Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Mar 31, 2014 21:11:25 GMT -8
That is a setting in Windows itself that you tick or untick to have the folders on the Desktop
Quads
|
|
|
Post by maldemarstor on Mar 31, 2014 21:13:46 GMT -8
Should I check anything else now or just monitor it for a few days and report back to you?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Mar 31, 2014 21:38:30 GMT -8
Here is the Desktop Icons tutorial www.bleepingcomputer.com/tutorials/change-windows-desktop-icons/ I can't see any active malware on your system and the tools we use even though more advanced get updated really regular (sometimes in less than a week) to show everything good and bad, from Bootkits to Trojans and Ransomware. We also test malware ourselves as new malware appears to see what happens and the best way to remove. We can see how it goes in the nest 24 hours, we still have the WMI and what I call Step 4 (if things are still good) and I am still looking into how slowness can occur in INTEL based systems due to the Intel Storage Technology drivers. Quads
|
|
|
Post by maldemarstor on Apr 1, 2014 8:24:21 GMT -8
No issues so far today. Again, thanks for all the help. I will continue to monitor my computer, check here, and report.
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Apr 1, 2014 9:24:48 GMT -8
There could still be the odd slow down due to the WMI trying but logging errors instead, and of course at time using a program that may be resource hungry, or there was an update to the system or program that does not agree, Like a update to the Browser and Norton's Browser protection does not really like the change.
I actually had a slowdown last night viewing this forum and trying to navigate around, I ended up closing Chrome and restarting the Browser, I noticed the browser had changed, turned out Chrome updated it's version, while I was using the old version and was waiting to complete the change over, but caused problems. Restarting the browser fixed the problems as I was now using the new version.
Quads
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Apr 2, 2014 15:12:53 GMT -8
So it is still going OK, except the WMI logging of course then??
Quads
|
|
|
Post by maldemarstor on Apr 2, 2014 17:31:19 GMT -8
No issues today. What is WMI logging?
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Apr 2, 2014 17:42:12 GMT -8
WMI error entry in log below.
(Source: WinMgmt) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Microsoft has released a fixit for the error with Windows 7, So it is known
Quads
|
|
Quads
Malware Removalists
In New Zealand
Posts: 9,387
|
Post by Quads on Apr 2, 2014 18:02:31 GMT -8
Download this download.microsoft.com/download/3/9/D/39DF4B56-9D3A-4645-AC11-803043ED4214/MicrosoftFixit50688.msi let the tool do it's thing. This us what the tool does in .vbs form strComputer = "."
Set objWMIService = GetObject("winmgmts:" _ & "{impersonationLevel=impersonate}!\\" _ & strComputer & "\root\subscription")
Set obj1 = objWMIService.ExecQuery("select * from __eventfilter where name='BVTFilter' and query='SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA ""Win32_Processor"" AND TargetInstance.LoadPercentage > 99'")
For Each obj1elem in obj1
set obj2set = obj1elem.Associators_("__FilterToConsumerBinding")
set obj3set = obj1elem.References_("__FilterToConsumerBinding")
For each obj2 in obj2set
WScript.echo "Deleting the object"
WScript.echo obj2.GetObjectText_
obj2.Delete_
next
For each obj3 in obj3set
WScript.echo "Deleting the object"
WScript.echo obj3.GetObjectText_
obj3.Delete_
next
WScript.echo "Deleting the object"
WScript.echo obj1elem.GetObjectText_
obj1elem.Delete_NextQuads
|
|
|
Post by maldemarstor on Apr 4, 2014 4:24:19 GMT -8
Done.
|
|