Windows 7 Command Line Console Closes Immediately After Opening - Possible Fixes

Hello,

I do not want to turn on the command line, i.e. when entering "cmd" in the run, a console (a small window) appears for a moment, then closes immediately. I also noticed that when logging in to the account (when the desktop appeared), the console opens and the "Library" folder starts running for me. I tried to start the computer in an emergency - it did not help. Windows 7
I would ask for help in this matter.

Other commands in run work? Have you tried to run as an administrator?

After selecting a command line from the start menu is the same?

Download FRST compatible with your system version =>
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/
Complete the scan and replace the logs with FRST.txt and Addition.txt in the form of attachments.

Yes, everything works in run, except "cmd". I tried to run as an administrator. I always open a command line from the start menu. It does not work either from the menu, folder and .bat (start cmd.exe start blabla.exe)

Please, scan in the attachment.

Otwórz notatnik systemowy i wklej:

ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
Task: {1E0513C6-CE77-4432-8166-29B4B5E022B0} - C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate -nolegacy
HKLM-x32\...\Run: [SDTray] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\MountPoints2: {0eacd0b2-762a-11e7-bc4b-fcaa14240824} - H:\startme.exe
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\MountPoints2: {75adcb9b-58ad-11e7-b702-fcaa14240824} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\Winlogon: [Shell] C:\Windows\System32\cmd.exe [345088 2010-11-21] (Microsoft Corporation) NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\dmNen\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\dmNen\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit )

Otwórz notatnik systemowy i wklej:

ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll -> Brak pliku
AlternateDataStreams: C:\ProgramData\Microsoft:1HpGaBeqmAD5cTinjYY7suS3 [2184]
AlternateDataStreams: C:\ProgramData\Microsoft:hE5bKKu5PQmRDSgOi4JDOZFK [2322]
AlternateDataStreams: C:\ProgramData\Microsoft:UafJNZ5nRsCk3vFHCC [2172]
AlternateDataStreams: C:\Users\dmNen\AppData\Local\DOycCMwx3jjNzP:pecjhhohiQJTMjL6Yk [1978]
AlternateDataStreams: C:\Users\dmNen\AppData\Local\xudI8yzch:Yo2yIfmnjnIcO0wO8I6JOkyc [2104]
HKLM-x32\...\Run: [SDTray] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\MountPoints2: {0eacd0b2-762a-11e7-bc4b-fcaa14240824} - H:\startme.exe
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\MountPoints2: {75adcb9b-58ad-11e7-b702-fcaa14240824} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3728886683-294045490-3694822398-1000\...\Winlogon: [Shell] C:\Windows\System32\cmd.exe [345088 2010-11-21] (Microsoft Corporation) NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\dmNen\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\dmNen\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit )

Managed to! The command line works when the desktop starts up, then cmd is turned on, but the Library folder no longer, so it's ok What was the reason? And of course, thank you for your help.

Like what? Infection.

Insert new logs from FRST, from scanning.

Attach logs.

Odinstaluj SpyBot.

Wykonaj Fixlist.txt dla FRST:
Task: {1E0513C6-CE77-4432-8166-29B4B5E022B0} - C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate -nolegacy
Task: {1E0513C6-CE77-4432-8166-29B4B5E022B0} - C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(2): %windir%\system32\rundll32.exe -> appraiser.dll,DoScheduledTelemetryRun
Task: {3C5D9430-D7F4-4ADE-B93E-143422BEDE9F} - C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate
Task: {3C5D9430-D7F4-4ADE-B93E-143422BEDE9F} - C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(2): %windir%\system32\rundll32.exe -> invagent.dll,RunUpdate
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
2017-11-20 05:11 - 2017-11-20 16:39 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-11-20 05:11 - 2017-11-20 16:39 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-11-20 05:11 - 2017-11-20 05:11 - 000000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2017-11-20 05:10 - 2017-11-20 05:10 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\dmNen\Downloads\spybotsd-2.6.46.exe
2017-11-20 05:09 - 2017-11-20 05:09 - 000000000 ____D C:\ProgramData\adaware

Subsequent logs after repair.

Is it still cmd during the start?

Nothing starts. It turns out that the problem solved, it was without format
Thanks a lot!