Elektroda.pl
Elektroda.pl
X

Search our partners

Find the latest content on electronic components. Datasheets.com
Elektroda.pl
Please add exception to AdBlock for elektroda.pl.
If you watch the ads, you support portal and users.

Czarny ekran i konsola po uruchomieniu komputera

13 Jul 2018 13:57 564 2
  • Level 2  
    Dzień dobry

    Mam problem z komputerem tak jak w temacie. Po uruchomieniu komputera pojawia się czarny ekran i konsola z odwołaniem do system32.
    Z innych tematów na tym forum wnioskuję że jest to jakiś wirus ( instalowałem ostatnio The Sims 4 z TPB więc z tego mogło się to wziąć).
    Załączamy pliki z FRST.
    Z góry dziękuję za pomoc.
    Czy Twoje urządzenia IoT są bezpieczne? [Webinar 22.06.2021, g.9.00]. Zarejestruj się za darmo
  • Helpful post
    IT specialist
    Wykonaj Fixlist.txt dla FRST:
    Task: {00F942B4-3033-486E-990A-D7B2C2B72B95} - System32\Tasks\{8E208A3F-AA4B-4981-B9E7-85460BEDC1AF} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] ()
    Task: {04F69A6E-1F0C-4893-8DA8-70C96CC9274C} - System32\Tasks\{7DCF2539-16F5-43E8-90FD-A3BE89359750} => C:\Program Files\MSI\DragonEye\DragonEye.exe
    Task: {266CC288-545B-4F13-A3F2-D9192F7771CF} - System32\Tasks\{3070C391-8152-4A8D-9FE4-28DF394DE50E} => C:\Windows\system32\pcalua.exe -a C:\Users\Strzałki\Desktop\Kacper\GTA_IV_Patch1\Content\setup.exe -d C:\Users\Strzałki\Desktop\Kacper\GTA_IV_Patch1\Content
    Task: {364752F0-A460-43BB-8DBF-98E663E11ACD} - System32\Tasks\{5A7A0941-090A-4549-A2AE-9220B6407FF0} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] ()
    Task: {47E0013F-3A7C-4C78-AC1C-4537339253AA} - System32\Tasks\{3BC6E49A-B99B-4B4D-A060-D342A687EA89} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.22.0.107/pl/abandoninstall?page=tsProgressBar
    Task: {6256D276-5C42-4AC9-8475-2ACCDB54F76C} - System32\Tasks\{2DA7B822-79A4-4F73-8597-F7384E5AD629} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{B746827A-3219-4EF8-8053-CEA5AEC12D33}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
    Task: {7FFE0BE6-6B33-494A-B830-D8F22F01E848} - System32\Tasks\{CFEA2703-D062-4976-8D1B-5E2B66095AB5} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] ()
    Task: {9AB62808-03C7-4227-9D51-0B27A0E0B1EE} - System32\Tasks\{4CB23DE8-6A70-468A-9144-5235A369AE06} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] ()
    AlternateDataStreams: C:\ProgramData\.rdata:X [526]
    AlternateDataStreams: C:\Users\Public\AppData:CSM [464]
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {062a0023-4eff-11e4-8f5f-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {062a0031-4eff-11e4-8f5f-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {1394ec38-0096-11e6-95db-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {1ad6bdd2-4515-11e7-973f-448a5b9ebc54} - G:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {7be57be4-2acc-11e5-8b09-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {7c279a74-5b7c-11e4-b1f8-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {7c279a83-5b7c-11e4-b1f8-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {921f2816-27c3-11e6-95cc-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {b4076835-6681-11e4-b3d4-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {bac75059-5b90-11e4-ab9d-448a5b9ebc54} - E:\AutoRun.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\MountPoints2: {cc8f1c84-167e-11e6-a4bf-448a5b9ebc54} - G:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\Winlogon: [Shell] C:\Windows\System32\cmd.exe [345088 2010-11-20] (Microsoft Corporation) <==== ATTENTION
    HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist ( start /MIN "" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== ATTENTION
    SearchScopes: HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={5E846B64-91C9-4C81-8228-FBEA6BF51384}&mid=71f0fc674de347d2882795c31d7a55a7-4992243e9db8a0cd8ac664db4bc3c08e27a758e1&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-05-07 11:22:30&v=4.1.4.948&pid=wtu&sg=&sap=hp
    SearchScopes: HKU\S-1-5-21-3603008353-3250860884-1944170941-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={5E846B64-91C9-4C81-8228-FBEA6BF51384}&mid=71f0fc674de347d2882795c31d7a55a7-4992243e9db8a0cd8ac664db4bc3c08e27a758e1&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0715tb&pr=fr&d=2015-05-07 11:22:30&v=4.1.4.948&pid=wtu&sg=&sap=dsp&q={searchTerms}
    CHR HomePage: Default -> hxxp://www2.delta-search.com/?affID=119816&am...&babsrc=HP_ss&mntrId=A69F582C80139263
    CHR DefaultSearchURL: Default -> hxxps://www.google.com/images/icons/product/chrome_web_store-32.png
    CHR HKU\S-1-5-21-3603008353-3250860884-1944170941-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
    S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
    S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
    S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
    S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
    S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
    S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X]
    S3 hwusb_wwanecm; system32\DRIVERS\ew_wwanecm.sys [X]
    S3 MSICDSetup; \??\F:\CDriver64.sys [X]
    S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [X]
    S3 NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [X]
    S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
    S3 NTIOLib_ECO; \??\C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [X]
    S3 NTIOLib_FastBoot; \??\C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSIClock_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSICOMM_CC; \??\C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSICPU_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSIDDR_CC; \??\C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSIRatio_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSISMB_CC; \??\C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [X]
    S3 NTIOLib_MSISuperIO_CC; \??\C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [X]
    S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
    S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
    S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
    S3 VGPU; System32\drivers\rdvgkmd.sys [X]

    W FRST wybierz Napraw.

    Usun katalog C:\FRST i to wszystko.
  • Level 2  
    Dziękuje za pomoc.
    Problem naprawiony.