fnm5D.tmp & SB-CLSID-cache.dat

Welcome to Majorgeeks!

I need the logs from ShowNew & CounterSpy as requested in the READ ME. However this does not sound like malware. It just sounds like temp files being created by somethings that you are running on your PC.

 

You're welcome. You still forgot to attach the log from CounterSpy.

Why didn't you install and run Spybot as requested in the READ ME? Please do this now! Make sure you run a full scan and also use the Immunize feature. DO NOT use Teatimer.


Are the below programs paid or free versions?
SpyCatcher Express 2006
Spyware Doctor 4.0

Uninstall the below old version of Sun Java
Java 2 Runtime Environment, SE v1.4.1_02

Did you copy MSconfig from another PC to this Windows 2000 PC which does not have MSconfig as part of the OS?

"C:\WINNT\system32\"
msconfig.exe Jun 5 2006 145408 "msconfig.exe"

Also you appear to be using MSconfig to control startups which we specifically request that you not do in the READ ME. You must select normal startup.

You logs are really not showing any signs of malware problems!

 

For some reason it is not showing in your Uninstall programs list at the end of the ShowNew log. Look for yourself. Does it appear in Add/Remove Programs?

We don't ask for one in the READ ME and I did not ask for one either. I did however ask for a CounterSpy log!

This is not how Microsoft intended MSconfig to be used. It is only meant to be used as a temporary debugging tool. Things that you do not want to run at startup should either be uninstalled or if you still need them but do not want them to run at startup, you should disable the program itself from loading at startup. Also better tools exist then using MSconfig. For example: Startup CPL

Processes are always running on your PC and some of them may be accesing the harddisk. There are also disk indexing services that run and cause lots of disk activity.

What CLISD files and where are they located? Be specific.

 

You should uninstall it, REBOOT, and then reinstall.

Then they are not worth having installed.

There is no sense in running the scans unless you allow them to fix the problems they find. You told CounterSpy to ignore everything.

 

WeatherBug is a program that has received much debate on weather it is malware. It is definitely adware supported. Did you notice that it adds literally many hundreds of keys to your registry? While it is up to you weather you want to remove it or not, most scanners detect it as a problem and remove it. The second item eDonkey2000 contains bundled malware and should not be used. Many malware removal forums will refuse to even work on a PC until all P2P programs have been uninstalled. Since P2P programs can be a source or malware, they can download new malware on to a PC faster than we can clean it so it can be a complete waste of time trying to remove malware while programs like this are present.

They just sound to me like they belong to an application you are running. While it is running, the temporary files cannot be deleted. Do you still have SpyCatcher installed?

 

I really did not want you to rerun it. I wanted to see if you had uninstalled it because I said to uninstall it. I never use it. It could even be a source of the temp files.

There are many tools that can be used to do all kinds of things. They just are not necessarily things for novices to use. If you want to hunt this down further you could do several things:

1. look at the contents of the files to see if there is anything in them that reveals what they are from.
2. look at file Properties for Version info (if any exists)
3. Use a program like this: Filemon v7.03
4. Also this can prove useful: Regmon v7.03