Błąd RunDLL C:\PROGRA~1\COMMON~1\System\Sysmenu.dll


(Hunertus999) #1

Witam serdecznie.

 

Mam problem z błędem RunDLL. Zawsze wyskakuje po uruchomieniu komputera. Pracuje na Windows 7 64 bitowym. Proszę wytłumaczyć co mam dalej zrobić.

 

A oto potrzebne linki. :slight_smile:

 

FRST: http://www.wklej.org/id/1673208/

Addition: http://www.wklej.org/id/1673211/

 

 


(Atis) #2

Wklej do systemowego notatnika i zapisz jako plik tekstowy o nazwie fixlist :

HKLM-x32\...\Run: [Setup Utility 14.0] => D:\Setup Utility\clickertray.exe
HKU\S-1-5-21-812593334-672169002-3024365513-1000\...\Run: [GoogleChromeAutoLaunch_100535F106431A9BDA15E8895BE69FFB] => "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-window
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\9290.lnk
 C:\ProgramData\{5bc51b43-8530-10e9-5bc5-51b438536d0e}
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: No Name -> {04FA1808-A1F9-D15D-D9F5-7473A820C98A} -> No File
BHO: No Name -> {0D17E4A1-C75C-5815-0D09-E760B8E05EA2} -> No File
BHO: UniDealse -> {62b89beb-5fd7-4c7a-80b2-c664606ee916} -> C:\Program Files (x86)\UniDealse\W99Bex6G01Gp6b.x64.dll No File
BHO: No Name -> {E66BF3CF-62B3-A3BD-943A-3B2F57C4BB53} -> No File
BHO-x32: No Name -> {04FA1808-A1F9-D15D-D9F5-7473A820C98A} -> No File
BHO-x32: No Name -> {0D17E4A1-C75C-5815-0D09-E760B8E05EA2} -> No File
C:\Users\user\AppData\Local\Google\Chrome
S3 LightScribeService; "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" [X]
S3 cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 GDPkIcpt; \??\C:\Windows\system32\drivers\PktIcpt.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X]
2015-03-27 19:00 - 2015-03-27 19:00 - 00000000 ____ D () C:\Program Files (x86)\Elex-tech
2015-03-27 18:59 - 2015-03-27 18:59 - 00868688 _____ () C:\Users\user\Downloads\yet_another_cleaner_sk_3139609.exe
2015-03-27 13:58 - 2015-03-27 13:58 - 00000000 ____ D () C:\Program Files\Enigma Software Group
2015-03-27 13:57 - 2015-03-27 18:50 - 00000000 ____ D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2015-03-22 17:40 - 2015-03-22 17:40 - 00713496 _____ (Software ) C:\Users\user\Downloads\uTorrent(13270)-dp(1).exe
2015-03-16 22:53 - 2015-03-27 18:49 - 00000000 ____ D () C:\Program Files (x86)\STOPzilla
2015-03-16 22:53 - 2015-03-27 18:48 - 00000000 ____ D () C:\ProgramData\STOPzilla!
2015-03-14 15:03 - 2015-03-14 15:03 - 00000000 ____ D () C:\ProgramData\Symantec
2015-03-13 20:56 - 2015-03-13 20:56 - 00000000 ____ D () C:\Program Files (x86)\mbot_pl_184
2015-03-13 16:45 - 2015-03-14 01:06 - 00000000 ____ D () C:\Users\user\AppData\Roaming\00000000-1426261545-0000-0000-6CF049401529
2015-03-13 16:45 - 2015-03-13 16:45 - 00000000 ____ D () C:\Users\Public\Documents\ShopperPro
2015-03-13 15:56 - 2015-03-14 01:06 - 00000000 ____ D () C:\ProgramData\11754754044708269706
2015-03-13 15:55 - 2015-03-18 09:23 - 00000000 ____ D () C:\ProgramData\{5bc51b43-8530-10e9-5bc5-51b438536d0e}
2015-03-27 18:45 - 2015-02-09 21:40 - 00000000 ____ D () C:\AdwCleaner
2015-01-25 17:12 - 2015-01-25 17:12 - 0001248 _____ () C:\Users\user\AppData\Roaming\FHIGIC
2015-03-09 22:30 - 2015-03-09 22:30 - 0005487 _____ () C:\Users\user\AppData\Roaming\LYKCXQBR
2015-01-25 17:12 - 2015-01-25 17:12 - 0002086 _____ () C:\Users\user\AppData\Roaming\OEM
2013-09-24 19:33 - 2014-07-04 08:46 - 0000131 _____ () C:\Users\user\AppData\Roaming\WB.CFG
2015-03-09 22:30 - 2015-03-09 22:30 - 0005487 _____ () C:\Users\user\AppData\Roaming\ZYUATVB
Task: {13781AAE-9C52-43EC-BDC2-1E52EB8FD640} - System32\Tasks\{B06ED75E-2375-4A24-82C7-A7CF4D2C8AF0} => pcalua.exe -a C:\Users\user\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=cor <==== ATTENTION
Task: {238D52A1-4EED-4AFC-B049-0A503AF7F561} - System32\Tasks\{58A66056-97C3-41D5-AD3A-4C49DF8DBA3D} => pcalua.exe -a C:\Users\user\Downloads\zdmikp.exe -d C:\Users\user\Downloads
Task: {2507A46F-78F3-44A9-AF34-3A8E4B7C4033} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {2895EFFF-0CB4-4740-915C-AF972B8EDE5A} - System32\Tasks\OEM => C:\Users\user\AppData\Roaming\OEM.exe <==== ATTENTION
Task: {2B1CC926-68C9-4293-BB33-F81C2ADF2948} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {307AEACB-2466-445D-97B9-CB7AC823D3B5} - System32\Tasks\SPBIW_UpdateTask_Time_323036333139393234372d575b323478415a45375a456c => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {32016450-0718-4C0C-9CDD-441ACEA5AD01} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe
Task: {431EFD89-89BB-4C2B-97F7-531F78ECE73A} - System32\Tasks\{1F3A3BA8-D153-4837-87C8-76737218EA49} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{AEC7CD2E-2BB5-40C3-9592-078F64677E6C}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {47C22C47-036A-4187-AAE1-CF4E3A04CA54} - System32\Tasks\{E40EB22C-50A2-41A7-BA8D-3F106FCDB547} => pcalua.exe -a F:\SETUP.EXE -d F:\ -c /AUTORUN
Task: {69DB5150-1436-46E1-881D-95153F9208EF} - System32\Tasks\{9C80EB4E-3630-4732-9FEA-A22F5A534C11} => pcalua.exe -a C:\Users\user\AppData\Roaming\do-search\UninstallManager.exe -c -ptid=cor
Task: {72742263-B0C8-484B-831C-80ED4BD60F24} - System32\Tasks\{313A0EC4-4514-4415-A94D-29426F58DA7E} => pcalua.exe -a C:\Users\user\Downloads\Setup.exe -d C:\Users\user\Downloads
Task: {980EDE5D-645B-4A48-8C5F-7CC8F68F4ADD} - System32\Tasks\{FF7658B5-0BA4-472F-BDB6-30ACC513E166} => pcalua.exe -a C:\Users\user\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=amt
Task: {A19DB31D-E9E2-4543-BA75-2884B54E48FB} - System32\Tasks\LYKCXQBR => C:\Users\user\AppData\Roaming\LYKCXQBR.exe <==== ATTENTION
Task: {B65E34B3-3343-4D0E-9ECB-815AFB519011} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {DE7AA79E-E05D-44C0-B503-3761082556FD} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.6.0.27\SymErr.exe
Task: {E5A2CACF-562E-48F7-8A86-3B43A6911FE9} - System32\Tasks\FHIGIC => C:\Users\user\AppData\Roaming\FHIGIC.exe <==== ATTENTION
Task: C:\Windows\Tasks\FHIGIC.job => C:\Users\user\AppData\Roaming\FHIGIC.exe <==== ATTENTION
Task: C:\Windows\Tasks\LYKCXQBR.job => C:\Users\user\AppData\Roaming\LYKCXQBR.exe <==== ATTENTION
Task: C:\Windows\Tasks\OEM.job => C:\Users\user\AppData\Roaming\OEM.exe <==== ATTENTION
C:\Users\user\AppData\Roaming\*.exe
 EmptyTemp:

Uruchom FRST i kliknij Fix. Pokaż raport z usuwania Fixlog.

Kliknij Scan i pokaż nowy raport z FRST bez Addition.


(Hunertus999) #3

Oto raporty:

 

Fixlog: http://wklej.org/id/1673364/

FRST: http://wklej.org/id/1673373/


(Atis) #4

Skasuj folder C:\FRST

Usuń stare punkty przywracania: Aby usunąć wszystkie punkty przywracania

Dysk przeskanuj Malwarebytes Anti-Malware

Podczas instalacji usuń zaznaczenie przy Uruchom okres testowy Malwarebytes Anti-Malware Premium.

http://wstaw.org/m/2014/03/25/2014-03-25_123039.png

Język PL > Settings > General Settings > Language > Polish

Przeczytaj w jaki sposób należy instalować programy: KLIK - KLIK - KLIK - KLIK

Odinstaluj:

Adobe Flash Player 16 ActiveX

Adobe Flash Player 17 NPAPI

Adobe Shockwave Player 12.0

Java 8 Update 31

Microsoft Silverlight

Zainstaluj:

Flash Player 17.0.0.134 ActiveX

Flash Player 17.0.0.134 Plugin

Silverlight 5.1.30514.0


(Hunertus999) #5

Ok wszystko zrobione. Błąd zniknął. Bardzo dziękuje za pomoc.

 

Pozdrawiam! :smiley:

 

Temat do zamknięcia.