Elektroda.pl
Elektroda.pl
X
SterControl
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Podczas Uruchamiania Win 7 pierw uruchamia się ''cmd.exe" po czym znika.

Eclipse09 03 Maj 2018 20:51 234 2
  • #1 03 Maj 2018 20:51
    Eclipse09
    Poziom 2  

    Cześć! Od jakiegoś czasu mam problem z systemem. Podczas uruchamiania systemu pierw włącza się "cmd.exe" (w małym okienku po czym znika.)
    Odkąd to się pojawiło zauważyłem spadek wydajności sytemu oraz to że się wolniej włącza niż kiedyś.
    Załączam skan z "FRST". Liczę na waszą pomoc :)

    0 2
  • SterControl
  • Pomocny post
    #2 03 Maj 2018 21:56
    dt1
    Moderator - Komputery Serwis

    Witaj.

    Code:
    HKLM-x32\...\Run: [WidgetPodatnikInfo] => D:\Program Files (x86)\Podatnik.info\PIT pro 2016\Widget.exe [266160 2018-04-05] (Podatnik.info Sp. z o.o.)
    
    HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [17074688 2018-03-06] (Piriform Ltd)
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\Run: [Gaijin.Net Agent] => C:\Users\Malan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2116168 2018-05-03] (Gaijin Entertainment)
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\MountPoints2: {1993f68d-9c26-11e5-b7ef-305a3a5655b6} - F:\LG_PC_Programs.exe
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\MountPoints2: {4bd9b5cf-11ca-11e6-bc65-305a3a5655b6} - setup.exe
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\MountPoints2: {b5216b35-9c4d-11e5-8096-305a3a5655b6} - setup.exe
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\Winlogon: [Shell] C:\Windows\System32\cmd.exe [345088 2010-11-21] (Microsoft Corporation) <==== UWAGA
    HKU\S-1-5-21-1218179707-3901479960-2231437369-1000\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\Malan\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\Malan\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== UWAGA
    HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
    GroupPolicy: Ograniczenia <==== UWAGA
    GroupPolicy\User: Ograniczenia <==== UWAGA
    FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
    CHR HomePage: Default -> inline.go.mail.ru
    CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=112555&tt=090812_clr_3212_3&babsrc=HP_ss&mntrId=eee45eb30000000000000626b6f2934e","hxxp://alawar.pl","www.wp.pl/?src01=dp1","hxxp://www.google.com/","hxxp://istart.webssearches.com/?type=hp&ts=1406105101&from=obw&uid=TOSHIBAXMQ01ABF050_643GSK3ISXX643GSK3IS","hxxp://www.gazeta.pl/0,0.html?p=156","hxxp://istart.webssearches.com/?type=hp&ts=1414497828&from=obw&uid=TOSHIBAXMQ01ABF050_84NMSHHNSXX84NMSHHNS","hxxp://www.google.com","hxxp://www.istartsurf.com/?type=hp&ts=1429911070&from=smt&uid=TOSHIBAXMQ01ABF050_84NMSHHNSXX84NMSHHNS","hxxp://www.istartsurf.com/?type=hp&ts=1432450309&z=c23f10746fb4858edb61801gbzccfodz8w6e9c6e7q&from=obw&uid=TOSHIBAXMQ01ABF050_84NMSHHNSXX84NMSHHNS","hxxp://mail.ru/cnt/10445?gp=811138"




    CHR Extension: (Black red shards) - C:\Users\Malan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpjlkkaalgfbbegfnjoclhfidancjpch [2017-05-30]
    CHR Extension: (e-pity - dodatek) - C:\Users\Malan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2017-01-10]
    CHR HKLM-x32\...\Chrome\Extension: [bhjhnafpiilpffhglajcaepjbnbjemci] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nie znaleziono>
    CHR HKLM-x32\...\Chrome\Extension: [hcadgijmedbfgciegjomfpjcdchlhnif] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [lhemechcanjmilllmccjbjldonmnnjjj] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx
    S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
    S1 wfdrvr_vt_1_10_0_28; system32\drivers\wfdrvr_vt_1_10_0_28.sys [X]
    S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
    ContextMenuHandlers1: [TakeOwnershipMenu] -> [CC]{659E506B-0AC2-410E-A94C-A326FF199883} =>  -> Brak pliku
    ContextMenuHandlers4: [TakeOwnershipMenu] -> [CC]{659E506B-0AC2-410E-A94C-A326FF199883} =>  -> Brak pliku
    Task: {019F1810-26D3-4C3D-B29F-3BFBC40C361B} - System32\Tasks\diffiticnetjka => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" diffitic.net/jka <==== UWAGA
    Task: {03AD53F9-C7AA-422F-9AC3-A782385CB708} - System32\Tasks\e-pity2015a_kwiecien => D:\Program Files (x86)\e-file\e-pity2015\Assets\signxml.exe [2016-04-06] (e-file sp. z o.o.)
    Task: {099F78A2-D722-4CE8-B570-D352FC7A0124} - System32\Tasks\{C6398089-2E07-4601-8719-16A11239B719} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {0D8FA457-0C4E-474E-B22D-AC54BB77E0C2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
    Task: {0D8FA457-0C4E-474E-B22D-AC54BB77E0C2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2016-03-20] (Microsoft Corporation)
    Task: {0F9C117A-BC08-46D8-B060-55561F771575} - System32\Tasks\e-pity2015a_styczen => D:\Program Files (x86)\e-file\e-pity2015\Assets\signxml.exe [2016-04-06] (e-file sp. z o.o.)
    Task: {1371645F-AA78-4966-86D4-9769D03EABCD} - System32\Tasks\{D763A4DB-1754-9EBD-18C0-B396165FCCB8} => C:\Users\Malan\AppData\Local\UAmCpo.exe [2009-07-14] (Microsoft Corporation)
    Task: {1DA8708D-BD54-4E4C-A6E0-2AA1E0EC96D2} - System32\Tasks\{A63BDE7D-970C-440B-A3F3-D840919DE946} => D:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe
    Task: {37871F8D-0812-4BDB-9497-0224AA90CD3F} - System32\Tasks\{E6A9651C-885A-454D-BB8E-EF4A83C5FCBC} => C:\Windows\system32\pcalua.exe -a "D:\Program Files (x86)\Nexon\Nexon Launcher\nexon_install_script.exe" -d "D:\Program Files (x86)\Nexon\Nexon Launcher"
    Task: {3F58AB1E-2C8A-407F-B257-26EFAC8D260F} - System32\Tasks\{0D877830-57A0-4C88-8C64-1A68132A3947} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.18.0.112&LastError=12029
    Task: {532253B2-DDAF-4D71-B399-1109B7F77EBE} - System32\Tasks\{F7F5C117-2EE3-44BD-8B1E-BE139375EBA4} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {539ADED1-8F11-4F3D-949A-43BA437BA33B} - System32\Tasks\{A40796E3-E138-4115-A317-021AB5279FEB} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {5C5F9F19-F35D-4C35-AF25-11283BEA1B0F} - System32\Tasks\{89AB7B09-9425-4C44-9724-7CC2095ABE28} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {6957373E-FAA5-4BA2-B597-2D3C306E375C} - System32\Tasks\{07590307-C997-4CE8-8369-527476BF17A4} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {7394A5F8-E062-463D-96B6-BAF323DDC5D0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd)
    Task: {78DEA4B6-2743-4445-9BF6-B702388AD10C} - System32\Tasks\{3BA81B9A-E246-437D-A380-CF2D4D757692} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {9A97982F-ECA6-4667-81B4-1CCF866620E7} - System32\Tasks\{82DF2F6F-D08D-ABA5-C665-6043B53CFBFB} => C:\Users\Malan\AppData\Roaming\eoASzEoioaoN.exe [2009-07-14] (Microsoft Corporation) <==== UWAGA
    Task: {9CA6E96B-DBFB-435B-8FA6-C4D3E9FD8BA2} - System32\Tasks\{05B785CE-EA5C-4F49-BCE1-DFF53F61DC46} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {A081D293-5CF5-4D66-A7E9-7A7C0FCB47DD} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
    Task: {A081D293-5CF5-4D66-A7E9-7A7C0FCB47DD} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2016-03-20] (Microsoft Corporation)
    Task: {B876C6A3-1A81-4FFB-A1E5-B47DBF774CDD} - System32\Tasks\{FC24E105-2838-4765-93B6-1FDA67D3FBE2} => D:\Program Files (x86)\Silent Hill Homecoming\Bin\SilentHill.exe [2008-11-09] ()
    Task: {BE5E9ED7-3363-4A14-9183-D761EE4B6999} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
    Task: {BE5E9ED7-3363-4A14-9183-D761EE4B6999} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
    Task: {BE5E9ED7-3363-4A14-9183-D761EE4B6999} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [2016-03-20] (Microsoft Corporation)
    Task: {E8892893-EB62-4964-8413-91A76C7D2EEC} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
    Task: {E8892893-EB62-4964-8413-91A76C7D2EEC} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2016-03-20] (Microsoft Corporation)
    Task: {FA3D14B0-D794-4E38-9A50-42B43237AE6B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd)
    Task: {FBCCAA6C-D9B8-4FDA-88EF-21B71880AEF2} - System32\Tasks\{95D6F97C-DE9D-4A0F-BB36-9DAFDB972E15} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.18.0.112/pl/abandoninstall?source=lightinstaller&page=tsBing
    Task: C:\Windows\Tasks\DriverToolkit Autorun.job => D:\Program Files (x86)\DriverToolkit\DriverToolkit.exe


    Zapisz jako fixlist.txt w tym samym folderze, w którym masz FRST. Uruchom FRST i naciśnij napraw.

    0
  • SterControl