Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz
  • 0

''Mój komputer'' sam się włącza

Ventual

Pytanie zadane przez Ventual ,

Pytanie

Ventual Budowniczy

Ventual

Opublikowano
Budowniczy

Ventual

Opublikowano

''Mój komputer'' w sensie nie komputer tylko ten plik sam się włącza. Wcześniej włączał się jak kliknąłem chyba alt czy ctrl raz było jak kliknąłem przycisk myszy, a dzisiaj sam samoczynnie bez klikania żadnego przycisku się włącza i tak cały czas. Czym to może być spowodowane? Wirusy? Jak się tego problemu pozbyć? Nie można normalnie pograć.

36 odpowiedzi na to pytanie

Rekomendowane odpowiedzi

Ventual Budowniczy

Ventual

Opublikowano
Budowniczy

Ventual

  • Autor
Opublikowano

Jak grałem w cod 4 single i multi i raz jak grałem w lola. Podczas gry spamowało i podczas gry ustało, nic nie robiłem, tzn. nie wyłączałem gry czy coś.

 

 

edit

 

Teraz mi się włączył raz jak byłem na przeglądarce i jak chciałem to dopisać to był spam.

Nezvik Mentor

Nezvik

Opublikowano
Mentor

Nezvik

Opublikowano

Bez sensu. Log OTL jest czysty.

Pobierz program GMER.

Po uruchomieniu zostanie wykonany krótki skan.
Następnie po prawej stronie zaznaczasz wszystkie fajki (w tym ADS), a w dyskach tylko dysk systemowy.
Następnie klikasz przycisk szukaj i log wstawiasz na forum.
 
Zwróć uwagę, czy przypadkiem podczas skanowania nie wyrzuci czegoś w stylu "Uwaga! Znaleziono wpis zmodyfikowany przez Rootkita!"
Ventual Budowniczy

Ventual

Opublikowano
Budowniczy

Ventual

  • Autor
Opublikowano

 

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-03-29 14:44:46
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\00000063 ST325031 rev.3.AA 232,88GB
Running: gmer.exe; Driver: C:\Users\Adrian\AppData\Local\Temp\awrdypog.sys


---- Kernel code sections - GMER 2.1 ----

.text   C:\Windows\system32\DRIVERS\USBPORT.SYS!DllUnload                                                                                                                          fffff88006c28d64 12 bytes {MOV RAX, 0xfffffa80030ed2a0; JMP RAX}

---- User code sections - GMER 2.1 ----

.text   C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe[1572] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                                                 00000000758887b1 4 bytes [C2, 04, 00, 00]
?       C:\Windows\system32\mssprxy.dll [4988] entry point in ".rdata" section                                                                                                     0000000073ec71e6
.text   D:\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.1.14\deploy\League of Legends.exe[2688] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter  00000000758887b1 5 bytes [33, C0, C2, 04, 00]

---- Kernel IAT/EAT - GMER 2.1 ----

IAT     C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort]                                                                                             [fffff88001082f1c] \SystemRoot\System32\Drivers\sptd.sys [.text]
IAT     C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar]                                                                                                    [fffff88001082cc0] \SystemRoot\System32\Drivers\sptd.sys [.text]
IAT     C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar]                                                                                                   [fffff8800108369c] \SystemRoot\System32\Drivers\sptd.sys [.text]
IAT     C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUlong]                                                                                                   [fffff88001083a98] \SystemRoot\System32\Drivers\sptd.sys [.text]
IAT     C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort]                                                                                            [fffff880010838f4] \SystemRoot\System32\Drivers\sptd.sys [.text]

---- Devices - GMER 2.1 ----

Device  \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0                                                                                                                                fffffa80018842c0
Device  \Driver\atapi \Device\Ide\IdePort0                                                                                                                                         fffffa80018842c0
Device  \Driver\atapi \Device\Ide\IdePort1                                                                                                                                         fffffa80018842c0
Device  \Driver\altbw02j \Device\Scsi\altbw02j1Port3Path0Target0Lun0                                                                                                               fffffa8002b1f2c0
Device  \Driver\altbw02j \Device\Scsi\altbw02j1                                                                                                                                    fffffa8002b1f2c0
Device  \FileSystem\Ntfs \Ntfs                                                                                                                                                     fffffa800188a2c0
Device  \Driver\usbehci \Device\USBPDO-1                                                                                                                                           fffffa800311e2c0
Device  \Driver\nvstor \Device\RaidPort0                                                                                                                                           fffffa80018862c0
Device  \Driver\cdrom \Device\CdRom0                                                                                                                                               fffffa8002bbf2c0
Device  \Driver\cdrom \Device\CdRom1                                                                                                                                               fffffa8002bbf2c0
Device  \Driver\cdrom \Device\CdRom2                                                                                                                                               fffffa8002bbf2c0
Device  \Driver\cdrom \Device\CdRom3                                                                                                                                               fffffa8002bbf2c0
Device  \Driver\usbohci \Device\USBFDO-0                                                                                                                                           fffffa80031102c0
Device  \Driver\dtsoftbus01 \Device\DTSoftBusCtl                                                                                                                                   fffffa800256c2c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{20759542-2AB4-44B2-9728-D70C6A02BFD5}                                                                                                   fffffa8002bba2c0
Device  \Driver\dtsoftbus01 \Device\00000066                                                                                                                                       fffffa800256c2c0
Device  \Driver\usbehci \Device\USBFDO-1                                                                                                                                           fffffa800311e2c0
Device  \Driver\NetBT \Device\NetBt_Wins_Export                                                                                                                                    fffffa8002bba2c0
Device  \Driver\dtsoftbus01 \Device\00000067                                                                                                                                       fffffa800256c2c0
Device  \Driver\nvstor \Device\00000063                                                                                                                                            fffffa80018862c0
Device  \Driver\atapi \Device\ScsiPort0                                                                                                                                            fffffa80018842c0
Device  \Driver\usbohci \Device\USBPDO-0                                                                                                                                           fffffa80031102c0
Device  \Driver\atapi \Device\ScsiPort1                                                                                                                                            fffffa80018842c0
Device  \Driver\nvstor \Device\ScsiPort2                                                                                                                                           fffffa80018862c0
Device  \Driver\altbw02j \Device\ScsiPort3                                                                                                                                         fffffa8002b1f2c0

---- Trace I/O - GMER 2.1 ----

Trace   ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80018862c0]<< sptd.sys storport.sys hal.dll nvstor.sys                                                      fffffa80018862c0
Trace   1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024e5060]                                                                                                            fffffa80024e5060
Trace   3 CLASSPNP.SYS[fffff88001aac43f] -> nt!IofCallDriver -> [0xfffffa80018d3040]                                                                                               fffffa80018d3040
Trace   5 ACPI.sys[fffff88000f537a1] -> nt!IofCallDriver -> \Device\00000063[0xfffffa80022b19c0]                                                                                   fffffa80022b19c0
Trace   \Driver\nvstor[0xfffffa800229c550] -> IRP_MJ_CREATE -> 0xfffffa80018862c0                                                                                                  fffffa80018862c0

---- Modules - GMER 2.1 ----

Module  \SystemRoot\System32\Drivers\altbw02j.SYS                                                                                                                                  fffff88007154000-fffff880071a5000 (331776 bytes)

---- Threads - GMER 2.1 ----

Thread  C:\Windows\System32\svchost.exe [940:2356]                                                                                                                                 000007fef5bd6b8c
Thread  C:\Windows\System32\svchost.exe [940:4676]                                                                                                                                 000007fef5bd1d88
Thread  C:\Windows\System32\svchost.exe [1020:3100]                                                                                                                                000007fef3ac20c0
Thread  C:\Windows\System32\svchost.exe [1020:3128]                                                                                                                                000007fef3ac26a8
Thread  C:\Windows\System32\svchost.exe [1020:3140]                                                                                                                                000007fef3ac29dc
Thread  C:\Windows\System32\svchost.exe [1020:3204]                                                                                                                                000007fef3ac29dc
Thread  C:\Windows\system32\svchost.exe [348:3572]                                                                                                                                 000007fef9295124
Thread  C:\Windows\system32\svchost.exe [348:4708]                                                                                                                                 000007fef018506c
Thread  C:\Windows\system32\svchost.exe [348:3012]                                                                                                                                 000007fefbae1ab0
Thread  C:\Windows\system32\svchost.exe [1048:3736]                                                                                                                                000007fef299d3c8
Thread  C:\Windows\system32\svchost.exe [1048:3740]                                                                                                                                000007fef299d3c8
Thread  C:\Windows\system32\svchost.exe [1048:3744]                                                                                                                                000007fef299d3c8
Thread  C:\Windows\system32\svchost.exe [1048:3748]                                                                                                                                000007fef299d3c8
Thread  C:\Windows\system32\svchost.exe [1132:1176]                                                                                                                                000007fefb11341c
Thread  C:\Windows\system32\svchost.exe [1132:1188]                                                                                                                                000007fefb113a2c
Thread  C:\Windows\system32\svchost.exe [1132:1192]                                                                                                                                000007fefb115c20
Thread  C:\Windows\system32\svchost.exe [1132:1196]                                                                                                                                000007fefb113768
Thread  C:\Windows\system32\svchost.exe [1132:1368]                                                                                                                                000007fefb113900
Thread  C:\Windows\system32\svchost.exe [1132:2024]                                                                                                                                000007fef950bd88
Thread  C:\Windows\system32\svchost.exe [1132:3528]                                                                                                                                000007fef3cb5170
Thread  C:\Windows\system32\svchost.exe [1132:3564]                                                                                                                                000007fef9295124
Thread  C:\Windows\system32\svchost.exe [1132:3904]                                                                                                                                000007fefa0b5230
Thread  C:\Windows\System32\spoolsv.exe [1392:1344]                                                                                                                                000007fef7f610c8
Thread  C:\Windows\System32\spoolsv.exe [1392:1536]                                                                                                                                000007fef7d16144
Thread  C:\Windows\System32\spoolsv.exe [1392:352]                                                                                                                                 000007fef9c35fd0
Thread  C:\Windows\System32\spoolsv.exe [1392:388]                                                                                                                                 000007fef7c83438
Thread  C:\Windows\System32\spoolsv.exe [1392:1764]                                                                                                                                000007fef9c363ec
Thread  C:\Windows\System32\spoolsv.exe [1392:1828]                                                                                                                                000007fef9155e5c
Thread  C:\Windows\System32\spoolsv.exe [1392:1912]                                                                                                                                000007fef9185074
Thread  C:\Windows\system32\svchost.exe [1620:1924]                                                                                                                                000007fef9c35fd0
Thread  C:\Windows\system32\svchost.exe [1620:1940]                                                                                                                                000007fef9c363ec
Thread  C:\Windows\system32\svchost.exe [1620:3556]                                                                                                                                000007fef2958470
Thread  C:\Windows\system32\svchost.exe [1620:3560]                                                                                                                                000007fef2962418
Thread  C:\Windows\system32\svchost.exe [1620:4012]                                                                                                                                000007fef203f130
Thread  C:\Windows\system32\svchost.exe [1620:3300]                                                                                                                                000007fef2034734
Thread  C:\Windows\system32\svchost.exe [1620:4280]                                                                                                                                000007fef2034734
Thread  C:\Windows\system32\svchost.exe [1620:4404]                                                                                                                                000007fef01b5ec0
Thread  C:\Windows\system32\taskhost.exe [1788:1936]                                                                                                                               000007fef9591f38
Thread  C:\Windows\system32\taskhost.exe [1788:2224]                                                                                                                               000007fefaa71010
Thread  C:\Windows\Explorer.EXE [1976:2060]                                                                                                                                        000000005c158e00
Thread  C:\Windows\Explorer.EXE [1976:2612]                                                                                                                                        000007fef5fd2154
Thread  C:\Windows\Explorer.EXE [1976:2448]                                                                                                                                        000007fefbe16204
Thread  C:\Windows\Explorer.EXE [1976:252]                                                                                                                                         000007fef44a2118
Thread  C:\Windows\system32\taskhost.exe [3344:3372]                                                                                                                               000007fef438ef24
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [3448:3780]                                                                                                             000007fefc072a7c
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [3448:3816]                                                                                                             000007fef0c1d618
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [3448:3540]                                                                                                             000007fef9295124
Thread  C:\Windows\System32\svchost.exe [4484:4224]                                                                                                                                000007feefde9688

---- EOF - GMER 2.1 ----

 

Nezvik Mentor

Nezvik

Opublikowano
Mentor

Nezvik

Opublikowano

Przeskanuj plik:

%SystemRoot%\System32\Drivers\altbw02j.SYS

 

W OTL pozaznaczaj wszędzie BRAK / ŻADNE na dole w opcjach skanowania wpisz:

 

msconfig

 

I kliknij skanuj. Wstaw log.

 

Tak szczerze to wszystko czyste.

Ventual Budowniczy

Ventual

Opublikowano
Budowniczy

Ventual

  • Autor
Opublikowano

 

OTL logfile created on: 2014-03-29 22:58:30 - Run 6
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Adrian\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,29% Memory free
4,00 Gb Paging File | 2,50 Gb Available in Paging File | 62,53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 98,11 Gb Total Space | 45,75 Gb Free Space | 46,63% Space Free | Partition Type: NTFS
Drive D: | 105,47 Gb Total Space | 56,48 Gb Free Space | 53,55% Space Free | Partition Type: NTFS
 
Computer Name: ADRIAN-KOMPUTER | User Name: Adrian | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
MsConfig:64bit - StartUpReg: AdobeAAMUpdater-1.0 - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: AdobeCS5ServiceManager - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: AlcoholAutomount - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: DAEMON Tools Lite - hkey= - key= - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
MsConfig:64bit - StartUpReg: Facebook Update - hkey= - key= - C:\Users\Adrian\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
MsConfig:64bit - StartUpReg: IVONA Reader - hkey= - key= - D:\Program Files (x86)\IVONA\IVONA Reader\IVONA Reader.exe (IVO Software Sp. z o.O.)
MsConfig:64bit - StartUpReg: LogMeIn Hamachi Ui - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: screenSHU - hkey= - key= - C:\Program Files (x86)\screenSHU\screenSHU.exe ()
MsConfig:64bit - State: "startup" - Reg Error: Key error.

< End of report >

 

 

A tego pliku altbw02j.SYS nie mogę znaleźć.

Nezvik Mentor

Nezvik

Opublikowano
Mentor

Nezvik

Opublikowano

Niestety nie wiem o co chodzi. Wszelkie logi są czyste, brak infekcji. Brak czegokolwiek. Niestety niechętnie, aczkolwiek muszę zaproponować format dysku. 

Jeszcze zapytam, od jakiego czasu występuje ten problem?

Ventual Budowniczy

Ventual

Opublikowano
Budowniczy

Ventual

  • Autor
Opublikowano

Niestety nie wiem o co chodzi. Wszelkie logi są czyste, brak infekcji. Brak czegokolwiek. Niestety niechętnie, aczkolwiek muszę zaproponować format dysku. 

Jeszcze zapytam, od jakiego czasu występuje ten problem?

 

Pierwszy raz wystąpił jakoś 2/3 dni przed napisaniem tego tematu, nie pamiętam dokładnie.

 

 

ostatnia próba ;x pobierz to

http://jpshortstuff.247fixes.com/SystemLook.html
(jeśli masz system 32 bit to dla 32 bit itd)

i wklej w niego 

 

:filefind

altbw02j.SYS

 

Spróbuję.

 

edit

 

 

SystemLook 30.07.11 by jpshortstuff

Log created at 17:16 on 01/04/2014 by Adrian

Administrator - Elevation successful

 

========== filefind ==========

 

Searching for "altbw02j.SYS"

No files found.

 

-= EOF =-

 

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano

Nie wiem o co chodzi. w logu widać błędy z tym plikiem :x jeśli nie chcesz formatować kompa to idź na forum 

MPCpc.pl
do działu "Dział pomocy doraźnej". tam przeczytasz podpięte tematy i się do nich zastosujesz. nie mam pomysłu ;_;

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Pytania
×
×
  • Dodaj nową pozycję...