about:blank (Peida) - Computerhilfen.de

Kennt jemand von euch das Problem, wenn beim Öffnen des Internetexplorers nicht die eigentliche Startseite, sondern "about:blank" geöffnet wird. Es erscheint dann irgendeine amerikanische Suchseite oder sowas.
Hab schon alles versucht, diesen Dreck zu entfernen, diverse Adaware-Programme, Hijackfix, Cwshredder, Antivirensoftware... einfach alles. Es kommt immer wieder. Vielleicht hat von euch jemand Erfahrung damit.
Freue mich über jeden Lösungsvorschlag!

Hier mein Logfile:

Logfile of HijackThis v1.98.2
Scan saved at 11:59:54, on 17.09.04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\MDM.EXE
C:\PROGRAMME\GEMEINSAME DATEIEN\SYMANTEC SHARED\CCSETMGR.EXE
C:\PROGRAMME\GEMEINSAME DATEIEN\SYMANTEC SHARED\CCEVTMGR.EXE
C:\WINDOWS\NTJW.EXE
C:\WINDOWS\SYSTEM\NETTI32.EXE
C:\WINDOWS\SYSTEM\JAVART.EXE
C:\WINDOWS\IEPD32.EXE
C:\WINDOWS\MFCOU.EXE
C:\WINDOWS\SDKFF32.EXE
C:\WINDOWS\SYSXQ.EXE
C:\WINDOWS\SDKNH32.EXE
C:\WINDOWS\MFCGE32.EXE
C:\WINDOWS\D3OJ32.EXE
C:\WINDOWS\SYSTEM\NETGU.EXE
C:\WINDOWS\IEMJ32.EXE
C:\WINDOWS\SYSTEM\WINGA.EXE
C:\WINDOWS\SYSTEM\SDKBP32.EXE
C:\WINDOWS\SYSTEM\WINGC32.EXE
C:\WINDOWS\SYSPA32.EXE
C:\WINDOWS\SYSTEM\MSUL.EXE
C:\WINDOWS\SYSTEM\MFCZZ.EXE
C:\WINDOWS\WINZP32.EXE
C:\WINDOWS\NTFR32.EXE
C:\WINDOWS\MSQT32.EXE
C:\WINDOWS\SYSTEM\MFCLP32.EXE
C:\WINDOWS\WINKH.EXE
C:\WINDOWS\APPPZ.EXE
C:\WINDOWS\MSTV.EXE
C:\WINDOWS\IEXY32.EXE
C:\WINDOWS\SYSTEM\ATLDB32.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\SYSTEM\PDESK.EXE
C:\WINDOWS\STARTER.EXE
C:\PROGRAMME\LOGITECH\ITOUCH\ITOUCH.EXE
C:\PROGRAMME\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\PROGRAMME\GEMEINSAME DATEIEN\SYMANTEC SHARED\CCAPP.EXE
C:\WINDOWS\SYSTEM\VBR.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\PROGRAMME\LOGITECH\ITOUCH\KBDTRAY.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAMME\MICROSOFT OFFICE\OFFICE\1031\MSOFFICE.EXE
C:\WINDOWS\NTFR32.EXE
C:\WINDOWS\APPIF32.EXE
C:\WINDOWS\NTFR32.EXE
C:\WINDOWS\ADDUK32.EXE
C:\WINDOWS\ADDUK32.EXE
C:\WINDOWS\SYSTEM\SYSWK32.EXE
C:\WINDOWS\ADDUK32.EXE
C:\WINDOWS\ATLWJ32.EXE
C:\WINDOWS\ATLWJ32.EXE
C:\WINDOWS\ATLIP.EXE
C:\PROGRAMME\INTERNET EXPLORER\IEXPLORE.EXE
C:\WINDOWS\ATLWJ32.EXE
C:\WINDOWS\IPMR.EXE
C:\WINDOWS\SYSTEM\SYSWK32.EXE
C:\WINDOWS\SYSTEM\JAVAAP32.EXE
C:\WINDOWS\NTFR32.EXE
C:\WINDOWS\SYSTEM\MFCXN.EXE
C:\WINDOWS\SYSTEM\MFCXN.EXE
C:\WINDOWS\ADDUK32.EXE
C:\WINDOWS\ADDUK32.EXE
C:\PROGRAMME\INTERNET EXPLORER\IEXPLORE.EXE
C:\WINDOWS\SYSTEM\MFCXN.EXE
C:\WINDOWS\TEMP\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAMME\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton AntiVirus\NavShExt.dll
O2 - BHO: Class - {6A8FA9C0-1C40-8A47-8010-34264B4D7631} - C:\WINDOWS\APITQ32.DLL
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [Matrox Powerdesk] C:\WINDOWS\SYSTEM\PDesk.exe /Autolaunch
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\PROGRA~1\LOGITECH\ITOUCH\iTouch.exe
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\LOGITECH\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Winad Client] C:\PROGRAM FILES\WINAD CLIENT\WINAD.EXE
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [Machine Debug Manager] C:\WINDOWS\SYSTEM\MDM.EXE
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Programme\Gemeinsame Dateien\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [ccSetMgr] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe"
O4 - HKLM\..\RunServices: [ccEvtMgr] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe"
O4 - HKLM\..\RunServices: [NETTI32.EXE] C:\WINDOWS\SYSTEM\NETTI32.EXE
O4 - HKLM\..\RunServices: [SDKFF32.EXE] C:\WINDOWS\SDKFF32.EXE
O4 - HKLM\..\RunServices: [MFCOU.EXE] C:\WINDOWS\MFCOU.EXE
O4 - HKLM\..\RunServices: [IEPD32.EXE] C:\WINDOWS\IEPD32.EXE
O4 - HKLM\..\RunServices: [MFCGE32.EXE] C:\WINDOWS\MFCGE32.EXE
O4 - HKLM\..\RunServices: [SDKNH32.EXE] C:\WINDOWS\SDKNH32.EXE
O4 - HKLM\..\RunServices: [NTJW.EXE] C:\WINDOWS\NTJW.EXE
O4 - HKLM\..\RunServices: [JAVART.EXE] C:\WINDOWS\SYSTEM\JAVART.EXE
O4 - HKLM\..\RunServices: [SYSXQ.EXE] C:\WINDOWS\SYSXQ.EXE
O4 - HKLM\..\RunServices: [IEMJ32.EXE] C:\WINDOWS\IEMJ32.EXE
O4 - HKLM\..\RunServices: [D3OJ32.EXE] C:\WINDOWS\D3OJ32.EXE
O4 - HKLM\..\RunServices: [WINGA.EXE] C:\WINDOWS\SYSTEM\WINGA.EXE
O4 - HKLM\..\RunServices: [SDKBP32.EXE] C:\WINDOWS\SYSTEM\SDKBP32.EXE
O4 - HKLM\..\RunServices: [NETGU.EXE] C:\WINDOWS\SYSTEM\NETGU.EXE
O4 - HKLM\..\RunServices: [WINGC32.EXE] C:\WINDOWS\SYSTEM\WINGC32.EXE
O4 - HKLM\..\RunServices: [SYSPA32.EXE] C:\WINDOWS\SYSPA32.EXE
O4 - HKLM\..\RunServices: [MSUL.EXE] C:\WINDOWS\SYSTEM\MSUL.EXE
O4 - HKLM\..\RunServices: [MFCZZ.EXE] C:\WINDOWS\SYSTEM\MFCZZ.EXE
O4 - HKLM\..\RunServices: [WINZP32.EXE] C:\WINDOWS\WINZP32.EXE
O4 - HKLM\..\RunServices: [WINKH.EXE] C:\WINDOWS\WINKH.EXE
O4 - HKLM\..\RunServices: [NTFR32.EXE] C:\WINDOWS\NTFR32.EXE
O4 - HKLM\..\RunServices: [MSQT32.EXE] C:\WINDOWS\MSQT32.EXE
O4 - HKLM\..\RunServices: [MFCLP32.EXE] C:\WINDOWS\SYSTEM\MFCLP32.EXE
O4 - HKLM\..\RunServices: [APPPZ.EXE] C:\WINDOWS\APPPZ.EXE
O4 - HKLM\..\RunServices: [MSTV.EXE] C:\WINDOWS\MSTV.EXE
O4 - HKLM\..\RunServices: [IEXY32.EXE] C:\WINDOWS\IEXY32.EXE
O4 - HKLM\..\RunServices: [ATLDB32.EXE] C:\WINDOWS\SYSTEM\ATLDB32.EXE
O4 - HKLM\..\RunServices: [APPIF32.EXE] C:\WINDOWS\APPIF32.EXE
O4 - HKLM\..\RunServices: [ADDUK32.EXE] C:\WINDOWS\ADDUK32.EXE
O4 - HKLM\..\RunServices: [SYSWK32.EXE] C:\WINDOWS\SYSTEM\SYSWK32.EXE
O4 - HKLM\..\RunServices: [ATLWJ32.EXE] C:\WINDOWS\ATLWJ32.EXE
O4 - HKLM\..\RunServices: [ATLIP.EXE] C:\WINDOWS\ATLIP.EXE
O4 - HKLM\..\RunServices: [IPMR.EXE] C:\WINDOWS\IPMR.EXE
O4 - HKLM\..\RunServices: [JAVAAP32.EXE] C:\WINDOWS\SYSTEM\JAVAAP32.EXE
O4 - HKLM\..\RunServices: [MFCXN.EXE] C:\WINDOWS\SYSTEM\MFCXN.EXE
O4 - HKCU\..\Run: [Vpe] C:\WINDOWS\SYSTEM\vbr.exe
O4 - Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: MSN Messenger Service - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\MSMSGS.EXE
O9 - Extra button: Recherche-Assistent - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Reference 2001\EROProj.dll
O16 - DPF: {DCF96DA0-ED33-40FF-B83E-AB7011C2BA7E} (Dialer Class) - http://66.230.134.150/de/sye/o31/acab.cab
O16 - DPF: {f760cb9e-c60f-4a89-890e-fae8b849493e} -
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_file.php?bt=ie&p=9eafaeb2a8e2a9518112bc6e0cedee1552dd4ecb1dd748bcf1cf4d42ced1394245b14c137e17952f3a6abadc3d36297b2b37:b70ac5aa8ec48e2e58a29296baabe1d6
O16 - DPF: {78A730D4-0DF3-4B65-8DD2-BFCD433CEE30} - http://www.surfsecret.com/inst/PPInstaller.exe
O17 - HKLM\System\CCS\Services\VxD\MSTCP: NameServer = 195.70.224.61,212.152.166.18

Antworten zu about:blank:

Peida
Gast

Re: about:blank

« Antwort #1 am: 17.09.04, 11:57:28 »

Sorry, hab im falschen Topic gepostet, ich hoffe es ist mir verziehen...

Moderator informieren

Dr.Nope (55.005)
Global Moderator

1250x Beste Antwort

2593x "Danke"

Re: about:blank

« Antwort #2 am: 17.09.04, 18:58:21 »

Hat dir diese Antwort geholfen?

http://www.computerhilfen.de/hilfen-17-30578-0.html

Moderator informieren

Nighty
Gast

Re: about:blank

« Antwort #3 am: 17.09.04, 19:18:09 »

Nich schlecht, son Log hab ich schon lang nich mehr gesehn *gg

Folgende Fixen + dazugehörige Dateien im abges.-Modus löschen:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system\lworl.dll/sp.html#29126
R3 - Default URLSearchHook is missing

O2 - BHO: Class - {6A8FA9C0-1C40-8A47-8010-34264B4D7631} - C:\WINDOWS\APITQ32.DLL

O4 - HKLM\..\Run: [Winad Client] C:\PROGRAM FILES\WINAD CLIENT\WINAD.EXE

O4 - HKLM\..\RunServices: [NETTI32.EXE] C:\WINDOWS\SYSTEM\NETTI32.EXE
O4 - HKLM\..\RunServices: [SDKFF32.EXE] C:\WINDOWS\SDKFF32.EXE
O4 - HKLM\..\RunServices: [MFCOU.EXE] C:\WINDOWS\MFCOU.EXE
O4 - HKLM\..\RunServices: [IEPD32.EXE] C:\WINDOWS\IEPD32.EXE
O4 - HKLM\..\RunServices: [MFCGE32.EXE] C:\WINDOWS\MFCGE32.EXE
O4 - HKLM\..\RunServices: [SDKNH32.EXE] C:\WINDOWS\SDKNH32.EXE
O4 - HKLM\..\RunServices: [NTJW.EXE] C:\WINDOWS\NTJW.EXE
O4 - HKLM\..\RunServices: [JAVART.EXE] C:\WINDOWS\SYSTEM\JAVART.EXE
O4 - HKLM\..\RunServices: [SYSXQ.EXE] C:\WINDOWS\SYSXQ.EXE
O4 - HKLM\..\RunServices: [IEMJ32.EXE] C:\WINDOWS\IEMJ32.EXE
O4 - HKLM\..\RunServices: [D3OJ32.EXE] C:\WINDOWS\D3OJ32.EXE
O4 - HKLM\..\RunServices: [WINGA.EXE] C:\WINDOWS\SYSTEM\WINGA.EXE
O4 - HKLM\..\RunServices: [SDKBP32.EXE] C:\WINDOWS\SYSTEM\SDKBP32.EXE
O4 - HKLM\..\RunServices: [NETGU.EXE] C:\WINDOWS\SYSTEM\NETGU.EXE
O4 - HKLM\..\RunServices: [WINGC32.EXE] C:\WINDOWS\SYSTEM\WINGC32.EXE
O4 - HKLM\..\RunServices: [SYSPA32.EXE] C:\WINDOWS\SYSPA32.EXE
O4 - HKLM\..\RunServices: [MSUL.EXE] C:\WINDOWS\SYSTEM\MSUL.EXE
O4 - HKLM\..\RunServices: [MFCZZ.EXE] C:\WINDOWS\SYSTEM\MFCZZ.EXE
O4 - HKLM\..\RunServices: [WINZP32.EXE] C:\WINDOWS\WINZP32.EXE
O4 - HKLM\..\RunServices: [WINKH.EXE] C:\WINDOWS\WINKH.EXE
O4 - HKLM\..\RunServices: [NTFR32.EXE] C:\WINDOWS\NTFR32.EXE
O4 - HKLM\..\RunServices: [MSQT32.EXE] C:\WINDOWS\MSQT32.EXE
O4 - HKLM\..\RunServices: [MFCLP32.EXE] C:\WINDOWS\SYSTEM\MFCLP32.EXE
O4 - HKLM\..\RunServices: [APPPZ.EXE] C:\WINDOWS\APPPZ.EXE
O4 - HKLM\..\RunServices: [MSTV.EXE] C:\WINDOWS\MSTV.EXE
O4 - HKLM\..\RunServices: [IEXY32.EXE] C:\WINDOWS\IEXY32.EXE
O4 - HKLM\..\RunServices: [ATLDB32.EXE] C:\WINDOWS\SYSTEM\ATLDB32.EXE
O4 - HKLM\..\RunServices: [APPIF32.EXE] C:\WINDOWS\APPIF32.EXE
O4 - HKLM\..\RunServices: [ADDUK32.EXE] C:\WINDOWS\ADDUK32.EXE
O4 - HKLM\..\RunServices: [SYSWK32.EXE] C:\WINDOWS\SYSTEM\SYSWK32.EXE
O4 - HKLM\..\RunServices: [ATLWJ32.EXE] C:\WINDOWS\ATLWJ32.EXE
O4 - HKLM\..\RunServices: [ATLIP.EXE] C:\WINDOWS\ATLIP.EXE
O4 - HKLM\..\RunServices: [IPMR.EXE] C:\WINDOWS\IPMR.EXE
O4 - HKLM\..\RunServices: [JAVAAP32.EXE] C:\WINDOWS\SYSTEM\JAVAAP32.EXE
O4 - HKLM\..\RunServices: [MFCXN.EXE] C:\WINDOWS\SYSTEM\MFCXN.EXE
O4 - HKCU\..\Run: [Vpe] C:\WINDOWS\SYSTEM\vbr.exe

O16 - DPF: {DCF96DA0-ED33-40FF-B83E-AB7011C2BA7E} (Dialer Class) - http://66.230.134.150/de/sye/o31/acab.cab
O16 - DPF: {f760cb9e-c60f-4a89-890e-fae8b849493e} -
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_file.php?bt=ie&p=9eafaeb2a8e2a9518112bc6e0cedee1552dd4ecb1dd748bcf1cf4d42ced1394245b14c137e17952f3a6abadc3d36297b2b37:b70ac5aa8ec48e2e58a29296baabe1d6
O16 - DPF: {78A730D4-0DF3-4B65-8DD2-BFCD433CEE30} - http://www.surfsecret.com/inst/PPInstaller.exe

Am besten danach escan im abgesicherten-Modus laufen lassen.

Gruß

Moderator informieren

about:blank

Antworten zu about:blank:

Re: about:blank

Mehr zu about:blank