SSODL: Excohico - Is this a problem?
- Thread starter Cindylu
- Start date
Hi Cindylu, this one: patexlib.dll Google can't indentify so please delete it. I am 99% sure it's not a good file but allow it to set in the recycle bin for a few days before you delete from there. It is easier to restore a file from there than to hunt for and download them from online.
Let's try this scanner, I tested it this morning and it worked well. I could not see how to copy/paste the results since I am clean.
Please read this information before you proceed, if programs are running the results will be effected as described. I would make sure nothing is running except what you need to start the computer.
http://www.sophos.com/readmes/readsar.txt
http://www.sophos.com/products/free-tools/sophos-anti-rootkit/download/
1. Click on Submit at the bottom
2) Download Sophos Anti-Rootkit
3) Save to your local disk C:\
4) Click the sarsfx.exe icon to open
5) Default location: C:\SOPHTEMP
6) Navigate to the icon and click it to open
7) Click the sargui.exe to open the interface
8) By default all areas are checked, you can
scan the area you wish.
9) When finished, post the results...if you are free
of infection your will see "No hidden items found by scan"
________________________________________
I know nothing of monitoring software, but here is a link to some free stuff:
http://www.google.com/search?source...6-16,GGLG:en&q=free+child+monitoring+software
Can you tell me how much ram you have on the computer and how much drive space you have available.
RAM: right click MyComputer and choose Properties. At the bottom of the System Properties window will be the RAM.
Drive Space: Open MyComputer and then right click the Local Disk (C
and choose Properties. I am interested in the free space you have available.
________________________________________
One last thing to take a look at:
Open Hijackthis.
Click the "Open the Misc Tools" section Button.
Click the "Open Uninstall Manager" Button.
Click the "Save list..." Button.
Save it to your desktop. Copy and paste the contents into your reply.
Your comments:
Kaspersky is a well respected company but I have never used it. We use the free online scanner a lot. Are you using a router? I personally use the free version of Zone Alarm, but there are others available. You want to make sure your SP2 firewall is turned off when running a third party firewall.
Lots of information here: http://www.google.com/search?source...=GGLG,GGLG:2006-16,GGLG:en&q=review+firewalls to help you decide.
Thanks
Let's try this scanner, I tested it this morning and it worked well. I could not see how to copy/paste the results since I am clean.
Please read this information before you proceed, if programs are running the results will be effected as described. I would make sure nothing is running except what you need to start the computer.
http://www.sophos.com/readmes/readsar.txt
http://www.sophos.com/products/free-tools/sophos-anti-rootkit/download/
1. Click on Submit at the bottom
2) Download Sophos Anti-Rootkit
3) Save to your local disk C:\
4) Click the sarsfx.exe icon to open
5) Default location: C:\SOPHTEMP
6) Navigate to the icon and click it to open
7) Click the sargui.exe to open the interface
8) By default all areas are checked, you can
scan the area you wish.
9) When finished, post the results...if you are free
of infection your will see "No hidden items found by scan"
________________________________________
I know nothing of monitoring software, but here is a link to some free stuff:
http://www.google.com/search?source...6-16,GGLG:en&q=free+child+monitoring+software
Can you tell me how much ram you have on the computer and how much drive space you have available.
RAM: right click MyComputer and choose Properties. At the bottom of the System Properties window will be the RAM.
Drive Space: Open MyComputer and then right click the Local Disk (C
and choose Properties. I am interested in the free space you have available.________________________________________
One last thing to take a look at:
Open Hijackthis.
Click the "Open the Misc Tools" section Button.
Click the "Open Uninstall Manager" Button.
Click the "Save list..." Button.
Save it to your desktop. Copy and paste the contents into your reply.
Your comments:
Kaspersky is a well respected company but I have never used it. We use the free online scanner a lot. Are you using a router? I personally use the free version of Zone Alarm, but there are others available. You want to make sure your SP2 firewall is turned off when running a third party firewall.
Lots of information here: http://www.google.com/search?source...=GGLG,GGLG:2006-16,GGLG:en&q=review+firewalls to help you decide.
Thanks
Cindylu
New member
Update...I had to do some detective work on this patexlib.dll file. I deleted it and left it in the recycle bin. Then I decided I was going to uninstall Spector Pro so I thought I would restore the patexlib.dll file and see if it disappeared when I unistalled Spector Pro.
When I tried to restore it, I got a message saying "This folder already contains a file named patexlib.dll would you lile to replace the existing file created Nov 11 at 9:20 with the old one (in the recycle bin) created Nov 10 10:17?
So, I decided to see if I could figure out what was running when the file was recreating itself. I deleted the new patexlib.dll created today and went back to the system32 folder. It was still deleted. I connected to the internet and went to the forums here and sort of hung out to see if it recreated itself when I went online. Checked - still gone. I checked my email. Looked for file again. Still gone.
I closed my internet connection and my email. Waited a bit and fired up my Spector Pro. Checked the System32 folder and there was patexlib.dll. The minute I fired up Spector Pro the patexlib.dll file recreated itself. It is apparently associated with Spector Pro somehow.
At present, I am going to uninstall Spector Pro and run without it and see if I can fix some of these other issues. I really like the software as there is so many valuable things it can do. It even logs everything uploaded and downloaded from the internet so I can see if my kids have inadvertantly downloaded a nasty. But I suppose I can reinstall it at a later time as long as I have my serial number so I will try running without it for a bit.
Will try that sophos scan in a bit and report back.
Cindylu
When I tried to restore it, I got a message saying "This folder already contains a file named patexlib.dll would you lile to replace the existing file created Nov 11 at 9:20 with the old one (in the recycle bin) created Nov 10 10:17?
So, I decided to see if I could figure out what was running when the file was recreating itself. I deleted the new patexlib.dll created today and went back to the system32 folder. It was still deleted. I connected to the internet and went to the forums here and sort of hung out to see if it recreated itself when I went online. Checked - still gone. I checked my email. Looked for file again. Still gone.
I closed my internet connection and my email. Waited a bit and fired up my Spector Pro. Checked the System32 folder and there was patexlib.dll. The minute I fired up Spector Pro the patexlib.dll file recreated itself. It is apparently associated with Spector Pro somehow.
At present, I am going to uninstall Spector Pro and run without it and see if I can fix some of these other issues. I really like the software as there is so many valuable things it can do. It even logs everything uploaded and downloaded from the internet so I can see if my kids have inadvertantly downloaded a nasty. But I suppose I can reinstall it at a later time as long as I have my serial number so I will try running without it for a bit.
Will try that sophos scan in a bit and report back.
Cindylu
Cindylu
New member
The Sophos scan pronounced me clean so I guess everything here is okay.
I did uninstall Spector Pro and I then tried to open my antivirus program and it worked. Apparently something in the Spector Pro application was affecting the antivirus software. Good call. I will have to call Spectorsoft and ask them some questions. They said their software would not be detected by any antivirus software, they didn't say it would shut it down.
Thank you so much for your time and patience. I happy to know that my Java is up to date and my system is clean. Thanks again.
Cindylu
I did uninstall Spector Pro and I then tried to open my antivirus program and it worked. Apparently something in the Spector Pro application was affecting the antivirus software. Good call. I will have to call Spectorsoft and ask them some questions. They said their software would not be detected by any antivirus software, they didn't say it would shut it down.
Thank you so much for your time and patience. I happy to know that my Java is up to date and my system is clean. Thanks again.
Cindylu
LonnyRJones
Security Expert-Emeritus
Im Glad we could help
Since the problems are solved Im going to close the topic now, this keeps others with similar problems from posting there logs/question here, they should start a new topic.
If you should need to post another log for the same PC let one of us know via a PM (personal message).
Since the problems are solved Im going to close the topic now, this keeps others with similar problems from posting there logs/question here, they should start a new topic.
If you should need to post another log for the same PC let one of us know via a PM (personal message).