Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojans Please Help


  • Please log in to reply
3 replies to this topic

#1 janniiie

janniiie

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:33 PM

Posted 18 November 2007 - 09:20 AM

Trojan.Virtumonde,
Trojan-Clicker.Small.JF,
Highjacker.Affiliated_With_Browser_Highjacking,
Spyware.Known_Bad_Sites and one more,
Trojan.OWS

Where do we begin? I have windows XP home edition-(Pulling my hair out) I have windows xp home and emachines desktop pc






I uploaded:
Trend Micro HighJack This:
combo fix log:
Trend Micro HighJack This again:

Attached Files



BC AdBot (Login to Remove)

 


m

#2 janniiie

janniiie
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:33 PM

Posted 19 November 2007 - 10:04 PM

:thumbsup: Thanks for all your help, your a life saver!!

Edited by janniiie, 19 November 2007 - 10:09 PM.


#3 janniiie

janniiie
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:33 PM

Posted 19 November 2007 - 10:08 PM

i ran vundo fix and here is a report it gave

[11/19/2007, 10:06:32] - VirtumundoBeGone v1.5 ( "D:\Documents and Settings\Jannie\Local Settings\Temporary Internet Files\Content.IE5\H3I23VES\VirtumundoBeGone[1].exe" )
[11/19/2007, 10:06:42] - Detected System Information:
[11/19/2007, 10:06:42] - Windows Version: 5.1.2600, Service Pack 2
[11/19/2007, 10:06:42] - Current Username: Jannie (Admin)
[11/19/2007, 10:06:42] - Windows is in NORMAL mode.
[11/19/2007, 10:06:42] - Searching for Browser Helper Objects:
[11/19/2007, 10:06:42] - BHO 1: {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 2: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[11/19/2007, 10:06:42] - BHO 3: {0D39A900-0F3A-4C29-A254-3E65244FDC34} (ContextHelper)
[11/19/2007, 10:06:42] - BHO 4: {25730636-BBB5-4524-BF44-4BCDF3276235} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 5: {45B68636-4F26-4026-A559-0AAD614C1290} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\ddaba
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\ddaba, continuing.
[11/19/2007, 10:06:42] - BHO 6: {5A263CF7-56A6-4D68-A8CF-345BE45BC911} (Yahoo! IE Suggest)
[11/19/2007, 10:06:42] - BHO 7: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (Yahoo! IE Services Button)
[11/19/2007, 10:06:42] - BHO 8: {6309c4ff-6d62-4e55-b5d6-72c88ed88709} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\gnhlrfmy
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\gnhlrfmy, continuing.
[11/19/2007, 10:06:42] - BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[11/19/2007, 10:06:42] - BHO 10: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} (AOL Toolbar Launcher)
[11/19/2007, 10:06:42] - BHO 11: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[11/19/2007, 10:06:42] - BHO 13: {A95B2816-1D7E-4561-A202-68C0DE02353A} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\yxubjyuw
[11/19/2007, 10:06:42] - Found: HKLM\...\Winlogon\Notify\yxubjyuw - This is probably Virtumundo.
[11/19/2007, 10:06:42] - Assigning {A95B2816-1D7E-4561-A202-68C0DE02353A} MSEvents Object
[11/19/2007, 10:06:42] - BHO list has been changed! Starting over...
[11/19/2007, 10:06:42] - BHO 1: {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 2: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[11/19/2007, 10:06:42] - BHO 3: {0D39A900-0F3A-4C29-A254-3E65244FDC34} (ContextHelper)
[11/19/2007, 10:06:42] - BHO 4: {25730636-BBB5-4524-BF44-4BCDF3276235} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 5: {45B68636-4F26-4026-A559-0AAD614C1290} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\ddaba
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\ddaba, continuing.
[11/19/2007, 10:06:42] - BHO 6: {5A263CF7-56A6-4D68-A8CF-345BE45BC911} (Yahoo! IE Suggest)
[11/19/2007, 10:06:42] - BHO 7: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (Yahoo! IE Services Button)
[11/19/2007, 10:06:42] - BHO 8: {6309c4ff-6d62-4e55-b5d6-72c88ed88709} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\gnhlrfmy
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\gnhlrfmy, continuing.
[11/19/2007, 10:06:42] - BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[11/19/2007, 10:06:42] - BHO 10: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} (AOL Toolbar Launcher)
[11/19/2007, 10:06:42] - BHO 11: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[11/19/2007, 10:06:42] - BHO 13: {A95B2816-1D7E-4561-A202-68C0DE02353A} (MSEvents Object)
[11/19/2007, 10:06:42] - ALERT: Found MSEvents Object!
[11/19/2007, 10:06:42] - BHO 14: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 15: {AE7CD045-E861-484f-8273-0445EE161910} (Adobe PDF Conversion Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 16: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[11/19/2007, 10:06:42] - BHO 17: {CC7E636D-39AA-49b6-B511-65413DA137A1} (IE Developer Toolbar BHO)
[11/19/2007, 10:06:42] - BHO 18: {E0B54BEC-9209-4B5D-94E5-A8906DE18FFB} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\byxxyax
[11/19/2007, 10:06:42] - Found: HKLM\...\Winlogon\Notify\byxxyax - This is probably Virtumundo.
[11/19/2007, 10:06:42] - Assigning {E0B54BEC-9209-4B5D-94E5-A8906DE18FFB} MSEvents Object
[11/19/2007, 10:06:42] - BHO list has been changed! Starting over...
[11/19/2007, 10:06:42] - BHO 1: {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 2: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[11/19/2007, 10:06:42] - BHO 3: {0D39A900-0F3A-4C29-A254-3E65244FDC34} (ContextHelper)
[11/19/2007, 10:06:42] - BHO 4: {25730636-BBB5-4524-BF44-4BCDF3276235} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 5: {45B68636-4F26-4026-A559-0AAD614C1290} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\ddaba
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\ddaba, continuing.
[11/19/2007, 10:06:42] - BHO 6: {5A263CF7-56A6-4D68-A8CF-345BE45BC911} (Yahoo! IE Suggest)
[11/19/2007, 10:06:42] - BHO 7: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (Yahoo! IE Services Button)
[11/19/2007, 10:06:42] - BHO 8: {6309c4ff-6d62-4e55-b5d6-72c88ed88709} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - Checking for HKLM\...\Winlogon\Notify\gnhlrfmy
[11/19/2007, 10:06:42] - Key not found: HKLM\...\Winlogon\Notify\gnhlrfmy, continuing.
[11/19/2007, 10:06:42] - BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[11/19/2007, 10:06:42] - BHO 10: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} (AOL Toolbar Launcher)
[11/19/2007, 10:06:42] - BHO 11: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[11/19/2007, 10:06:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:42] - No filename found. Continuing.
[11/19/2007, 10:06:42] - BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[11/19/2007, 10:06:42] - BHO 13: {A95B2816-1D7E-4561-A202-68C0DE02353A} (MSEvents Object)
[11/19/2007, 10:06:42] - ALERT: Found MSEvents Object!
[11/19/2007, 10:06:42] - BHO 14: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 15: {AE7CD045-E861-484f-8273-0445EE161910} (Adobe PDF Conversion Toolbar Helper)
[11/19/2007, 10:06:42] - BHO 16: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[11/19/2007, 10:06:42] - BHO 17: {CC7E636D-39AA-49b6-B511-65413DA137A1} (IE Developer Toolbar BHO)
[11/19/2007, 10:06:42] - BHO 18: {E0B54BEC-9209-4B5D-94E5-A8906DE18FFB} (MSEvents Object)
[11/19/2007, 10:06:42] - ALERT: Found MSEvents Object!
[11/19/2007, 10:06:42] - BHO 19: {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} (SidebarAutoLaunch Class)
[11/19/2007, 10:06:42] - Finished Searching Browser Helper Objects
[11/19/2007, 10:06:42] - *** Detected MSEvents Object
[11/19/2007, 10:06:42] - Trying to remove MSEvents Object...
[11/19/2007, 10:06:43] - Terminating Process: IEXPLORE.EXE
[11/19/2007, 10:06:44] - Terminating Process: RUNDLL32.EXE
[11/19/2007, 10:06:44] - Disabling Automatic Shell Restart
[11/19/2007, 10:06:44] - Terminating Process: EXPLORER.EXE
[11/19/2007, 10:06:44] - Suspending the NT Session Manager System Service
[11/19/2007, 10:06:45] - Terminating Windows NT Logon/Logoff Manager
[11/19/2007, 10:06:45] - Re-enabling Automatic Shell Restart
[11/19/2007, 10:06:45] - File to disable: D:\WINDOWS\system32\yxubjyuw.dll
[11/19/2007, 10:06:45] - Renaming D:\WINDOWS\system32\yxubjyuw.dll -> D:\WINDOWS\system32\yxubjyuw.dll.vir
[11/19/2007, 10:06:45] - File successfully renamed!
[11/19/2007, 10:06:45] - Removing HKLM\...\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}
[11/19/2007, 10:06:45] - Removing HKCR\CLSID\{A95B2816-1D7E-4561-A202-68C0DE02353A}
[11/19/2007, 10:06:45] - Adding Kill Bit for ActiveX for GUID: {A95B2816-1D7E-4561-A202-68C0DE02353A}
[11/19/2007, 10:06:45] - Deleting ATLEvents/MSEvents Registry entries
[11/19/2007, 10:06:45] - Removing HKLM\...\Winlogon\Notify\yxubjyuw
[11/19/2007, 10:06:45] - Searching for Browser Helper Objects:
[11/19/2007, 10:06:45] - BHO 1: {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
[11/19/2007, 10:06:45] - BHO 2: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[11/19/2007, 10:06:45] - BHO 3: {0D39A900-0F3A-4C29-A254-3E65244FDC34} (ContextHelper)
[11/19/2007, 10:06:45] - BHO 4: {25730636-BBB5-4524-BF44-4BCDF3276235} ()
[11/19/2007, 10:06:45] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:45] - No filename found. Continuing.
[11/19/2007, 10:06:45] - BHO 5: {45B68636-4F26-4026-A559-0AAD614C1290} ()
[11/19/2007, 10:06:45] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:46] - Checking for HKLM\...\Winlogon\Notify\ddaba
[11/19/2007, 10:06:46] - Key not found: HKLM\...\Winlogon\Notify\ddaba, continuing.
[11/19/2007, 10:06:46] - BHO 6: {5A263CF7-56A6-4D68-A8CF-345BE45BC911} (Yahoo! IE Suggest)
[11/19/2007, 10:06:46] - BHO 7: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (Yahoo! IE Services Button)
[11/19/2007, 10:06:46] - BHO 8: {6309c4ff-6d62-4e55-b5d6-72c88ed88709} ()
[11/19/2007, 10:06:46] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:46] - Checking for HKLM\...\Winlogon\Notify\gnhlrfmy
[11/19/2007, 10:06:46] - Key not found: HKLM\...\Winlogon\Notify\gnhlrfmy, continuing.
[11/19/2007, 10:06:46] - BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[11/19/2007, 10:06:46] - BHO 10: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} (AOL Toolbar Launcher)
[11/19/2007, 10:06:46] - BHO 11: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[11/19/2007, 10:06:46] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:46] - No filename found. Continuing.
[11/19/2007, 10:06:46] - BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[11/19/2007, 10:06:46] - BHO 13: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[11/19/2007, 10:06:46] - BHO 14: {AE7CD045-E861-484f-8273-0445EE161910} (Adobe PDF Conversion Toolbar Helper)
[11/19/2007, 10:06:46] - BHO 15: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[11/19/2007, 10:06:46] - BHO 16: {CC7E636D-39AA-49b6-B511-65413DA137A1} (IE Developer Toolbar BHO)
[11/19/2007, 10:06:46] - BHO 17: {E0B54BEC-9209-4B5D-94E5-A8906DE18FFB} (MSEvents Object)
[11/19/2007, 10:06:46] - ALERT: Found MSEvents Object!
[11/19/2007, 10:06:46] - BHO 18: {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} (SidebarAutoLaunch Class)
[11/19/2007, 10:06:46] - Finished Searching Browser Helper Objects
[11/19/2007, 10:06:46] - *** Detected MSEvents Object
[11/19/2007, 10:06:46] - Trying to remove MSEvents Object...
[11/19/2007, 10:06:47] - Terminating Process: IEXPLORE.EXE
[11/19/2007, 10:06:47] - Terminating Process: RUNDLL32.EXE
[11/19/2007, 10:06:47] - Disabling Automatic Shell Restart
[11/19/2007, 10:06:47] - Terminating Process: EXPLORER.EXE
[11/19/2007, 10:06:47] - Suspending the NT Session Manager System Service
[11/19/2007, 10:06:47] - Terminating Windows NT Logon/Logoff Manager
[11/19/2007, 10:06:47] - Re-enabling Automatic Shell Restart
[11/19/2007, 10:06:47] - File to disable: D:\WINDOWS\system32\byxxyax.dll
[11/19/2007, 10:06:47] - Renaming D:\WINDOWS\system32\byxxyax.dll -> D:\WINDOWS\system32\byxxyax.dll.vir
[11/19/2007, 10:06:47] - File successfully renamed!
[11/19/2007, 10:06:47] - Removing HKLM\...\Browser Helper Objects\{E0B54BEC-9209-4B5D-94E5-A8906DE18FFB}
[11/19/2007, 10:06:47] - Removing HKCR\CLSID\{E0B54BEC-9209-4B5D-94E5-A8906DE18FFB}
[11/19/2007, 10:06:47] - Adding Kill Bit for ActiveX for GUID: {E0B54BEC-9209-4B5D-94E5-A8906DE18FFB}
[11/19/2007, 10:06:47] - Deleting ATLEvents/MSEvents Registry entries
[11/19/2007, 10:06:47] - Removing HKLM\...\Winlogon\Notify\byxxyax
[11/19/2007, 10:06:47] - Searching for Browser Helper Objects:
[11/19/2007, 10:06:47] - BHO 1: {02478D38-C3F9-4EFB-9B51-7695ECA05670} (Yahoo! Toolbar Helper)
[11/19/2007, 10:06:47] - BHO 2: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[11/19/2007, 10:06:47] - BHO 3: {0D39A900-0F3A-4C29-A254-3E65244FDC34} (ContextHelper)
[11/19/2007, 10:06:47] - BHO 4: {25730636-BBB5-4524-BF44-4BCDF3276235} ()
[11/19/2007, 10:06:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:47] - No filename found. Continuing.
[11/19/2007, 10:06:47] - BHO 5: {45B68636-4F26-4026-A559-0AAD614C1290} ()
[11/19/2007, 10:06:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:47] - Checking for HKLM\...\Winlogon\Notify\ddaba
[11/19/2007, 10:06:47] - Key not found: HKLM\...\Winlogon\Notify\ddaba, continuing.
[11/19/2007, 10:06:47] - BHO 6: {5A263CF7-56A6-4D68-A8CF-345BE45BC911} (Yahoo! IE Suggest)
[11/19/2007, 10:06:47] - BHO 7: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (Yahoo! IE Services Button)
[11/19/2007, 10:06:47] - BHO 8: {6309c4ff-6d62-4e55-b5d6-72c88ed88709} ()
[11/19/2007, 10:06:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:47] - Checking for HKLM\...\Winlogon\Notify\gnhlrfmy
[11/19/2007, 10:06:47] - Key not found: HKLM\...\Winlogon\Notify\gnhlrfmy, continuing.
[11/19/2007, 10:06:47] - BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[11/19/2007, 10:06:48] - BHO 10: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} (AOL Toolbar Launcher)
[11/19/2007, 10:06:48] - BHO 11: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[11/19/2007, 10:06:48] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/19/2007, 10:06:48] - No filename found. Continuing.
[11/19/2007, 10:06:48] - BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[11/19/2007, 10:06:48] - BHO 13: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[11/19/2007, 10:06:48] - BHO 14: {AE7CD045-E861-484f-8273-0445EE161910} (Adobe PDF Conversion Toolbar Helper)
[11/19/2007, 10:06:48] - BHO 15: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[11/19/2007, 10:06:48] - BHO 16: {CC7E636D-39AA-49b6-B511-65413DA137A1} (IE Developer Toolbar BHO)
[11/19/2007, 10:06:48] - BHO 17: {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} (SidebarAutoLaunch Class)
[11/19/2007, 10:06:48] - Finished Searching Browser Helper Objects
[11/19/2007, 10:06:48] - Finishing up...
[11/19/2007, 10:06:48] - A restart is needed.
[11/19/2007, 10:06:52] - Attempting to Restart via STOP error (Blue Screen!)

#4 Falu

Falu

  • Security Colleague
  • 3,001 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:02:33 PM

Posted 02 December 2007 - 05:54 AM

Hi janniiie, :thumbsup:

If you still need help please post a fresh HijackThis log and I'll be happy to look at it for you.

Thanks for your patience. :blink:

P.S. Please copy/paste the log into this thread using the Add Reply button.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users