Elektroda.pl
Elektroda.pl
X
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Wiersz poleceń - CMD nie uruchamia się

Zayess 28 Sie 2018 16:59 210 2
  • #1 28 Sie 2018 16:59
    Zayess
    Poziom 2  

    Witam, od jakiegoś czasu po uruchomieniu komputera uruchamia się wiersz poleceń i po sekundzie znika, do tego nie mogę go uruchomić. Korzystam z win 8.1 64bit
    W załączniku zamieszczam logi z FRST

    0 2
  • Pomocny post
    #2 28 Sie 2018 17:24
    Kolobos
    Spec od komputerów

    Wykonaj Fixlist.txt dla FRST:
    Task: {146B4857-0808-46F4-8D08-CFFBA93C41EF} - System32\Tasks\Oskar => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Oskar /t REG_SZ /d "explorer.exe hxxp://ozirizsoos.info" <==== ATTENTION
    Task: {1BA4F695-49E1-4483-A408-2AEACD6566CB} - System32\Tasks\{1FE357D1-0479-4A76-A4A1-78041E12E752} => C:\Windows\system32\pcalua.exe -a "E:\Games\Splinter Cell - Blacklist\Blacklist_Launcher.exe" -d "E:\Games\Splinter Cell - Blacklist"
    Task: {2B08DDE2-4499-449C-BB13-7659E81CD68C} - System32\Tasks\{9ADCD269-2B7C-4BC6-8E62-3950702F14E3} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mr DJ\The Elder Scrolls V Skyrim Legendary Edition\SkyrimLauncher.exe" -d "C:\Program Files (x86)\Mr DJ\The Elder Scrolls V Skyrim Legendary Edition"
    Task: {80AE294F-50C0-4495-9C85-5432FA46996E} - System32\Tasks\{E9015A5E-923A-4B89-A1D1-E97C4EF628BD} => C:\Windows\system32\pcalua.exe -a "E:\Games\Assassins Creed II\AssassinsCreedIIGame.exe" -d "E:\Games\Assassins Creed II"
    Task: {A3231852-2BFF-452E-A146-B752E248A08A} - System32\Tasks\{DAB519B0-78F5-4475-9741-8A3CBD21202B} => C:\Windows\system32\pcalua.exe -a "E:\Program Files (x86)\Fallout New Vegas\FalloutNVLauncher.exe" -d "E:\Program Files (x86)\Fallout New Vegas"
    Task: {B21F4C1B-579C-482F-BF0B-E29F22D280A6} - System32\Tasks\{66391D34-FA4F-4DAE-8EBB-B39A01F54E98} => C:\Windows\system32\pcalua.exe -a "E:\Program Files (x86)\The Elder Scrolls IV Oblivion GOTY\OblivionLauncher.exe" -d "E:\Program Files (x86)\The Elder Scrolls IV Oblivion GOTY"
    Task: {BE47A119-0AC1-496B-8E1F-09CE4D5D4F26} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
    Task: {E608089F-2139-4C80-9A44-006DF0366B4B} - System32\Tasks\{C991122A-3437-4680-962C-AB7A834AB62C} => C:\Windows\system32\pcalua.exe -a "E:\Program Files (x86)\Mass Effect 3\Binaries\Win32\MassEffect3.exe" -d "E:\Program Files (x86)\Mass Effect 3\Binaries\Win32"
    Task: {F0D61E48-D891-4761-8574-D6508AEB6E59} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
    Task: {FFDD1D4B-0691-459A-9F31-7146917C43D5} - System32\Tasks\{499645B4-EDCF-4E5D-930D-D648B107BB53} => C:\Windows\system32\pcalua.exe -a "E:\Program Files (x86)\CorePack\Manhunt Duology\Manhunt 2\Manhunt2.exe" -d C:\Users\Oskar\Desktop
    Task: C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
    Task: C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
    AlternateDataStreams: C:\ProgramData:NT [40]
    AlternateDataStreams: C:\ProgramData:NT2 [432]
    AlternateDataStreams: C:\Users\All Users:NT [40]
    AlternateDataStreams: C:\Users\All Users:NT2 [432]
    AlternateDataStreams: C:\Users\Oskar:Heroes & Generals [38]




    AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
    AlternateDataStreams: C:\ProgramData\Application Data:NT2 [432]
    AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
    AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432]
    AlternateDataStreams: C:\Users\Oskar\Application Data:NT [40]
    AlternateDataStreams: C:\Users\Oskar\Application Data:NT2 [432]
    AlternateDataStreams: C:\Users\Oskar\AppData\Roaming:NT [40]
    AlternateDataStreams: C:\Users\Oskar\AppData\Roaming:NT2 [432]
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\MountPoints2: {1caa475a-dc42-11e7-826b-c48e8f59f146} - "H:\setup.exe"
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\MountPoints2: {20340999-de92-11e7-8272-c48e8f59f146} - "I:\setup.exe"
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\MountPoints2: {880bab20-165f-11e8-82fa-c48e8f59f146} - "D:\HiSuiteDownLoader.exe"
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\MountPoints2: {880bab56-165f-11e8-82fa-c48e8f59f146} - "F:\HiSuiteDownLoader.exe"
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\MountPoints2: {e4daa00f-d9b4-11e7-8269-c48e8f59f146} - "H:\HiSuiteDownLoader.exe"
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\Winlogon: [Shell] C:\Windows\System32\cmd.exe [357376 2014-10-29] (Microsoft Corporation) <==== ATTENTION
    HKU\S-1-5-21-1159788789-1064781142-2163790113-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\Oskar\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\Oskar\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== ATTENTION
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EA_RESTART_001.lnk [2018-04-13]
    ShortcutTarget: EA_RESTART_001.lnk -> C:\Users\Oskar\AppData\Local\Temp\AutoRun.exe (No File)
    C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\6n9y0nqi.default\Extensions\{6ced8803-5737-4d13-ae02-2cdabaf5f804}.xpi
    FF Extension: (FilmbBooster) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\6n9y0nqi.default\Extensions\{6ced8803-5737-4d13-ae02-2cdabaf5f804}.xpi [2018-07-18]
    C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdojnljhhnmokjbpbhmngmmfnhokgij
    CHR Extension: (FilmBooster) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdojnljhhnmokjbpbhmngmmfnhokgij [2018-06-25]
    S3 HnGSteamService; C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngservice.exe [X]
    S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
    2018-08-28 16:43 - 2017-11-30 00:42 - 000000296 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
    2018-08-28 16:43 - 2017-11-30 00:42 - 000000280 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job

    Po wykonaniu usun katalog C:\FRST i to wszystko.

    0
  • #3 28 Sie 2018 17:28
    Zayess
    Poziom 2  

    Dziękuję za pomoc :)

    0