Faster running speed.

Discussion in 'General Hardware' started by nikolasharris, Aug 29, 2009.

  1. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Alright, so. I'm not too sure if this is even the right place to put this LOL, but anyway.

    Is there some program that you can install to clean out all those weird files stored on your hard drive (that you have no idea what are there for)

    What I'm talking about is the fact that I have a ton of files in my local disk with stupid names like "4477sd5412ad45454d" and I have no idea what they are for.

    I need a program that would search my hard drive to delete all the files that are not needed

    Also looking for a program that would help my computer run a bit faster.

    Thanks,
    Nik
     
  2. Admiral Michael

    Admiral Michael Michaelsoft Systems CEO Folding Team

    Have you tried CCleaner?

     
  3. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Yeah, I do have that at the moment. Works perfectly for cleaning all the temp files and stuff. But not for those weird files.

    Thanks though.
     
  4. Admiral Michael

    Admiral Michael Michaelsoft Systems CEO Folding Team

    I've never come across a legit file named in that manner. Where are the files located?
     
  5. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    They are in my C:\ drive
    I also have ones named "sqmdata06.sqm"
    No idea what these are for ?
     
  6. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    I also have file folders called "$NtUninstallKB951698$" and such in C:\WINDOWS
     
  7. Admiral Michael

    Admiral Michael Michaelsoft Systems CEO Folding Team

    Those contain uninstallers and backup files for windows updates.

    Those may be linked to MSN Messenger, I came across this after a quick google search.
     
  8. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Hmm, seems legit. Stupid msn. Googled the name and mostly all I got was stuff about virus things.

    Plus, do you know of any really good (free) virus checkers ?
     
  9. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Just figured out something, theres about 10gb or so of disk space taken up that I can't account for (not sure whats taking up the space)

    My Sims 2 games take up about 20gb or so
    Personal files add up to about 5gb or so
    So theres something taking up space on my computer :/
     
  10. tdinc

    tdinc █▄█ ▀█▄ █ Political User

    Messages:
    3,507
    Location:
    Sterling Heights, MICHIGAN
    you have malware on your system,

    you have the pviever trojan on your rig. this trojan/malware infests your system files utilizing holes in old java releases. make sure you completely remove all you old Java software and run JavaRa to completely remove all leftover Java files. Then download the latest Update of Java


    First download Hijackthis and post a log here.

    In the meantime, make sure you have a decent anti-virus with the latest updates if not AVG free or Avira are good choices.

    Also download Malwarebytes Anti-malware


    install the program, then do an update to make sure you have all the latest signature files.
    Run the "quick scan" and follow the instructions if anything was discovered.

    then once again, Run the scan this time using the "full scan" it will take some time to scan your entire drive. again, follow the instructions if anything was found. to remove the virus.

    post back with your results so we can help you further..... :)
     
  11. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Thats great :/

    I'll give this a try, thanks.
     
  12. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    So before I do anything, run the HijackThis application?
    I'm guessing I click the 'Do a system scan and save a logfile'


    EDIT:
    Ps; I actually already have the Malwarebytes Anti-Malware program on my computer.

    EDIT 2:
    Pps; I have NOD32 antivirus on my computer
     
  13. tdinc

    tdinc █▄█ ▀█▄ █ Political User

    Messages:
    3,507
    Location:
    Sterling Heights, MICHIGAN
    hmm... make sure Malwarebytes is updates and the latest.

    and yes copy and paste the log here. and we can go from there.
     
  14. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Okay, this is what the logfile says:

    Logfile of HijackThis v1.99.1
    Scan saved at 9:37:43 PM, on 8/29/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Eset\nod32kui.exe
    C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\TheWeatherNetwork\WeatherEye\WeatherEye.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Eset\nod32krn.exe
    C:\WINDOWS\system32\DllHost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Webroot\Washer\WasherSvc.exe
    C:\Program Files\Ares\Ares.exe
    C:\Documents and Settings\nick\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Documents and Settings\nick\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Program Files\HijackThis\HijackThis.exe
    C:\Documents and Settings\nick\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\nick\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 112???? - ????????
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Sympatico / MSN - Canada?s most popular internet destination, the home of world-class services such as Hotmail, Windows Live Messenger, and News, Sports, Financial and Entertainment services
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
    O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\nick\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [WeatherEye] C:\Program Files\TheWeatherNetwork\WeatherEye\WeatherEye.exe
    O4 - Startup: Fanbase.lnk = C:\Program Files\Fanbase\Fanbase.exe
    O4 - Global Startup: Corel Family and Friends Reminders.LNK = C:\Corel\Print House Magic\cffrem.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
    O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/download/ipixx.cab
    O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Plan%20it%20Green/Images/stg_drm.ocx
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {26522409-8BBF-4C5B-A4D3-CF4B1D6F255B} (UMediaPlayer Class) - http://www.umediaserver.net/bin/UMediaControl5.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-CA/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/wuweb_site.cab?1210178628812
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1210165761015
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Plan%20it%20Green/Images/armhelper.ocx
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    O16 - DPF: {FCB28D51-A017-46B2-9FB3-F7BFD53B2E42} (CPlayFirstChocolatieControl Object) - http://www.shockwave.com/content/chocolatierdecadence/sis/Chocolatier3Web.1.0.0.6.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
     
  15. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    LOL, yet another question.
    Do I uninstall all of the Java things off my computer?
    In my add/remove programs list it shows 3 Java programs (Java 6 Update 15, Java 6 Update 6 & Java 6 Update 7)
     
  16. tdinc

    tdinc █▄█ ▀█▄ █ Political User

    Messages:
    3,507
    Location:
    Sterling Heights, MICHIGAN
    yes all of them, then download the latest which i have the link on my other post
     
  17. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Alright, I uninstalled all Java from my computer, then I ran the program that removes all Java files. Now I installed the newest update for Java. What now?
     
  18. tdinc

    tdinc █▄█ ▀█▄ █ Political User

    Messages:
    3,507
    Location:
    Sterling Heights, MICHIGAN
    Have hijack this remove the following lines.

    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)file Missing

    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    File Missing
    When a file is missing, you should always have HijackThis fix the item.

    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
    File Missing

    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    File Missing

    O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
    File Missing

    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
    File Missing




    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    File Missing
     
  19. nikolasharris

    nikolasharris OSNN Junior Addict

    Messages:
    28
    Location:
    Im in Canada, trick.
    Alright I did that.
    I ran the scan again and all the files were removed except for this one:

    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)

    Edit:
    Wait, I clicked information and it says action was taken, but I need to reboot my computer. Doing that now.
     
  20. American Zombie

    American Zombie Moderator Staff Member Political User

    Messages:
    2,931
    Location:
    Seattle
    From what I see the PC has NOD32 on it.
    I looked over the log and do not see anything starting that is malicious.
    Some of those entries with files missing are part of Windows and may still be there because the feature was turned off.

    I would have NOD32 do an in depth full scan.