Help!!!!

Hi and Welcome


If you did the READ and RUN ME FIRST then you woudl have more than just one Hijackthis log attached?

These ones are needed too........

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
  • CounterSpy
  • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy
  • Bitdefender - from step 6
  • Panda Scan - from step 6
  • runkeys.txt - the log from GetRunKey.bat
  • newfiles.txt - the log from ShowNew.bat

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!


Most people are under the very mistaken misconception that HijackThis is a malware removal tool. It is not! HijackThis is simply a tool that is used to identify browser hijackers and in some cases it will show entries for some malware that is for instance running at startup. All it does is list a few of the thousands of registry keys that exist, and it makes no inferences to whether anything being shown is good or bad. That decision is left a person with significant Windows and malware cleaning experience. HijackThis does not come close to showing all malware that could be hiding on a PC. Anyone who has an infected computer and is relying on HijackThis without the benefit of running other scans such as Spybot, Windows Defender, BitDefender & Panda, CCleaner, etc. are more than likely still infected. In most cases, where there is one virus/trojan there are more. The goal of this forum is to remove all malware, and this cannot be done properly by just seeing a HijackThis log.

 

And when you attach the logs from GetRunKey and ShowNew, we can then get started. You have to run the programs as instructed on the download pages in order for the logs to be created and you don't need to search for them. They will be exactly where specified. C:\runkeys.txt and c:\newfiles.txt

It would also be helpful if you explained what malware problems you are having. You said, "Can you tell me how this happened?" But you did not tell us what you are referring to. If you are referring to C:\hp\bin\KillIt.exe it is not problem.

 

But I repeat again that C:\hp\bin\KillIt.exe is not a problem. You don't have any malware. Also note that your did not rename HijackThis as required (you renamed the folder not the HijackThis.exe file) but it does not really matter right now since you do not have any malware. You are just running a very old version of Sun Java that you should have uninstalled in step 6 of the READ ME and then you should have clicked the link to download and install the current version. The old versions are security risks.

 

The C:\hp should be a little bit of a give away that it is for your HP software.

No!

It's not due to malware based on your logs.

Again not due to malware and they are also nothing that gets touch while running the READ & RUN ME. You can even see in your logs that nothing related to these was touch or removed. However did you only do what the READ ME instructions requested. I see you installed Prevx2 on June 19th. The READ ME did not ask for it to be run. Also did you run anything else? Did you run the Issues button on CCleaner?