Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Scanned for spyware, found and removed, but computer still lags


  • This topic is locked This topic is locked
2 replies to this topic

#1 MrVaulen

MrVaulen

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:08:59 AM

Posted 04 May 2011 - 06:08 AM

My laptop started lagging seriously a week ago. My guess is that it came with a bad videofile (zipped) downloaded by utorrent from isohunt.com. Deleted a lot of programs and unnecessary files since, ran all scans possible, defragmented, etc. Removed some kind of trojan with ad-aware, but the problem remains. Have removed all programs from strtup in msconfig. The problem remains. Every time i start an application or process (or even move the cursor quickly across the screen), the cpu jumps to 95-100% and everything is extremely slow. I ran gmer as well but somewhere in the middle of the scan, the computer restarted by itself.

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 01.04.2009 23:52:11
System Uptime: 03.05.2011 17:44:03 (18 hours ago)
.
Motherboard: ATI | | SB400
Processor: Intel® Celeron® M processor 1.50GHz | U23 | 1496/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 75 GiB total, 41,2 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP401: 05.02.2011 11:37:22 - System Checkpoint
RP402: 10.02.2011 11:50:08 - System Checkpoint
RP403: 11.02.2011 13:19:50 - System Checkpoint
RP404: 12.02.2011 13:33:54 - System Checkpoint
RP405: 13.02.2011 14:07:52 - System Checkpoint
RP406: 14.02.2011 14:52:06 - System Checkpoint
RP407: 16.02.2011 10:56:39 - System Checkpoint
RP408: 17.02.2011 11:17:33 - System Checkpoint
RP409: 18.02.2011 12:17:32 - System Checkpoint
RP410: 19.02.2011 13:17:32 - System Checkpoint
RP411: 20.02.2011 14:35:19 - System Checkpoint
RP412: 23.02.2011 10:10:27 - System Checkpoint
RP413: 25.02.2011 04:12:00 - System Checkpoint
RP414: 26.02.2011 10:48:04 - System Checkpoint
RP415: 27.02.2011 12:17:34 - System Checkpoint
RP416: 28.02.2011 12:25:03 - System Checkpoint
RP417: 02.03.2011 03:55:06 - System Checkpoint
RP418: 05.03.2011 19:01:40 - System Checkpoint
RP419: 06.03.2011 23:38:45 - System Checkpoint
RP420: 08.03.2011 01:57:58 - System Checkpoint
RP421: 09.03.2011 02:34:41 - System Checkpoint
RP422: 10.03.2011 09:51:15 - System Checkpoint
RP423: 11.03.2011 10:06:29 - System Checkpoint
RP424: 12.03.2011 11:06:29 - System Checkpoint
RP425: 13.03.2011 12:58:39 - System Checkpoint
RP426: 14.03.2011 13:07:44 - System Checkpoint
RP427: 16.03.2011 03:34:42 - System Checkpoint
RP428: 17.03.2011 04:24:24 - System Checkpoint
RP429: 19.03.2011 04:22:24 - System Checkpoint
RP430: 20.03.2011 12:08:31 - System Checkpoint
RP431: 21.03.2011 16:31:04 - System Checkpoint
RP432: 22.03.2011 17:37:44 - System Checkpoint
RP433: 23.03.2011 17:54:03 - System Checkpoint
RP434: 24.03.2011 18:21:33 - System Checkpoint
RP435: 25.03.2011 18:23:11 - System Checkpoint
RP436: 27.03.2011 04:37:24 - System Checkpoint
RP437: 29.03.2011 01:22:30 - System Checkpoint
RP438: 30.03.2011 10:41:27 - System Checkpoint
RP439: 01.04.2011 13:04:19 - Software Distribution Service 3.0
RP440: 02.04.2011 13:38:46 - System Checkpoint
RP441: 03.04.2011 15:22:27 - System Checkpoint
RP442: 05.04.2011 12:01:50 - System Checkpoint
RP443: 06.04.2011 12:26:28 - System Checkpoint
RP444: 09.04.2011 02:16:35 - Software Distribution Service 3.0
RP445: 10.04.2011 02:32:29 - System Checkpoint
RP446: 11.04.2011 02:41:46 - System Checkpoint
RP447: 12.04.2011 02:55:09 - System Checkpoint
RP448: 13.04.2011 10:04:43 - System Checkpoint
RP449: 14.04.2011 10:48:56 - System Checkpoint
RP450: 15.04.2011 13:48:39 - System Checkpoint
RP451: 16.04.2011 14:30:44 - System Checkpoint
RP452: 17.04.2011 14:53:09 - System Checkpoint
RP453: 18.04.2011 21:35:49 - System Checkpoint
RP454: 20.04.2011 13:28:32 - System Checkpoint
RP455: 21.04.2011 15:49:36 - System Checkpoint
RP456: 23.04.2011 10:49:11 - System Checkpoint
RP457: 24.04.2011 11:41:46 - System Checkpoint
RP458: 25.04.2011 12:45:39 - System Checkpoint
RP459: 26.04.2011 15:20:40 - Software Distribution Service 3.0
RP460: 27.04.2011 16:51:31 - System Checkpoint
RP461: 28.04.2011 00:44:42 - Software Distribution Service 3.0
RP462: 28.04.2011 01:16:32 - Restore Operation
RP463: 28.04.2011 03:04:38 - Software Distribution Service 3.0
RP464: 29.04.2011 03:01:33 - Software Distribution Service 3.0
RP465: 29.04.2011 16:24:14 - Installed Ad-Aware
RP466: 29.04.2011 16:30:03 - Installed Ad-Aware
RP467: 30.04.2011 03:03:58 - Software Distribution Service 3.0
RP468: 04.05.2011 00:16:57 - Installed HiJackThis
.
==== Installed Programs ======================
.
Ad-Aware
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.4.3 - Norsk
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Driver Installation Program
ATI - Avinstalleringsverktøy for Programvaren
ATI Control Panel
ATI Display Driver
µTorrent
Bonjour
Canon Utilities PhotoStitch
Canon Utilities ZoomBrowser EX
CD/DVD Sürücü Akustik Susturucu
Controlador de DVD-RAM
CopyTrans Suite Remove Only
Google Chrome
Google Earth
Google Toolbar for Internet Explorer
Google Update Helper
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976002-v5)
Hotfix for Windows XP (KB976098-v2)
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
iTunes
Java Auto Updater
Java™ 6 Update 22
Keyboard Layout Loader
McAfee Security Scan Plus
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox (3.6.17)
MSN Messenger 7.0
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB973685)
OpenOffice.org 3.2
QuickTime
Realtek AC'97 Audio
REALTEK Gigabit and Fast Ethernet NIC Driver
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Spotify
Spybot - Search & Destroy
ToggleNO Toolbar
TOSHIBA Assist
TOSHIBA Hotkey Utility
TOSHIBA Software Modem
TOSHIBA Virtuell lyd
TrojanHunter 5.3
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB968220)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows XP (KB2345886)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VLC Streamer
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Media Format 11 runtime
WinRAR archiver
.
==== Event Viewer Messages From Past Week ========
.
29.04.2011 16:17:59, error: Service Control Manager [7034] - The DVD-RAM_Service service terminated unexpectedly. It has done this 1 time(s).
29.04.2011 16:17:24, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
29.04.2011 16:17:13, error: Service Control Manager [7031] - The Internet Pass-Through Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
29.04.2011 16:12:40, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
29.04.2011 16:12:38, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
29.04.2011 11:48:45, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
28.04.2011 01:16:33, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
28.04.2011 01:16:31, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
28.04.2011 01:13:48, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: TfFsMon TfSysMon
28.04.2011 00:54:32, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
28.04.2011 00:51:21, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BHDrvx86 Fips intelppm SRTSPX SymIRON SYMTDI TfFsMon TfSysMon
28.04.2011 00:23:41, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NAV service.
27.04.2011 20:00:00, error: Schedule [7901] - The At1.job command failed to start due to the following error: %%2147942402
04.05.2011 11:01:19, information: Windows File Protection [64021] - The system file c:\program files\common files\microsoft shared\web server extensions\40\isapi\_vti_aut\author.dll could not be copied into the DLL cache. The specific error code is 0x000004c7 [The operation was canceled by the user. ]. This file is necessary to maintain system stability.
04.05.2011 11:01:19, information: Windows File Protection [64018] - Windows File Protection file scan was cancelled by user interaction, user name is Mikael.
04.05.2011 11:01:03, information: Windows File Protection [64021] - The system file c:\windows\system32\adsiis.dll could not be copied into the DLL cache. The specific error code is 0x000004c7 [The operation was canceled by the user. ]. This file is necessary to maintain system stability.
04.05.2011 11:00:51, information: Windows File Protection [64021] - The system file c:\windows\system32\admwprox.dll could not be copied into the DLL cache. The specific error code is 0x000004c7 [The operation was canceled by the user. ]. This file is necessary to maintain system stability.
04.05.2011 11:00:46, information: Windows File Protection [64021] - The system file c:\program files\common files\microsoft shared\web server extensions\40\_vti_bin\_vti_adm\admin.exe could not be copied into the DLL cache. The specific error code is 0x000004c7 [The operation was canceled by the user. ]. This file is necessary to maintain system stability.
04.05.2011 11:00:39, information: Windows File Protection [64021] - The system file c:\program files\common files\microsoft shared\web server extensions\40\isapi\_vti_adm\admin.dll could not be copied into the DLL cache. The specific error code is 0x000004c7 [The operation was canceled by the user. ]. This file is necessary to maintain system stability.
04.05.2011 10:59:39, information: Windows File Protection [64016] - Windows File Protection file scan was started.
01.05.2011 11:33:37, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NIS service.
01.05.2011 11:06:06, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
.
==== End Of File ===========================

Edited by MrVaulen, 05 May 2011 - 04:17 AM.


BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:09:59 AM

Posted 12 May 2011 - 10:35 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.
If you are unable to create a log because your computer cannot start up successfully please provide detailed information about the Windows version you are using: What we in particular need to know is version, edition and if it is a 32bit or a 64bit system. [/b]
If you are unsure about any of these caracteristics, just let us know and we'll help you figuring it out. Please also tell us if you have your Windows CD/DVD handy.


Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
We need to create an OTL Report
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • In the custom scan box paste the following:
    msconfig
    safebootminimal
    activex
    drivers32
    netsvcs
    %SYSTEMDRIVE%\*.exe
    /md5start
    explorer.exe
    winlogon.exe
    wininit.exe
    hlp.dat
    /md5stop
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt<--Will be minimized

In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:09:59 AM

Posted 22 May 2011 - 03:28 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users