Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

i think im re infected. my anti viris keeps turning off.


  • This topic is locked This topic is locked
1 reply to this topic

#1 lindaga35

lindaga35

  • Members
  • 384 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:03 PM

Posted 03 February 2009 - 10:31 PM

my modem says i'm connected to the internet and there is nothing open expect the desktop.


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.



IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-01-19.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 10/25/2008 11:06:00 PM
System Uptime: 2/3/2009 6:35:46 PM (4 hours ago)

Motherboard: GATEWAY | | Tabor3 WS440BX
Processor: Intel Pentium III processor | J4J1, CPU | 447/100mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (FAT32) - 13 GiB total, 4.627 GiB free.
D: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP227: 1/19/2009 11:14:36 PM - System Checkpoint
RP228: 1/21/2009 1:38:28 AM - Installed Dr.Web anti-virus for Windows 5.0.
RP229: 1/22/2009 2:00:41 AM - System Checkpoint
RP230: 1/24/2009 9:46:24 AM - System Checkpoint
RP231: 1/24/2009 5:22:08 PM - Microsoft OneCare Protection Checkpoint
RP232: 1/25/2009 12:33:23 AM - Restore Operation
RP233: 1/25/2009 3:37:58 AM - Microsoft OneCare Protection Checkpoint
RP234: 1/27/2009 5:06:43 PM - System Checkpoint
RP235: 1/27/2009 6:00:09 PM - Removed Dr.Web anti-virus for Windows 5.0.
RP236: 1/27/2009 7:53:55 PM - Software Distribution Service 3.0
RP237: 1/27/2009 9:32:31 PM - Printer Driver Microsoft XPS Document Writer Installed
RP238: 1/29/2009 1:23:56 AM - System Checkpoint
RP239: 1/30/2009 11:14:48 PM - System Checkpoint
RP240: 1/31/2009 1:24:48 PM - Printer Driver Lexmark Print-2-Fax Printer Installed
RP241: 2/1/2009 1:29:50 PM - System Checkpoint
RP242: 2/1/2009 9:59:31 PM - Avira AntiVir Personal - 2/1/2009 21:58
RP243: 2/3/2009 12:47:01 AM - System Checkpoint

==== Installed Programs ======================

1113 Tutorial
3dfx Tools
ABBYY FineReader 6.0 Sprint
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Media Player
Adobe Shockwave Player
Avira AntiVir Personal - Free Antivirus
Bookshelf 2000
Creative PCI Audio Drivers
Gateway Drivers and Applications Recovery
Gateway Multi-function Keyboard
GearDrvs
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Java™ 6 Update 11
Lexmark 3600-4600 Series
Lexmark Toolbar
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Easy Assist v2
Microsoft Greetings
Microsoft IntelliPoint
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 99
Microsoft National Language Support Downlevel APIs
Microsoft Picture It! Express 2.0
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Works 4.5
Microsoft Works Calendar 1.0
Microsoft Works Setup Launcher
Microsoft XML Parser and SDK
Mozilla Firefox (3.0.5)
MSXML 4.0 SP2 (KB936181)
Netscape Communicator 4.06
overland
QuickTime for Windows (32-bit)
RealPlayer
SafeCast Shared Components
SBPCI DOS Drivers
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Siemens Subscriber Networks SpeedStream DSL
SOHOware SFA110
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
VC 9.0 Runtime
WebFldrs XP
WexTech AnswerWorks
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0
Windows XP Service Pack 3
Wink
Yahoo! Messenger
Yahoo! Search Protection

==== Event Viewer Messages From Past Week ========

2/2/2009 10:45:12 AM, error: Dhcp [1002] - The IP address lease 192.168.254.1 for the Network Card with network address 000A01031573 has been denied by the DHCP server 192.168.254.254 (The DHCP Server sent a DHCPNACK message).
2/2/2009 9:54:44 AM, error: MSFWDrv [9] -
2/2/2009 2:19:52 PM, error: Dhcp [1002] - The IP address lease 192.168.254.2 for the Network Card with network address 000A01031573 has been denied by the DHCP server 192.168.254.254 (The DHCP Server sent a DHCPNACK message).
2/2/2009 2:20:55 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Dnscache service.
2/2/2009 7:40:29 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Windows Search service to connect.
2/2/2009 7:40:29 PM, error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/2/2009 7:42:48 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
2/2/2009 7:42:48 PM, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/2/2009 7:43:12 PM, error: ipnathlp [32003] - The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code.
2/2/2009 7:46:13 PM, error: Service Control Manager [7031] - The OneCare AntiSpyware and AntiVirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
2/2/2009 7:46:33 PM, error: Service Control Manager [7031] - The OneCare AntiSpyware and AntiVirus service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
2/2/2009 7:59:02 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Windows Live OneCare service to connect.
2/2/2009 7:59:02 PM, error: Service Control Manager [7022] - The Windows Search service hung on starting.
2/2/2009 8:01:11 PM, error: Service Control Manager [7023] - The Security Center service terminated with the following error: %%16389
2/2/2009 8:27:53 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the HTTP SSL service to connect.
2/2/2009 8:27:53 PM, error: Service Control Manager [7000] - The HTTP SSL service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/2/2009 8:44:34 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the SharedAccess service.

==== End Of File ===========================




DDS (Ver_09-01-19.01) - FAT32x86
Run by Tom Jones at 22:14:27.90 on Tue 02/03/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.128.38 [GMT -5:00]

AV: Doctor Web Anti-Virus *On-access scanning enabled* (Updated)
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
SVCHOST.EXE
C:\WINDOWS\System32\svchost.exe -k netsvcs
SVCHOST.EXE
SVCHOST.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxdxserv.exe
C:\WINDOWS\system32\lxdxcoms.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxMsdMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Tom Jones\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
mURLSearchHooks: H - No File
BHO: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
TB: AIM Search: {40d41a8b-d79b-43d7-99a7-9ee0f344c385} - c:\program files\aim toolbar\AIMBAR.DLL
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\SHDOCVW.DLL
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [lxdxamon] "c:\program files\lexmark 3600-4600 series\lxdxamon.exe"
mRun: [avgnt] "c:\program files\avira\antivir personaledition classic\avgnt.exe" /min
dPolicies-explorer: EditLevel = 0 (0x0)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\SHDOCVW.DLL
DPF: DirectAnimation Java Classes - file://c:\windows\system\dajava.cab
DPF: Internet Explorer Classes for Java - file://c:\windows\system\iejava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
LSA: Notification Packages = :\WINDOW

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\tomjon~1\applic~1\mozilla\firefox\profiles\ppx0vpow.default\
FF - plugin: c:\program files\netscape\communicator\program\plugins\NP32DSW.DLL
FF - plugin: c:\program files\netscape\communicator\program\plugins\npaudio.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npavi32.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npdrmv2.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npdsplay.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\nphppi.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\nplau32.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\NPMetaStream3.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npnul32.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\nppl3260.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\NPQTW32.DLL
FF - plugin: c:\program files\netscape\communicator\program\plugins\nprfxins.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\nprjplug.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\nprpjplug.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npstm32.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npswf32.dll
FF - plugin: c:\program files\netscape\communicator\program\plugins\npwmsdrm.dll

============= SERVICES / DRIVERS ===============

R1 avgio;avgio;c:\program files\avira\antivir personaledition classic\avgio.sys [2009-2-1 11840]
R3 3dfxvs;3dfxvs;c:\windows\system32\drivers\3dfxvsm.sys [2008-10-25 148352]
R3 avgntflt;avgntflt;c:\program files\avira\antivir personaledition classic\avgntflt.sys [2009-2-1 52032]
S3 SQTECH913D;913D Camera;c:\windows\system32\drivers\Capt913D.sys [2008-11-9 29522]

=============== Created Last 30 ================

2009-02-01 22:03 <DIR> --d----- c:\program files\Avira
2009-02-01 22:03 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Avira
2009-02-01 00:13 <DIR> --d----- c:\docume~1\tomjon~1\applic~1\FaxCtr
2009-01-31 14:05 <DIR> --d----- c:\docume~1\tomjon~1\applic~1\Lexmark Productivity Studio
2009-01-31 13:44 <DIR> --d----- c:\documents and settings\all users\Lx_cats
2009-01-31 13:41 10,368 a------- c:\windows\system32\drivers\hidusb.sys
2009-01-31 13:41 10,368 a------- c:\windows\system32\dllcache\hidusb.sys
2009-01-31 13:41 25,856 a------- c:\windows\system32\drivers\usbprint.sys
2009-01-31 13:41 25,856 a------- c:\windows\system32\dllcache\usbprint.sys
2009-01-31 13:40 32,128 a------- c:\windows\system32\drivers\usbccgp.sys
2009-01-31 13:40 32,128 a------- c:\windows\system32\dllcache\usbccgp.sys
2009-01-31 13:37 <DIR> --d----- C:\logs
2009-01-31 13:35 40,960 a------- c:\windows\system32\lxdxvs.dll
2009-01-31 13:34 360,448 a------- c:\windows\system32\lxdxcoin.dll
2009-01-31 13:34 60,996 a------- c:\windows\system32\lxdxprpr.chm
2009-01-31 13:28 15,104 a------- c:\windows\system32\drivers\usbscan.sys
2009-01-31 13:28 15,104 a------- c:\windows\system32\dllcache\usbscan.sys
2009-01-31 13:28 87,040 a------- c:\windows\system32\wiafbdrv.dll
2009-01-31 13:28 87,040 a------- c:\windows\system32\dllcache\wiafbdrv.dll
2009-01-31 13:27 81,920 a------- c:\windows\system32\lxdxcaps.dll
2009-01-31 13:27 782,336 a------- c:\windows\system32\lxdxdrs.dll
2009-01-31 13:27 69,632 a------- c:\windows\system32\lxdxcnv4.dll
2009-01-31 13:23 98,345 a------- c:\windows\system32\IMHOST32.DLL
2009-01-31 13:23 98,304 a------- c:\windows\system32\IM31XPNG.DEL
2009-01-31 13:23 69,632 a------- c:\windows\system32\IM31XTIF.DEL
2009-01-31 13:23 49,152 a------- c:\windows\system32\IM31IMG.DIL
2009-01-31 13:23 12,288 a------- c:\windows\system32\LXF3PMRC.DLL
2009-01-31 13:23 339,968 a------- c:\windows\system32\IMGMAN32.DLL
2009-01-31 13:23 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FaxCtr
2009-01-31 13:19 <DIR> --d----- c:\program files\Abbyy FineReader 6.0 Sprint
2009-01-31 13:15 <DIR> --d----- c:\program files\Lexmark Toolbar
2009-01-31 13:15 44 a------- c:\windows\system32\lxdxrwrd.ini
2009-01-31 13:14 17,064 a------- c:\windows\system32\lxdxwupd.exe
2009-01-31 13:14 102,400 a------- c:\windows\system32\lxdxwupd.dll
2009-01-31 13:12 376,832 a------- c:\windows\system32\lxdxcomm.dll
2009-01-31 13:12 851,968 a------- c:\windows\system32\lxdxcomc.dll
2009-01-31 13:12 365,224 a------- c:\windows\system32\lxdxcfg.exe
2009-01-31 13:12 77,906 a------- c:\windows\system32\LXDXcfg.dll
2009-01-31 13:12 1,875 a------- c:\windows\system32\lxdx.loc
2009-01-31 13:12 76,482 a------- c:\windows\system32\LexFiles.ulf
2009-01-31 13:12 <DIR> --d----- c:\program files\Lexmark 3600-4600 Series
2009-01-31 09:50 <DIR> --d----- c:\program files\Trend Micro
2009-01-27 20:34 <DIR> --d----- c:\windows\system32\XPSViewer
2009-01-27 20:30 117,760 -------- c:\windows\system32\prntvpt.dll
2009-01-27 20:30 89,088 -------- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-01-27 20:30 597,504 -------- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-01-27 20:30 575,488 -------- c:\windows\system32\xpsshhdr.dll
2009-01-27 20:30 575,488 -------- c:\windows\system32\dllcache\xpsshhdr.dll
2009-01-27 20:30 1,676,288 -------- c:\windows\system32\xpssvcs.dll
2009-01-27 20:30 1,676,288 -------- c:\windows\system32\dllcache\xpssvcs.dll
2009-01-27 20:30 <DIR> --d----- C:\dcd3a8f96da88438ab4a1c32ea
2009-01-27 20:28 <DIR> --d----- c:\windows\SxsCaPendDel
2009-01-24 20:45 <DIR> --d----- c:\program files\Wink
2009-01-24 19:40 <DIR> --d----- c:\program files\ICQ
2009-01-23 20:37 <DIR> --dsh--- C:\FOUND.000
2009-01-22 23:24 <DIR> --d----- c:\windows\pss
2009-01-21 06:11 276 a------- c:\windows\system32\tmp.files0
2009-01-21 01:39 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Doctor Web
2009-01-21 01:39 <DIR> --d----- c:\program files\DrWeb
2009-01-18 22:49 94 a------- c:\windows\family.ini
2009-01-18 19:04 <DIR> --d----- C:\microsoft scan
2009-01-12 22:15 16,832 a------- c:\windows\system32\amcompat.tlb
2009-01-12 21:28 73,728 a------- c:\windows\system32\javacpl.cpl
2009-01-09 00:40 <DIR> --d----- c:\documents and settings\tom jones\DoctorWeb
2009-01-07 10:27 161,792 a------- c:\windows\SWREG.exe
2009-01-07 10:27 98,816 a------- c:\windows\sed.exe
2009-01-07 01:25 <DIR> --d----- C:\users
2009-01-07 01:20 <DIR> --d----- c:\program files\RealArcade

==================== Find3M ====================

2009-02-03 19:14 1,852 a------- c:\windows\system32\d3d9caps.dat
2009-01-27 22:56 119,424 a------- c:\docume~1\tomjon~1\applic~1\GDIPFONTCACHEV1.DAT
2009-01-17 01:06 5,750,144 a------- c:\windows\java\packages\PR79ZBLB.ZIP
2009-01-14 16:11 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-14 16:11 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-01-12 21:26 410,984 a------- c:\windows\system32\deploytk.dll
2009-01-12 00:44 61,224 a------- c:\windows\java\GoToAssistDownloadHelper.exe
2009-01-03 08:24 4,297,314 a------- c:\windows\java\packages\I717F33H.ZIP
2008-12-23 19:34 25,992 a------- c:\windows\system32\pgdfgsvc.exe
2008-12-15 20:29 1,740 a------- c:\windows\system32\d3d8caps.dat
2008-12-13 01:40 3,593,216 -------- c:\windows\system32\dllcache\mshtml.dll
2008-12-11 05:57 333,952 a------- c:\windows\system32\drivers\srv.sys
2008-12-11 05:57 333,952 -------- c:\windows\system32\dllcache\srv.sys
2008-12-10 18:25 262,144 a------- C:\ntuser.dat
2008-11-13 19:09 4,212 a---h--- c:\windows\system32\zllictbl.dat
1999-10-11 14:36 266 ---sh--- c:\program files\desktop.ini
1999-10-11 14:36 11,079 ----h--- c:\program files\folder.htt
2008-11-02 09:14 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008110220081103\index.dat

============= FINISH: 22:16:19.06 ===============

Edited by lindaga35, 04 February 2009 - 06:47 PM.


BC AdBot (Login to Remove)

 


#2 Papakid

Papakid

    Guru at being a Newbie


  • Malware Response Team
  • 6,629 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:03 PM

Posted 06 February 2009 - 12:25 AM

Hi Linda,

Great news :) --the logs show no infections on your system. :thumbup2: I've spent most of this evening and part of the morning reading all of your posts at BC and I'm sorry to say that the bad news is that you are trying to get too much out of an ancient computer. Among other info I've gleaned today, the following puts a lot of it in a nutshell:

Motherboard: GATEWAY | | Tabor3 WS440BX
Processor: Intel Pentium III processor | J4J1, CPU | 447/100mhz

Along with the fact that, as you have related in another post, you only have 128 MB of RAM, your system just does not have the resources to run todays software applications and probably shouldn't even be trying to run XP. I will expand on this in one of your other open threads here at BC, but research has indicated to me that your computer may be as much as eight or nine years old. I think another factor that has compounded the propensity of your computer to have problems is that it appears you may not have done a clean install of XP. I will try to verify this in the other thread, but the bottom line is you would have been much better off leaving Windows 98SE on this system instead of trying to upgrade to XP.

I know you got this second hand and understand that you would want to spiff it up since it's new to you. But most of the problems you have posted about are not caused by infections.

What the specifications in the quotebox mean is that you have a Pentium III processor that only pushes about 447 MegaHertz--modern computers push form around 1.5 to 2.5 GigaHertz. GigaHertzs are far faster than MegaHertz. Even if you could get more RAM, you are still limited by your CPU's lack of power.

Since this is not a malware issue, I am closing this thread. We can continue this discussion here:
http://www.bleepingcomputer.com/forums/t/196569/deleteing-windows-98-how-to-really-find-out-what-is-on-computer/

The thing about people

is they change

when they walk away.--Mipso





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users