something has taken over

Something has taken over my computer. I have run all the pre-posting steps, also have Pc-cillin internet security 2005 installed. I was hoping that the extensive package of downloaded spyware programs etc. would clean off the problem but alas it hasn't.

After I re-boot my computer, within 30 minutes any attempts to use it bring up a "system dangerously low on resources" message. Additionally, I frequently get another un-solicited windows pop up stating that "there is currently no connection available to the internet" and asks if I would like to try again or work offline.

I am running windows 98 on a pentium 3 with 96 megs of ram.

I have checked the startup files and very little is checked to start up at re-boot. I downloaded a process explorer and have not seen anything un-identified running (that I know of )

I have very few problems with my online usage. In fact, if I get online, the computer does not seem to have its freeze up problem.

I don't know if this is a spyware/malware problem but would welcome any suggestions.

thanks

 

Thanks for the quick reply.

Attached is the hjt logfile.

Thanks,
jeff

 

Attached is the new hjt log file.

I thought I had run the trend micro house call before but remembered that I was booted off before it finished running. I ran it again today.

Eliminated the lines as suggested. Do not know why line 014 reads as it does.

Alas, still having the same difficulties. The window still continues to appear saying that no connection to the internet is available. Also, the computer locks up after a period of time from lack of system resources and requires control/alt/delete to reboot.

I have noticed that my pc-cillin real time scan frequently pops up a message saying it has detected something and under "action taken" it remarks "denied access". I don't know if this means the problem file blocked access for removal by trend micro or if trend micro blocked access.

Any other suggestions?

thanks
jeff

 

I am using dial up through aol.

I switched to Firefox after I started having all these problems. It really cut down on all the bad traffic.

I don't have a problem connecting to the internet - the message box that frequently pops up comes un-solicited and is never associated with me actively trying to get online. It makes me wonder if there is some sort of malware that is trying to send information out.

I still have a systems resource problem.

Maybe a new computer is the solution?

 

chaslang-

sorry for the confusion!

The window pops up un-solicited. This morning it came up just after re-booting.

It is a windows type box with a blue band at the top in which is written "Work Offline"
The text within the box reads:

"No connection to the interent is currently available. To view internet content that has been saved to your computer, click Work Offline.

Click Try Again to attempt to connect."

Then below that are two buttons, one for Work Offline and one for Try Again. If work offline is selected, the window temporarily disappears and then comes back. A second click on Work Offline makes it go away. A single click on Try again makes it go away. It also randomly pops up at other times other than just at re-boot.

When I re-boot the computer, my system resources are around 94% free.

Attached is the startup file from hjt.

I appreciate your attention and time - time has got to be the most valuable commodity we all have.

jeff

 

You know how when your car is making a funny sound and you take it to the shop it always DOESN'T make the sound when you need it to? I haven't been able to get that little window to pop back up this afternoon.

In the meantime, I searched but did not find wgock32.dll. The closest thing I did find was WeOCK32.DLL which was 305 kb large and had been created today.

I mentioned in an earlier post some questions I have about how my pc-cillin was operating. I modified the program from it's default settings on real-scan mode and now it has been quanantining some files that I think previously had remained in the computer. I will see if that has a positive effect.

As soon as I get that little pop-up again I will run hjt again and post the file.

thanks

 

I think we may have nipped it in the bud.

For the first time in two months I left my computer on last night and was able to sit down and get online without a control/alt/delete first.

The combination of finding those lines in hjt combined with the new settings on the pc-cillin seems to have cleaned off the problem for now.

If anyone else is having a similar problem - A manual scan finds no viruses, the online scan found no viruses, but they seem to get detected by the real-time scan feature. The default setting on pc-cillin real time scan for what to do with an infected file is "recommended action" - seems to make sense. I switched it to take a specified action of cleaning or quarantining and suddenly started nabbing stuff. The interesting thing is that a particular virus would be associated with several different files before it was successfully quarantined.

Thanks for all your help!! I have started implementing my new-found knowledge of these methods and hjt to clean out my in-laws computer.

jeff