Przy zamykaniu programów wyłącza mi się komp


(Cat'sCharm) #1

Często przy zamykaniu jakichkolwiek programów samoczynnie wyłącza mi się komp. Czy może to być wina bear share (zawsze jest otwarty przy pracy komputera)??


(adam9870) #2

Podaj:

  • z jakiego systemu operacyjnego korzystasz?

  • czy od dawna tak się dzieje?

  • czy ostatnio coś robiłeś co mogło spowodować pojawienie się tego problemu?

Wrzuć log z ComboFix. Aby zrobić w nim log należy go uruchomić => nacisnąć klawisz Y => czekać cierpliwie i log powinien być w formie pliku .txt o nazwie combofix na partycji C.


(Cat'sCharm) #3

To tak, korzystam z windows’a XP. Tak się już dzieje dosyć długo chyba odkąd mam stałe łącze to jest kilka miesięcy. o ile to istotne to dużo programów sciągałam już pierwszego dnia m.in. bearshare.

Zrobiłam sobie tego loga ( o ile to jest to :roll: )

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

C:\install.log

C:\WINDOWS\ie-hook.txt

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

-------\LEGACY_NM

-------\nm

((((((((((((((((((((((((( Files Created from 2007-05-14 to 2007-06-14 )))))))))))))))))))))))))))))))

2007-06-14 20:48 49,152 --a------ C:\WINDOWS\nircmd.exe

2007-06-13 17:50

2007-06-13 17:50

2007-06-13 17:49 434,252 --a------ C:\WINDOWS\system32\Msvcrtd.dll

2007-06-13 17:49 15,340 --a------ C:\WINDOWS\system32\drivers\ndisrd.sys

2007-06-13 17:49

2007-06-13 17:48

2007-06-11 15:05

2007-06-01 21:14 5,632 --a------ C:\WINDOWS\system32\ptpusb.dll

2007-06-01 21:14 146,944 --a------ C:\WINDOWS\system32\ptpusd.dll

2007-06-01 21:14 13,824 --a------ C:\WINDOWS\system32\drivers\usbscan.sys

2007-05-31 21:23

2007-05-31 20:59

2007-05-31 20:52

2007-05-18 13:58 3,670,016 --a------ C:\DOCUME~1\Martynka\ntuser.dat

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2008-01-12 15:21:48 1,168 ----a-w C:\WINDOWS\mozver.dat

2008-01-11 15:20:44 -------- d-----w C:\DOCUME~1\Martynka\DANEAP~1\PC Tools

2008-01-11 15:19:56 -------- d-----w C:\Program Files\PC Tools AntiVirus

2008-01-11 13:03:46 0 ----a-w C:\WINDOWS\nsreg.dat

2008-01-08 21:24:14 -------- d-----w C:\Program Files\OpenOffice.org 2.1

2008-01-08 19:36:56 -------- d-----w C:\DOCUME~1\Martynka\DANEAP~1\BearShare

2008-01-08 19:28:03 -------- d-----w C:\Program Files\OpenOffice.org 2.1 Installation Files

2008-01-08 19:27:59 -------- d-----w C:\Program Files\BearShare Applications

2008-01-08 19:27:44 -------- d-----w C:\Program Files\PCI Audio Applications

2008-01-08 19:27:44 -------- d-----w C:\Program Files\Beetle Ju

2008-01-08 19:27:44 -------- d-----w C:\Program Files\Atheros

2008-01-08 19:27:14 -------- d-----w C:\Program Files\Common Files\InstallShield

2008-01-08 12:32:03 17,801 ----a-w C:\WINDOWS\system32\drivers\AegisP.sys

2008-01-07 11:26:17 35 ----a-w C:\WINDOWS\popcinfo.dat

2008-01-07 10:12:45 -------- d-----w C:\Program Files\ReflexiveArcade

2008-01-07 09:41:34 4,096 ----a-w C:\WINDOWS\d3dx.dat

2007-12-23 16:08:05 -------- d-----w C:\Program Files\Vulcan Media

2007-12-19 15:13:12 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll

2007-12-19 15:13:12 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll

2007-12-19 15:13:11 1,060,864 ----a-w C:\WINDOWS\system32\MFC71.dll

2007-12-19 15:13:05 -------- d-----w C:\Program Files\Auto Partner

2007-12-19 15:11:11 -------- d-----w C:\Program Files\Microsoft SQL Server

2007-06-14 18:20:54 -------- d-----w C:\DOCUME~1\Martynka\DANEAP~1\OpenOffice.org2

2007-06-10 20:19:24 -------- d-----w C:\Program Files\Messenger

2007-06-04 12:52:38 -------- d-----w C:\Program Files\Gadu-Gadu

2007-05-31 19:40:13 -------- d-----w C:\Program Files\Chicken Invaders 2 Christmas Edition demo

2007-05-23 10:48:12 -------- d–h--w C:\Program Files\WindowsUpdate

2007-05-19 15:47:36 -------- d-----w C:\Program Files\PWN

2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe

2007-04-30 15:41:55 85,952 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys

2007-04-30 15:41:42 94,552 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys

2007-04-30 15:39:41 23,416 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys

2007-04-30 15:38:51 43,176 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys

2007-04-30 15:37:23 26,888 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys

2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AVASTSS.scr

2007-04-20 15:24:27 32,768 ----a-w C:\WINDOWS\opqsuvm.exe

2007-03-25 10:10:19 57,796 ----a-w C:\WINDOWS\system32\perfc015.dat

2007-03-25 10:10:19 375,016 ----a-w C:\WINDOWS\system32\perfh015.dat

2007-03-20 16:05:44 78 —ha-w C:\WINDOWS\erty.dat

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=d:\program files\acrobat rider\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02 13:02]

{100EB1FD-D03E-47FD-81F3-EE91287F9465}=C:\Program Files\ShoppingReport\Bin\2.0.21\ShoppingReport.dll [2007-03-07 17:16]

{4596013b-6c31-408b-a266-deae5c086dc2}=C:\Program Files\Share_Accelerator_MM\tbSha0.dll [2007-05-27 13:17]

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll [2006-10-12 04:25]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“C-Media Mixer”=“C:\Program Files\PCI Audio Applications\Bin\AudioRack.exe” [2001-05-09 11:33]

“AdaptecDirectCD”=“C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe” [2001-09-14 12:34]

“AutoBackup”=“C:\Program Files\Auto Partner\AP-Zet\autobackup.exe” [2007-12-19 17:13]

“SCMAPZET”=“c:\Program Files\Microsoft SQL Server\80\Tools\Binn\scm.exe” [2002-12-17 18:23]

“ACU”=“C:\Program Files\Atheros\ACU.exe” [2005-05-31 14:13]

“SunJavaUpdateSched”=“C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe” [2006-10-12 04:10]

“avast!”=“d:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [2007-04-30 17:42]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Service Manager.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Service Manager.lnk

backup=C:\WINDOWS\pss\Service Manager.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Ulead Photo Express 3.0 SE Calendar Checker.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ulead Photo Express 3.0 SE Calendar Checker.lnk

backup=C:\WINDOWS\pss\Ulead Photo Express 3.0 SE Calendar Checker.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Ulead Photo Express Calendar Checker.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ulead Photo Express Calendar Checker.lnk

backup=C:\WINDOWS\pss\Ulead Photo Express Calendar Checker.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Martynka^Menu Start^Programy^Autostart^OpenOffice.org 2.1.lnk]

path=C:\Documents and Settings\Martynka\Menu Start\Programy\Autostart\OpenOffice.org 2.1.lnk

backup=C:\WINDOWS\pss\OpenOffice.org 2.1.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]

“C:\Program Files\Messenger\msmsgs.exe” /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]

SOUNDMAN.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

C:\Program Files\Winamp\winampa.exe

**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net

Rootkit scan 2007-06-14 20:51:50

Windows 5.1.2600 NTFS

scanning hidden processes …

scanning hidden autostart entries …

scanning hidden files …

**************************************************************************

Completion time: 2007-06-14 20:53:43 - machine was rebooted

C:\ComboFix-quarantined-files.txt … 2007-06-14 20:53

— E O F —