Dell XPS 400 With Possible Virus

Free antivirus : AVG Free Free Anti-spyware AVG Anti SpywareFree Firewall :Zone Alarm Ccleaner Ad aware & ManualSpybotS&D&Manual Free Handy programs

Follow fozzie's instructions for posting a hijackthis log.

Flavallee, the Hijack This Log you requested: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 2:11:22 AM, on 6/7/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3

Using the site is easy and fun. Robotics\\Instant Update\\InstUpDt.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "8097:TCP"= 8097:TCP:EarthLink UHP Modem Support "50508:TCP"= 50508:TCPORT_50508 "44763:TCP"= 44763:TCPORT_44763 "60176:TCP"= 60176:TCPORT_60176 "63807:TCP"= 63807:TCPORT_63807 "11051:TCP"= 11051:TCPORT_11051 "18796:TCP"= 18796:TCPORT_18796 "65357:TCP"= 65357:TCPORT_65357 "62543:TCP"= 62543:TCPORT_62543 "57738:TCP"= 57738:TCPORT_57738 "34896:TCP"= 34896:TCPORT_34896 This site is completely free -- paid for by advertisers and donations. But I found a paper that came with my computer, stating: Your new computer does not require an operating system CD or drivers CDs.

Dell PC Restore: returns your computer to its original operating state.

Click here to join today! The array does report it is "Rebuilding". usb ports only work sometimes, not at all for my ipods. All rights reserved.

c:\windows\system32\ati2evxx.exe c:\windows\ehome\ehrecvr.exe c:\windows\ehome\ehSched.exe c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\windows\system32\3cshtdwn.exe c:\program files\Memeo\AutoBackup\MemeoBackup.exe c:\windows\system32\dllhost.exe c:\windows\system32\dlcdcoms.exe . ************************************************************************** . http://www.justanswer.com/computer/4t85i-dell-xps-400-just-major-virus-hit.html In Go to Solution 2 Participants Dr. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the HJT Team. That may cause it to stall or freeze **** Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.

HKLM\Software\Microsoft\Windows\CurrentVersion\Run DLCDCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLCDtime.dll,[email protected]??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? http://xmailing.net/dell-xps/dell-xps.php Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. Positive feedback and bonuses are always appreciated. so i scanned with avast in safe mode with system restore already disabled it found a few viruses and said it deleted them but i restarted in normal mode and this

Doing so can result in system changes which may not show it the log you already posted. This means it will fall in line behind any others posted that same day.Start a new topic, give it a relevant title and post your log along with a brief description If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. http://xmailing.net/dell-xps/dell-xps-mx1530-and-dell-sp2309w.php or read our Welcome Guide to learn how to use this site.

If you post another response there will be 1 reply. Credentials confirmed by a Fortune 500 verification firm. Select Safe Mode with command prompt 4.

O4 - HKLM\..\Run: [PromoReg] C:\WINDOWS\TEMP\BN1A.tmp http://www.sysinfo.org/startuplist.php?filter=PromoReg O4 - HKUS\S-1-5-18\..\Run: [system tool] C:\WINDOWS\sysguard.exe (User 'SYSTEM') http://www.sysinfo.org/startuplist.php?filter=sysguard.exe I'm also suspicious of these log entries and a few others: O2 - BHO: C:\WINDOWS\system32\adhg873ujhdg.dll -

Wait for a reply and instructions. ---------------------------------------------------------------- Right-click MY COMPUTER, click Properties - Hardware - Device Manager, then click the + in: Display Adapters Network Adapters Sound Video And Game Controllers Join & Ask a Question Need Help in Real-Time? Dell XPS 400 Any help is appreciated! 0 Comment Question by:bmilne1957 Facebook Twitter LinkedIn https://www.experts-exchange.com/questions/25340637/Dell-XPS-400-Raid-1-Can-not-boot-completly-into-windows-possible-virus.htmlcopy Best Solution bybmilne1957 For clarification, I would attach another SATA drive to the onboard SATA controller Boot from a single drive, and use the RAID set for mass storage. 0 Message Accepted Solution by:bmilne1957 bmilne1957 earned 0 total points ID: 276134122010-03-09 For clarification, I would attach

Then you can work on recovering the RAID array with a working Windows system. if anybody knows what might be going on here please let me know cause i can't live without clicking through files on the c drive haha! If yours is not listed and you don't know how to disable it, please ask. his comment is here c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat c:\documents and settings\Golden Beauty\Local Settings\Temporary Internet Files\fbk.sts c:\program files\Microsoft Common c:\program files\newdotnet c:\program files\newdotnet\nnrun.exe c:\program files\newdotnet\readme.html c:\program files\newdotnet\uninstall.exe c:\program files\ThunMail c:\program

Get 1:1 Help Now Advertise Here Enjoyed your answer? Javascript Disabled Detected You currently have javascript disabled. dvk01, Jun 7, 2009 #3 dvk01 Derek Moderator Malware Specialist Joined: Dec 14, 2002 Messages: 50,447 if you want to restore to factory settings instead of attempting to fix it then JocelynMeadows, Jun 7, 2009 #1 Sponsor flavallee Frank Trusted Advisor Joined: May 12, 2002 Messages: 72,178 Jocelyn: According to these log entries, your Dell is infected.

It tells me that there are no previous checkpoints to go back too. A member of the Team will walk you through, step by step, on how to clean your computer. If I scan my machine it goes through all of my directories that use to be there, but I can not see them or use them. The Progress window will appear.

Ask Your Own Computer Question Customer: replied5 years ago. How JustAnswer Works: Ask an Expert Experts are full of valuable knowledge and are ready to help with any question. O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aim toolbar 5.0\resources\en-US\local\search.html O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) Tech Support Guy is completely free -- paid for by advertisers and donations.

Click here to Register a free account now! In the future, use single non-raid drive for O/S and raid for the data drive. scan completed successfully hidden files: 0 ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (LocalSystem) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,69,d0,21,66,2f,03,23,4c,b9,1d,12,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,69,d0,21,66,2f,03,23,4c,b9,1d,12,\ [HKEY_LOCAL_MACHINE\software\Classes\.application\bootstrap] @DACL=(02 0000) @="bootstrap.application.1" . --------------------- DLLs Loaded Close any open browsers and any other programs you might have running Double click on combofix.exe & follow the prompts.If you are using windows XP It might display a pop up

Follow the prompts to pick a restore date and time you are sure the issue wasn't on your computer. Please post the "C:\ComboFix.txt" along with a new HijackThis log for further review ****Note: Do not mouseclick combofix's window while it's running. Connect with top rated Experts 20 Experts available now in Live! Ask Bernie Your Own Question Bernie, Computer Specialist Category: Computer Satisfied Customers: 7140 Experience: 6+ years experience, Microsoft MCDST/CompTia A+ Certified 46068869 Type Your Computer Question Here...

