Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Running Slow ? Cleanup from StartDLL Tbl [RESOLVED]


  • This topic is locked This topic is locked

#16
Crustyoldbloke

Crustyoldbloke

    Old Malware Surgeon with a shaky scalpel

  • Retired Staff
  • 15,130 posts
Scott

The log is almost clean, just one rogue file in your temp folder.

Reboot into Safe Mode: please see here if you are not sure how to do this.

Using Windows Explorer, locate the following file, and delete it:

C:\WINNT\TEMP\PL8341.EXE

Exit Explorer.

Please delete your temporary files.

Double Click My Computer (WinXP: Navigate to Start >My Computer)

You will see an icon representing your harddrive (most likely C: Drive) Right Click on the hard drive icon and click Properties at the bottom of the fly out window.

On the very first tab (General) you will see a button labelled "Disk Cleanup"...click that button.

Make sure the following are checked:Downloaded Program Files
Temporary Internet Files and
Recycle Bin

Click OK and Disk Cleanup will delete those files for you.

Next, go to Start>Run>type in %temp% hit Enter and delete the content of all the temp folders shown (only the content, not the folder).

It's sounds to me that you have OS problems and I am going to suggest that you visit our Operating System forum and let their experts have a look.

I have just checked your original post and the 04 entry for VPN is still identical on your latest. We haven't touched it.

Before you do that, how about being really certain and doing a MWAV scan?

I need you to download MWav to a convenient location.

This scan might take around 3+ hours to finish when set to scan everything.
I need you to run MWav by double-clicking on mwav.exe.
Put a check next to the below items before scanning:
  • Memory
  • Startup Folders
  • Drive - All Local Drives
  • Folder - then click "browse" to change the directory to C: (default is C:\Windows)
  • System Folders
  • Services
  • Include Sub-Directory
  • Scan All Files
Please make sure ALL of these are checked, then press the Scan button. This typically will take hours to complete.

**NOTE*** Sometimes MWav will pause and it appears to be finished, but it isn't done. Just let it run until it says it's complete.

On the bottom portion of the window, you will see the lower panel where MWav is listing "infected items". When it's done scanning, please highlight everything in that lower panel and copy them by holding CTRL + C then paste it here. The whole log will be extremely BIG so there is no way to post the log. I just need the infected items list.
  • 0

Advertisements


#17
jsfrey

jsfrey

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Phil,

Run mwav in safe mode?
  • 0

#18
Crustyoldbloke

Crustyoldbloke

    Old Malware Surgeon with a shaky scalpel

  • Retired Staff
  • 15,130 posts
No, normal mode
  • 0

#19
jsfrey

jsfrey

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Will do - thanks
  • 0

#20
jsfrey

jsfrey

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Phil,

The error log itself is huge! The summary :


Tue Aug 23 14:59:56 2005 => Total Objects Scanned: 133166
Tue Aug 23 14:59:56 2005 => Total Virus(es) Found: 1089
Tue Aug 23 14:59:56 2005 => Total Disinfected Files: 0
Tue Aug 23 14:59:56 2005 => Total Files Renamed: 0
Tue Aug 23 14:59:56 2005 => Total Deleted Objects: 0
Tue Aug 23 14:59:56 2005 => Total Errors: 2675
Tue Aug 23 14:59:56 2005 => Time Elapsed: 02:41:12
Tue Aug 23 14:59:56 2005 => Virus Database Date: 2005/08/22
Tue Aug 23 14:59:56 2005 => Virus Database Count: 144970


I've communicated with the XP forum and they feel a reload is the only way out at this point. I agree and my administrator in Atlanta is prepared to revieve my PC and do so. Undoubtedly, somehow I got eaten up! Which brings me to my next question. I'm pretty careful where I go on the internet and also don't open unknown emails. Yet a month or so ago, I got infected and though I had it cleaned. Could all of this just taken off from there?

When I get my PC back, what suggestions do you have that I should use to protect myself. I've used SpyBot, Adaware, MS Antivirus, Trend for Anti-virus, etc.

I appreciate your help! Though not as successful as I would have hoped, the work identified a far more serious problem than I would have imagined.

One thing more, I do a lot of financial stuff on the internet - Do you think any of my login and passwords could now be jeopardized.

Please post recommendations and I'll be picking up upon return of my laptop.

Many thanks ( I will be contributin)
  • 0

#21
Crustyoldbloke

Crustyoldbloke

    Old Malware Surgeon with a shaky scalpel

  • Retired Staff
  • 15,130 posts
I think I would agree with the advice of a reformat with all these problems.

Looking at the infections you had, I didn't spot any of the ones known for stealing your passwords, and most financial institutions these days have beaten the key-loggers by introducing a drop-down selection, where only a mouse click is used.

For the number of trojans to be in existence on your PC, I would think it is very likely that the main infection is not recent.

Moving on to future protection, I would suggest AVG antivirus with a daily update and scan (FREE). Microsoft Antispyware with daily scan and update (FREE). Ewido, Spybot and Ad-Aware for on demand scanning once a week. But No. 1 safety tip is use Mozilla Firefox.

The M/$oft builtin firewall is fine, there is no need for another. Here's a list of a few of the items I have mentioned that have the endorsement of GeeksToGo. You'll notice the absence of MSAS because it is still in Beta mode.

These programmes help keep the computer clean:

SPYWARE BLASTER - Blocks bad ActiveX items from installing on your computer.
AD-AWARE PERSONAL – A fine free malware detector and removal programme
SPYBOT S&D – Excellent free spyware detector and removal programme
GOOGLE TOOLBAR - Blocks many unwanted pop-ups in Internet Explorer.
FIREFOX - Safer alternative to the Internet Explorer web browser.
AVG ANTIVIRUS - Free antivirus programme if you currently are not using one.
ZONEALARM - Free firewall programme if you currently are not using one (Windows XP has a built-in firewall).

Remember to update these frequently.

Please note that whilst there is nothing wrong in having more than one antispyware programmes for “on demand” scanning, having two or more antivirus systems is not recommended as they may well interfere with each other.

You may also want to read "How did I get infected in the first place" to learn how to better secure your computer.

Be sure to keep your Windows, antispyware and antivirus updated.

Good luck Scott!. I would enter your MWav log into the notarised hall of fame at GTG for the most infections on one PC, but we had one a few days ago with 21,000 infections on it.
  • 0

#22
Crustyoldbloke

Crustyoldbloke

    Old Malware Surgeon with a shaky scalpel

  • Retired Staff
  • 15,130 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :tazz:

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP