Zawieszający się system lub niewłączający się system

Dla specjalistów Bezpieczeństwo
#1

Witam. Mój drugi komputer od czasu wymiany w nim karty graficznej co parę uruchomień zawiesza się - zawiesza się system lub też w ogóle nie chce się włączyć. Załączam log z ComboFix:

ComboFix 07-11-19.4 - ja 2007-11-28 23:57:52.3 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.73 [GMT 1:00]

Running from: C:\Documents and Settings\ja\Pulpit\ComboFix.exe

 * Created a new restore point

.


((((((((((((((((((((((((( Files Created from 2007-10-28 to 2007-11-28 )))))))))))))))))))))))))))))))

.


2007-11-05 16:34	21,504	--a--c---	C:\WINDOWS\system32\dllcache\hidserv.dll

2007-11-05 16:34	14,848	--a--c---	C:\WINDOWS\system32\dllcache\kbdhid.sys

2007-11-05 16:31	26,496	--a--c---	C:\WINDOWS\system32\dllcache\usbstor.sys

2007-11-05 16:28	322,432	--a------	C:\WINDOWS\system32\drivers\G400m.sys

2007-11-05 16:28	31,616	--a--c---	C:\WINDOWS\system32\dllcache\usbccgp.sys

2007-11-05 16:28	12,160	--a--c---	C:\WINDOWS\system32\dllcache\mouhid.sys

2007-11-05 16:28	9,600	--a--c---	C:\WINDOWS\system32\dllcache\hidusb.sys


.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2007-11-12 22:05	32,852	----a-w	C:\WINDOWS\system32\PDData.bin

2007-11-12 22:05	32,768	----a-w	C:\WINDOWS\system32\BGData.bin

2007-11-05 19:10	---------	d-----w	C:\Documents and Settings\ja\Dane aplikacji\Skype

2007-10-25 17:05	94,416	----a-w	C:\WINDOWS\system32\drivers\aswmon2.sys

2007-10-25 17:05	93,264	----a-w	C:\WINDOWS\system32\drivers\aswmon.sys

2007-10-25 17:03	23,152	----a-w	C:\WINDOWS\system32\drivers\aswRdr.sys

2007-10-25 17:01	42,912	----a-w	C:\WINDOWS\system32\drivers\aswTdi.sys

2007-10-25 16:58	26,624	----a-w	C:\WINDOWS\system32\drivers\aavmker4.sys

2007-10-25 16:24	815,480	----a-w	C:\WINDOWS\system32\aswBoot.exe

2007-10-25 16:14	95,608	----a-w	C:\WINDOWS\system32\AVASTSS.scr

2007-10-07 07:33	102,664	----a-w	C:\WINDOWS\system32\drivers\tmcomm.sys

.


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown 


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:44]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="RUNDLL32.exe" [2004-08-04 01:44 C:\WINDOWS\system32\rundll32.exe]

"nwiz"="nwiz.exe" [2005-06-15 16:20 C:\WINDOWS\system32\nwiz.exe]

"NvMediaCenter"="RUNDLL32.exe" [2004-08-04 01:44 C:\WINDOWS\system32\rundll32.exe]

"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-10-25 17:20]

"Matrox Powerdesk"="C:\WINDOWS\system32\PDesk\PDesk.exe" [2002-05-21 10:50]


[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 01:44]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk

backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup


R3 G400DH;G400DH;C:\WINDOWS\system32\DRIVERS\g400dhm.sys

R3 SiS7012;Service for AC'97 Sample Driver (WDM);C:\WINDOWS\system32\drivers\sis7012.sys

S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt

S3 s3legacy;s3legacy;C:\WINDOWS\system32\DRIVERS\s3legacy.sys


.

**************************************************************************


catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-11-28 23:59:33

Windows 5.1.2600 Dodatek Service Pack 2 NTFS


scanning hidden processes ... 


scanning hidden autostart entries ...


scanning hidden files ... 


scan completed successfully 

hidden files: 0 


**************************************************************************

.

Completion time: 2007-11-29 0:00:17

.

	--- E O F ---
#2

W logu nic nie widzę

#3

Co w takim razie może powodować mój problem na drugim PC, skoro log z ComboFix jest czysty :?:

#4

Na wszelki wypadek:

Pobierz program SDFix

#5

SDFix

SDFix: Version 1.116


Run by ja on 2007-12-01 at 00:16


Microsoft Windows XP [Wersja 5.1.2600]


Running From: C:\SDFix


Safe Mode:

Checking Services: 



Restoring Windows Registry Values

Restoring Windows Default Hosts File


Rebooting...



Normal Mode:

Checking Files: 


No Trojan Files Found






Removing Temp Files...


ADS Check:


C:\WINDOWS

No streams found. 


C:\WINDOWS\system32

No streams found. 


C:\WINDOWS\system32\svchost.exe

No streams found.


C:\WINDOWS\system32\ntoskrnl.exe

No streams found.




                                 Final Check:


catchme 0.3.1262.1 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-12-01 00:20:56

Windows 5.1.2600 Dodatek Service Pack 2 NTFS


scanning hidden processes ...


scanning hidden services & system hive ...


scanning hidden registry entries ...


[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\A\1\5\1c]

"Order"=hex:08,00,00,00,02,00,00,00,b8,01,00,00,01,00,00,00,04,00,00,00,8c,..


scanning hidden files ...


scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0



Remaining Services:

------------------




Authorized Application Key Export:


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


Remaining Files:

---------------



Files with Hidden Attributes:



Finished!
#6

Nic nie widzę w logu

#7

Skoro oba logi (ComboFix i SDFix) są czyste, to znaczy, że wina leży po stronie sprzętu. :frowning: Czy ktoś ma jakieś sugestie :?: