1) H:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/01 16:31:45.0671 0468 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) H:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/01 16:31:45.0750 0468 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) H:\WINDOWS\system32\drivers\Modem.sys
2011/05/01 16:31:45.0781 0468 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) H:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/01 16:31:45.0859 0468 mouhid (b1c303e17fb9d46e87a98e4ba6769685) H:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/01 16:31:45.0937 0468 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) H:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/01 16:31:46.0015 0468 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) H:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/01 16:31:46.0062 0468 MRxSmb (f3aefb11abc521122b67095044169e98) H:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/01 16:31:46.0156 0468 Msfs (c941ea2454ba8350021d774daf0f1027) H:\WINDOWS\system32\drivers\Msfs.sys
2011/05/01 16:31:46.0250 0468 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) H:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/01 16:31:46.0281 0468 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) H:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/01 16:31:46.0343 0468 MSPQM (bad59648ba099da4a17680b39730cb3d) H:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/01 16:31:46.0421 0468 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) H:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/01 16:31:46.0468 0468 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) H:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/01 16:31:46.0546 0468 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) H:\WINDOWS\system32\DRIVERS\ASACPI.sys
2011/05/01 16:31:46.0609 0468 Mup (2f625d11385b1a94360bfc70aaefdee1) H:\WINDOWS\system32\drivers\Mup.sys
2011/05/01 16:31:46.0656 0468 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/01 16:31:46.0703 0468 NDIS (1df7f42665c94b825322fae71721130d) H:\WINDOWS\system32\drivers\NDIS.sys
2011/05/01 16:31:46.0765 0468 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) H:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/01 16:31:46.0812 0468 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) H:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/01 16:31:46.0859 0468 Ndisuio (f927a4434c5028758a842943ef1a3849) H:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/01 16:31:46.0875 0468 NdisWan (edc1531a49c80614b2cfda43ca8659ab) H:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/01 16:31:46.0953 0468 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) H:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/01 16:31:47.0000 0468 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) H:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/01 16:31:47.0093 0468 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) H:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/01 16:31:47.0265 0468 Npfs (3182d64ae053d6fb034f44b6def8034a) H:\WINDOWS\system32\drivers\Npfs.sys
2011/05/01 16:31:47.0312 0468 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) H:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/01 16:31:47.0421 0468 Null (73c1e1f395918bc2c6dd67af7591a3ad) H:\WINDOWS\system32\drivers\Null.sys
2011/05/01 16:31:47.0484 0468 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) H:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/01 16:31:47.0546 0468 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) H:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/01 16:31:47.0625 0468 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
2011/05/01 16:31:47.0671 0468 NwlnkNb (56d34a67c05e94e16377c60609741ff8) H:\WINDOWS\system32\DRIVERS\nwlnknb.sys
2011/05/01 16:31:47.0703 0468 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
2011/05/01 16:31:47.0796 0468 Parport (5575faf8f97ce5e713d108c2a58d7c7c) H:\WINDOWS\system32\DRIVERS\parport.sys
2011/05/01 16:31:47.0828 0468 PartMgr (beb3ba25197665d82ec7065b724171c6) H:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/01 16:31:47.0890 0468 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) H:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/01 16:31:47.0937 0468 PCI (a219903ccf74233761d92bef471a07b1) H:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/01 16:31:48.0046 0468 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) H:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/01 16:31:48.0140 0468 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) H:\WINDOWS\system32\drivers\Pcmcia.sys
2011/05/01 16:31:48.0484 0468 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) H:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/01 16:31:48.0515 0468 PSched (09298ec810b07e5d582cb3a3f9255424) H:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/01 16:31:48.0546 0468 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) H:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/01 16:31:48.0765 0468 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) H:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/01 16:31:48.0843 0468 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) H:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/01 16:31:48.0875 0468 RasPppoe (5bc962f2654137c9909c3d4603587dee) H:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/01 16:31:48.0921 0468 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) H:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/01 16:31:49.0031 0468 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) H:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/01 16:31:49.0078 0468 RDPCDD (4912d5b403614ce99c28420f75353332) H:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/01 16:31:49.0203 0468 RDPWD (6728e45b66f93c08f11de2e316fc70dd) H:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/01 16:31:49.0250 0468 redbook (f828dd7e1419b6653894a8f97a0094c5) H:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/01 16:31:49.0375 0468 RTLE8023xp (098de621085d7f922871a99b0ec7ddd6) H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
2011/05/01 16:31:49.0468 0468 Secdrv (90a3935d05b494a5a39d37e71f09a677) H:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/01 16:31:49.0562 0468 SenFiltService (eca77beeb2be8d573cf1b265e44fbfbd) H:\WINDOWS\system32\drivers\Senfilt.sys
2011/05/01 16:31:49.0625 0468 serenum (0f29512ccd6bead730039fb4bd2c85ce) H:\WINDOWS\system32\DRIVERS\serenum.sys
2011/05/01 16:31:49.0656 0468 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) H:\WINDOWS\system32\DRIVERS\serial.sys
2011/05/01 16:31:49.0734 0468 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) H:\WINDOWS\system32\DRIVERS\sfloppy.sys
2011/05/01 16:31:49.0843 0468 SLIP (866d538ebe33709a5c9f5c62b73b7d14) H:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/01 16:31:50.0156 0468 SNP325 (ff2f9204e0542f1bf09b161822fb7556) H:\WINDOWS\system32\DRIVERS\snp325.sys
2011/05/01 16:31:50.0437 0468 sonypvs1 (dfadfc2c86662f40759bf02add27d569) H:\WINDOWS\system32\DRIVERS\sonypvs1.sys
2011/05/01 16:31:50.0546 0468 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) H:\WINDOWS\system32\drivers\splitter.sys
2011/05/01 16:31:50.0609 0468 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) H:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/01 16:31:50.0656 0468 Srv (0f6aefad3641a657e18081f52d0c15af) H:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/01 16:31:50.0734 0468 streamip (77813007ba6265c4b6098187e6ed79d2) H:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/01 16:31:50.0765 0468 swenum (3941d127aef12e93addf6fe6ee027e0f) H:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/01 16:31:50.0796 0468 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) H:\WINDOWS\system32\drivers\swmidi.sys
2011/05/01 16:31:51.0031 0468 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) H:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/01 16:31:51.0109 0468 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) H:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/01 16:31:51.0203 0468 TDPIPE (6471a66807f5e104e4885f5b67349397) H:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/01 16:31:51.0250 0468 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) H:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/01 16:31:51.0296 0468 TermDD (88155247177638048422893737429d9e) H:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/01 16:31:51.0421 0468 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) H:\WINDOWS\system32\drivers\Udfs.sys
2011/05/01 16:31:51.0546 0468 Update (402ddc88356b1bac0ee3dd1580c76a31) H:\WINDOWS\system32\DRIVERS\update.sys
2011/05/01 16:31:51.0625 0468 usbaudio (e919708db44ed8543a7c017953148330) H:\WINDOWS\system32\drivers\usbaudio.sys
2011/05/01 16:31:51.0656 0468 usbccgp (173f317ce0db8e21322e71b7e60a27e8) H:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/01 16:31:51.0734 0468 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) H:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/01 16:31:51.0765 0468 usbhub (1ab3cdde553b6e064d2e754efe20285c) H:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/01 16:31:51.0812 0468 usbohci (0daecce65366ea32b162f85f07c6753b) H:\WINDOWS\system32\DRIVERS\usbohci.sys
2011/05/01 16:31:51.0828 0468 usbprint (a717c8721046828520c9edf31288fc00) H:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/05/01 16:31:51.0890 0468 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) H:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/05/01 16:31:51.0921 0468 usbstor (a32426d9b14a089eaa1d922e0c5801a9) H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/01 16:31:51.0953 0468 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) H:\WINDOWS\System32\drivers\vga.sys
2011/05/01 16:31:52.0062 0468 VolSnap (4c8fcb5cc53aab716d810740fe59d025) H:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/01 16:31:52.0156 0468 Wanarp (e20b95baedb550f32dd489265c1da1f6) H:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/01 16:31:52.0234 0468 wdmaud (6768acf64b18196494413695f0c3a00f) H:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/01 16:31:52.0484 0468 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) H:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/05/01 16:31:52.0546 0468 WSTCODEC (c98b39829c2bbd34e454150633c62c78) H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/01 16:31:52.0750 0468 ================================================================================
2011/05/01 16:31:52.0750 0468 Scan finished
2011/05/01 16:31:52.0750 0468 ================================================================================

[Rudy]

Ano MBR sektor je na viry čistý. Vzhledem k tomu, že se může jednat o fyzické poškození disku, udělejte zálohu důležitých dat. Pak nabootujte PC z instal. CD. Až se poprvé objeví "R-opravit", stiskněte "R" a přihlaste se k instalaci Windows. Do příkazového řádku postupně zadejte:

cd c:\
fixmbr
exit

Po každém příkazu stiskněte >Enter<, příkaz fixmbr potvrďte. Po příkazu >exit< se PC restartuje. Tím by měl být přepsán MBR ze zálohy.

[petergabor]

Myslel som si, že to pôjde asi len natvrdo--REINSTALL. Takže nerobí mi problém komplet preinštalovať Windows, nemám v ňom moc dát(aspoň nie moc dôležitých). Ďakujem veľmi pekne za ochotu, škoda, že sa nedá prispievať na fórum z účtu na účet rád by som prispel.(PayPal nemusím.. )
btw, chcem sa opýtať, aký je dobrý nástroj na kontrolu povrchu disku?? Už keď budem reinštalovať, tak ho dám skontrolovať, príp. opraviť. Ešteraz díky

[Rudy]

Přímý převod na účet řeší majitel serveru, zatím nejsou jiné možnosti, než ty, které mám v podpisu pod tlačítkem "Podpořte fórum". Nemáte zač!

[petergabor]

JJ, díval som sa. A čo ten softvér na kontrolu HDD? Stačilo by to skontrolovať aj pomocou chckdsk.exe? Alebo radšej hľadať niečo lepšie na nete? Díky

[Rudy]

K základní kontrole stačí systémový checkdisk. Jinak každý výrobce disků má své speciální utility ke kontrole, příp. opravě disků. Jsou dostupné na jejich webech.