TechSpot

My Hijackthis Log - After using AVG Spy+Virus+Rootkit Scanner

By ArroyoHigh
Jul 30, 2007
  1. Yo, can someone do a quick hijackthis fix for this hijackthis log. Thanks.
     
  2. andehpandeh

    andehpandeh TS Rookie Posts: 16

    Couple of things that'll just make it run a bit faster:

    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx

    O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-A1F6-FC7EB590A97D} - (no file)

    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

    O3 - Toolbar: (no name) - {014DA6C9-189F-421a-88CD-07CFE51CFF10} - (no file)
    O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-A1F6-FC7EB590A97D} - (no file)

    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"

    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

    That's just Adobe and Java running in the background - unless you use Java all the time there's no point in having this run - it runs automatically when it needs to be used anyway.

    Hope it helps a little :)
     
  3. ArroyoHigh

    ArroyoHigh TS Rookie Topic Starter

    Thanks but I also really want to remove these... should I?

    O2 - BHO: SDWin32 Class - {172FD220-3BF1-4B9C-B162-0278DC493EA3} - C:\WINDOWS\System32\zbopr.dll (file missing)
    O2 - BHO: SDWin32 Class - {86CF160A-13F1-46DA-958D-4E11464B2420} - C:\WINDOWS\System32\cfnpw.dll (file missing)

    O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
     
  4. madboyv1

    madboyv1 TechSpot Paladin Posts: 1,333   +267

    the yahoo toolbar should have an uninstaller in Add/Remove Programs, I suggest looking there for an uninstaller, and if not well, it shouldn't be there now should it?
     
  5. momok

    momok TS Rookie Posts: 2,265

    Hi,

    You should remove those entries. However, do note that they are reminiscent of an infection on your system. Please do the following.

    Very Important: Malware infections can possibly lead to identity theft, loss of funds from bank accounts, misuse of credit card information etc. Therefore I strongly encourage you to please read this thread HERE before deciding what course of action to take regarding your infection.

    Should you decide to clean your computer, please go ahead to Viruses/Spyware/Malware, preliminary removal instructions and follow the steps given. Do follow all the instructions exactly. They will provide logs for analysis of your system so I will know how to instruct you to proceed.

    Thereafter, please post fresh HijackThis, AVG Antispyware and Combofix logs as attachments into this thread. Do not copy and paste your logs if not it will be ignored and/or removed.

    Also, please let me know the results of the AVG Antirootkit scan


    Regards,
    Your friendly momok =)

    This thread is for the use of ArroyoHigh only. Please don't post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...