Help Identifying A Hijack This Entry...

just doing some full spyware and virus scans on my PC and was wondering what this line was in my Hijack This Logfile:

O20 - Winlogon Notify: WB - C:\PROGRA~1\WINDOW~4\fastload.dll

if the WB stands for Window Blinds (which i knowingly use) then it's all good...

 

Probably related to Trojan Vundo, go ahead and give the removal tools a try.

Download the following removal tools but do NOT run them yet!

• Trojan Vundo Removal Tool
• Trojan Vundo B Removal Tool

Now, BOOT into SAFE MODE and run both removal tools. Afterwards reboot into Normal Mode and attach a HJT log.

 

pretty sure its' Window Blinds

found this from annoyances.org where a person was having trouble uninstalling WindowBlinds:

"Try the following: There should be a file in c:\windows or one of its subfolders called wb.ini. This file is related to windowblinds. Delete it. Then go to the Windows Registry (start\run "regedit"). Do a search on "fastload". You should find a folder called HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows "NT\CurrentVersion\Winlogon\Notify\WB" that contains a string value related to fastload (see right panel). Delete this string value. I don't know if you can delete the full folder WB. I didn't (but I renamed it). After that, reboot the computer (don't just close the user session and reopen it; the fastload.dll is run at the very startup, before opening user sessions). Then you should be able to delete the fastload.dll in the WindowBlinds folder. Good luck."

Thanks anyway Garrick

 

Ah, I didnt pay close attention to "if the WB stands for Window Blinds (which i knowingly use) then it's all good..." this part.

All, I noticed was a odd .dll in the Winlogon Notify.

My mistake!