You are here:
Computer Security & Viruses/viruses
Advertisement
Question
QUESTION: Hey I know you are the best so here's the hijack log from my dad's laptop he has ruined. He can't bootup without it freezing. Also when is safe mode his profile is missing.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:43:47 PM, on 4/4/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by118fd.bay118.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_si
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IBM PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
--
End of file - 4020 bytes
ANSWER: Hi Aaron
There is no malware showing up in the HJT log. I'm thinking it's either a hardware issue, such as failing RAM or hard drive, or it could be a corruption in the Windows system files. Has he uninstalled anything recently which may have caused a corruption? Do you have a restore disk to fix any corrupt files with? Also, run a Belarc Advisor scan and send the log in an html attachment to numbersix6@yahoo.com. Here is the link:
http://www.belarc.com/free_download.html
Brian
---------- FOLLOW-UP ----------
QUESTION: Here's the belarc log
Computer Profile Summary
Computer Name: Mercury
Profile Date: Saturday, April 04, 2009 10:57:57 PM
Advisor Version: 7.2x
Windows Logon: Boys
Click here for Belarc's System Management products, for large and small companies.
Operating System System Model
Windows XP Professional Service Pack 2 (build 2600) No details available
Processor a Main Circuit Board b
700 megahertz Intel Pentium III
32 kilobyte primary memory cache
256 kilobyte secondary memory cache No details available
Drives Memory Modules c,d
30.01 Gigabytes Usable Hard Drive Capacity
2.00 Gigabytes Hard Drive Free Space
MATSHITA DVD-ROM SR-8177 [CD-ROM drive]
IC25N030ATCS04-0 [Hard drive] (30.00 GB) -- drive 0, s/n CSH305DAM6H99B, rev CA3OA71A, SMART Status: Healthy
USB Flash Disk USB Device (1.01 GB) -- drive 1 256 Megabytes Installed Memory
Local Drive Volumes
c: (NTFS on drive 0) 30.01 GB 2.00 GB free
Network Drives
None detected
Users (mouse over user name for details) Printers
local user accounts last logon
Boys 4/4/2009 7:23:41 PM (admin)
Guest 11/26/2008 8:31:01 AM
local system accounts
Administrator never (admin)
HelpAssistant never
SUPPORT_388945a0 never
user 4/4/2009 7:17:54 PM (admin)
DISABLED Marks a disabled account; LOCKED OUT Marks a locked account
None detected
Controllers Display
Standard floppy disk controller
Intel(r) 82371AB/EB PCI Bus Master IDE Controller
Primary IDE Channel [Controller]
Secondary IDE Channel [Controller] S3 Graphics Inc. SavageIX [Display adapter]
Bus Adapters Multimedia
Texas Instruments PCI-1450 CardBus Controller (2x)
Intel(r) 82371AB/EB PCI to USB Universal Host Controller Crystal SoundFusion(tm) Audio Device
Communications Other Devices
Xircom MPCI+ Modem 56 WinGlobal
IEEE 802.11g Wireless Cardbus/PCI Adapter #2
Intel(R) PRO/100+ MiniPCI
Physical Address: 28:B7:01:54:05:42
Microsoft AC Adapter
Microsoft ACPI-Compliant Control Method Battery
IBM ThinkPad Fast Infrared Port
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
IBM PS/2 TrackPoint [Mouse]
USB Mass Storage Device
USB Root Hub
Virus Protection [Back to Top]
No details available
Missing Microsoft Security Hotfixes [Back to Top]
These required security hotfixes (using the 03/10/2009 Microsoft Security Bulletin Summary) were not found installed. Note: CIS benchmarks require that Critical and Important severity security hotfixes must be installed.
Q952069 - Important (details...)
Q954600 - Important (details...)
Q956357 - Important (details...)
Q956802 - Critical (details...)
Q958215 - Critical (details...)
Q958436 - Important (details...)
Q958687 - Critical (details...)
Q958690 - Critical (details...)
Q960225 - Important (details...)
Q960714 - Critical (details...)
Installed Microsoft Hotfixes [Back to Top]
CAPICOM
no verification data KB931906 on 5/13/2007 (details...)
Internet Explorer
no verification data SP2 (SP2)
Office Small Business Edition 2003
no verification data KB907417 on 5/27/2006 (details...)
no verification data KB921598 on 8/20/2008 (details...)
no verification data KB923618[SP] on 7/13/2008 (details...)
no verification data KB943649 on 12/12/2007 (details...)
no verification data KB943973 on 4/3/2008 (details...)
no verification data KB945185 on 4/3/2008 (details...)
no verification data KB948988 on 8/20/2008 (details...)
no verification data KB950213 on 5/16/2008 (details...)
no verification data KB951535 on 11/13/2008 (details...)
no verification data KB953404 on 9/10/2008 (details...)
no verification data KB953432 on 7/14/2008 (details...)
no verification data KB954464 on 8/20/2008 (details...)
no verification data KB954478 on 9/10/2008 (details...)
no verification data KB955466 on 10/18/2008 (details...)
no verification data KB957832 on 11/13/2008 (details...)
Windows Media Format 11 SDK
no verification data KB929399 (details...)
SP0
passed verification KB929399 on 4/3/2008 (details...)
Windows Media Player 11
no verification data KB936782_WMP11 (details...)
no verification data KB939683 (details...)
no verification data KB954154_WM11 (details...)
SP0
passed verification KB939683 on 4/3/2008 (details...)
passed verification KB954154_WM11 on 9/10/2008 (details...)
SP2
passed verification KB936782_WMP11 on 4/3/2008 (details...)
Windows Media Player 6.4
no verification data KB925398_WMP64 (details...)
SP0
passed verification KB925398_WMP64 on 3/23/2007 (details...)
Windows Media Player 9
no verification data KB917734_WMP9 (details...)
SP0
passed verification KB911565 on 5/27/2006 (details...)
passed verification KB917734_WMP9 on 6/17/2006 (details...)
Windows Media Player
SP0
passed verification KB911564 on 5/27/2006 (details...)
Windows XP
no verification data KB941569 (details...)
SP0
passed verification KB941569 on 4/3/2008 (details...)
SP10
passed verification MSCOMPPACKV1 on 12/31/2007 (Microsoft Compression Client Pack 1.0 for Windows XP)
SP2
no verification data KB811113[SP] on 5/12/2006 (details...)
SP3
passed verification KB873339 on 5/27/2006 (details...)
passed verification KB885250 on 5/27/2006 (details...)
passed verification KB885835 on 5/27/2006 (details...)
failed verification KB885836 on 5/27/2006 (details...) Reinstall!
passed verification KB886185 on 5/27/2006 (details...)
passed verification KB887472 on 5/27/2006 (details...)
passed verification KB887742 on 5/27/2006 (details...)
passed verification KB888113 on 5/27/2006 (details...)
passed verification KB888302 on 5/27/2006 (details...)
passed verification KB890046 on 5/27/2006 (details...)
passed verification KB890859 on 5/27/2006 (details...)
passed verification KB891781 on 5/27/2006 (details...)
passed verification KB893756 on 5/27/2006 (details...)
passed verification KB893803V2 on 5/25/2006 (details...)
passed verification KB894391 on 5/27/2006 (details...)
passed verification KB896358 on 5/27/2006 (details...)
passed verification KB896422 on 5/27/2006 (details...)
passed verification KB896423 on 5/27/2006 (details...)
passed verification KB896424 on 5/27/2006 (details...)
passed verification KB896428 on 5/27/2006 (details...)
passed verification KB898461 on 5/25/2006 (details...)
passed verification KB899587 on 5/27/2006 (details...)
passed verification KB899589 on 5/27/2006 (details...)
passed verification KB899591 on 5/27/2006 (details...)
passed verification KB900485 on 5/27/2006 (details...)
passed verification KB900725 on 5/27/2006 (details...)
passed verification KB901017 on 5/27/2006 (details...)
passed verification KB901214 on 5/27/2006 (details...)
passed verification KB902400 on 5/27/2006 (details...)
passed verification KB904706 on 5/27/2006 (details...)
passed verification KB905414 on 5/27/2006 (details...)
passed verification KB905749 on 5/27/2006 (details...)
passed verification KB908519 on 5/27/2006 (details...)
passed verification KB908531 on 5/27/2006 (details...)
passed verification KB910437 on 5/27/2006 (details...)
passed verification KB911280 on 7/1/2006 (details...)
passed verification KB911562 on 5/27/2006 (details...)
passed verification KB911567 on 5/27/2006 (details...)
passed verification KB911927 on 5/27/2006 (details...)
passed verification KB912812 on 5/27/2006 (details...)
passed verification KB912919 on 5/27/2006 (details...)
passed verification KB913446 on 5/27/2006 (details...)
passed verification KB913580 on 5/27/2006 (details...)
passed verification KB914388 on 7/29/2006 (details...)
passed verification KB914389 on 6/17/2006 (details...)
passed verification KB916281 on 6/17/2006 (details...)
passed verification KB916595 on 7/29/2006 (details...)
passed verification KB917159 on 7/29/2006 (details...)
passed verification KB917344 on 6/17/2006 (details...)
passed verification KB917422 on 3/23/2007 (details...)
passed verification KB917953 on 6/17/2006 (details...)
passed verification KB918118 on 3/23/2007 (details...)
passed verification KB918439 on 6/17/2006 (details...)
passed verification KB919007 on 3/23/2007 (details...)
Windows XP
SP3 (continued)
passed verification KB920213 on 3/23/2007 (details...)
passed verification KB920670 on 3/23/2007 (details...)
passed verification KB920683 on 3/23/2007 (details...)
passed verification KB920685 on 3/23/2007 (details...)
passed verification KB920872 on 3/23/2007 (details...)
passed verification KB921503 on 8/17/2007 (details...)
passed verification KB922582 on 3/23/2007 (details...)
passed verification KB922819 on 3/23/2007 (details...)
passed verification KB923191 on 3/23/2007 (details...)
passed verification KB923414 on 3/23/2007 (details...)
passed verification KB923694 on 3/23/2007 (details...)
passed verification KB923980 on 3/23/2007 (details...)
passed verification KB924191 on 3/23/2007 (details...)
passed verification KB924270 on 3/23/2007 (details...)
passed verification KB924496 on 3/23/2007 (details...)
passed verification KB924667 on 3/23/2007 (details...)
passed verification KB925902 on 4/4/2007 (details...)
passed verification KB926239 on 12/31/2007 (details...)
passed verification KB926255 on 3/23/2007 (details...)
passed verification KB926436 on 3/23/2007 (details...)
passed verification KB927779 on 3/23/2007 (details...)
passed verification KB927802 on 3/23/2007 (details...)
passed verification KB927891 on 5/25/2007 (details...)
passed verification KB928090 on 3/23/2007 (details...)
passed verification KB928255 on 3/23/2007 (details...)
passed verification KB928843 on 3/23/2007 (details...)
passed verification KB929123 on 6/17/2007 (details...)
passed verification KB929338 on 3/23/2007 (details...)
passed verification KB929969 on 3/23/2007 (details...)
passed verification KB930178 on 4/14/2007 (details...)
passed verification KB930916 on 5/13/2007 (details...)
passed verification KB931261 on 4/14/2007 (details...)
passed verification KB931768 on 5/14/2007 (details...)
passed verification KB931784 on 4/14/2007 (details...)
passed verification KB931836 on 3/23/2007 (details...)
passed verification KB932168 on 4/14/2007 (details...)
passed verification KB933360 on 9/1/2007 (details...)
passed verification KB933566 on 6/18/2007 (details...)
passed verification KB933729 on 10/10/2007 (details...)
passed verification KB935839 on 6/17/2007 (details...)
passed verification KB935840 on 6/17/2007 (details...)
passed verification KB936021 on 8/17/2007 (details...)
passed verification KB936357 on 7/13/2007 (details...)
passed verification KB937143 on 8/17/2007 (details...)
passed verification KB937894 on 12/12/2007 (details...)
passed verification KB938127 on 8/17/2007 (details...)
passed verification KB938828 on 8/17/2007 (details...)
passed verification KB938829 on 8/17/2007 (details...)
passed verification KB939653 on 10/10/2007 (details...)
passed verification KB941202 on 10/10/2007 (details...)
passed verification KB941568 on 12/12/2007 (details...)
passed verification KB941644 on 4/3/2008 (details...)
passed verification KB941693 on 4/9/2008 (details...)
passed verification KB942615 on 12/12/2007 (details...)
passed verification KB942763 on 12/12/2007 (details...)
passed verification KB942840 on 12/12/2007 (details...)
passed verification KB943055 on 4/3/2008 (details...)
passed verification KB943460 on 11/14/2007 (details...)
passed verification KB943485 on 4/3/2008 (details...)
passed verification KB944338 on 4/9/2008 (details...)
passed verification KB944533 on 4/3/2008 (details...)
passed verification KB944653 on 12/12/2007 (details...)
passed verification KB945553 on 4/9/2008 (details...)
passed verification KB946026 on 4/3/2008 (details...)
no verification data KB946627 on 12/22/2007 (details...)
passed verification KB947864 on 4/9/2008 (details...)
passed verification KB948590 on 4/9/2008 (details...)
no verification data KB948881 on 4/9/2008 (details...)
passed verification KB950749 on 5/16/2008 (details...)
SP4
no verification data KB938464 on 9/10/2008 (details...)
passed verification KB946648 on 8/20/2008 (details...)
passed verification KB950759 on 6/11/2008 (details...)
no verification data KB950760 on 6/11/2008 (details...)
passed verification KB950762 on 6/11/2008 (details...)
passed verification KB950974 on 8/20/2008 (details...)
passed verification KB951066 on 8/20/2008 (details...)
passed verification KB951072-V2 on 8/20/2008 (details...)
passed verification KB951376 on 6/11/2008 (details...)
passed verification KB951376-V2 on 6/21/2008 (details...)
passed verification KB951698 on 6/11/2008 (details...)
passed verification KB951748 on 7/21/2008 (details...)
passed verification KB952287 on 8/20/2008 (details...)
passed verification KB952954 on 8/20/2008 (details...)
passed verification KB953838 on 8/20/2008 (details...)
no verification data KB953839 on 8/20/2008 (details...)
passed verification KB954211 on 10/18/2008 (details...)
passed verification KB955069 on 11/13/2008 (details...)
passed verification KB956390 on 10/18/2008 (details...)
no verification data KB956391 on 10/18/2008 (details...)
passed verification KB956803 on 10/18/2008 (details...)
passed verification KB956841 on 10/18/2008 (details...)
passed verification KB957095 on 10/18/2008 (details...)
passed verification KB957097 on 11/13/2008 (details...)
passed verification KB958644 on 10/24/2008 (details...)
Click here to see all available Microsoft security hotfixes for this computer.
[installed security hotfix] Marks a security hotfix (using the 03/10/2009 Microsoft Security Bulletin Summary)
[failing installed security hotfix] Marks a security hotFix that fails verification (a security vulnerability)
verifies OK Marks a hotfix that verifies correctly
fails verification Marks a hotfix that fails verification (note that failing hotfixes need to be reinstalled)
Unmarked hotfixes lack the data to allow verification
Click here for Belarc's System Management products, for large and small companies.
Software Licenses [Back to Top]
Adobe Systems - Adobe Photoshop 7.0 1045-1209-6738-4668-7696-2783
Belarc - Advisor 5afef823
Microsoft - Internet Explorer 55274-OEM-0061232-79845 (Key: VPTJ2-R2DJV-MJV7J-Q93W6-WYRMQ)e
Microsoft - Office Small Business Edition 2003 70034-57996 (Key: BCXQJ-K7433-3DV6J-FK8R6-YFTBB)
Microsoft - WebFldrs XP 12111-38526
Microsoft - Windows XP Professional 55274-OEM-0061232-79845 (Key: VPTJ2-R2DJV-MJV7J-Q93W6-WYRMQ)e
Software Versions (mouse over * for details, click * for location) [Back to Top]
Adobe Acrobat Version 7.0.5.2005092300 *
Adobe ImageReady (tm) 7.0 Version 7.0 *
Adobe Photoshop Version 7.0 *
Adobe Reader Version 7.0.7.2006011300 *
Adobe Systems AdobeDownloadManager Version 2.0 *
Adobe Systems, Inc. Adobe Gamma Loader Version 1, 0, 0, 1 *
Apple Inc. - Bonjour Version 1,0,4,12 *
Apple Inc. - iTunes Version 7.6.2.9 *
Apple Inc. - QuickTime QuickTime 7.4.5 *
Apple Mobile Device Service Version 1, 14, 0, 0 *
Apple Software Update Version 2.1.0.110 *
Belarc, Inc. - Advisor Version 7.2x *
Eraser Version 5.8 *
Full Tilt Poker.NET Version 4, 16, 33, 1 *
Google Updater Version 2.0.734.29932.beta *
GoogleToolbarNotifier Version 1, 2, 1128, 5462 *
IBM PM Service *
iPod Universal Updater Version 5.0.1 *
Macrovision Corporation - InstallShield (R) Version 11.00 *
Microsoft (r) Windows Script Host Version 5.6.0.8820 *
Microsoft Application Error Reporting Version 11.0.8163 *
Microsoft Clip Organizer Version 11.0.8164 *
Microsoft Corporation - Internet Explorer Version 6.00.2900.2180 *
Microsoft Corporation - Messenger Version 4.7.3001 *
Microsoft Corporation - Office Source Engine Version 11.0.5525 *
Microsoft Corporation - SelfCert Version 11.0.8164 * Microsoft Corporation - Windows Installer - Unicode Version 3.1.4000.1823 *
Microsoft Corporation - Windows Movie Maker Version 2.1.4026.0 *
Microsoft Corporation - Windows® NetMeeting® Version 3.01 *
Microsoft Data Access Components Version 3.525.1117.0 *
Microsoft Office 2003 Version 11.0.8231 *
Microsoft Office Document Imaging Version 11.0.8166.2 *
Microsoft Office InfoPath Version 11.0.8161 *
Microsoft Office Outlook Version 11.0.8217 *
Microsoft Office Picture Manager Version 11.0.8161 *
Microsoft Office Save My Settings/Profile Wizard Version 11.0.8161 *
Microsoft(R) MSN (R) Communications System Version 7.02.0005.2202 *
Microsoft® Schedule+ for Windows 95(TM) Version 7.5 *
Microsoft® Visual Studio .NET Version 7.00.9466 *
Mozilla Corporation - Firefox Version 2.0.0.18 *
RealNetworks, Inc. - RealPlayer (32-bit) Version 0.1.1.45 *
RealNetworks, Inc. - RealPlayer (32-bit) Version 11.0.0.446 *
RealNetworks, Inc. - RealPlayer (32-bit) Version 7.0.1.45 *
Safer Networking Limited - Spybot - Search & Destroy Version 1, 4, 0, 3 *
Safer Networking Limited - SpyBot-S&D Version 1, 4, 0, 3 *
Sun Microsystems, Inc. - Java(TM) Platform SE 6 U7 Version 6.0.70.6 *
Sun Microsystems, Inc. - OpenOffice.org Installer Version 1.00 *
Trend Micro Inc. - HijackThis Version 2.00.0002 *
WinImage Self Extractor file Version 8.00.8000 *
WinZip Version 10.0 (6595) *
WinZip Version 10.0 (6698) *
* Click to see where software is installed.
a. Megahertz measurement may be inaccurate if other programs were busy during last analysis.
b. Data may be transferred on the bus at one, two, or four times the Bus Clock rate.
c. Memory slot contents may not add up to Installed Memory if some memory is not recognized by Windows.
d. Memory slot contents is reported by the motherboard BIOS. Contact system vendor if slot contents are wrong.
e. This may be the manufacturer's factory installed product key rather than yours.
Copyright 2000-7, Belarc, Inc. All rights reserved.
Legal notice. U.S. Patents 6085229, 5665951 and Patents pending.
Hi Aaron
Sorry for the delay. That's a lot to go over. There are a number of issues to deal with, but my main concern is over free space remaining and lack of adequate RAM. These issues can cause the freezing up that you mentioned. Here's what you've got:
Windows XP Professional Service Pack 2 (build 2600)
700 megahertz Intel Pentium III
30.01 Gigabytes Usable Hard Drive Capacity
2.00 Gigabytes Hard Drive Free Space
256 Megabytes Installed Memory
XP should run with a minimum 512MB. You should also free up about 8 GB of hard drive space to run optimally.
I am also concerned with the failure of several security hotfixes to install properly. That could point to a corruption in the Windows system files.
You mentioned that in safe mode his profile is missing. Do you mean that his User Account is not available? The Belarc listing of accounts is:
Boys 4/4/2009 7:23:41 PM (admin)
Guest 11/26/2008 8:31:01 AM
local system accounts
Administrator never (admin)
HelpAssistant never
SUPPORT_388945a0 never
user 4/4/2009 7:17:54 PM (admin)
Do any of the administrator accounts work in Safe Mode? At least you could log on as administrator and make necessary changes. Also, do you have the XP disk to do a repair with?
Brian
Related Articles
Computer Security & Viruses
Answers by Expert:
Brian Benosky
Expertise
I will help you in eradicating malware and all forms of virus/trojans/adware. I can answer all PC-related hardware issues. I can also troubleshoot Windows OS errors (all versions) and other software problems. HijackThis logs are a MUST for virus related help. If you do not know how to do this, I have posted easy-to-follow instructions on the Ask a Question page. Every computer infection is different, so I will give you personal instructions on how to remove the malware, not a 'pat' answer. You can be assured of a prompt, polite, and knowledgeable response in all regards.
Experience
I have over 25 years experience in using, building, and repairing computers. I have helped over two thousand people here on AllExperts, with consistent Top Feedback Scores. Please look at my answers here:
http://en.allexperts.com/q/Computer-Security-Viruses-1737/indexExp_84308.htm
I am also a Top Contributor of General Computing answers in Yahoo! Questions.
Education/Credentials
College Educated
Self-taught Computer Skills
©2012 About.com, a part of The New York Times Company. All rights reserved.