Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Nie mozna znalezc run.vbs, blackscreen

bertuss84 09 Mar 2016 10:36 801 3
  • #1 09 Mar 2016 10:36
    bertuss84
    Poziom 2  

    Witam serdecznie.
    Panowie, po wyczyszczeniu kompa adwcleanerem, przy starcie systemu po alogowaniu sie wyskakuje blackscreen i komunikat ze nie mozna odnalezc pliku run.vbs. Dodam ze po otworzeniu Menadzera zadan i rozpoczeciu procesu explorer.exe, wszystko zaczyna dzialac normalnie.
    Windows 8.1
    W zalacznikach logi z FRST.
    Pozdrawiam.

    0 3
  • Pomocny post
    #2 09 Mar 2016 11:00
    Acorus 20
    Spec od komputerów

    Otwórz notatnik systemowy i wklej:

    Cytat:
    Task: {12D9D7EA-2270-4EF9-A128-FB9204910359} - \jnn3021 -> No File <==== ATTENTION
    Task: {874D57B7-0707-4657-A85F-2296DD9F655B} - System32\Tasks\Jafocu => C:\PROGRA~1\SHOPPE~1\Goomdojp.bat
    ShortcutWithArgument: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epc&s...zftpbl2,d90185d4-400b-4a67-b10c-2ecc66acb2bc,,
    ShortcutWithArgument: C:\Users\lenovo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epc&s...zftpbl2,d90185d4-400b-4a67-b10c-2ecc66acb2bc,,
    ShortcutWithArgument: C:\Users\lenovo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epc&s...zftpbl2,d90185d4-400b-4a67-b10c-2ecc66acb2bc,,
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{6c2e5ca0-e5bc-11e5-827d-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{6c2e5ca1-e5bc-11e5-827d-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{6c2e5ca2-e5bc-11e5-827d-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{7361b433-e5c6-11e5-827f-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{7361b434-e5c6-11e5-827f-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{7361b435-e5c6-11e5-827f-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{78706b6a-e5bb-11e5-827b-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{78706b6b-e5bb-11e5-827b-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{78706b6c-e5bb-11e5-827b-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{8d36599c-e45f-11e5-8279-54ee7534b093} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{8d36599d-e45f-11e5-8279-54ee7534b093} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{8d36599e-e45f-11e5-8279-54ee7534b093} [42]




    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{a13add7c-e5cc-11e5-8281-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{a13add7d-e5cc-11e5-8281-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{a13add7e-e5cc-11e5-8281-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c65a7320-e455-11e5-8278-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c65a7321-e455-11e5-8278-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c65a7322-e455-11e5-8278-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c8e1ea3c-e49d-11e5-827a-54ee7534b093} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c8e1ea3d-e49d-11e5-827a-54ee7534b093} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{c8e1ea3e-e49d-11e5-827a-54ee7534b093} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{db5b8d10-e5bf-11e5-827e-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{db5b8d11-e5bf-11e5-827e-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{db5b8d12-e5bf-11e5-827e-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{dd10c9d9-e5bb-11e5-827c-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{dd10c9da-e5bb-11e5-827c-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{dd10c9db-e5bb-11e5-827c-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb73-e43c-11e5-8277-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb74-e43c-11e5-8277-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb75-e43c-11e5-8277-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb78-e43c-11e5-8277-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb79-e43c-11e5-8277-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bb7a-e43c-11e5-8277-7429af144706} [42]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bbeb-e43c-11e5-8277-7429af144706} [15]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bbec-e43c-11e5-8277-7429af144706} [32]
    AlternateDataStreams: C:\windows\system32\Drivers\sdfhgdf.sys:{fe05bbed-e43c-11e5-8277-7429af144706} [42]
    HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor)
    HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-25] (Realtek Semiconductor)
    HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [280576 2013-10-21] (Realtek Semiconductor Corporation)
    HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2014-01-21] (Realtek semiconductor)
    HKLM-x32\...\Run: [dply_en_015020259] => [X]
    HKLM-x32\...\Run: [rec_gb_217] => [X]
    HKLM\...\RunOnce: [*Restore] => C:\windows\System32\rstrui.exe [273920 2014-10-29] (Microsoft Corporation)
    HKLM\...\Winlogon: [Userinit] wscript C:\windows\run.vbs,
    HKLM-x32\...\Winlogon: [Userinit] wscript C:\windows\run.vbs, [X]
    BootExecute: autocheck autochk * aswBoot.exe /M:992e193bb /wow /dir:"C:\Program Files\AVAST Software\Avast"
    GroupPolicy: Restriction - Chrome <======= ATTENTION
    CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-21-2095613328-1868434790-3969049314-1001 -> OldSearch URL =
    CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
    CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
    S2 Matro; "C:\Users\lenovo\AppData\Roaming\WaucfoZideg\Emoboi.exe" -cms [X]
    2016-03-07 11:59 - 2016-03-07 11:58 - 00310047 ____N (zdengine) C:\windows\system32\trz4A89.tmp
    2016-03-07 11:59 - 2016-03-07 11:58 - 00264143 ____N (zdengine) C:\windows\SysWOW64\trz5102.tmp
    2016-03-07 09:05 - 2016-03-07 09:05 - 00003344 _____ C:\windows\System32\Tasks\Jafocu
    2016-03-07 09:04 - 2016-03-07 09:05 - 00000000 ____D C:\Users\lenovo\AppData\Local\Tempfolder
    2016-03-07 09:04 - 2016-03-07 09:04 - 00000000 ____D C:\Users\lenovo\AppData\LocalLow\Company
    2016-03-07 09:04 - 2016-03-07 09:04 - 00000000 ____D C:\uninst
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść obok FRST w tym samym folderze.
    Uruchom jako administrator FRST i kliknij w Fix/Napraw.

    0
  • #3 09 Mar 2016 12:58
    bertuss84
    Poziom 2  

    Dzięki wielkie za odpowiedź - chyba jest już wszystko ok. Pozdrawiam.

    0