Zasekaný ntb HP 635 Vyřešeno

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O2 - BHO: Avira SearchFree Toolbar plus Web Protection BHO - {41564952-412D-5637-00A7-7A786E7484D7} - (no file)
O3 - Toolbar: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')

c:\programdata\Kaspersky Lab Setup Files
c:\programdata\NortonInstaller
zkus smazat tyto označené složky a dej vědět , zda se smazaly.

c:\programdata\PDFC---znáš tento program?

Stáhni si z některého odkazu SystemLook
SystemLook (32-bit)
http://jpshortstuff.247fixes.com/SystemLook.exe

SystemLook (64-bit)
http://jpshortstuff.247fixes.com/SystemLook_x64.exe

a ulož si ho na plochu.

Poklepej na stažený SystemLook , zkopíruj do hlavního text. okna tento následující text:

Kód: Vybrat vše

:filefind
TSWbPrxy.exe.*


Klikni na Look ke startu skenu. Když program skončí objeví se v poznámkovém bloku zpráva skenu. Zkopíruj sem celý jeho obsah. Log se také nachází na ploše pod názvem SystemLook.txt.


poznamenám si jen script , nic s ním zatím nedělej:

Kód: Vybrat vše

Registry::
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"=-
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000000

[Reklama]

[MrAnnix99]

Takže, fix už mám, ty dvě složky se v pohodě smazaly a ten PDFC neznám, a ten log:

SystemLook 30.07.11 by jpshortstuff
Log created at 20:36 on 02/09/2013 by JAKUB
Administrator - Elevation successful

========== filefind ==========

Searching for "TSWbPrxy.exe.*"
C:\Windows\System32\TSWbPrxy.exe --a---- 62976 bytes [08:40 01/07/2013] [08:40 01/07/2013] AE8535663AA64318D174CD7CA44ED947
C:\Windows\winsxs\amd64_microsoft-windows-t..alservices-webproxy_31bf3856ad364e35_6.1.7600.16385_none_8d6c9c807200865a\TSWbPrxy.exe --a---- 52224 bytes [00:16 14/07/2009] [01:39 14/07/2009] 14EC1DABC0A9B9D76EE4FFBA9FD1F2C1
C:\Windows\winsxs\amd64_microsoft-windows-t..alservices-webproxy_31bf3856ad364e35_7.1.7601.16398_none_80bbc151fa12e3b8\TSWbPrxy.exe --a---- 62976 bytes [08:40 01/07/2013] [08:40 01/07/2013] AE8535663AA64318D174CD7CA44ED947

-= EOF =-

[jaro3]

c:\programdata\PDFC koukni do tý složky , co tam je..

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\System32\TSWbPrxy.exe
C:\Windows\winsxs\amd64_microsoft-windows-t..alservices-webproxy_31bf3856ad364e35_7.1.7601.16398_none_80bbc151fa12e3b8\TSWbPrxy.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

zkus to najít , evidentně to tam je.

[MrAnnix99]

složka Patch a v ní nic není. https://www.virustotal.com/cs/file/e865 ... 378299983/

[jaro3]

ten VT to je tohle:
C:\Windows\System32\TSWbPrxy.exe ?

jaký patch??

[MrAnnix99]

Ne, ten druhý. Ne, jen složka a v ní nic není.

[jaro3]

c:\programdata\PDFC --složka je prázdná? Tak ji smaž.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Co problémy?

[MrAnnix99]

Žadné problémy, ale ani žádné změny.

[jaro3]

Spusť znovu HJT , klikni na "Open Misc Tool Section" , potom na "Open Unistall Manager"
Pak klikni na "Save List" , ulož si ho do dokumentů , pak zkopíruj celý jeho obsah a vlož sem,


Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.

[MrAnnix99]

"Sniper - Ghost Warrior 2"
µTorrent
20Dollars2Surf 1.1
7-Zip 9.20
Action!
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Photoshop CS6
Agatha Christie - Peril at End House
AION Free-to-Play version 1.0
AMD System Monitor
Any GIF Animator 2.7
APB Reloaded
Apple Application Support
Apple Software Update
Application Profiles
Avira Free Antivirus
Avira SearchFree Toolbar plus Web Protection
AVStreamer Server 1.14
Baku
Bandicam
Bandisoft MPEG-1 Decoder
Battlefield 1942™
Battlefield 2(TM)
Bejeweled 2 Deluxe
Bejeweled 3
Blackhawk Striker 2
Blasterball 3
BlueStacks Notification Center
Bounce Symphony
Build-a-lot 2
Cake Mania
Catalyst Control Center - Branding
Catalyst Control Center - Branding
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
CLEO v3.0.950
Clownfish for Skype
Combat Arms EU
CPU Časomíra 2.0
CrystalDiskInfo 5.6.1 Shizuku Edition
CyberLink YouCam
CyberLink YouCam
CZ SK IPTV v2.0.3
Czech Soccer Manager 2002 FE
D3DX10
DAEMON Tools Lite
Dead Rising 2
Dead Rising 2
Dead Space 3 CZ v1.0
Defraggler (remove only)
Diner Dash 2 Restaurant Rescue
Dora's World Adventure
Dxtory 2.0.108
Energy Star Digital Logo
ESET Online Scanner v3
ESU for Microsoft Windows 7 SP1
Euro Truck Simulator 2
Evernote v. 4.2.2
F1 2011 1.0
F1 Race Stars
Farm Frenzy
FATE - The Traitor Soul
Ferrari Virtual Race (remove only)
ffdshow v1.2.4422 [2012-04-09]
FiatECUScan
FIFA 13
FIFA 13 PC Scoreboard Switcher 0.3
Final Drive Nitro
FormatFactory 3.00
Fraps (remove only)
FreeHDSport TV
Full Uninstall version 2.0
Futuremark SystemInfo
GadgetPack (remove only)
Game Booster 3
Game Cam
Gameforge Live 1.0 "Legend"
Google Earth
Google Chrome
Google Talk Plugin
Google Update Helper
GPS-Navigace-Sygic-Aura-V11.2.6-Android-CZ-pln-verze version for Windows
GTA San Andreas
Haali Media Splitter
HD Tune Pro 4.50
HeavyLoad V3.2
Heroes & Generals
Hewlett-Packard ACLM.NET v1.2.1.1
Hitman Absolution
Hitman Blood Money
Hitman Sniper Challenge v1.0 / RePack by R.G. World Games
Hollywood FX Volumes 1-3
HP Customer Experience Enhancements
HP Documentation
HP Games
HP On Screen Display
HP Power Manager
HP Quick Launch
HP Setup
HP Software Framework
HP Support Assistant
Chuzzle Deluxe
Java 7 Update 25
Java(TM) 6 Update 22
L.A. Noire
LogMeIn Hamachi
LogMeIn Hamachi
Mafia II Kompletní Edice verze 1.4
Mah Jong Medley
Malwarebytes Anti-Malware verze 1.75.0.1300
Man City FC
Media Player Codec Pack 4.2.4
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_CRT_x86
Minecraft1.6.2
Mirror's Edge™
Mixxx 1.11.0
MotoGP(TM)13
Mozilla Firefox 20.0.1 (x86 cs)
Mozilla Maintenance Service
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MTA:SA v1.3.2
Mystery P.I. - Stolen in San Francisco
Namco All-Stars PAC-MAN
Need for Speed™ Most Wanted
Need For Speed™ World
NHL06 DL PC Demo
NHL™ 09
NVIDIA PhysX
OpenAL
Opera 12.15
Origin
Pando Media Booster
PAYDAY 2
Payday The Heist (c) OVERKILL Software version 1
PC Booster
PCMark 7
PCSX2 - Playstation 2 Emulator
PDF Complete Special Edition
PDF Settings CS6
Penguins!
Pinnacle Studio 16
Pinnacle Studio 16 - Install Manager
Pinnacle Studio 16 - Standard Content Pack
Plants vs. Zombies - Game of the Year
Poker Superstars III
Polar Bowler
Polar Golfer
Premium Pack Volumes 1-2
Prototype 2 verze 1.0.0.1.
PunkBuster Services
Qualcomm Atheros Driver Installation Program
Race Driver - GRID 2 1.0.82.5097
Rapture3D 2.5.1 Game
Razer Game Booster
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Realtek PCIE Card Reader
Recovery Manager
Rockstar Games Social Club
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
ShaunWhiteSnowboarding
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2)
SketchUp 8
Skype Click to Call
Skype™ 6.6
Sleeping Dogs v1.4
SlimDrivers
Slingo Supreme
SnadBoy's Revelation v2
Sniper Elite V2 1.0
Spec Ops The Line
SpeedFan (remove only)
Splash PRO EX
SSF Realism Mod
Steam
SWAT 4 1.1
System Requirements Lab CYRI
TeamSpeak 3 Client
TeamViewer 8
TechPowerUp GPU-Z
Test Drive Unlimited 2
Thread Manager 2.4.0.0
Tomb Raider version 5.1
Trials Evolution
Trials Evolution Gold Edition
Trials Evolution Gold Edition
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update Installer for WildTangent Games App
Uplay
Virtua Tennis 4™
Virtua Tennis 4™
Virtual Villagers 4 - The Tree of Life
VLC media player 2.0.8
War Thunder Launcher 1.0.1.246
WildTangent Games App (HP Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live Essentials
Windows Live Essentials
Windows Live Fotogaléria
Windows Live Fotogalerie
Windows Live Installer
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live UX Platform Language Pack
Windows Live UX Platform Language Pack
WinRAR 4.20 (32-bit)
WinZipper
x264vfw - H.264/MPEG-4 AVC codec (remove only)
Xobni Core
Xvid 1.2.2 final uninstall
Zuma Deluxe

A v tom WhoCrashed mi píše, ať popojedu kolečkem dolů na info okno a přečtu si report, ktetý tam není.

[jaro3]

Odinstaluj:
Java(TM) 6 Update 22

ale je , zkopíruj sem celou tu stránku.

[MrAnnix99]

Píše mi tam: Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

No valid crash dumps have been found on your computer