Is This Bad? B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F
Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More... As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged Attached Files 6.20p.doc 107KB 2 downloads hijackthis.log 9.52KB 5 downloads 6.20.txt 12.86KB 0 downloads Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 myrti myrti that my computer started freezing and I couldn’t see my desktop.
Summary: It Iinstalled a keylogger & potential rootkit, tho I'm not sure. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\NZ7CZ6I0\g667031-pmo.htm scheduled to be deleted on reboot.File delete failed. Volume in drive C is PRESARIO Volume Serial Number is 50D4-DE6D Directory of C:\08/04/2004 08:00 AM 47,564 NTDETECT.COM08/04/2004 08:00 AM 250,032 ntldr08/04/2004 08:00 AM 260,272 cmldr08/11/2004 09:17 PM 0 MSDOS.SYS08/11/2004 09:17 As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged https://forums.spybot.info/showthread.php?50200-Please-help!-What-is-this-B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F-dat
Please UNCHECK the following:Sections IAT/EAT RegistryDrives/Partition other than Systemdrive (typically C:\) Show all (Don't miss this one!)Click on and wait for the scan to finish.If you see a rootkit warning window, The log files for a period of time when I was on the computer and it was acting funny and the computer icons dissapeared and only the background showed up (this Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htmO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htmO8 - Extra context menu item: Yahoo! The other points to what appears to be a randomly generated website a long string of numbers and letters .cn every 15 mins.
Please note that your topic was not intentionally overlooked. Save it to your desktop. With Regards, Extremeboy Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. No input is needed, the scan is running.Notepad will open with the results.Follow the instructions that pop up for posting the results.Close the program window, and delete the program from your
Thanks Back to top #11 extremeboy extremeboy Malware Response Team 12,975 posts OFFLINE Gender:Male Local time:02:27 AM Posted 23 July 2009 - 09:16 AM Hello.Hi, I found this file B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F Is this bad? Thanks! http://www.bleepingcomputer.com/forums/t/238586/please-help-me-read-this-log-not-sure-if-my-computer-has-virus-or-if-someone-installed-something-on-it-thank-you/ Advertisement Recent Posts "TSG Coffee and CafĂ© with...
Help requests via the PM system will be ignored.If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.The help you receive here Thread Status: Not open for further replies. I had to split them into two files. tinmangin: I just got a message saying thats its a worm.win32.netbooster if that helps Navigation  Message Index [#] Next page [*] Previous page Go to full version
I'm running the gmer now. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. Back to top #6 extremeboy extremeboy Malware Response Team 12,975 posts OFFLINE Gender:Male Local time:02:27 AM Posted 15 July 2009 - 01:17 PM Hello.Due to Lack of feedback, this topic I know he's been able to get on to someone else's computer and steal e-mail passwords.
If you need this topic reopened, please send me a PM and I will reopen it for you. I think someone staying over my place installed something bad on my computer. Please try the request again. be patient and someone will help you out.Having said my piece, I'll now step out again.
Short URL to this thread: https://techguy.org/845497 Log in with Facebook Log in with Twitter Log in with Google Your name or email address: Do you already have an account? Please double-click OTMoveIt3.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator). Even in the reg entry. What's going on?
Here is the DrWeb stuff. Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htmO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htmO8 - Extra context menu item: Yahoo! Back to top #5 extremeboy extremeboy Malware Response Team 12,975 posts OFFLINE Gender:Male Local time:02:27 AM Posted 13 July 2009 - 09:55 PM Hello.
The windows firewall is not good enough.
Thread Status: Not open for further replies. Some of the malware you picked up could have been saved in System Restore. I clicked cure but then it asked if I wanted to rename or delete and since I didn't know what it was, I chose rename. Thanks Please do not PM me asking for support.Please be courteous, polite, and say thank you.Please post the final results, good or bad.
Click for more information on:Understanding and Using Firewalls There are several good free programs available like: Sunbelt-Kerio (Note: You install the Sunbelt trial version but after the trial period it will I ran McAfee and everything was fine. Help requests via the PM system will be ignored.If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.The help you receive here And, does that mean that file B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F is okay even though the other thing I read online said it was bad?
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.File delete failed. If asked to restart the computer, please do so immediately. Please run DR.Web Cure IT then post a new DDS run afterwards.Download and Run DrWebCureIt in Safe ModeBefore we start fixing anything you should print out these instructions or copy them Can you tell me if anything is wrong.
A menu will appear with several options. Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.After reboot, post/attach the contents of the log from Dr.Web in your next reply. (You Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up.
When you search a site it gives you an indication of how safe a site is. Attached Files PrintScreen2.doc 177.5KB 1 downloads Back to top #15 ss64224 ss64224 Topic Starter Members 12 posts OFFLINE Local time:03:27 AM Posted 24 July 2009 - 12:47 AM Sorry... There is a small chance this application may crash your computer so save any work you have open.Double-click on Gmer.exe to start the program. Please follow these steps to remove older version Java components and update:Download the latest version of Java Runtime Environment (JRE) Version 6 and save it to your desktop.Look for "Java Runtime
Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\VSP3CDJ0\2009_cuteteencheaters_com.htm scheduled to be deleted on reboot.File delete failed. The system returned: (22) Invalid argument The remote host or network may be down. Register now!
Using the site is easy and fun. shadowstalker replied Feb 13, 2017 at 1:57 AM Broken Image on Site (Wix) Stefischer replied Feb 13, 2017 at 1:28 AM Can add files to microSD card... :z: replied Feb 13, evilfantasy: Use the Kaspersky Online Scanner[*]Click Accept.[*] Answer Yes, when prompted to install an ActiveX component.[/list][*] The program will then begin downloading the latest definition files.[*] Once the files have been Edited by farbar, 16 April 2009 - 06:47 PM.
I did a google search and found this: Cons: Software\Microsoft\Internet Explorer\Security\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F].