| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 78562 | 2007-04-20 08:07:00 | Weird unknown files in program files | Mike.H (145) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 542627 | 2007-04-21 04:21:00 | Weird. Never seen anything like them. I woud think that they are not fully legit, then again, who knows with Vista... I tried googling the filenames and got nowhere. There seems to be a great lack of information regarding these files |
Sherman (9181) | ||
| 542628 | 2007-04-21 06:07:00 | Yes, well I might just delete them and see what happens? Even if they are important for Vista, they would certainly not be placed there, they would be hidden. | Mike.H (145) | ||
| 542629 | 2007-04-21 06:08:00 | If you do a search on the files without the "$$Deleteme" ie just the dll name you will find that these files are quite important, your system may not work without them. I found this for starters research.eeye.com www.cyberkiko.com It could be a malicious hack using he Deleteme software to crash your system, give someone else access or even to harvest eMail addys. Try making copies of the original .dll's crypt32.dll should be in windows/system32 (not sure on vista, do a local search if not) csrsrv.dll shoud be in WINDOWS\ServicePackFiles\i386 (not sure on vista, do a local search if not) user32.dll should have a copy in both of those directories as should winsrv.dll save these on a usb stick or floppy so if your system does go down tomorrow you will have these files to re-install. As for the BOOTSECT.BAK, this is a file that has your bootsector info for your previous install of XP. I get the impression that this is just part of a Vista unnstall package but Microsnort is not letting on, at least not loudly anyway. Let us know of any weird behavior over the next few days. Cheers, Jack |
JackStraw (6573) | ||
| 542630 | 2007-04-21 15:11:00 | I did find this about "deleteme" The link i found identifies it as a programme used to delete old and unused files etc, I've never heard of it before. I haven't posted the link because I wont go to the website myself incase it's one of those sites that sends trojans to your computer, atleast not in windows (a live CD of linux I would). And if I don't feel safe going to the website myself then I don't think I should post it here for others. |
Faded_Mantis (79) | ||
| 542631 | 2007-04-21 16:14:00 | Do you use Flickr? There might be a digital camera involved here too...they have this program in them and the desktop download area has one in mine for Kodak Digicam. I find this about it...maybe this is an answer: TAG AND FOOTER--------------------------------------------------------------------------------------------- TOP NEWS: Aprevit has made a new automatic tag and footer script:. Either copy/paste the scripts found here and save each as a 'favorite' or 'bookmark.' Or, for you lucky people with Firefox, just drag and drop the deleteme and saveme bookmarklets from romanedirisinghe's page (thanks, Roman!) Otherwise copy and paste : -voted as "deleteme" (from <a href="www.flickr.com group) -voted as "saveme" (from <a href="www.flickr.com group) I also trust this site to be safe too: del.icio.us |
SurferJoe46 (51) | ||
| 542632 | 2007-04-22 02:21:00 | Nope, don't have flickr. I do have my suspicions though, every so often my connection will suddenly disconnect for a few seconds then it would turn back on. I unplugged the modem for a few minutes and put in back, but a few minutes later it happened again. The only thing i've had connected to my comp was my brothers usb drive. | Mike.H (145) | ||
| 542633 | 2007-04-22 05:33:00 | Dial-up or DSL? I'd reboot the DSL modem or at least reset it if it has a small reset button...maybe...you might have a hacked ip or so...dunnow...sounds like it's phoning home on you... |
SurferJoe46 (51) | ||
| 542634 | 2007-04-22 07:27:00 | Is it just me or is everyone here coming in with an assumption that they are viruses? Windows creates alot of very weird files, I have a folder called 1145f78bbb9e2db01c61 in the root of my Windows partition. I say delete them and forget about it. If they are just in the Program files folder (not a sub-folder) then deleting them is unlikely to cause harm, possibly leftovers from a badly written program. And what antivirus do you run on your computer? |
Ripdog (11014) | ||
| 542635 | 2007-04-22 07:46:00 | Symantic Antivirus 10.2, Vista edition. You're right, even if they are important files, they would at least be hidden or located somewhere else. On DSL btw | Mike.H (145) | ||
| 542636 | 2007-04-22 07:59:00 | Symantec? Dont you mean norton? Anyway, it sucks, uses way to much memory, try Avast or Avg. (google them) Back to the topic... I say delete them. Theres little chance of them being malicious or essential. |
Ripdog (11014) | ||
| 1 2 3 | |||||