My original post can be found at https://www.techspot.com/vb/topic153408.html#post934328. I was told to come here with my logs for further help. The laptop that has the problem is a HP mini-notebook WinXp Pro Sp3, no cd rom, no internet access. I have limited program capabilities and was not able to get an antivirus program to work on it so I used Stinger.
The logs I acquired didn't produce much information, at least not to me. Hopefully they'll help someone help me fix this darn computer. Thanks in advance for your help!
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4618
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
9/17/2010 5:32:46 AM
mbam-log-2010-09-17 (05-32-46).txt
Scan type: Quick scan
Objects scanned: 128226
Time elapsed: 8 minute(s), 35 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-09-17 08:25:07
Windows 5.1.2600 Service Pack 3
Running: 8fsr40nf.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kxtdapow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\drivers\sbaphd.sys (Sunbelt ActiveProtection hook driver/Sunbelt Software) ZwCreateKey [0xBA5DC4D0]
SSDT \SystemRoot\system32\drivers\sbaphd.sys (Sunbelt ActiveProtection hook driver/Sunbelt Software) ZwSetValueKey [0xBA5DC520]
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Tcpip \Device\Ip sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- Files - GMER 1.0.15 ----
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP58\A0029376.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0036550.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0036562.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0037562.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038572.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038580.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038626.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038724.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038734.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038772.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038877.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038902.exe:BAK 22528 bytes executable
---- EOF - GMER 1.0.15 ----
DDS (Ver_10-03-17.01) - NTFSx86
Run by Administrator at 8:50:08.14 on Fri 09/17/2010
Internet Explorer: 8.0.6001.18702
============== Running Processes ===============
ProcessList.txt
(log empty)
Please let me know if you need more from me. Thanks so much!
The logs I acquired didn't produce much information, at least not to me. Hopefully they'll help someone help me fix this darn computer. Thanks in advance for your help!
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4618
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
9/17/2010 5:32:46 AM
mbam-log-2010-09-17 (05-32-46).txt
Scan type: Quick scan
Objects scanned: 128226
Time elapsed: 8 minute(s), 35 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-09-17 08:25:07
Windows 5.1.2600 Service Pack 3
Running: 8fsr40nf.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kxtdapow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\drivers\sbaphd.sys (Sunbelt ActiveProtection hook driver/Sunbelt Software) ZwCreateKey [0xBA5DC4D0]
SSDT \SystemRoot\system32\drivers\sbaphd.sys (Sunbelt ActiveProtection hook driver/Sunbelt Software) ZwSetValueKey [0xBA5DC520]
---- Devices - GMER 1.0.15 ----
AttachedDevice \Driver\Tcpip \Device\Ip sbtis.sys (Sunbelt TDI Inspection System/Sunbelt Software)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- Files - GMER 1.0.15 ----
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP58\A0029376.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0036550.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0036562.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0037562.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038572.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038580.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038626.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038724.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038734.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038772.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038877.exe:BAK 22528 bytes executable
ADS C:\System Volume Information\_restore{3FD2A93B-1907-40CA-B118-F1030994E5A2}\RP60\A0038902.exe:BAK 22528 bytes executable
---- EOF - GMER 1.0.15 ----
DDS (Ver_10-03-17.01) - NTFSx86
Run by Administrator at 8:50:08.14 on Fri 09/17/2010
Internet Explorer: 8.0.6001.18702
============== Running Processes ===============
ProcessList.txt
(log empty)
Please let me know if you need more from me. Thanks so much!