Need some support.

cooldegri · Aug 9, 2006

Ok so I've been having problems with my computer running slowly. Especially when I try to run Outlook Express 6. I kept noticing when I started the program it would throw dl.exe up on my desktop. I did some research and found out that it is very undesirable to say the least. I also get an regenv32 error when I shut down that I've tried to fix through microsoft's help pages. I've tried running a lot of spyware removal programs in safe mode and no matter what I've done it seems to still pop up everynow and then. So I did some more research and I feel upon this glorious forum. I'm running Windows Me and I know to say that I'm outdated is an understatement, but it gets me by until I can afford to upgrade. I went to the run me first topic and went through the 7 steps. I downloaded all the files needed. I Started up in safe mode and ran Ccleaner, Spybot, and CounterSpy. I had to reboot into normal mode in order to do the online scans. I've got all of the txt files need except for the Panda ActiveScan. I tried running this scan four times and everytime I did it shut down all of my IE windows at around 95,000 files or so. I even tried rebooting and running bitdefender again. After it shut down I checked my task manager and it showed two iexplore's running still. Don't know what that means but if there is something that I can do to rectify this let me know and I will. After I ran the bitdefender both times it told me that my computer is still infected. I noticed alot of the files that were infected were with the Win32.Gael.3666 virus. Also my bdscan file is about 550 kb which is beyond the max amount. What should I do about this?

cooldegri · Aug 9, 2006

Here is my Hijack This files as well. Thanks very much in advance for any help. It is greatly appreciated!

cooldegri · Aug 9, 2006

So I thought I'd just split up my bdscan into 3 parts in order to get it uploaded here. Again thanx for any help!!

chaslang · Aug 11, 2006

Welcome to Majorgeeks!

You seem to have slipped by us without being noticed. I'm very sorry about that.

You appear to have an infection that has gotten itself into many of the files belonging to your Windows ME operating system. Its also may be infecting other executables.

You have this: http://www.bitdefender.com/VIRUS-137049-en--Win32.Gael.3666.html

This probably occurred because you are running your PC with not protection (no antivirus and no firewall). You also may be out of date with your Windows updates. I'm not sure we are going to be able to fix this (procedures to fix normally require a reinstall of the OS) but let's give it a try.

First download the below antivirus program and install it and get updates. Do not run a scan with it while in normal boot mode. If it starts one, just stop it. Then reboot your PC into safe mode and run a scan with it.

AntiVir Personal Edition 7 for Win9x/ME

If you can save a log from the above please do so.

While in safe mode, also locate the below file and delete it:

C:\dl.exe

Also delete all files and subfolders in the below folder:
C:\WINDOWS\TEMP\

Afterwards, run a new scan with Bitdefender online and attach the new log file. If you have to run it in normal boot mode, that's okay! I doubt this will work because in most cases this virus will infect each program run on the PC including the antivirus program just installed.

cooldegri · Aug 11, 2006

Did what you said and here are my results. What next

chaslang · Aug 12, 2006

See step 1 on the READ ME and disable your system restore! But do not re-enable yet.

After disabling it, disconnect (unplug) your cable to the internet and then make sure you reboot! After reboot run Antivir again and save a new log. Attach the new log here.

cooldegri · Aug 12, 2006

Think that might have done it. Not sure though. I haven't re-enabled my restore yet and won't until you say so. Also I down loaded outpost firewall and if it's running it won't let me pull up the web. Can you possibly walk me though to configure it so that I can. You've been a great help so far, thanks so much

chaslang · Aug 12, 2006

cooldegri said:

Also I down loaded outpost firewall and if it's running it won't let me pull up the web.
Click to expand...

You probably just blocked some processes from having access to the internet that need. For example your browser (or browsers). Like iexplore.exe. If you don't pay attention to what you are running and what pops up in a firewall and choose the wrong answer. You can block valid applications from having the access that they require. Likewise you can make a mistake and allow a malware process to have access when you should not. That is why you have to have a feeling for what YOU are running and and what the process names are. Just open the firewall and look at the programs/processes that you are blocking from having access and make sure you did not block iexplore.exe, explorer.exe, or svchost.exe.

Now re-enble System Restore. After that, you should work thru the below link:

How to Protect yourself from malware!

Log in or Sign up

Need some support.

cooldegri Private E-2

Attached Files:

newfiles.txt

runkeys.txt

CounterSpy.txt

cooldegri Private E-2

Attached Files:

hijackthis.log

cooldegri Private E-2

Attached Files:

bdscan1.txt

bdscan2.txt

bdscan3.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

cooldegri Private E-2

Attached Files:

Bdscan4.txt

AVSCAN.LOG.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

cooldegri Private E-2

Attached Files:

AVSCAN.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member