swajt utworzono 5 lutego 2020 utworzono 5 lutego 2020 (edytowane) Witam mam taki oto problem ze podczas uruchamiania systemu wyskakuje blad Rundll, dodam że mam win7. Cytuj rundll wystąpił problem podczas uruchamiania pliku defibrillatephalanx.dll FRST: ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop Task: {1DB054B5-FFEB-4BD1-AD51-39EB912D9B3E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {26347256-356C-498C-B013-40A228634AD6} - System32\Tasks\UserConvertingTuckeredV2 => rundll32.exe DefibrillatePhalanx.dll,main 7 1 <==== UWAGA Task: {2642B74C-2796-4EE9-B659-8E7114B0F09A} - System32\Tasks\Opera scheduled assistant Autoupdate 1580335390 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe Task: {459573BA-BA91-4C21-8AB5-6843E015C52F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd) Task: {467F6CB2-FCE2-4D79-9E9B-6F9344CC6603} - System32\Tasks\{54FAF0C3-8755-4300-8B1F-B3F237B8673F} => C:\Windows\system32\pcalua.exe -a "D:\Steam 2k19\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\Steam 2k19\steamapps\common\Left 4 Dead 2" -c /register Task: {4B1FEC0E-AA24-4D6A-9705-3E2F92AA50E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd) Task: {4B46E4FD-AA7D-4BFD-9A82-630F088A6571} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {599E2672-0C38-450A-979D-7173835F5E52} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5A440CAE-300A-486F-8B8C-29CAA07833DC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC) Task: {6203FC41-5B98-48BB-9F03-2C355EDFD9B3} - System32\Tasks\{9C0CE899-2EC6-4EF9-BDE0-4D4075AFC81E} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\ Task: {6F96EF1F-8725-4B6B-9361-03C6AF86333E} - System32\Tasks\{F1631B8B-E388-4151-8F76-E2514D2A914A} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/pl/eula Task: {77B7C856-6467-434A-AB32-D71F178EEE1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC) Task: {7EFEC6FE-E80E-444C-9EE7-C2A0D873D1CA} - System32\Tasks\{9A997C67-E378-48E6-8259-0ED062C76BDF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}\setup.exe" -c -runfromtemp -l0x0015 -removeonly Task: {81A76556-F9D7-4468-B0ED-8DACEB0A5767} - System32\Tasks\Opera scheduled Autoupdate 1580335386 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe Task: {86A410C6-AC0B-41FD-8223-ED42680EE455} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9225496D-1351-404C-99B9-DAB7C28E1050} - System32\Tasks\{B7EAFE4E-6164-4E16-ABA6-8E660B61DAFC} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\ Task: {AB72ED6E-561C-43CA-A222-4EF4722F8DF7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B9C288F7-FF4A-4CF6-83BF-82E392351E3F} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe [1089664 2010-07-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {C2CAC2B7-7EBF-4FEA-8031-14C744C1679A} - \Sosition Reports -> Brak pliku <==== UWAGA Task: {C85FD36D-597B-4061-8E13-3D18B8264863} - System32\Tasks\{7EA601CA-5E3B-42FF-A5EE-5FDE2C481E6F} => C:\Windows\system32\pcalua.exe -a E:\Setup.exe -d E:\ Task: {CBA55237-FF38-4DD6-A6E8-EEBF86FFA0AB} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe Task: {CC336E47-07B1-4D87-9D8E-40010E96A132} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CC9838D9-1AEC-49E7-B901-295EDCB13707} - System32\Tasks\{D73F0D48-E587-485A-86A4-211396FD1FD4} => C:\Windows\system32\pcalua.exe -a D:\Instalki\deamon\daemon410-x86.exe -d D:\Instalki\deamon Task: {CFFD3E4C-A635-42CB-9D53-91F847CBCA31} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D5620088-5764-48EB-8EF8-365FE836E75F} - System32\Tasks\{72C2B28D-0B58-4721-B95A-21AD9EA3E730} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install\setup.exe -d C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install Task: {D7BC3836-3404-4A38-B3C8-591A28EB428C} - System32\Tasks\{2A20A22C-D3F5-456E-A004-C0245D4BC7DE} => C:\Windows\system32\pcalua.exe -a F:\bfpinstall.exe -d F:\ Task: {E0EE269C-6A82-4339-BEF5-615C0F682FA0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F7F00920-A23C-4925-8611-4184D34FE186} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-21] (Microsoft Windows -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Addition.txt FRST.txt Shortcut.txt
UnnamedPlayer komentarz 5 lutego 2020 komentarz 5 lutego 2020 Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y. Otworzy się notatnik - wklej do niego: Cytuj HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: E - E:\setup.exe HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {5b57636d-02d6-11e4-9deb-20cf30c9cae2} - H:\Startme.exe HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {7e72074b-df19-11e7-bc43-20cf30c9cae2} - H:\HiSuiteDownLoader.exe HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {83ac3945-4361-11ea-987d-bcaec5011c12} - F:\setup.exe HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {bf30483f-609a-11e1-9ac4-20cf30c9cae2} - H:\Startme.exe HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\...\MountPoints2: {eefd83a1-1303-11e3-9f32-20cf30c9cae2} - H:\HTC_Sync_Manager_PC.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\safetycrt.dll <==== UWAGA HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Browser Tab Search by Ask\SafetyNut\x64\safetycrt.dll <==== UWAGA BootExecute: GroupPolicy: Ograniczenia - Chrome <==== UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop Task: {26347256-356C-498C-B013-40A228634AD6} - System32\Tasks\UserConvertingTuckeredV2 => rundll32.exe DefibrillatePhalanx.dll,main 7 1 <==== UWAGA Task: {053C239E-7E63-4EBC-ABED-BFC404F67898} - System32\Tasks\{F843116D-E9C0-43EE-A870-5FC5C1C2C96B} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\DLL Injector Latest Version-Installer.exe" -d C:\Users\User\Desktop Task: {6203FC41-5B98-48BB-9F03-2C355EDFD9B3} - System32\Tasks\{9C0CE899-2EC6-4EF9-BDE0-4D4075AFC81E} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\ Task: {6F96EF1F-8725-4B6B-9361-03C6AF86333E} - System32\Tasks\{F1631B8B-E388-4151-8F76-E2514D2A914A} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/pl/eula Task: {7EFEC6FE-E80E-444C-9EE7-C2A0D873D1CA} - System32\Tasks\{9A997C67-E378-48E6-8259-0ED062C76BDF} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}\setup.exe" -c -runfromtemp -l0x0015 -removeonly Task: {9225496D-1351-404C-99B9-DAB7C28E1050} - System32\Tasks\{B7EAFE4E-6164-4E16-ABA6-8E660B61DAFC} => C:\Windows\system32\pcalua.exe -a E:\OriginInstaller.exe -d E:\ Task: {C2CAC2B7-7EBF-4FEA-8031-14C744C1679A} - \Sosition Reports -> Brak pliku <==== UWAGA Task: {C85FD36D-597B-4061-8E13-3D18B8264863} - System32\Tasks\{7EA601CA-5E3B-42FF-A5EE-5FDE2C481E6F} => C:\Windows\system32\pcalua.exe -a E:\Setup.exe -d E:\ Task: {CC9838D9-1AEC-49E7-B901-295EDCB13707} - System32\Tasks\{D73F0D48-E587-485A-86A4-211396FD1FD4} => C:\Windows\system32\pcalua.exe -a D:\Instalki\deamon\daemon410-x86.exe -d D:\Instalki\deamon Task: {D5620088-5764-48EB-8EF8-365FE836E75F} - System32\Tasks\{72C2B28D-0B58-4721-B95A-21AD9EA3E730} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install\setup.exe -d C:\Users\User\Desktop\JMB36X_V117502_XpVistaWin7\Install Task: {D7BC3836-3404-4A38-B3C8-591A28EB428C} - System32\Tasks\{2A20A22C-D3F5-456E-A004-C0245D4BC7DE} => C:\Windows\system32\pcalua.exe -a F:\bfpinstall.exe -d F:\ HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2405200453-2962190298-1720085274-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank URLSearchHook: HKLM-x32 - (Brak nazwy) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku URLSearchHook: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 - (Brak nazwy) - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku SearchScopes: HKLM-x32 -> DefaultScope {AE471CB5-5284-4566-85DC-353910DBBB10} URL = SearchScopes: HKLM-x32 -> Gazeta URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?p=125&slowo={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> DefaultScope {AE471CB5-5284-4566-85DC-353910DBBB10} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> Gazeta URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?p=125&slowo={searchTerms} SearchScopes: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> {AE471CB5-5284-4566-85DC-353910DBBB10} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 BHO-x32: Brak nazwy -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> Brak pliku Toolbar: HKLM-x32 - Brak nazwy - {d43723ae-1ae1-4a25-a6a4-bf0929273cab} - Brak pliku Toolbar: HKU\S-1-5-21-2405200453-2962190298-1720085274-1000 -> Brak nazwy - {D43723AE-1AE1-4A25-A6A4-BF0929273CAB} - Brak pliku Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Brak pliku FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> D:\Winamp Detect\npwachk.dll [Brak pliku] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> D:\Winamp Detect\npwachk.dll [Brak pliku] S2 BugreportW; "C:\Program Files (x86)\hohobnd\ghabuk.exe" {154DFF63-3402-4815-941A-AAD63AE8B428} [X] S2 SstrprSrv; "C:\Program Files (x86)\Sosition\SstrprSrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X] S3 AIDA64Driver; \??\C:\Users\User\AppData\Local\Temp\RarSFX0\kerneld.x64 [X] <==== UWAGA ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> Brak pliku ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> Brak pliku ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Brak pliku AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B [464] AlternateDataStreams: C:\ProgramData\TEMP:76650B61 [103] AlternateDataStreams: C:\ProgramData\TEMP:C40C2DC4 [114] AlternateDataStreams: C:\ProgramData\TEMP:EF6E4E62 [99] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480] Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW). Zrób nowe logi 1
swajt komentarz 5 lutego 2020 Autor komentarz 5 lutego 2020 (edytowane) @UnnamedPlayer Dziękuje za pomoc leci +. Po tym zabiegu juz przy włączaniu systemu bledu nie ma. Mozna widziec co bylo przyczyna? FixLog po naprawie: Fixlog.txt FRST.txt Addition.txt
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.