I think my PC may have been compromised whilst doing the scans

Discussion in 'Malware Help (A Specialist Will Reply)' started by getthegoose, Apr 4, 2010.

  1. getthegoose

    getthegoose Private E-2

    My PC had slowed WAY down to a virtual standstill in the last week. It hung on just about every click. I suspected it might be malware or a virus and found this site and did all the required scans.

    BTW, the CCleaner was a big help in improving the processing speed. Thanks! However, my PC was still not as fast as it once was.

    I had disabled both AVG 8.5 Free antivirus and Windows Firewall, in order to run the scans. It took a whole day to run the first 4 scans.

    When I had finished the 4th scan (RootRepeal), I checked my Gmail and found that 'I' had sent out bogus mail to everyone in my address book. There was an entry in Gmail Details saying my email account had been accessed by a Mobile in Poland, which is not where I am located.

    I have no idea if the disabling of the AV caused this email problem. But AVG does have an Email Scanner which I had earlier disabled too.

    This morning, I enabled AVG and Windows Firewall and completed the 5th scan (MGTools). All the log files are attached.

    Also, I had noticed that CPU Usage for the last several months had been between 70% and 100%. This can't be normal. Yesterday, I did a search on this and someone suggested that the problem may be with file extensions in Windows Media Player, specifically AVI extensions, which may be missing for some media files. The solution was to disable Media Sharing in Windows Media Player, which I did, and after that, CPU Usage showed mostly between 2% and 4% and up to around 10%. My PC is very much faster now.

    Based on the logs, what action, if any, do I need to take now?

    Thank you in advance.
     

    Attached Files:

    getthegoose, Apr 4, 2010
    #1
  2. getthegoose

    getthegoose Private E-2

    Last and 5th log (MGTools) attached.

    System info:
    Microsoft Windows XP
    Professional Version 2002
    Service Pack 3
    Registered to: User
    IBM Corporation
    Intel Pentium M 1.73GHz
    504 MB RAM
    Physical Address Extension
     

    Attached Files:

    Last edited: Apr 4, 2010
    getthegoose, Apr 4, 2010
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    I'm sorry but you are not having malware problems. Your PC is just too slow/old and does not have enough memory to properly run current versions of Windows XP and other software you are running. Your logs show the below:
    Code:
     
Processor x86 Family 6 Model 13 Stepping 8 GenuineIntel ~1729 Mhz 
Total Physical Memory 512.00 MB 
Available Physical Memory 181.80 MB
    You have an old processor and you only have half of the absolute minimum amount of memory the we recommend for Windows XP. Putting in at least 1 GB ( better to go to 2 GB) would be your best solution.


    Since you are not having malware problems, it is time to do our final steps:
    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    3. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    10. After doing the above, you should work thru the below link:
     
    chaslang, Apr 4, 2010
    #3
  4. getthegoose

    getthegoose Private E-2

    :wave Hello, chaslang!

    Awww! You mean I don't get to do the Drag Into ComboFix thingy?! I was all ready to kick some nasty virii a**!! :boxing

    Sorry, JK! :)

    Wow! Thank you SO much, chaslang, for taking the time and effort to do the checks! I am just delirious with joy that there is no malware or virus in my PC! :celebrate

    I have done the final steps, and everything went super smoothly. As to increasing my memory, I might as well get a new PC, as the screen of this one is busted - has vertical lines on it.

    Much thanks again! Love ya! :heart

    Cheers!
     
    getthegoose, Apr 5, 2010
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Then save your money and apply it towards a new PC. :)

    You're welcome. Surf safely!
     
    chaslang, Apr 6, 2010
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds