BleepingComputer.com: Babylon Redirect

Ok, I'm frustrated now. That machine is running so slow I'm having to look up information on a different machine.

KC

Hi!

Sorry about that. Something wacky must have happened when I posted, because I had included more text then what had gotten posted to you.

Quote

I'm honestly not seeing any signs of malware in your logs. So I'm not convinced that the slowness issue is malware related. You should take a look at the link that I previously linked you to, and see if that addresses any of the issues with slowness.

The scans/fixes/scripts I've had you run haven't done all that much to be honest. When I had you run the OTL fix, I scripted away some of the Babylon remedies.

In the script I reset your host file and created a new restore point.

ComboFix didn't remove anything.

The only real thing we did was remove the Babylon remedies and update a few programs.

I don't see any signs of a rootkit on your computer, and we ran a couple of scans to search for such.

Quote

I wasn't ignoring it, it was going to be addressed in my final post, which seems to have gotten messed up.

In regards to the MSE issue, you may need to completely remove it, run the MSE removal tool and then re-install it, and see if that takes care of the issue.

Quote

If you had read my previous post you would have seen that I did instruct you to remove those leftover tools.

See this quote from my previous post:

Quote

I need to look into something, I'll post back later.

SweetTech, on 24 June 2011 - 01:45 PM, said:

I don't mean to be rude, not at all but I think you're missing my point. I don't think the slowness is due to any malware. On the contrary, it was running 'fine but quirky' the first time I posted. Now it's so slow I can't even post from that machine.

Quote

Which is what I needed. Babylon was what started the thread. I was unable to stop it and I appreciate that you saw that. Also IE wasn't allowing me to click on any of her Gmail links but other than those 2 things the machine was moving along fairly quickly.

Quote

I've already unintstalled MSE and I plan to put it back on there. I didn't use the tool you are referring to though I used the add/remove programs. Should I use the tool instead? I noticed when I ran the task manager that MSE was using a TREMENDOUS amount of resources which was unusual so I deleted it to see if that might solve some of the problem. So far it doesn't look like it has.

Quote

Not a problem. I'll monitor the thread.

Thanks,
KC

Quote

I understand what you're saying.

Quote

The issues with Gmail and IE not working properly have been fixed, correct?

Quote

Yeah, I'd honestly try the removal tool, and then try to re-install it to see if that fixes it.

Quote

This post has been edited by SweetTech: 24 June 2011 - 02:17 PM

SweetTech, on 24 June 2011 - 02:17 PM, said:

If you look at our thread by post #4 I started complaining about the computer slowing down. That is right after the first OTL scan/fix and running CF. Could one of those things have changed something that didn't need changing?

Quote

Yup!

Quote

I'll see what happens after it finishes the reload of MSE.

Quote

I'm assuming you'll be back?

Thanks!
KC

Quote

I honestly, don't think so. I can't really see of the things that I scripted
out causing any problems.

Quote

Yep, I need to ponder some things.

Let me have you run a SFC /scannow scan and see if that does anything:

Run System File Checker

Make sure you have your XP Disc handy


The System File Checker (Sfc.exe) utility is used for scanning protected operating system files to verify their version and integrity. If System File Checker detects any operating system file with the incorrect file version, it replaces the corrupted file with a file that has the correct version from the Windows installation source files.

To use System File Checker, follow these steps:

• Click Start, click Run, type cmd.exe, and then click OK.
  
• At the command prompt, type sfc /purgecache, and then press ENTER.
  Note You may be prompted to provide Windows installation source files when you run the sfc /purgecache command. If the command is completed successfully, you will receive the following message:
  
• Windows File Protection successfully made the requested change.
  
• At the command prompt, type sfc /scannow, and then press ENTER.
  Note
  This command may take several minutes to finish. You may also be
  prompted to provide Windows installation source files when you run the sfc /scannow command.
  
• At the command prompt, type exit, and then press ENTER to close the command prompt.

This post has been edited by SweetTech: 24 June 2011 - 02:48 PM

SweetTech, on 24 June 2011 - 02:46 PM, said:

This could be in issue. It's not my machine and since she bought it at Best Buy a few years ago ..... I'm sure she doesn't have the installation disk (they don't give them to you). Thoughts?

KC

Okay. That maybe a problem then, but I'd like to have you try running it anyways, and see if it will run.

SweetTech, on 24 June 2011 - 03:04 PM, said:

Before I do that would you like to see if we can go back to a restore point? I would hate to kill her machine.

Thanks,
KC

It shouldn't kill her machine. Basically what will happen is it will perform a scan on the computer, and if any key system files are corrupted and that need to be replaced it will attempt to restore them from a hidden folder called DllCache. Sometimes this folder gets corrupted and some of the files that need to be replaced need to be copied from the Windows XP disc, so they can be copied into the DllCache, and be replaced. If any files need to be replaced with the CD, you should receive a prompt during the SFC /scannow scan informing you of such.

This post has been edited by SweetTech: 24 June 2011 - 03:31 PM

SweetTech, on 24 June 2011 - 03:24 PM, said:

Gotchya. I'll give it a shot then get back with you. Thanks!

KC

Okay. Let me know how that goes.

SweetTech, on 24 June 2011 - 07:44 PM, said:

Not so well. It is so slow now I had to boot it into Safe Mode to do ANYTHING. It is getting slower and slower. Personally I think it is loading something at start up that is causing the problem or something is hanging on load up.

ST, I think at this point you can close this thread. I'm going to try something different.

Thanks,
KC

Okay. If you think it's something at start-up then you may want to try this tool:

You may wish to try StartupLite. Simply download this tool to your desktop and run it. It will explain any optional auto-start programs on your system, and offer the option to stop these programs from starting at startup. This will result in fewer programs running when you boot your system, and should improve performance.

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.