first post

so basically this computer is extremely slow at times (most times)
and other times its like a window of hope (hoping it will last).

it all started after a complete restore of windows but only a while after, and i think because it did not have ANY protection.

the weird part is that all the scans i did i didnt find anything.

so here are the logs, enjoy
and thanxs in advance for the time.

 

Hi begin82,
Welcome to Major Geeks!

Combofix did remove some things that were malware related.

First some questions:

1) Did you run SuperAntiSpyware and did it find anything? Do you know when you started experiencing the slowness? Had you recently installed something like AVG 8.0 or did you install that after you noticed the problems? You still have Symantec entries.

2) You have a program controlling your Internet Explorer start page. Is this something you put in yourself? And if so, do you know anything about the company that makes it?

3) What is in the following folders? (You can open the folder but do not open any files.)

C:\ce21f29b62d5f53c8e7f700699f661
C:\d1117830b37d925202e7
C:\Documents and Settings\Ninalinda\Desktop\framedyn
C:\WINDOWS\SYSTEM32\bits

4) Do you know what the following file on your desktop is? Can you see it on the desktop? If so and you don't know what it is, right-click on it and see if there's any information in Properties that might give you more information about it.

C:\Documents and Settings\Ninalinda\Desktop\
fu7iavi~1.bin Apr 12 2008 22757055 "u7iavi13843a.bin"

And now, please do the following:

5) Open your Windows Live Messenger, go to Help -> Customer Experience Improvement Program and turn it off. Then go to C:\ and delete all the files with this structure: sqmnoopt12.sqm

6) Next I would like for you to run the Norton Removal Tool (SymNRT)

7) If you do not use Windows Messenger (not to be confused with MSN Messenger!!) I would like you to run Disable/Remove Windows Messenger


8) Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

After you click fix, just close hijackthis.

9) Now run CCleaner at the default setting with the Windows tab as the top one.

10) Please run C:\MGtools\GetLogs.bat and attach the fresh MGlogs.zip.

Let me know how things are running now?

abri

 

(1) yes i ran SuperA_Spyware and found nothin.
- this started happening a while after a reformat of the comuter ( but i dont know excatly when since i am not the not the one who uses this computer often)
- i installed avg 8 after the problems and before the scans

(2) i did not install the program controlling the home page and dont know much about it, its from ( the user put it there and its a home page that u can make look like google but have your own personal title other than GOOGLE its from-[pimpmysearch.com]).

(3) the following folder:
-framedyn- is a download from a site that provides free missing dll's i beleive, it is now empty and have removed it from desktop.
- the other folders:
C:\ce21f29b62d5f53c8e7f700699f661--
has the following attatched .txt file in it(%temp%dd_msxml_retMSI.txt )
C:\d1117830b37d925202e7-- ( i beleive it is windows live one care since it has a oncare setup.exe in it (ocsetup.exe). But i have actually removed oncare from windows before as it is very annoying.
C:\WINDOWS\SYSTEM32\bits-- is empty

(4) the u7iavi.bin i think is from the avg 8.0 update, for some reason it puts itself on the desktop after a manual update.

(5) i am about to run all proposed steps and will update post with MGgetlostlog

 

By the way is it ok that i have put the app.'s (icons) on the dektop for easy access:
Mg
cf.exe(combofix)
SuperA_Spyware
Malwarebytes
Analyse.exe

 

attatched mglog.zipp
and finish all other steps requested.

computer still very slow especially at startup and i have tried my hardest to minimize the prgrams at startup.

after a while the computer gets warmed up and is ok (very good actually) but with no warning or complicated action on my part as user [for example right clicking desktop or just clicking start menu], it just slows, almost freezes.

whenever this happens (the slowness) even at startup the hard drive makes a sequence of sounds always repeating itself, sort of like
(bear with me); ta, tic-ta, tic-ta, tic-ta, taaaa ta, tic-ta, tic-ta, tic-ta. And so on until it unjams or warms up and then its ok.


By the way there are some posts previous that i have submitted before this -
i apoligize but did all the steps in steps (lol)

 

Hi begin82,

I haven't looked at your logs yet, but what you describe sounds like a harddrive which is on the verge of failing at any moment. Please back up any data which is important to you now.

Let me know how this goes.
abri

 

1-what is the best way to do that is there a program that excels microsoft
or just use the microsoft backup procedure.

2- after i backup, what steps should i take for the hard drive,
a) install new one
b) buy seperate one
c)????

 

Hi begin82,

Backing up your data means those kinds of data you can't replace, like photos, documents, music files, videos, your emails, bookmarks and favorites for your browsers. You should do this soon. I believe the Microsoft backup feature will back your data up onto your harddrive. What you need though is to back it up on cd's or dvd's using burning software. You can also back it up on a flashdrive, but keeping in mind, that flash drives sometimes break. It would be good if you could get it all onto cd/dvd and onto a flashdrive. Also, for the greatest protection, it would be a good idea to download the installation programs for your antivirus program and your firewall directly onto the external medium unless you have these as cd's from the manufacturer. If it's a downloaded version, having the installation program available on your backup medium will allow you to install it without having to go online with an unprotected computer. You'll only need to update it.

For all hardware questions, I would like to ask you to start a thread in the Hardware Forum. They can tell you if they think it's your harddrive that's going. If it's correct, you may simply wish to replace it with one compatible to your system and then reinstall your operating system (you'll need the activation key). You can also partition it at this time which has some advantages. It's also possible to make an image disk of your current harddrive, but I would recommend before you do much of anything futher, that you back up your data in the way described above and soon.

abri