x-kom hosting

rundll wystąpił problem podczas uruchamiania

swajt
utworzono
utworzono (edytowane)

Witam mam taki oto problem ze podczas uruchamiania systemu wyskakuje blad Rundll, dodam że mam win7.

 

Cytuj

rundll wystąpił problem podczas uruchamiania pliku defibrillatephalanx.dll

 

FRST:

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop
Task: {1DB054B5-FFEB-4BD1-AD51-39EB912D9B3E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26347256-356C-498C-B013-40A228634AD6} - System32\Tasks\UserConvertingTuckeredV2 => rundll32.exe DefibrillatePhalanx.dll,main 7 1 <==== UWAGA
Task: {2642B74C-2796-4EE9-B659-8E7114B0F09A} - System32\Tasks\Opera scheduled assistant Autoupdate 1580335390 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe
Task: {459573BA-BA91-4C21-8AB5-6843E015C52F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {467F6CB2-FCE2-4D79-9E9B-6F9344CC6603} - System32\Tasks\{54FAF0C3-8755-4300-8B1F-B3F237B8673F} => C:\Windows\system32\pcalua.exe -a "D:\Steam 2k19\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam 2k19\steamapps\common\Left 4 Dead 2" -c /register
Task: {4B1FEC0E-AA24-4D6A-9705-3E2F92AA50E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4B46E4FD-AA7D-4BFD-9A82-630F088A6571} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {599E2672-0C38-450A-979D-7173835F5E52} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A440CAE-300A-486F-8B8C-29CAA07833DC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC)
Task: {6203FC41-5B98-48BB-9F03-2C355EDFD9B3} - System32\Tasks\{9C0CE899-2EC6-4EF9-BDE0-4D4075AFC81E} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\
Task: {6F96EF1F-8725-4B6B-9361-03C6AF86333E} - System32\Tasks\{F1631B8B-E388-4151-8F76-E2514D2A914A} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/pl/eula
Task: {77B7C856-6467-434A-AB32-D71F178EEE1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC)
Task: {7EFEC6FE-E80E-444C-9EE7-C2A0D873D1CA} - System32\Tasks\{9A997C67-E378-48E6-8259-0ED062C76BDF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}\setup.exe" -c -runfromtemp -l0x0015 -removeonly
Task: {81A76556-F9D7-4468-B0ED-8DACEB0A5767} - System32\Tasks\Opera scheduled Autoupdate 1580335386 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe
Task: {86A410C6-AC0B-41FD-8223-ED42680EE455} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9225496D-1351-404C-99B9-DAB7C28E1050} - System32\Tasks\{B7EAFE4E-6164-4E16-ABA6-8E660B61DAFC} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\
Task: {AB72ED6E-561C-43CA-A222-4EF4722F8DF7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9C288F7-FF4A-4CF6-83BF-82E392351E3F} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe [1089664 2010-07-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C2CAC2B7-7EBF-4FEA-8031-14C744C1679A} - \Sosition Reports -> Brak pliku <==== UWAGA
Task: {C85FD36D-597B-4061-8E13-3D18B8264863} - System32\Tasks\{7EA601CA-5E3B-42FF-A5EE-5FDE2C481E6F} => C:\Windows\system32\pcalua.exe -a E:\Setup.exe -d E:\
Task: {CBA55237-FF38-4DD6-A6E8-EEBF86FFA0AB} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {CC336E47-07B1-4D87-9D8E-40010E96A132} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CC9838D9-1AEC-49E7-B901-295EDCB13707} - System32\Tasks\{D73F0D48-E587-485A-86A4-211396FD1FD4} => C:\Windows\system32\pcalua.exe -a D:\Instalki\deamon\daemon410-x86.exe -d D:\Instalki\deamon
Task: {CFFD3E4C-A635-42CB-9D53-91F847CBCA31} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5620088-5764-48EB-8EF8-365FE836E75F} - System32\Tasks\{72C2B28D-0B58-4721-B95A-21AD9EA3E730} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install\setup.exe -d C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install
Task: {D7BC3836-3404-4A38-B3C8-591A28EB428C} - System32\Tasks\{2A20A22C-D3F5-456E-A004-C0245D4BC7DE} => C:\Windows\system32\pcalua.exe -a F:\bfpinstall.exe -d F:\
Task: {E0EE269C-6A82-4339-BEF5-615C0F682FA0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7F00920-A23C-4925-8611-4184D34FE186} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-21] (Microsoft Windows -> Microsoft Corporation)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

 

Addition.txt FRST.txt Shortcut.txt

UnnamedPlayer
komentarz
komentarz

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y. Otworzy się notatnik - wklej do niego:
 

Cytuj

HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {5b57636d-02d6-11e4-9deb-20cf30c9cae2} - H:\Startme.exe
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {7e72074b-df19-11e7-bc43-20cf30c9cae2} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {83ac3945-4361-11ea-987d-bcaec5011c12} - F:\setup.exe
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {bf30483f-609a-11e1-9ac4-20cf30c9cae2} - H:\Startme.exe
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {eefd83a1-1303-11e3-9f32-20cf30c9cae2} - H:\HTC_Sync_Manager_PC.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetycrt.dll <==== UWAGA
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\safetycrt.dll <==== UWAGA
BootExecute: 
GroupPolicy: Ograniczenia - Chrome <==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop
Task: {26347256-356C-498C-B013-40A228634AD6} - System32\Tasks\UserConvertingTuckeredV2 => rundll32.exe DefibrillatePhalanx.dll,main 7 1 <==== UWAGA
Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop
Task: {6203FC41-5B98-48BB-9F03-2C355EDFD9B3} - System32\Tasks\{9C0CE899-2EC6-4EF9-BDE0-4D4075AFC81E} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\
Task: {6F96EF1F-8725-4B6B-9361-03C6AF86333E} - System32\Tasks\{F1631B8B-E388-4151-8F76-E2514D2A914A} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/pl/eula
Task: {7EFEC6FE-E80E-444C-9EE7-C2A0D873D1CA} - System32\Tasks\{9A997C67-E378-48E6-8259-0ED062C76BDF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}\setup.exe" -c -runfromtemp -l0x0015 -removeonly
Task: {9225496D-1351-404C-99B9-DAB7C28E1050} - System32\Tasks\{B7EAFE4E-6164-4E16-ABA6-8E660B61DAFC} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\
Task: {C2CAC2B7-7EBF-4FEA-8031-14C744C1679A} - \Sosition Reports -> Brak pliku <==== UWAGA
Task: {C85FD36D-597B-4061-8E13-3D18B8264863} - System32\Tasks\{7EA601CA-5E3B-42FF-A5EE-5FDE2C481E6F} => C:\Windows\system32\pcalua.exe -a E:\Setup.exe -d E:\
Task: {CC9838D9-1AEC-49E7-B901-295EDCB13707} - System32\Tasks\{D73F0D48-E587-485A-86A4-211396FD1FD4} => C:\Windows\system32\pcalua.exe -a D:\Instalki\deamon\daemon410-x86.exe -d D:\Instalki\deamon
Task: {D5620088-5764-48EB-8EF8-365FE836E75F} - System32\Tasks\{72C2B28D-0B58-4721-B95A-21AD9EA3E730} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install\setup.exe -d C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install
Task: {D7BC3836-3404-4A38-B3C8-591A28EB428C} - System32\Tasks\{2A20A22C-D3F5-456E-A004-C0245D4BC7DE} => C:\Windows\system32\pcalua.exe -a F:\bfpinstall.exe -d F:\
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - (Brak nazwy) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku
URLSearchHook: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 - (Brak nazwy) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku
SearchScopes: HKLM-x32 -> DefaultScope {AE471CB5-5284-4566-85DC-353910DBBB10} URL = 
SearchScopes: HKLM-x32 -> Gazeta URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?p=125&slowo={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> DefaultScope {AE471CB5-5284-4566-85DC-353910DBBB10} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> Gazeta URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?p=125&slowo={searchTerms}
SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> {AE471CB5-5284-4566-85DC-353910DBBB10} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO-x32: Brak nazwy -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> Brak pliku
Toolbar: HKLM-x32 - Brak nazwy - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} -  Brak pliku
Toolbar: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> Brak nazwy - {D43723AE-1AE1-4A25-A6A4-BF0929273CAB} -  Brak pliku
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Brak pliku

FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> D:\Winamp Detect\npwachk.dll [Brak pliku]
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> D:\Winamp Detect\npwachk.dll [Brak pliku]
S2 BugreportW; "C:\Program Files (x86)\hohobnd\ghabuk.exe" {154DFF63-3402-4815-941A-AAD63AE8B428} [X]
S2 SstrprSrv; "C:\Program Files (x86)\Sosition\SstrprSrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
S3 AIDA64Driver; \??\C:\Users\User\AppData\Local\Temp\RarSFX0\kerneld.x64 [X] <==== UWAGA

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Brak pliku
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} =>  -> Brak pliku
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Brak pliku
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Brak pliku
AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B [464]
AlternateDataStreams: C:\ProgramData\TEMP:76650B61 [103]
AlternateDataStreams: C:\ProgramData\TEMP:C40C2DC4 [114]
AlternateDataStreams: C:\ProgramData\TEMP:EF6E4E62 [99]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:

 

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Zrób nowe logi

  • Dobra wypowiedź 1
swajt
komentarz
komentarz (edytowane)

@UnnamedPlayer Dziękuje za pomoc leci +. Po tym zabiegu juz przy włączaniu systemu bledu nie ma. Mozna widziec co bylo przyczyna?

 

FixLog po naprawie:

Fixlog.txt

FRST.txt Addition.txt

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.