Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Perflib_Perfdata_???.dat appears when I sign into Gmail


  • Please log in to reply
5 replies to this topic

#1 felipeh

felipeh

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:51 PM

Posted 06 February 2011 - 12:15 AM

Have an acer aspire one no HD XP Home sp3. I have tried to research this and can't find anything definitive.
Have run several utils (HJT, Secunia, prevx, RegistryBoostr)all say clean.
This file (currently Perflib_Perfdata_d74.dat) only appears when I log into my gmail; not when I log into my banking, facebook;and disappears soon as I logout of my gmail acct.
I run current Firefox with NoScript addon; I just made a test using IE7 (patched current) which I almost never use and the file does not appear when I use it.
For the last several reboots I have gotten in the habit of manually killing RtkBtMnt.exe in taskmgr because it was also appearing in .../temp/RtkBtMnt.exe and it couldn't be deleted until I killed that process, and a search of that filename also turns up suspicions.
At this point I'm not sure if I'm infected or rooted or what. My AV is Comodo Internet Security suite but while the firewall is good, I don't think I'm impressed w/ its antivirus.
Anyway I'm just not sure, appreciate expert help here.

BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:10:51 PM

Posted 06 February 2011 - 12:23 AM

Here is something to read over about Registry Cleaners: Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons:

• Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.

The Windows registry is a central repository (database) for storing configuration data, user settings and machine-dependent settings, and options for the operating system. It contains information and settings for all hardware, software, users, and preferences. Whenever a user makes changes to settings, file associations, system policies, or installed software, the changes are reflected and stored in this repository. The registry is a crucial component because it is where Windows "remembers" all this information, how it works together, how Windows boots the system and what files it uses when it does. The registry is also a vulnerable subsystem, in that relatively small changes done incorrectly can render the system inoperable. For a more detailed explanation, read Understanding The Registry.

• Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work.

• Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.

• Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.

• The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in "unpredictable results".

Unless you have a particular problem that requires a registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.
RtkBtMnt.exe file information?

Perflib_Perfdata

These files are created on my machine as well.

#3 felipeh

felipeh
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:51 PM

Posted 06 February 2011 - 12:54 AM

Understood; however i was using this registrybooster to give a clue as to whether I had a virus/trojan/rootkit or not. Also, WindowsSecrets authors, whom I also trust, I seem to recall occasionally recommend a reg scrubbing utility. Yes I know caution is in order. Thanks.

#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:10:51 PM

Posted 06 February 2011 - 01:17 PM

Don't use any registry boosters as they are just snake oil "tools".

#5 Bill253

Bill253

  • Members
  • 275 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Mexico, USA
  • Local time:04:51 PM

Posted 07 February 2011 - 03:22 PM

At this point I'm not sure if I'm infected or rooted or what. My AV is Comodo Internet Security suite but while the firewall is good, I don't think I'm impressed w/ its antivirus.
Anyway I'm just not sure, appreciate expert help here.


Registry cleaner issue aside, it looks like what you're really concerned about is if you're infected or not.
If so, you'd be better off posting your question in the 'Security -> Am I infected?' forum of this site. It may take a while to get a response there as they get overloaded, but that's their specialty.

Good luck,
Bill253

#6 cogs10

cogs10

  • Members
  • 104 posts
  • OFFLINE
  •  
  • Local time:05:51 PM

Posted 07 February 2011 - 07:38 PM

test

Edited by cogs10, 07 February 2011 - 07:55 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users