Forum » Pomoč in nasveti » Problem z odpiranjem strani
Problem z odpiranjem strani
house ::
Pozdrav! Zadnje 3 dni imam sledeč problem: odprem Firefox in nekatere strani mi odpre (npr. youtube, msn.com), ostalo pa ne: Google odpre, samo tako dolgo melje in nikoli ne pridem do zadetkov, wordpress ne odpre, 24ur, rtvslo tudi ne,...! Potem kar naenkrat - ne vem zakaj in kje je zanka - začne spet vse delati... Ob ponovnem zagonu računalnika se vse spet sesuje! Kje je problem? Spyware in Ad-aware ne pomagata! Antivirusni program pa tudi imam! Občasno mi vrže ven tudi kakšen popup na temo spyware zaščite ipd.! Hvala za pomoč in lp
Tilen ::
Switch/router? Statični IP?
413120536c6f76656e696a612c20642e642e
Zgodovina sprememb…
- spremenil: Tilen ()
farko ::
ne ne namesti si antispaware preišči zbši šarvare pomaga pa tudi ashampo optimizer da ti prečisti in optimizira pa dela normalno naprej.Pač čistilni servis vsakega toliko časa.
farko
Pimoz ::
dej probi z hijackthis pa dej log sm gor... k jst sm meu podobn problem pa mi je vn metal dva progija iz system32 :/
house ::
Hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:22:34, on 20.5.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Ahead\InCD\InCDsrv.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\a-squared Anti-Malware\a2service.exe
D:\Program Files\Common Files\LightScribe\LSSrvc.exe
d:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
D:\Program Files\Eset\nod32krn.exe
D:\WINDOWS\System32\nvsvc32.exe
C:\product\10.1.3.1\OraBPEL_1\Mobile\Sdk\BIN\olsv2040.exe
d:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
d:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\wdfmgr.exe
D:\WINDOWS\System32\alg.exe
D:\Program Files\TortoiseSVN\bin\TSVNCache.exe
D:\Program Files\Analog Devices\Core\smax4pnp.exe
D:\Program Files\Eset\nod32kui.exe
D:\Program Files\Ahead\InCD\InCD.exe
D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\WINDOWS\system32\rundll32.exe
D:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe
D:\WINDOWS\system32\Rundll32.exe
D:\Program Files\Messenger\msmsgs.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\MultiKeyboard Driver\KbdDrv.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\WINDOWS\explorer.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
D:\WINDOWS\System32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=...
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - D:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] D:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] D:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [d6a1e026] rundll32.exe "D:\WINDOWS\system32\ewplfbfa.dll",b
O4 - HKLM\..\Run: [a-squared] "D:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe" /d=60
O4 - HKLM\..\Run: [BM59b4b117] Rundll32.exe "D:\WINDOWS\system32\gctuepij.dll",s
O4 - HKCU\..\Run: [MessengerPlus3] "D:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Octoshape Streaming Services] "D:\Program Files\Octoshape Streaming Services\---\OctoshapeClient.exe" -inv:bootrun
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SchOpomnik] D:\Program Files\SchoolGrad 2.0\SchOpom.exe /startup
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: MutiKeyboard Driver.lnk = D:\Program Files\MultiKeyboard Driver\KbdDrv.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/ms...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi...
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So...
O17 - HKLM\System\CCS\Services\Tcpip\..\{D5DF3D1F-4B52-4A4D-ACBF-E5FC216E028A}: NameServer = 193.189.160.23 193.189.160.13
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - D:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - D:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - D:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - D:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Oracle Lite Multiuser Service (OliteService) - Oracle Corporation - C:\product\10.1.3.1\OraBPEL_1\Mobile\Sdk\BIN\olsv2040.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - D:\PROGRA~1\SiOL\ADSL\app\pppoeservice.exe (file missing)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:22:34, on 20.5.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Ahead\InCD\InCDsrv.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\a-squared Anti-Malware\a2service.exe
D:\Program Files\Common Files\LightScribe\LSSrvc.exe
d:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
D:\Program Files\Eset\nod32krn.exe
D:\WINDOWS\System32\nvsvc32.exe
C:\product\10.1.3.1\OraBPEL_1\Mobile\Sdk\BIN\olsv2040.exe
d:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
d:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\wdfmgr.exe
D:\WINDOWS\System32\alg.exe
D:\Program Files\TortoiseSVN\bin\TSVNCache.exe
D:\Program Files\Analog Devices\Core\smax4pnp.exe
D:\Program Files\Eset\nod32kui.exe
D:\Program Files\Ahead\InCD\InCD.exe
D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\WINDOWS\system32\rundll32.exe
D:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe
D:\WINDOWS\system32\Rundll32.exe
D:\Program Files\Messenger\msmsgs.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\MultiKeyboard Driver\KbdDrv.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\WINDOWS\explorer.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
D:\WINDOWS\System32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=...
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - D:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] D:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] D:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [d6a1e026] rundll32.exe "D:\WINDOWS\system32\ewplfbfa.dll",b
O4 - HKLM\..\Run: [a-squared] "D:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe" /d=60
O4 - HKLM\..\Run: [BM59b4b117] Rundll32.exe "D:\WINDOWS\system32\gctuepij.dll",s
O4 - HKCU\..\Run: [MessengerPlus3] "D:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Octoshape Streaming Services] "D:\Program Files\Octoshape Streaming Services\---\OctoshapeClient.exe" -inv:bootrun
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SchOpomnik] D:\Program Files\SchoolGrad 2.0\SchOpom.exe /startup
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: MutiKeyboard Driver.lnk = D:\Program Files\MultiKeyboard Driver\KbdDrv.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/ms...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi...
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/Mi...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/So...
O17 - HKLM\System\CCS\Services\Tcpip\..\{D5DF3D1F-4B52-4A4D-ACBF-E5FC216E028A}: NameServer = 193.189.160.23 193.189.160.13
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - D:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - D:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - D:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - D:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Oracle Lite Multiuser Service (OliteService) - Oracle Corporation - C:\product\10.1.3.1\OraBPEL_1\Mobile\Sdk\BIN\olsv2040.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - D:\PROGRA~1\SiOL\ADSL\app\pppoeservice.exe (file missing)
Pimoz ::
V oči padeta tale dva vnosa:
D:\WINDOWS\system32\ewplfbfa.dll
D:\WINDOWS\system32\gctuepij.dll
Vbistvu sem imel pred časom isti problem. Vodiča za odstranitev na internetu nisem našel saj se *.dll datoteki poimenujeti na random. Izbrisal sem jih v safe modu pa ni pomagalo. Poskušal sem ju odstraniti s 1001 anti??? pogramom pa noben ne prepozna. Sem pa 99%, da to je virus. Pomagala mi je samo ponovna naložitev Windowsev. Prenaša se pa ta virus mislim da z USB ključki.
D:\WINDOWS\system32\ewplfbfa.dll
D:\WINDOWS\system32\gctuepij.dll
Vbistvu sem imel pred časom isti problem. Vodiča za odstranitev na internetu nisem našel saj se *.dll datoteki poimenujeti na random. Izbrisal sem jih v safe modu pa ni pomagalo. Poskušal sem ju odstraniti s 1001 anti??? pogramom pa noben ne prepozna. Sem pa 99%, da to je virus. Pomagala mi je samo ponovna naložitev Windowsev. Prenaša se pa ta virus mislim da z USB ključki.
Duhec ::
Copy/Pejstaj vsebino ali pošlji celoten log fajl na Hijackovo stran pa ti bo takoj jasno !
HijackThis
HijackThis
ferguson ::
če ti tako nagaja pc potem gre verjetno za dokaj hude okužbe
drži e tega navodila in ziher bo le nekaj pomagalo
naloži program win xp manager za čiščenje registr azelo dober program
2spyware doctor
3 kaki avg
če še negre probaj z pando 2008 in če še negre formatiraj pc
ko boš skeniral disk izklopi omreni kabel in probaj še z antivirusom za internetnega črva
drži e tega navodila in ziher bo le nekaj pomagalo
naloži program win xp manager za čiščenje registr azelo dober program
2spyware doctor
3 kaki avg
če še negre probaj z pando 2008 in če še negre formatiraj pc
ko boš skeniral disk izklopi omreni kabel in probaj še z antivirusom za internetnega črva
Zgodovina sprememb…
- spremenil: ferguson ()
Vredno ogleda ...
| Tema | Ogledi | Zadnje sporočilo | |
|---|---|---|---|
| Tema | Ogledi | Zadnje sporočilo | |
| » | Regedit in brisanje ključaOddelek: Pomoč in nasveti | 4283 (4074) | Silvano |
| » | Optimizacija Win XPOddelek: Operacijski sistemi | 2921 (2660) | jan01 |
| » | PC se ob startu ne odziva 10 min ?Disk melje?Virus?Oddelek: Pomoč in nasveti | 2268 (1874) | Racunalnik |
| » | Kako odstraniti Winload.exe...Oddelek: Pomoč in nasveti | 2379 (2119) | vratar |
| » | zajedalski spywareOddelek: Operacijski sistemi | 2486 (2153) | hunter01 |