VIRY.CZ

Zdravím vás, Začal sa mi samovoľne reštartovať počítač najprv občas a teraz po každom štarte. Nabehne plocha a po chvíli sa sám reštartuje. V Safe móde beží bez problémov. Cez F8 menu som zadal "nereštartovať PC pri chybe systému" a po nabehnutí Windowsu hodilo "modrú smrť", kde napísalo súbor "SCSIPORT.SYS". Za každú pomoc ďakujem.
Tu je log z RSITu:

Logfile of random's system information tool 1.08 (written by random/random)
Run by ANO at 2011-04-26 12:08:17
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive H: has 222 GB (93%) free of 238 GB
Total RAM: 1022 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:08:25, on 26.4.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode with network support

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\Explorer.EXE
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
H:\Documents and Settings\ANO\Desktop\RSIT.exe
H:\Program Files\trend micro\ANO.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.ati.com/online/hydravision
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: (no name) - {BA0BACB5-FC95-451E-94D2-4959AB0949D2} - (no file)
O2 - BHO: (no name) - {C2A1C5CB-C0EF-4689-9436-F62CCA1C5383} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] H:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "H:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [StartCCC] H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RemoteControl] "H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SaveNow] H:\Program Files\SaveNow\SaveNow.exe
O4 - HKLM\..\Run: [WinampAgent] "H:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "H:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [FixCamera] H:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp325] H:\WINDOWS\tsnp325.exe
O4 - HKLM\..\Run: [snp325] H:\WINDOWS\vsnp325.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "H:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "H:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [WrtMon.exe] H:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] H:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -update plugin
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = H:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://H:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.explorertool.net/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.explorertool.net/redirect.php (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: h:\windows\system32\nwprovau.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - H:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - H:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - H:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe

--
End of file - 8282 bytes

======Scheduled tasks folder======

H:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
H:\WINDOWS\tasks\Norton Security Scan for ANO.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - H:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-29 297648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2006-12-18 231160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-29 843832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0BACB5-FC95-451E-94D2-4959AB0949D2}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - H:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2006-12-18 231160]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-29 297648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"High Definition Audio Property Page Shortcut"=H:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]
"SoundMAXPnP"=H:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"SoundMAX"=H:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]
"StartCCC"=H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RemoteControl"=H:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"SaveNow"=H:\Program Files\SaveNow\SaveNow.exe [2002-03-08 194048]
"WinampAgent"=H:\Program Files\Winamp\Winampa.exe []
"Acrobat Assistant 7.0"=H:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2006-01-12 483328]
""= []
"FixCamera"=H:\WINDOWS\FixCamera.exe [2007-07-11 20480]
"tsnp325"=H:\WINDOWS\tsnp325.exe [2007-04-21 270336]
"snp325"=H:\WINDOWS\vsnp325.exe [2007-05-10 835584]
"Share-to-Web Namespace Daemon"=H:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [2002-04-17 69632]
"SSBkgdUpdate"=H:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-09-28 185896]
"OpwareSE4"=H:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-10-11 75304]
"WrtMon.exe"=H:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe [2006-09-20 20480]
"egui"=H:\Program Files\ESET\ESET Smart Security\egui.exe [2010-11-08 2219184]
"KernelFaultCheck"=H:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-07-13 68856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=H:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe [2010-11-26 233936]

H:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - H:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
McAfee Security Scan Plus.lnk - H:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
Microsoft Office.lnk - H:\Program Files\Microsoft Office\Office10\OSA.EXE
Picture Package Menu.lnk - H:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
Picture Package VCD Maker.lnk - H:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
H:\WINDOWS\system32\Ati2evxx.dll [2007-06-27 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - H:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\ICQ6\ICQ.exe"="H:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\uTorrent\utorrent.exe"="H:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"H:\Program Files\Skype\Plugin Manager\skypePM.exe"="H:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-04-26 12:08:18 ----D---- H:\Program Files\trend micro
2011-04-26 12:08:17 ----D---- H:\rsit
2011-04-26 11:49:53 ----A---- H:\WINDOWS\system32\drivers\mouhid.sys
2011-04-26 11:49:48 ----A---- H:\WINDOWS\system32\drivers\hidusb.sys
2011-04-26 11:49:30 ----A---- H:\WINDOWS\ntbtlog.txt

======List of files/folders modified in the last 1 months======

2011-04-26 12:08:18 ----RD---- H:\Program Files
2011-04-26 12:03:27 ----D---- H:\Documents and Settings
2011-04-26 12:02:28 ----D---- H:\WINDOWS\system32\CatRoot2
2011-04-26 12:02:18 ----D---- H:\WINDOWS
2011-04-26 11:57:06 ----D---- H:\WINDOWS\Temp
2011-04-26 11:53:56 ----D---- H:\WINDOWS\system32
2011-04-26 11:53:56 ----A---- H:\WINDOWS\system32\PerfStringBackup.INI
2011-04-26 11:50:09 ----D---- H:\WINDOWS\system32\drivers
2011-04-26 11:49:46 ----HD---- H:\WINDOWS\inf

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iviVD;iviVD; H:\WINDOWS\system32\DRIVERS\iviVD.sys [2005-11-16 45056]
R1 AFS2K;AFS2k; H:\WINDOWS\system32\drivers\AFS2K.sys [2004-10-08 35840]
R1 cdrbsdrv;cdrbsdrv; H:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 epfwtdi;epfwtdi; H:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; H:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-02-28 12032]
R3 Epfwndis;Eset Personal Firewall; H:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; H:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; H:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; H:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-12 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-03-01 90496]
R3 usbstor;USB Mass Storage Driver; H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 ehdrv;ehdrv; H:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S1 intelppm;Intel Processor Driver; H:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
S2 Angelnt;Angelnt; H:\WINDOWS\System32\Drivers\ANGELNT.SYS [2009-01-31 51072]
S2 eamon;eamon; H:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
S2 epfw;epfw; H:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512]
S2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
S2 NwlnkNb;NWLink NetBIOS; H:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-02-28 63232]
S2 NwlnkSpx;NWLink SPX/SPXII Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-02-28 55936]
S3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; H:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312]
S3 AEAudioService;AEAudio Service; H:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872]
S3 ati2mtag;ati2mtag; H:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-06-27 2303488]
S3 CCDECODE;Closed Caption Decoder; H:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; H:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; H:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; H:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SenFiltService;SenFilt Service; H:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]
S3 SLIP;BDA Slip De-Framer; H:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNP325;USB PC Camera (SNPSTD325); H:\WINDOWS\system32\DRIVERS\snp325.sys [2007-07-24 10394624]
S3 sonypvs1;Sony Digital Imaging Video2; H:\WINDOWS\system32\DRIVERS\sonypvs1.sys [2002-10-15 102220]
S3 streamip;BDA IPSink; H:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;USB Audio Driver (WDM); H:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Microsoft USB Generic Parent Driver; H:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; H:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; H:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;World Standard Teletext Codec; H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 Ati HotKey Poller;Ati HotKey Poller; H:\WINDOWS\system32\Ati2evxx.exe [2007-06-27 483328]
S2 ATI Smart;ATI Smart; H:\WINDOWS\system32\ati2sgag.exe [2007-06-29 520192]
S2 ekrn;ESET Service; H:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-11-08 810144]
S2 gupdate;Služba Google Update (gupdate); H:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-09 135664]
S2 UMWdf;Windows User Mode Driver Framework; H:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 Adobe LM Service;Adobe LM Service; H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-01-29 69632]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; H:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-11-08 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-17 182768]
S3 idsvc;Windows CardSpace; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Také zdravím!

Log vypadá čistý. Máte nainstalovány všechny systémové záplaty?

Aktualizácie boli stále zapnuté, takže malo by to byť v pohode. Akurát ten počítač nebol zapnutý od vtedy, ako sa začal reštartovať...cca mesiac.
Skúšal som aj v boot menu windowsu "last known configuration", ale bez výsledku..urobilo to isté.
Napadla ma ešte RAMka, ale keď PC beží v safe mode bez problémov!?!

Zkuste udělat sken MBR: http://www2.gmer.net/mbr/mbr.exe . Utilita vytvoří krátký log a ten sem zkopírujte.

Hlásim sa po dlhšej dobe..nejak nevydal čas ..
Tu je log s MBR:

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: Generic_ rev.9602 -> Harddisk1\DR2 -> \Device\00000072

device: opened successfully
user: error reading MBR
error: Read Požiadavka nemôže byť splnená pre chybu na vstupno-výstupnom zariadení.
kernel: MBR read successfully
BIOS signateure not found



Pripomínam, že všetky logy robím v Safe mode.

V MBR je nějaký problém. Nevím ale, zda je pšokozen virem, nebo jinak. Zkuste TDSSKiller:

Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.

Nenašiel nič:

2011/05/01 16:31:31.0031 1708 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/05/01 16:31:32.0078 1708 ================================================================================
2011/05/01 16:31:32.0078 1708 SystemInfo:
2011/05/01 16:31:32.0078 1708
2011/05/01 16:31:32.0078 1708 OS Version: 5.1.2600 ServicePack: 3.0
2011/05/01 16:31:32.0078 1708 Product type: Workstation
2011/05/01 16:31:32.0078 1708 ComputerName: NIE-D3554CCA46E
2011/05/01 16:31:32.0078 1708 UserName: ANO
2011/05/01 16:31:32.0078 1708 Windows directory: H:\WINDOWS
2011/05/01 16:31:32.0078 1708 System windows directory: H:\WINDOWS
2011/05/01 16:31:32.0078 1708 Processor architecture: Intel x86
2011/05/01 16:31:32.0078 1708 Number of processors: 2
2011/05/01 16:31:32.0078 1708 Page size: 0x1000
2011/05/01 16:31:32.0078 1708 Boot type: Safe boot with network
2011/05/01 16:31:32.0078 1708 ================================================================================
2011/05/01 16:31:32.0406 1708 Initialize success
2011/05/01 16:31:38.0656 0468 ================================================================================
2011/05/01 16:31:38.0656 0468 Scan started
2011/05/01 16:31:38.0656 0468 Mode: Manual;
2011/05/01 16:31:38.0656 0468 ================================================================================
2011/05/01 16:31:40.0500 0468 ACPI (8fd99680a539792a30e97944fdaecf17) H:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/01 16:31:40.0562 0468 ACPIEC (9859c0f6936e723e4892d7141b1327d5) H:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/01 16:31:40.0671 0468 ADIHdAudAddService (d392183cc5379e302e50ceba635248eb) H:\WINDOWS\system32\drivers\ADIHdAud.sys
2011/05/01 16:31:40.0750 0468 AEAudioService (9f59ae2de835641fbb0c6afd80d8fa9b) H:\WINDOWS\system32\drivers\AEAudio.sys
2011/05/01 16:31:40.0828 0468 aec (8bed39e3c35d6a489438b8141717a557) H:\WINDOWS\system32\drivers\aec.sys
2011/05/01 16:31:40.0906 0468 AFD (7e775010ef291da96ad17ca4b17137d7) H:\WINDOWS\System32\drivers\afd.sys
2011/05/01 16:31:40.0953 0468 AFS2K (0ebb674888cbdefd5773341c16dd6a07) H:\WINDOWS\system32\drivers\AFS2K.sys
2011/05/01 16:31:41.0234 0468 Angelnt (4a8cb8fea9dcb6f93017f413e2646001) H:\WINDOWS\System32\Drivers\ANGELNT.SYS
2011/05/01 16:31:41.0453 0468 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) H:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/01 16:31:41.0484 0468 atapi (9f3a2f5aa6875c72bf062c712cfa2674) H:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/01 16:31:41.0640 0468 ati2mtag (9a6bfd014090c96a2f3708d98e5a3f40) H:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/05/01 16:31:41.0750 0468 Atmarpc (9916c1225104ba14794209cfa8012159) H:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/01 16:31:41.0812 0468 audstub (d9f724aa26c010a217c97606b160ed68) H:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/01 16:31:41.0906 0468 Beep (da1f27d85e0d1525f6621372e7b685e9) H:\WINDOWS\system32\drivers\Beep.sys
2011/05/01 16:31:41.0953 0468 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) H:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/01 16:31:42.0000 0468 CCDECODE (0be5aef125be881c4f854c554f2b025c) H:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/01 16:31:42.0093 0468 Cdaudio (c1b486a7658353d33a10cc15211a873b) H:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/01 16:31:42.0187 0468 Cdfs (c885b02847f5d2fd45a24e219ed93b32) H:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/01 16:31:42.0265 0468 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) H:\WINDOWS\system32\drivers\cdrbsdrv.sys
2011/05/01 16:31:42.0328 0468 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) H:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/01 16:31:42.0656 0468 Disk (044452051f3e02e7963599fc8f4f3e25) H:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/01 16:31:42.0718 0468 dmboot (d992fe1274bde0f84ad826acae022a41) H:\WINDOWS\system32\drivers\dmboot.sys
2011/05/01 16:31:42.0812 0468 dmio (7c824cf7bbde77d95c08005717a95f6f) H:\WINDOWS\system32\drivers\dmio.sys
2011/05/01 16:31:42.0890 0468 dmload (e9317282a63ca4d188c0df5e09c6ac5f) H:\WINDOWS\system32\drivers\dmload.sys
2011/05/01 16:31:42.0953 0468 DMusic (8a208dfcf89792a484e76c40e5f50b45) H:\WINDOWS\system32\drivers\DMusic.sys
2011/05/01 16:31:43.0078 0468 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) H:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/01 16:31:43.0156 0468 eamon (1ceb779239965000b8f6adee17d4515b) H:\WINDOWS\system32\DRIVERS\eamon.sys
2011/05/01 16:31:43.0218 0468 ehdrv (7d300a43a7bd8769e0f901bf9e1ae367) H:\WINDOWS\system32\DRIVERS\ehdrv.sys
2011/05/01 16:31:43.0312 0468 epfw (15bfe00f030ea20955117bb0677e9668) H:\WINDOWS\system32\DRIVERS\epfw.sys
2011/05/01 16:31:43.0343 0468 Epfwndis (52310e0e603d7da79ecca7d764937a91) H:\WINDOWS\system32\DRIVERS\Epfwndis.sys
2011/05/01 16:31:43.0406 0468 epfwtdi (bdde7dd8fcdb1de7e879bb320b0605c0) H:\WINDOWS\system32\DRIVERS\epfwtdi.sys
2011/05/01 16:31:43.0500 0468 Fastfat (38d332a6d56af32635675f132548343e) H:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/01 16:31:43.0562 0468 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) H:\WINDOWS\system32\DRIVERS\fdc.sys
2011/05/01 16:31:43.0625 0468 Fips (d45926117eb9fa946a6af572fbe1caa3) H:\WINDOWS\system32\drivers\Fips.sys
2011/05/01 16:31:43.0671 0468 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) H:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/05/01 16:31:43.0734 0468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) H:\WINDOWS\system32\drivers\fltmgr.sys
2011/05/01 16:31:43.0812 0468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) H:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/01 16:31:43.0843 0468 Ftdisk (6ac26732762483366c3969c9e4d2259d) H:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/01 16:31:43.0921 0468 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) H:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/01 16:31:44.0062 0468 HdAudAddService (f58d2900c66a1e773e3375098e0e9337) H:\WINDOWS\system32\drivers\HdAudio.sys
2011/05/01 16:31:44.0125 0468 HDAudBus (573c7d0a32852b48f3058cfd8026f511) H:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/05/01 16:31:44.0218 0468 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) H:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/01 16:31:44.0343 0468 HTTP (f80a415ef82cd06ffaf0d971528ead38) H:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/01 16:31:44.0484 0468 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) H:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/05/01 16:31:44.0531 0468 Imapi (083a052659f5310dd8b6a6cb05edcf8e) H:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/01 16:31:44.0703 0468 intelppm (8c953733d8f36eb2133f5bb58808b66b) H:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/01 16:31:44.0781 0468 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) H:\WINDOWS\system32\drivers\ip6fw.sys
2011/05/01 16:31:44.0828 0468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) H:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/01 16:31:44.0890 0468 IpInIp (b87ab476dcf76e72010632b5550955f5) H:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/01 16:31:44.0968 0468 IpNat (cc748ea12c6effde940ee98098bf96bb) H:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/01 16:31:45.0015 0468 IPSec (23c74d75e36e7158768dd63d92789a91) H:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/01 16:31:45.0062 0468 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) H:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/01 16:31:45.0171 0468 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) H:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/01 16:31:45.0234 0468 iviVD (7bd8ff29fecc1f4ef5b26ce3ffa80ae8) H:\WINDOWS\system32\DRIVERS\iviVD.sys
2011/05/01 16:31:45.0312 0468 Kbdclass (463c1ec80cd17420a542b7f36a36f128) H:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/01 16:31:45.0343 0468 kmixer (692bcf44383d056aed41b045a323d378) H:\WINDOWS\system32\drivers\kmixer.sys
2011/05/01 16:31:45.0468 0468 KSecDD (b467646c54cc746128904e1654c750c1) H:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/01 16:31:45.0671 0468 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) H:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/01 16:31:45.0750 0468 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) H:\WINDOWS\system32\drivers\Modem.sys
2011/05/01 16:31:45.0781 0468 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) H:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/01 16:31:45.0859 0468 mouhid (b1c303e17fb9d46e87a98e4ba6769685) H:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/01 16:31:45.0937 0468 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) H:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/01 16:31:46.0015 0468 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) H:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/01 16:31:46.0062 0468 MRxSmb (f3aefb11abc521122b67095044169e98) H:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/01 16:31:46.0156 0468 Msfs (c941ea2454ba8350021d774daf0f1027) H:\WINDOWS\system32\drivers\Msfs.sys
2011/05/01 16:31:46.0250 0468 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) H:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/01 16:31:46.0281 0468 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) H:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/01 16:31:46.0343 0468 MSPQM (bad59648ba099da4a17680b39730cb3d) H:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/01 16:31:46.0421 0468 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) H:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/01 16:31:46.0468 0468 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) H:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/01 16:31:46.0546 0468 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) H:\WINDOWS\system32\DRIVERS\ASACPI.sys
2011/05/01 16:31:46.0609 0468 Mup (2f625d11385b1a94360bfc70aaefdee1) H:\WINDOWS\system32\drivers\Mup.sys
2011/05/01 16:31:46.0656 0468 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/01 16:31:46.0703 0468 NDIS (1df7f42665c94b825322fae71721130d) H:\WINDOWS\system32\drivers\NDIS.sys
2011/05/01 16:31:46.0765 0468 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) H:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/01 16:31:46.0812 0468 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) H:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/01 16:31:46.0859 0468 Ndisuio (f927a4434c5028758a842943ef1a3849) H:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/01 16:31:46.0875 0468 NdisWan (edc1531a49c80614b2cfda43ca8659ab) H:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/01 16:31:46.0953 0468 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) H:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/01 16:31:47.0000 0468 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) H:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/01 16:31:47.0093 0468 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) H:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/01 16:31:47.0265 0468 Npfs (3182d64ae053d6fb034f44b6def8034a) H:\WINDOWS\system32\drivers\Npfs.sys
2011/05/01 16:31:47.0312 0468 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) H:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/01 16:31:47.0421 0468 Null (73c1e1f395918bc2c6dd67af7591a3ad) H:\WINDOWS\system32\drivers\Null.sys
2011/05/01 16:31:47.0484 0468 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) H:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/01 16:31:47.0546 0468 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) H:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/01 16:31:47.0625 0468 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
2011/05/01 16:31:47.0671 0468 NwlnkNb (56d34a67c05e94e16377c60609741ff8) H:\WINDOWS\system32\DRIVERS\nwlnknb.sys
2011/05/01 16:31:47.0703 0468 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
2011/05/01 16:31:47.0796 0468 Parport (5575faf8f97ce5e713d108c2a58d7c7c) H:\WINDOWS\system32\DRIVERS\parport.sys
2011/05/01 16:31:47.0828 0468 PartMgr (beb3ba25197665d82ec7065b724171c6) H:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/01 16:31:47.0890 0468 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) H:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/01 16:31:47.0937 0468 PCI (a219903ccf74233761d92bef471a07b1) H:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/01 16:31:48.0046 0468 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) H:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/01 16:31:48.0140 0468 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) H:\WINDOWS\system32\drivers\Pcmcia.sys
2011/05/01 16:31:48.0484 0468 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) H:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/01 16:31:48.0515 0468 PSched (09298ec810b07e5d582cb3a3f9255424) H:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/01 16:31:48.0546 0468 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) H:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/01 16:31:48.0765 0468 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) H:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/01 16:31:48.0843 0468 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) H:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/01 16:31:48.0875 0468 RasPppoe (5bc962f2654137c9909c3d4603587dee) H:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/01 16:31:48.0921 0468 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) H:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/01 16:31:49.0031 0468 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) H:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/01 16:31:49.0078 0468 RDPCDD (4912d5b403614ce99c28420f75353332) H:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/01 16:31:49.0203 0468 RDPWD (6728e45b66f93c08f11de2e316fc70dd) H:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/01 16:31:49.0250 0468 redbook (f828dd7e1419b6653894a8f97a0094c5) H:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/01 16:31:49.0375 0468 RTLE8023xp (098de621085d7f922871a99b0ec7ddd6) H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
2011/05/01 16:31:49.0468 0468 Secdrv (90a3935d05b494a5a39d37e71f09a677) H:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/01 16:31:49.0562 0468 SenFiltService (eca77beeb2be8d573cf1b265e44fbfbd) H:\WINDOWS\system32\drivers\Senfilt.sys
2011/05/01 16:31:49.0625 0468 serenum (0f29512ccd6bead730039fb4bd2c85ce) H:\WINDOWS\system32\DRIVERS\serenum.sys
2011/05/01 16:31:49.0656 0468 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) H:\WINDOWS\system32\DRIVERS\serial.sys
2011/05/01 16:31:49.0734 0468 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) H:\WINDOWS\system32\DRIVERS\sfloppy.sys
2011/05/01 16:31:49.0843 0468 SLIP (866d538ebe33709a5c9f5c62b73b7d14) H:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/01 16:31:50.0156 0468 SNP325 (ff2f9204e0542f1bf09b161822fb7556) H:\WINDOWS\system32\DRIVERS\snp325.sys
2011/05/01 16:31:50.0437 0468 sonypvs1 (dfadfc2c86662f40759bf02add27d569) H:\WINDOWS\system32\DRIVERS\sonypvs1.sys
2011/05/01 16:31:50.0546 0468 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) H:\WINDOWS\system32\drivers\splitter.sys
2011/05/01 16:31:50.0609 0468 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) H:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/01 16:31:50.0656 0468 Srv (0f6aefad3641a657e18081f52d0c15af) H:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/01 16:31:50.0734 0468 streamip (77813007ba6265c4b6098187e6ed79d2) H:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/01 16:31:50.0765 0468 swenum (3941d127aef12e93addf6fe6ee027e0f) H:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/01 16:31:50.0796 0468 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) H:\WINDOWS\system32\drivers\swmidi.sys
2011/05/01 16:31:51.0031 0468 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) H:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/01 16:31:51.0109 0468 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) H:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/01 16:31:51.0203 0468 TDPIPE (6471a66807f5e104e4885f5b67349397) H:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/01 16:31:51.0250 0468 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) H:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/01 16:31:51.0296 0468 TermDD (88155247177638048422893737429d9e) H:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/01 16:31:51.0421 0468 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) H:\WINDOWS\system32\drivers\Udfs.sys
2011/05/01 16:31:51.0546 0468 Update (402ddc88356b1bac0ee3dd1580c76a31) H:\WINDOWS\system32\DRIVERS\update.sys
2011/05/01 16:31:51.0625 0468 usbaudio (e919708db44ed8543a7c017953148330) H:\WINDOWS\system32\drivers\usbaudio.sys
2011/05/01 16:31:51.0656 0468 usbccgp (173f317ce0db8e21322e71b7e60a27e8) H:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/01 16:31:51.0734 0468 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) H:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/01 16:31:51.0765 0468 usbhub (1ab3cdde553b6e064d2e754efe20285c) H:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/01 16:31:51.0812 0468 usbohci (0daecce65366ea32b162f85f07c6753b) H:\WINDOWS\system32\DRIVERS\usbohci.sys
2011/05/01 16:31:51.0828 0468 usbprint (a717c8721046828520c9edf31288fc00) H:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/05/01 16:31:51.0890 0468 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) H:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/05/01 16:31:51.0921 0468 usbstor (a32426d9b14a089eaa1d922e0c5801a9) H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/01 16:31:51.0953 0468 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) H:\WINDOWS\System32\drivers\vga.sys
2011/05/01 16:31:52.0062 0468 VolSnap (4c8fcb5cc53aab716d810740fe59d025) H:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/01 16:31:52.0156 0468 Wanarp (e20b95baedb550f32dd489265c1da1f6) H:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/01 16:31:52.0234 0468 wdmaud (6768acf64b18196494413695f0c3a00f) H:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/01 16:31:52.0484 0468 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) H:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/05/01 16:31:52.0546 0468 WSTCODEC (c98b39829c2bbd34e454150633c62c78) H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/01 16:31:52.0750 0468 ================================================================================
2011/05/01 16:31:52.0750 0468 Scan finished
2011/05/01 16:31:52.0750 0468 ================================================================================

Ano MBR sektor je na viry čistý. Vzhledem k tomu, že se může jednat o fyzické poškození disku, udělejte zálohu důležitých dat. Pak nabootujte PC z instal. CD. Až se poprvé objeví "R-opravit", stiskněte "R" a přihlaste se k instalaci Windows. Do příkazového řádku postupně zadejte:

cd c:\
fixmbr
exit

Po každém příkazu stiskněte >Enter<, příkaz fixmbr potvrďte. Po příkazu >exit< se PC restartuje. Tím by měl být přepsán MBR ze zálohy.

Myslel som si, že to pôjde asi len natvrdo--REINSTALL. Takže nerobí mi problém komplet preinštalovať Windows, nemám v ňom moc dát(aspoň nie moc dôležitých). Ďakujem veľmi pekne za ochotu, škoda, že sa nedá prispievať na fórum z účtu na účet rád by som prispel.(PayPal nemusím.. )
btw, chcem sa opýtať, aký je dobrý nástroj na kontrolu povrchu disku?? Už keď budem reinštalovať, tak ho dám skontrolovať, príp. opraviť. Ešteraz díky

Přímý převod na účet řeší majitel serveru, zatím nejsou jiné možnosti, než ty, které mám v podpisu pod tlačítkem "Podpořte fórum". Nemáte zač!

JJ, díval som sa. A čo ten softvér na kontrolu HDD? Stačilo by to skontrolovať aj pomocou chckdsk.exe? Alebo radšej hľadať niečo lepšie na nete? Díky

K základní kontrole stačí systémový checkdisk. Jinak každý výrobce disků má své speciální utility ke kontrole, příp. opravě disků. Jsou dostupné na jejich webech.