Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

computer is working too hard


  • Please log in to reply
19 replies to this topic

#1 bordos

bordos

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 06 April 2014 - 05:02 PM

Hello,

Since my brother used my laptop, it's working too hard and too slowly.

It takes about 4 mins from windows startup till i can actualy use my browser, the fan is working REALLY hard (sometimes it's also working hard even though there's no running programs), my computer getting very hot, it takes about ten secs to get into word\excel and it takes three-four secs till it shut excel down (without saving files, with saving files it takes a few secs longer).

I have a "uruninstaller" program and i saw that my brother installed a few unnessecary programs, but i don't know what i can delete and what i shouldn't. how can i know what every installed application refer to?

 

thank you very much,

bordos.



BC AdBot (Login to Remove)

 


m

#2 OldPhil

OldPhil

    Doppleganger


  • Members
  • 3,760 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:10:21 PM

Posted 06 April 2014 - 05:16 PM

Would be a good idea to scan the computer with your anti virus program and Malwarebytes and Superantispyware.  Both programs are free, I have a hunch he picked up a bug.


If you don't stand for the flag then you will fall for anything!


#3 bordos

bordos
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 07 April 2014 - 06:24 AM

Lol I am confused! :\

Is that the superantispyware u talked about?
http://www.bleepingcomputer.com/download/superantispyware/

 

What malwarebytes should I use?

1) http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

2) http://www.bleepingcomputer.com/download/malwarebytes-anti-rootkit/

3) http://www.bleepingcomputer.com/download/malwarebytes-anti-malware-cleanup-tool/

4) http://www.bleepingcomputer.com/download/malwarebytes-anti-exploit/

 

Thanks!

 

P.s. - my antivirus didn't find anything suspicios (AVG)



#4 OldPhil

OldPhil

    Doppleganger


  • Members
  • 3,760 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:10:21 PM

Posted 07 April 2014 - 11:52 AM

Start with the Superatispyware then #1 Malwarebytes, if that does not produce results you will need help from one of the masters!!!


If you don't stand for the flag then you will fall for anything!


#5 abauw

abauw

  • Members
  • 951 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kebun Kelapa
  • Local time:10:21 AM

Posted 07 April 2014 - 12:20 PM

could you read this How To Publish a Snapshot using Speccy and paste your link of speecy snapshot on your next post. just snapshot link not upload it :wink:


:guitar: Take me to a place where time is frozen
You don't have to close your eyes to dream :busy:
You can find escape inside this moment :smash:
And I will follow  :whistle:


#6 hamluis

hamluis

    Moderator


  • Moderator
  • 54,848 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:09:21 PM

Posted 07 April 2014 - 01:32 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#7 bordos

bordos
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 08 April 2014 - 02:50 AM

http://speccy.piriform.com/results/JIcODWWE0nDoMI4ivbOhyU6

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by nir (administrator) on 08-04-2014 at 07:03:56
Running from "C:\Users\nir\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (04/08/2014 06:15:05 AM) (Source: Google Update) (User: nir-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http s
 
Error: (04/08/2014 06:11:51 AM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/08 06:11:51.989]: [00004452]: Initialize TwdsMain Class failed!
 
Error: (04/08/2014 06:11:51 AM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/08 06:11:51.989]: [00004452]: ##### Fatal ERROR!! Create STI-device failed! #####
 
Error: (04/08/2014 06:11:51 AM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/08 06:11:51.989]: [00004452]: BrStiIf: GetDeviceList Failed! pStiInfo = 0x0..
 
Error: (04/07/2014 09:41:31 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:41:31.869]: [00003764]: Initialize TwdsMain Class failed!
 
Error: (04/07/2014 09:41:31 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:41:31.744]: [00003764]: ##### Fatal ERROR!! Create STI-device failed! #####
 
Error: (04/07/2014 09:41:31 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:41:31.744]: [00003764]: BrStiIf: GetDeviceList Failed! pStiInfo = 0x0..
 
Error: (04/07/2014 09:12:51 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:12:51.630]: [00003916]: Initialize TwdsMain Class failed!
 
Error: (04/07/2014 09:12:51 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:12:51.568]: [00003916]: ##### Fatal ERROR!! Create STI-device failed! #####
 
Error: (04/07/2014 09:12:51 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2014/04/07 21:12:51.568]: [00003916]: BrStiIf: GetDeviceList Failed! pStiInfo = 0x0..
 
 
System errors:
=============
Error: (04/07/2014 00:20:12 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 00:18:17 on ‎07/‎04/‎2014 was unexpected.
 
Error: (03/31/2014 01:31:56 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 01:22:28 on ‎31/‎03/‎2014 was unexpected.
 
Error: (03/17/2014 07:31:47 PM) (Source: Service Control Manager) (User: )
Description: ‏‏הפעלת השירות שירות עדכון Google (gupdate) נכשלה בשל השגיאה הבאה: 
%%1053
 
Error: (03/17/2014 07:31:47 PM) (Source: Service Control Manager) (User: )
Description: ‏‏המערכת הגיעה לפרק זמן קצוב (30000 אלפיות שניה) במהלך המתנה לחיבור של שירות שירות עדכון Google (gupdate).
 
Error: (03/14/2014 00:24:19 AM) (Source: BTHUSB) (User: )
Description: ‏‏האימות ההדדי בין מתאם Bluetooth המקומי לבין התקן בעל כתובת מתאם Bluetooth שהיא (f0:e7:7e:71:b9:96) נכשל.
 
Error: (03/12/2014 05:36:09 PM) (Source: NetBT) (User: )
Description: The name "NIR-PC         :20" could not be registered on the interface with IP address 192.168.1.12.
The computer with the IP address 192.168.1.11 did not allow the name to be claimed by
this computer.
 
Error: (03/12/2014 05:36:09 PM) (Source: NetBT) (User: )
Description: The name "NIR-PC         :0" could not be registered on the interface with IP address 192.168.1.12.
The computer with the IP address 192.168.1.11 did not allow the name to be claimed by
this computer.
 
Error: (03/12/2014 05:36:09 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{08AC07D4-C043-4CCE-A236-DAC2AE282C90} because another computer on the network has the same name.  The server could not start.
 
Error: (03/03/2014 10:01:00 AM) (Source: NetBT) (User: )
Description: The name "NIR-PC         :0" could not be registered on the interface with IP address 192.168.1.14.
The computer with the IP address 192.168.1.11 did not allow the name to be claimed by
this computer.
 
Error: (03/03/2014 10:00:59 AM) (Source: NetBT) (User: )
Description: The name "NIR-PC         :20" could not be registered on the interface with IP address 192.168.1.14.
The computer with the IP address 192.168.1.11 did not allow the name to be claimed by
this computer.
 
 
Microsoft Office Sessions:
=========================
Error: (03/26/2012 11:26:35 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 24483 seconds with 3300 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-11-12 17:22:51.589
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-11-12 17:22:51.449
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
 Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.0)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe AIR (Version: 3.0.0.4080)
Adobe Creative Cloud (Version: 2.5.0.367)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Illustrator CC (Version: 17.0)
Adobe Reader X (10.1.1) (Version: 10.1.1)
Advanced Uninstaller PRO - Version 10 (Version: 10)
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
AVG 2014 (Version: 14.0.3722)
AVG 2014 (Version: 14.0.4355)
AVG 2014 (Version: 2014.0.4355)
Bonjour (Version: 3.0.0.2)
Brother MFL-Pro Suite MFC-7360N (Version: 1.1.3.0)
BS.Player FREE (Version: 2.57.1051)
CCleaner (Version: 3.17)
CyberLink YouCam 6 (Version: 6.0.2712.0)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.41.3.0173)
DivX Setup (Version: 2.6.1.24)
Dropbox (Version: 2.4.11)
Facebook Video Calling 2.0.0.447 (Version: 2.0.447)
FIFA 11 (Version: 1.0.0.0)
Free Audio CD Burner version 1.4
FREE Hi-Q Recorder 1.95
Free YouTube to MP3 Converter version 3.10.8.815
Fujitsu Display Manager (Version: )
Fujitsu Display Manager (Version: 7.01.00.210)
Fujitsu MobilityCenter Extension Utility (Version: )
Fujitsu MobilityCenter Extension Utility (Version: 3.01.00.000)
Google Chrome (Version: 33.0.1750.154)
Google Talk Plugin (Version: 5.2.4.18058)
Google Update Helper (Version: 1.3.23.9)
Halomda TestDriver 0.1
HP Officejet 6500 E710a-f עזרה (Version: 140.0.2.2)
HP Update (Version: 5.002.005.003)
I.R.I.S. OCR (Version: 12.3.4)
IBM SPSS Statistics 20 (Version: 20.0.0.0)
Intel® Management Engine Components (Version: 6.0.0.1179)
iTunes (Version: 10.4.1.10)
Java 7 Update 11 (Version: 7.0.110)
Java Auto Updater (Version: 2.1.9.0)
Malwarebytes Anti-Malware גירסה 2.00.0.1000 (Version: 2.00.0.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile HEB Language Pack (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Arabic) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Russian) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (Hebrew) 2007 (Version: 12.0.4518.1016)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (Hebrew) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (Version: 11.0.61030.0)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030)
Mozilla Firefox 9.0.1 (x86 he) (Version: 9.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
PaperPort Image Printer 64-bit (Version: 1.00.0001)
PDF Settings CC (Version: 12.0)
Power Saving Utility (Version: 31.01.11.013)
QuickTime (Version: 7.70.80.34)
Realtek High Definition Audio Driver (Version: 6.0.1.5969)
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30087)
Samsung Kies (Version: 2.0.2.11053_8)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.5.0)
Scansoft PDF Professional
Skype™ 6.14 (Version: 6.14.104)
SMPlayer 0.6.8 (Version: 0.6.8)
SUPERAntiSpyware (Version: 5.7.1018)
Synaptics Pointing Device Driver (Version: 14.0.10.0)
SystemDiagnostics (Version: 2.04.0006)
Uninstall 1.0.0.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition
Update for Microsoft Office Script Editor Help (KB963671)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Wireless Selector (Version: )
Wireless Selector (Version: 4.01.00.101)
Your Uninstaller! 2010 (Version: 7.0)
חבילת תאימות עבור מהדורת 2007 של מערכת Office (Version: 12.0.6612.1000)
מחקר לשיפור המוצר HP Officejet 6500 E710a-f (Version: 22.0.334.0)
מסייע Messenger (Version: 15.4.3502.0922)
עדכון עבור מסנן דואר הזבל של Microsoft Office Excel 2007 Help (KB963678)
עדכון עבור מסנן דואר הזבל של Microsoft Office Powerpoint 2007 Help (KB963669)
עדכון עבור מסנן דואר הזבל של Microsoft Office Word 2007 Help (KB963665)
תוכנה בסיסית של ההתקן HP Officejet 6500 E710a-f (Version: 22.0.334.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 57%
Total physical RAM: 3892.55 MB
Available physical RAM: 1671.35 MB
Total Pagefile: 7783.29 MB
Available Pagefile: 5055.05 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.6 MB
 
========================= Partitions: =====================================
 
1 Drive c: (System) (Fixed) (Total:463.75 GB) (Free:59.37 GB) NTFS
4 Drive f: (WINRE) (Fixed) (Total:2 GB) (Free:1.72 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\NIR-PC
 
Administrator            Guest                    nir                      
 
 
**** End of log ****
 


#8 abauw

abauw

  • Members
  • 951 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Kebun Kelapa
  • Local time:10:21 AM

Posted 08 April 2014 - 08:38 AM

According to speccy report you have serious problem with the heat as it show 710C, please do some cleaning or change your heatsink fan to reduce that heat because it could damage something in your mainboard.


:guitar: Take me to a place where time is frozen
You don't have to close your eyes to dream :busy:
You can find escape inside this moment :smash:
And I will follow  :whistle:


#9 bordos

bordos
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 08 April 2014 - 10:19 AM

that's the point! i don't know why it happens! sometimes my heatsink works very hard, but there's no reason for that. there isn't any opened program in background, and my laptop is on the table (air ducts are not covered). i could understand if it was working like that all the time, but sometimes it's really "struggling", and sometimes it's "calm".

for example, look on the temperature now (49 degrees) http://speccy.piriform.com/results/nsZGsqq6cwcsELr8aVZsp8c

 

any suggestions?

 

btw - what is the average degrees it should be in?

 

btw 2 - how often should i clean the heatsink? ( i cleaned it 2 months ago)



#10 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,023 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:07:21 PM

Posted 08 April 2014 - 11:01 AM

The maximum temperature for that processor is 90 C.  68 C is high enough to be concerned about air flow, but is not in the dangerous range just yet.  You definitely should purchase a can of gas duster (canned air) and blow out the inside via the vents.  What is interesting is the temperature of the motherboard being three degrees warmer than the CPU, it's usually the other way around.

 

Your hdd only has 12% free space, that's about 60GB.  This is getting close enough to being full enough to start effecting the performance of the hdd.  I would suggest considering an external hdd and start saving data which isn't used  regularly to it.

 

You have the following Code Integrity error "Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys".  At sometime you evidently ran Combofix which uses the catchme.sys file.  This file is usually deleted when Combofix is finished, but it appears that it wasn't in this case.  Because of the file path I'm fairly sure that this is related to Combofix, but it can also be associated with a keylogger which is a Trojan.  To be sure that this is not the case I would like you to run Malwarbytes Anti Malware.

 

 

 
 
Please download Malwarebytes Anti-Malware.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.
 
 
If the scan does not find this Trojan we can remove this from the registry.
 
When editing the registry it can be damaged if mistakes are made which can result in making the computer inoperable.  For this reason you should backup the registry before doing this.  To backup the registry I would suggest using ERUNT.
 

How to backup Your Registry with ERUNT
 
*Please download Erunt.
 
*For version with the Installer:  Use the setup program to install ERUNT on your computer.
 
*For the zipped version you will need a program like 7-Zip to unzip the file.  
 
*Unzip all the files into a folder of your choice.
 
Click Erunt.exe to backup your registry to the folder of your choice.
 
Note: to restore your registry, go to the folder and start ERUNT.exe
 
Please follow the instructions below to remove catchme.sys from the registry.
 
Click on the Start orb, then type regedit in the Search programs and files box.
 
regedit will appear in the upper portion of the pane under Programs, right click on it and choose Run as administrator, the registry will now open.
                                                                                                                                                                                                                                                                                                                    

In left pane of registry editor, Navigate to:
 

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_CATCHME
 
If LEGACY_CATCHME exists then right click on it and choose Delete from the menu.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#11 A18 UNI

A18 UNI

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:51 AM

Posted 09 April 2014 - 09:41 AM

Hey man download and run piriform's ccleaner if you have tried it out then download Glary utilities and install it on your computer and run it's cleaner and and also scan your computer for issues and if something is found fix it and see some speed will surely increase.

#12 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,023 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:07:21 PM

Posted 09 April 2014 - 11:05 AM



Hey man download and run piriform's ccleaner if you have tried it out then download Glary utilities and install it on your computer and run it's cleaner and and also scan your computer for issues and if something is found fix it and see some speed will surely increase.

 

Ccleaner has a registry cleaner as an option.  I would suggest not using that option.

 

The following was originally posted by Animal, one of our Site Administrators.
 
Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons:
 
Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.
--------------------------------------------------------------
Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work.
 
Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.
 
Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.
 
The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in unpredictable results.
 
Unless you have a particular problem that requires a registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#13 bordos

bordos
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 10 April 2014 - 02:35 AM

Arachibutyrophobia, i did as u told me to do. malwarebytes didn't find anything and in the registry there's no folder called legacy_catchme. i scan my computer with superantispyware. atm it gound 208 adware tracking cookie. at the last scan it also founded a few hundreds of those. isn't there any way to prevent these cookies to be on my computer? (i've already set the program to start with windows, but it seems it's not enough).

anyway, i copy the log file of malwarebytes here:

 

mbam-check result log version:     2.1.0.0002
========================================
 
User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 64 bit Operating System
Current Build Number:              7601
Current Version Number:            6.1
Current CSDVersion:                Service Pack 1
Malwarebytes Anti-Malware:         2.0.1.1004
Installed On:                      2014/04/09
Malware Database:                  2014.04.09.04
Rootkit Database:                  2014.03.27.01
Remediation Database:              2013.10.16.01
IP Database:                       0000.00.00.00
Domain Database:                   0000.00.00.00
License:                           Trial
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2014/04/10 10:15:45
Compatibility Flag Settings:
=================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
C:\Users\nir\Desktop\


#14 bordos

bordos
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:06:21 AM

Posted 10 April 2014 - 08:00 AM

after my computer crushed twice during superantispyware scan (over heating problem - despite i cleaned my heatsink fan this morning) the scan is completed!
btw - during the scan that stopped there was 200+ adwares, now it found only 63. i hope it's ok...
this is the log file:

SUPERAntiSpyware Scan Log
 
Generated 04/10/2014 at 03:48 PM
 
Application Version : 5.7.1018
 
Core Rules Database Version : 11157
Trace Rules Database Version: 8969
 
Scan type       : Complete Scan
Total Scan Time : 01:44:19
 
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
 
Memory items scanned      : 656
Memory threats detected   : 0
Registry items scanned    : 70082
Registry threats detected : 0
File items scanned        : 113703
File threats detected     : 63
 
Adware.Tracking Cookie
.doubleclick.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.linkbucksmedia.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
c1.adform.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bannerplay.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
c1.adform.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adform.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.4341870.fls.doubleclick.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.myroitracking.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.clicksor.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.clicksor.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.doubleclick.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtechus.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mmstat.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.youtube.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\NIR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]


#15 OldPhil

OldPhil

    Doppleganger


  • Members
  • 3,760 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Long Island New York
  • Local time:10:21 PM

Posted 10 April 2014 - 09:22 AM

Don't be upset by the amount of cookies you acquire, it is a norm these days everyone want to know where you go and what your interests are.  I run Ccleaner once a day, Mbam and Superantispyware at least once a week.  It is very easy to gather a many megs of junk a week.


If you don't stand for the flag then you will fall for anything!





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users