AW: Youtube kann nicht geöffnet werden
Habe mal ein Log mit Hijackthis erstellt. Kennt sich damit jemand vielleicht aus?
Habe mal ein Log mit Hijackthis erstellt. Kennt sich damit jemand vielleicht aus?
Follow along with the video below to see how to install our site as a web app on your home screen.
Anmerkung: This feature may not be available in some browsers.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:19:10, on 04.06.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\tsnp2uvc.exe
C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
C:\Program Files\EgisTec\VITAKEY\PdtWzd.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\****\jre6\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\EgisTec\VITAKEY\PwdBank.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Welcome to ALDI
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Welcome to ALDI
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O1 - Hosts: --
O1 - Hosts: 77.221.148.69 @MAIL.RU: ïî÷òà, íîâîñòè, ðàáîòà, ðàññûëêè, ðàçâëå÷åíèÿ. Ïî÷òà @MAIL.RU - áåñïëàòíàÿ ïî÷òà #1
O1 - Hosts: 77.221.148.69 mail.ru
O1 - Hosts: 77.221.148.69 www.vkontakte.ru
O1 - Hosts: 77.221.148.69 vkontakte.ru
O1 - Hosts: 77.221.148.69 ??????
O1 - Hosts: 77.221.148.69 yandex.ru
O1 - Hosts: 77.221.148.69 ßíäåêñ
O1 - Hosts: 77.221.148.69 ya.ru
O1 - Hosts: 77.221.148.69 ?????????????.ru - ????? ??????????????, ?????????????, ?????? ??????????? ? ?????? ??????
O1 - Hosts: 77.221.148.69 odnoklassniki.ru
O1 - Hosts: 77.221.148.69 Rambler
O1 - Hosts: 77.221.148.69 rambler.ru
O1 - Hosts: 77.221.148.69 Google
O1 - Hosts: 77.221.148.69 google.ru
O1 - Hosts: 77.221.148.69 ?????
O1 - Hosts: 77.221.148.69 narod.ru
O1 - Hosts: 77.221.148.69 uCoz - ?????????? ??????? ??? ???????? ?????? - ?????????? ??????????? ?????? ?????? ?????????
O1 - Hosts: 77.221.148.69 ucoz.ru
O1 - Hosts: 77.221.148.69 YouTube - Broadcast Yourself.
O1 - Hosts: 77.221.148.69 youtube.com
O1 - Hosts: 77.221.148.69 LiveJournal.com - Start a Free Blog / Journal Today
O1 - Hosts: 77.221.148.69 livejournal.com
O1 - Hosts: 77.221.148.69 YouTube - Broadcast Yourself.
O1 - Hosts: 77.221.148.69 youtube.ru
O1 - Hosts: 77.221.148.69 LiveInternet @ ??????????, ????????, ?????????????, ?????, ??????????, ??????
O1 - Hosts: 77.221.148.69 liveinternet.ru
O1 - Hosts: 77.221.148.69 ????????? LiveInternet
O1 - Hosts: 77.221.148.69 li.ru
O1 - Hosts: 77.221.148.69 google.com
O1 - Hosts: 77.221.148.69 RapidShare: Easy Filehosting
O1 - Hosts: 77.221.148.69 rapidshare.com
O1 - Hosts: 77.221.148.69 ÒÓÒ ÇÀÉÖÅ ÍÅÒ! Çäåñü ìóçûêà â mp3 áåñïëàòíî, ñêà÷àòü ìóçûêó áåñïëàòíî! ñêà÷àòü ôèëüìû îíëàéí, mp3 áåç ðåãèñòðàöèè, ñåêñ ôîðóì, ÷àò, ðàäèî, ðåéòèíã TOP100
O1 - Hosts: 77.221.148.69 zaycev.net
O1 - Hosts: 77.221.148.69 Yahoo!
O1 - Hosts: 77.221.148.69 yahoo.com
O1 - Hosts: 77.221.148.69 Wikipedia
O1 - Hosts: 77.221.148.69 wikipedia.org
O1 - Hosts: 77.221.148.69 Deposit Files
O1 - Hosts: 77.221.148.69 depositfiles.com
O1 - Hosts: 77.221.148.69 iFolder.ru ?????????? ??????? ?????? - ???????? ??????, ????? ??????? ????? ???????? (?????????????).
O1 - Hosts: 77.221.148.69 ifolder.ru
O1 - Hosts: 77.221.148.69 ÐîñÁèçíåñÊîíñàëòèíã - íîâîñòè, àêöèè, êóðñû âàëþò, ïîãîäà, äîëëàð, åâðî
O1 - Hosts: 77.221.148.69 rbc.ru
O1 - Hosts: 77.221.148.69 Íàöèîíàëüíûé áèòòîððåíò òðåêåð torrents.ru
O1 - Hosts: 77.221.148.69 torrents.ru
O1 - Hosts: 77.221.148.69 tfile.ru - áûñòðûé òîððåíò-òðåêåð
O1 - Hosts: 77.221.148.69 tfile.ru
O1 - Hosts: 77.221.148.69 Çíàêîìñòâà 24open.ru - áåñïëàòíûé ñàéò çíàêîìñòâ, áåñïëàòíûå çíàêîìñòâà â Ìîñêâå, Ïèòåðå è äðóãèõ ãîðîäàõ, ìîáèëüíûå çíàêîìñòâà. Çíàêîìñòâà è îáùåíèå äëÿ òåõ, êòî õî÷åò ïîçíàêîìèòüñÿ ñ äåâóøêîé èëè ìóæ÷èíîé. Òîëüêî ðåàëüíûå çíàêîìñòâà
O1 - Hosts: 77.221.148.69 24open.ru
O1 - Hosts: 77.221.148.69 www.forum.kaspersky.com
O1 - Hosts: 77.221.148.69 forum.kaspersky.com
O1 - Hosts: 77.221.148.69 www.forum.kaspersky.ru
O1 - Hosts: 77.221.148.69 forum.kaspersky.ru
O1 - Hosts: 77.221.148.69 kaspersky.ru
O1 - Hosts: 77.221.148.69 Fishki.Net - Ñàéò Õîðîøåãî Íàñòðîåíèÿ
O1 - Hosts: 77.221.148.69 fishki.net
O1 - Hosts: 77.221.148.69 www.beon.ru
O1 - Hosts: 77.221.148.69 beon.ru
O1 - Hosts: 77.221.148.69 Ïî÷òà FREEMAIL óêðàèíñêàÿ ýëåêòðîííàÿ ïî÷òà ãîäà. Ñîçäàòü e-mail íà ukr.net
O1 - Hosts: 77.221.148.69 freemail.ukr.net
O1 - Hosts: 77.221.148.69 hotmail.com
O1 - Hosts: 77.221.148.69 Sign In
O1 - Hosts: 77.221.148.69 msn.com
O1 - Hosts: 77.221.148.69 www.ru.msn.com
O1 - Hosts: 77.221.148.69 ru.msn.com
O1 - Hosts: 77.221.148.69 live.com
O1 - Hosts: 77.221.148.69 Last.fm - ?????? ?????????? ?????? ?? ????????-????? ? ?????????? ??????? ???????? ??????
O1 - Hosts: 77.221.148.69 lastfm.ru
O1 - Hosts: 77.221.148.69 ????????? ???????? QIP: ?????, ?????, ??????, ??????, ??????????, ?????, ????????, ?????, ????, ????????, ????????, ????? ? ????????
O1 - Hosts: 77.221.148.69 start.qip.ru
O1 - Hosts: 77.221.148.69 ?????????????????? ?????? 02.ru - ??????? ????????
O1 - Hosts: 77.221.148.69 02.ru
O1 - Hosts: 77.221.148.69 6008 sms Служба поддержи абонентского номера
O1 - Hosts: 77.221.148.69 6008help.ru
O1 - Hosts: 77.221.148.69 www.help.goldfon.ru
O1 - Hosts: 77.221.148.69 help.goldfon.ru
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ****(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\****\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [tsnp2uvc] C:\Windows\tsnp2uvc.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\HomeCinema\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\YouCam" update "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [VitaKeyPdtWzd] C:\Program Files\EgisTec\VITAKEY\PdtWzd.exe
O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\GoogleEULA\EULALauncher.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BVRPLiveUpdate] C:\Program Files\Avanquest update\Engine\Setup.exe -s /PATCH,/SRCUPDATEC:\PROGRA~2\SONYER~1\SONYER~1\LIVEUP~1\LISTOF~1.DAT
O4 - HKLM\..\Run: [Sun****UpdateSched] "C:\Program Files\****\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - eBay: Neue und gebrauchte Elektronikartikel, Autos, Kleidung, Sammlerstücke, Sportartikel und mehr ? alles zu günstigen Preisen (file missing)
O9 - Extra 'Tools' menuitem: eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - eBay: Neue und gebrauchte Elektronikartikel, Autos, Kleidung, Sammlerstücke, Sportartikel und mehr ? alles zu günstigen Preisen (file missing)
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\EgisTec\VITAKEY\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\EgisTec\VITAKEY\PwdBank.exe
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in &Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - eBay: Neue und gebrauchte Elektronikartikel, Autos, Kleidung, Sammlerstücke, Sportartikel und mehr ? alles zu günstigen Preisen (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - eBay: Neue und gebrauchte Elektronikartikel, Autos, Kleidung, Sammlerstücke, Sportartikel und mehr ? alles zu günstigen Preisen (file missing) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C89345ED-110A-4140-8997-576A83E2F234}: NameServer = 169.198.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{F81022F3-4D33-4DF9-B9EE-674FC2D45A53}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir Personal - Free Antivirus Planer (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: EgisTec Service (IGBASVC) - Unknown owner - C:\Program Files\EgisTec\VITAKEY\BASVC.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Sceneo PVR Service (srvcPVR) - Buhl Data Service GmbH - C:\Program Files\Sceneo\AbsolutTV\Services\PVR\PVRService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
--
End of file - 13049 bytes
... Seit dem läuft bei mir unter Firefox auch das Addon "NoScript". Es ist zwar am Anfang etwas umständlich den bekannt ungefährlichen Seiten die Ausführung von Scripten zu erlauben, aber das Plus an Sicherheit ist es mir wert.