Ask a question and give support. here's the log Mar 7, 2009 #7 kimsland Ex-TechSpotter Posts: 14,524 narlina said: ↑ erm, i've deleted those. Any help is greatly appreciated, Thanks!-----------------------------------------------------------------------------------------------Logfile of HijackThis v1.97.7Scan saved at 3:38:56 PM, on 5/7/2004Platform: Windows XP (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Norton Nov 21, 2010 Help with 8-step Viruses/Spyware/Malware Preliminary Removal May 25, 2010 8-step Viruses/Spyware/Malware Preliminary Removal Instructions Help Feb 20, 2011 Add New Comment You need to be a member to http://tcdownload.org/hijackthis-log/hijackthis-log-please-look.html
Join the community here. You should run both programs and clean up what it finds. Jan 13, 2009 Please Help This is my hijackthis log Nov 18, 2008 I ran the 8 steps and posting a log file for hijackthis Jul 23, 2009 Here is my Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. additional hints
Startup Malwarebytes, update it, then run a full scan, remove all found malwares once complete Provide the log Mar 6, 2009 #4 narlina TS Rookie Topic Starter Posts: 25 okay here's the logClick to expand... Javacool's SpywareBlaster has a huge database of malicious ActiveX objects that can be used for looking up CLSIDs. (Right-click the list to use the Find function.) O17 - Lop.com domain hijacksWhat
the CLSID has been changed) by spyware. All Rights Reserved. Once the database has downloaded, click Next. Hijackthis Windows 10 Join thousands of tech enthusiasts and participate.
Only OnFlow adds a plugin here that you don't want (.ofb).O13 - IE DefaultPrefix hijackWhat it looks like: O13 - DefaultPrefix: http://www.pixpox.com/cgi-bin/click.pl?url=O13 - WWW Prefix: http://prolivation.com/cgi-bin/r.cgi?O13 - WWW. Hijackthis Download Is my PC okay now? what do i do now? you could check here Cheers Reply With Quote « Previous Thread | Next Thread » Menu - Home - Help!
quick scan with Malwarebytes is ironically not good enough. Hijackthis Download Windows 7 Spybot S&D never finish, it's keep struck half way point of scanning my files.I was able to run all the other virus and spyware software. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.GMER Ask a question and give support.
Ask a Question See Latest Posts TechSpot Forums are dedicated to computer enthusiasts and power users. this contact form In your case you should choose SP1 and have it downloaded and installed by itself. Even for an advanced computer user. Set "Initializ and script ActiveX Controls not marked as Safe" to disable.6. Hijackthis Windows 7
Once the license accepted, reset to 100%. My internet browser keeps jumping to random sites like Videocop.com. Join thousands of tech enthusiasts and participate. have a peek here With Internet Explorer open, click Tools>Internet Options>Security tab.2.
Ask a question and give support. Get it here: Java.Another thing you can do to prevent a large number of infections is to set ActiveX to at least prompt. You may also... Hijackthis Bleeping Dismiss Notice TechSpot Forums Forums Software Virus and Malware Removal Today's Posts 8 step virus/Spyware/Malware help-Hijackthis loganalysis ByDazed78 May 16, 2009 I have been having problems with the "Relavant Website" malware
They should auto start again when you reboot after updating, but check to make sure.A less time consuming alternative that will also reduce the chance of errors (disconnects, corrupt downloads, etc.) As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged everytime i press CTRL ALT DEL, there's this notepad file popping out from nowhere. Check This Out here is my new log:-----------------------------------------------------------------------------------------------Logfile of HijackThis v1.97.7Scan saved at 6:42:03 PM, on 5/7/2004Platform: Windows XP (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Norton AntiVirus\navapsvc.exeC:\WINDOWS\System32\svchost.exeC:\Program
From there no idea. (ie really need the logs) Mar 6, 2009 #2 narlina TS Rookie Topic Starter Posts: 25 here are the logs.. Your system will be scanned for several seconds to see which updates are needed. In addition, if someone has any experience in removing the Relavant Website malware and would like to pass on their recommendations, that would be greatly appreciated. The known baddies are 'cn' (CommonName), 'ayb' (Lop.com) and 'relatedlinks' (Huntbar), you should have HijackThis fix those.
You're good to go. Posting them in the forums will make them easier to analyze.If you are unsure of how to reply, or need help with anything regarding the website, please look here.We apologize for Should you see an URL you don't recognize as your homepage or search page, have HijackThis fix it.O1 - Hostsfile redirectionsWhat it looks like:O1 - Hosts: 126.96.36.199 auto.search.msn.comO1 - Hosts: 188.8.131.52 In HijackThis 1.99.1 or higher, the button 'Delete NT Service' in the Misc Tools section can be used for this.