Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow system, slower application start up


  • Please log in to reply
21 replies to this topic

#1 newhorizon

newhorizon

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 31 August 2011 - 06:24 AM

Hi! Bleeping computer has been extremely helpful to me on earlier occasions and I'm sure I wont be disappointed this time around either.
My home computer is being used by two users. I am the main administrator.
Recently I've noticed a prolonged start up and shut down time. All applications including 'windows explorer' take a long time to open. I have installed AVG antivirus but there are no traces of virus or spyware.
The most weird thing is that the computer just get stuck for around 2 minutes once every half an hour. The entire system just doesn't respond at all, then after 2 minutes or so, everything is back to normal.
Please help.

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 31 August 2011 - 11:36 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 01 September 2011 - 12:45 PM

Hi.. Thanks for the reply. Posting the logs you asked for.

Results of screen317's Security Check version 0.99.7
Windows XP Service Pack 3
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

AVG 8.5
Quick Heal Internet Security
Antivirus out of date!
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
TuneUp Utilities 2011
CCleaner
Java™ 6 Update 26
Java™ 7
Out of date Java installed!
Adobe Flash Player 10.3.181.26
Adobe Reader 8.3.0
Out of date Adobe Reader installed!
Mozilla Firefox (3.6.12) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

AVG avgwdsvc.exe
AVG avgtray.exe
AVG avgrsx.exe
AVG avgnsx.exe
QUICKH~1 QUICKH~1 ONLINENT.EXE
``````````End of Log````````````


MiniToolBox by Farbar
Ran by kbleepij (administrator) on 01-09-2011 at 22:15:33
Microsoft Windows XP Service Pack 3 (X86)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=static addr=172.25.8.8 mask=255.255.255.192
add address name="Local Area Connection" addr=192.168.100.47 mask=255.255.255.0
set address name="Local Area Connection" gateway=172.25.1.1 gwmetric=0
set dns name="Local Area Connection" source=static addr=192.168.71.1 register=PRIMARY
add dns name="Local Area Connection" addr=202.88.130.67 index=2
set wins name="Local Area Connection" source=static addr=none

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Bluetooth Network Connection"

set address name="Bluetooth Network Connection" source=dhcp
set dns name="Bluetooth Network Connection" source=dhcp register=PRIMARY
set wins name="Bluetooth Network Connection" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration Host Name . . . . . . . . . . . . : xp Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : NoEthernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Description . . . . . . . . . . . : Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC Physical Address. . . . . . . . . : 00-25-11-0D-14-FDEthernet adapter Local Area Connection 2: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Motorola SURFboard SB5100 USB Cable Modem Physical Address. . . . . . . . . : 00-11-AE-B1-FD-E1 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Autoconfiguration IP Address. . . : 169.254.84.80 Subnet Mask . . . . . . . . . . . : 255.255.0.0 Default Gateway . . . . . . . . . : PPP adapter Youtelecom: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface Physical Address. . . . . . . . . : 00-53-45-00-00-00 Dhcp Enabled. . . . . . . . . . . : No IP Address. . . . . . . . . . . . : 203.88.152.190 Subnet Mask . . . . . . . . . . . : 255.255.255.255 Default Gateway . . . . . . . . . : 203.88.152.190 DNS Servers . . . . . . . . . . . : 203.187.193.66 203.187.193.68 NetBIOS over Tcpip. . . . . . . . : DisabledEthernet adapter Bluetooth Network Connection: Media State . . . . . . . . . . . : Media disconnected Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) Physical Address. . . . . . . . . : 00-15-83-15-A3-10Server: sendmailvad.youbroadband.in
Address: 203.187.193.66

Name: google.com
Addresses: 74.125.236.114, 74.125.236.115, 74.125.236.116, 74.125.236.112
74.125.236.113

Pinging google.com [74.125.236.114] with 32 bytes of data:Reply from 74.125.236.114: bytes=32 time=25ms TTL=57Reply from 74.125.236.114: bytes=32 time=27ms TTL=57Ping statistics for 74.125.236.114: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 25ms, Maximum = 27ms, Average = 26msServer: sendmailvad.youbroadband.in
Address: 203.187.193.66

Name: yahoo.com
Addresses: 69.147.125.65, 72.30.2.43, 98.137.149.56, 209.191.122.70
67.195.160.76

Pinging yahoo.com [67.195.160.76] with 32 bytes of data:Reply from 67.195.160.76: bytes=32 time=267ms TTL=54Reply from 67.195.160.76: bytes=32 time=266ms TTL=54Ping statistics for 67.195.160.76: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 266ms, Maximum = 267ms, Average = 266msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 25 11 0d 14 fd ...... Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC - Packet Scheduler Miniport
0x10004 ...00 11 ae b1 fd e1 ...... Motorola SURFboard SB5100 USB Cable Modem - Packet Scheduler Miniport
0x20006 ...00 53 45 00 00 00 ...... WAN (PPP/SLIP) Interface
0x30005 ...00 15 83 15 a3 10 ...... Bluetooth Device (Personal Area Network)
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 203.88.152.190 203.88.152.190 1
123.201.96.1 255.255.255.255 203.88.152.190 203.88.152.190 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 169.254.84.80 169.254.84.80 30
169.254.84.80 255.255.255.255 127.0.0.1 127.0.0.1 30
169.254.255.255 255.255.255.255 169.254.84.80 169.254.84.80 30
203.88.152.190 255.255.255.255 127.0.0.1 127.0.0.1 50
203.88.152.255 255.255.255.255 203.88.152.190 203.88.152.190 50
224.0.0.0 240.0.0.0 169.254.84.80 169.254.84.80 30
224.0.0.0 240.0.0.0 203.88.152.190 203.88.152.190 1
255.255.255.255 255.255.255.255 169.254.84.80 169.254.84.80 1
255.255.255.255 255.255.255.255 203.88.152.190 2 1
255.255.255.255 255.255.255.255 203.88.152.190 203.88.152.190 1
255.255.255.255 255.255.255.255 203.88.152.190 30005 1
Default Gateway: 203.88.152.190
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/30/2011 06:00:14 PM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/26/2011 06:00:25 PM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/22/2011 01:24:00 PM) (Source: Application Error) (User: )
Description: Faulting application tweetdeck.exe, version 0.0.0.0, faulting module adobe air.dll, version 2.7.1.19610, fault address 0x008cae94.
Processing media-specific event for [tweetdeck.exe!ws!]

Error: (08/21/2011 06:00:54 PM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/21/2011 00:00:14 PM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/21/2011 09:00:16 AM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/17/2011 02:32:44 PM) (Source: Application Error) (User: )
Description: Faulting application tweetdeck.exe, version 0.0.0.0, faulting module adobe air.dll, version 2.7.1.19610, fault address 0x008cae94.
Processing media-specific event for [tweetdeck.exe!ws!]

Error: (08/14/2011 06:00:14 AM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/14/2011 03:00:14 AM) (Source: Google Update) (User: kbleepij)kbleepij
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (08/14/2011 00:38:51 AM) (Source: Application Error) (User: )
Description: Faulting application realplay.exe, version 11.0.0.446, faulting module rjbe3260.dll, version 6.0.5.45, fault address 0x0000b890.
Processing media-specific event for [realplay.exe!ws!]


System errors:
=============
Error: (09/01/2011 09:40:41 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.100.11 for the Network Card with network address 0011AEB1FDE1 has been
denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message).

Error: (09/01/2011 09:39:15 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.

Error: (09/01/2011 09:39:15 PM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (09/01/2011 09:39:15 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.

Error: (09/01/2011 09:39:15 PM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (09/01/2011 05:43:44 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 15 minutes.
NtpClient has no source of accurate time.

Error: (09/01/2011 05:43:44 PM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (09/01/2011 05:43:44 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 15 minutes.
NtpClient has no source of accurate time.

Error: (09/01/2011 05:43:44 PM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (09/01/2011 05:28:23 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Torrent (Version: 1.8.4)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.5)
Adobe Flash Player 10 Plugin (Version: 10.3.181.26)
Adobe Reader 8.3.0 (Version: 8.3.0)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
Advanced SystemCare 4 Beta 3.0 (Version: 0.4.0)
Angry Birds Rio (Version: 1.1.0)
Apple Application Support (Version: 1.1.0)
Apple Software Update (Version: 2.1.1.116)
AVG 8.5
CCleaner (Version: 3.09)
Conduit Engine (Version: 6.2.7.3)
Data Lifeguard Diagnostic for Windows (Version: 1.17)
DivX Codec (Version: 6.8.5)
DivX Converter (Version: 7.0.0)
DivX Player (Version: 7.0.0)
DivX Plus DirectShow Filters
DivX Web Player (Version: 1.4.2)
Evonsoft Computer Repair 1.0
Facebook Video Calling 1.0.0.7930 (Version: 1.0.7930)
Google Earth Plug-in (Version: 6.0.3.2197)
Google Update Helper (Version: 1.3.21.65)
Intel® Graphics Media Accelerator Driver
Java Auto Updater (Version: 2.1.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
Java™ 7 (Version: 7.0.0)
K-Lite Codec Pack 7.6.0 (Full) (Version: 7.6.0)
Malwarebytes' Anti-Malware version 1.51.1.1800 (Version: 1.51.1.1800)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Mobile Witch Remote Control (Version: 3.2.0.0)
Mozilla Firefox (3.6.12) (Version: 3.6.12 (en-US))
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x86 (Version: 1.0.1.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Keyboard Driver
Nero Suite
Nokia Connectivity Cable Driver (Version: 7.1.45.0)
Nokia Ovi Suite (Version: 3.1.1.85)
Nokia Ovi Suite Software Updater (Version: 02.07.004.45780)
Nokia PC Suite (Version: 7.1.60.0)
Ovi Desktop Sync Engine (Version: 1.5.266.0)
OviMPlatform (Version: 2.7.72.0)
Paint.NET v3.35 (Version: 3.35.0)
PC Connectivity Solution (Version: 11.4.19.0)
Quick Heal Internet Security
QuickTime (Version: 7.65.17.80)
RealPlayer
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.11.0000)
Realtek High Definition Audio Driver (Version: 5.10.0.5443)
Skype Toolbars (Version: 5.3.7280)
Skype 5.3 (Version: 5.3.111)
TeamViewer 4
TuneUp Utilities 2011 (Version: 10.0.2011.65)
TuneUp Utilities Language Pack (en-US) (Version: 10.0.2011.65)
TweetDeck (Version: 0.37.6)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0)
VLC media player 1.1.11 (Version: 1.1.11)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Nokia Modem (06/09/2010 7.01.0.8) (Version: 06/09/2010 7.01.0.8)
Windows Driver Package - Nokia Modem (10/07/2010 4.6) (Version: 10/07/2010 4.6)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
WordWeb (Version: 4)

========================= Memory info: ===================================

Percentage of memory in use: 90%
Total physical RAM: 1014.17 MB
Available physical RAM: 92.2 MB
Total Pagefile: 2964.84 MB
Available Pagefile: 1714.1 MB
Total Virtual: 2047.88 MB
Available Virtual: 1994.98 MB

========================= Partitions: =====================================

2 Drive c: (More stuff) (Fixed) (Total:48.83 GB) (Free:3.02 GB) NTFS
3 Drive d: () (Fixed) (Total:97.65 GB) (Free:54.74 GB) NTFS
4 Drive e: (MUSIC N VIDS) (Fixed) (Total:97.65 GB) (Free:4.81 GB) NTFS
5 Drive f: (STUFF) (Fixed) (Total:53.94 GB) (Free:4.59 GB) NTFS
6 Drive g: (110901_1308) (CDROM) (Total:3.83 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\XP

Administrator Guest HelpAssistant
kbleepij Mom SUPPORT_388945a0


**** End of log ****


Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7630

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

9/1/2011 10:37:56 PM
mbam-log-2011-09-01 (22-37-55).txt

Scan type: Quick scan
Objects scanned: 168471
Time elapsed: 6 minute(s), 10 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)



GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-09-01 23:12:27
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 WDC_WD3200AAJS-00L7A0 rev.01.03E01
Running: rkcff348.exe; Driver: D:\DOCUME~1\kbleepij\LOCALS~1\Temp\pxtdipow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\00158315a310
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\00158315a310@1886ac4a187f 0x7B 0xD0 0xBD 0xEC ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\00158315a310@001bafec9469 0x8A 0xE2 0x70 0xB3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\00158315a310@c8df7cf8a872 0x39 0xC0 0x4C 0xC2 ...
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\00158315a310 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\00158315a310@1886ac4a187f 0x7B 0xD0 0xBD 0xEC ...
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\00158315a310@001bafec9469 0x8A 0xE2 0x70 0xB3 ...
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\00158315a310@c8df7cf8a872 0x39 0xC0 0x4C 0xC2 ...

---- EOF - GMER 1.0.15 ----

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 01 September 2011 - 08:49 PM

You're running two AV programs, Quick Heal Internet Security and AVG.
One of them has to go.
I'm not familiar with Quick Heal Internet Security so I suggest you uninstall it.

========================================================

Download Temp File Cleaner (TFC)
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

=============================================================================

Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • Accept any security warnings from your browser.
  • Check Scan archives
  • Click Start
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 03 September 2011 - 08:00 AM

Hi
I've completed everything you've asked me to do. Pasted below is the ESET log.

D:\TEMporary\pen\18 oct\TuneUp-Utilities-2008-v7.0.8002.exe probably a variant of Win32/Agent.IEQMCDV trojan deleted - quarantined
D:\TEMporary\pen\18 oct\Fruity Loops Stu 8.0 RC3 XXL Producer Edition (Key Incl.) NO VIRUS\FLSTUD~1.EXE probably a variant of Win32/Delf.LQXDKYX trojan deleted - quarantined
E:\del\DaxxWebIndustriesMobileDisinfectorStandardEdition.sis a variant of SymbOS/KillPhone.E trojan deleted - quarantined

Please tell me what to do next.

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 03 September 2011 - 11:14 AM

How is computer doing?

Uninstall Java 6 Update 26

Update Adobe Reader

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
Note. If you already have Adobe Photoshop Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB), download and install Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or any other garbage.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 04 September 2011 - 02:11 AM

Uninstalled Java and Adobe reader. Installed Foxit.
I must admit the computer is not as slow as it was, but the other problems still persist.
For instance, the computer gets frozen for about 5-10 secs.
It sometimes restarts on its own.
Usually at night, my LCD monitor flickers. (I think that might be a voltage issue)

#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 04 September 2011 - 10:57 AM

Download BlueScreenView (in Zip file)
No installation required.
Unzip downloaded file and double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit>Select All.
Go File>Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

==============================================================

Download System Information for Windows (SIW free version)
No installation required.

After it scans your computer, navigate to Hardware>Sensors and post all info from there.

Posted Image

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 05 September 2011 - 05:05 AM

Hi..
The Bluescreen application fails to produce a log. It remains blank!

For SIW -

Sensor Value Min Max
XP
HCL Infosystems Limited G31T-M2
Voltages
CPU VCORE 1.20 V 1.17 V 1.31 V
VIN1 2.16 V 2.16 V 2.16 V
+3.3V 1.81 V 1.79 V 1.81 V
+5V 5.11 V 5.11 V 5.11 V
+12V 8.64 V 8.64 V 8.64 V
+5V VCCH 4.92 V 4.92 V 4.95 V
VBAT 3.25 V 3.25 V 3.25 V
Temperatures
THRM 30 C (85 F) 30 C (85 F) 30 C (85 F)
TMPIN0 40 C (103 F) 40 C (103 F) 40 C (103 F)
TMPIN2 47 C (116 F) 47 C (116 F) 54 C (129 F)
Fans
FANIN0 2490 RPM 2490 RPM 2509 RPM
Fans PWM
FANPWM0 50 % 50 % 50 %
FANPWM1 50 % 50 % 50 %
FANPWM2 50 % 50 % 50 %
Intel Pentium E2220
Temperatures
Core #0 45 C (112 F) 42 C (107 F) 50 C (121 F)
Core #1 40 C (103 F) 36 C (96 F) 46 C (114 F)
WDC WD3200AAJS-00L7A0
Temperatures
Assembly 42 C (107 F) 42 C (107 F) 42 C (107 F)


Also, tweetdeck start an auto update but does not update, gets stuck halfway. Tried unistalling and reinstalling.
Dont know if the problems are connected.

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 05 September 2011 - 11:33 AM

The Bluescreen application fails to produce a log

Make sure your settings are correct...

1. Click Start, point to Settings, and then click Control Panel (Start>Control Panel in Vista).
2. Double-click System.
3. Click (Advanced system settings link in Vista, then --->)the Advanced tab, and then click Settings under Startup and Recovery.
4. Make sure, there is a checkmark in Write an event to the system log.
5. In the Write debugging information list, click Small memory dump (64k) (128K in Windows 7).

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 06 September 2011 - 11:55 AM

I did what you ask me to do. Bluescreenview is still blank.

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 06 September 2011 - 06:26 PM

Did you have to change any settings there?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 08 September 2011 - 06:21 AM

Yes I did. But nothing happened. Also, the computer still gets stuck and the applications still take ages to start.

#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:10 PM

Posted 08 September 2011 - 07:47 PM

Run hard drive diagnostics: http://www.tacktech.com/display.cfm?ttid=287 (or http://www.bleepingcomputer.com/forums/index.php?showtopic=28744&hl=hard+drive+diagnostic)
Make sure, you select tool, which is appropriate for the brand of your hard drive.
Depending on the program, it'll create bootable floppy, or bootable CD.
If downloaded file is of .iso type, use ImgBurn: http://www.imgburn.com/ to burn .iso file to a CD (select "Write image file to disc" option), to make the CD bootable.
For Toshiba hard drives, see here: http://sdd.toshiba.com/main.aspx?Path=ServicesSupport/FujitsuDrivesUSandCanada/SoftwareUtilities#diagnostic

Note : If you do not know how to set your computer to boot from CD follow the steps HERE

============================================================================================

A. If you have more than one RAM module installed, try starting/running computer with one RAM stick at a time.

NOTE Keep in mind, the manual check listed above is always superior to the software check, listed below. DO NOT proceed with memtest, if you can go with option A

B. If you have only one RAM stick installed...
...run memtest...

1. Download - Pre-Compiled Bootable ISO (.zip)
2. Unzip downloaded memtest86+-....iso.zip file.
3. Inside, you'll find memtest86+-....iso file.
4. Download, and install ImgBurn: http://www.imgburn.com/
5. Insert blank CD into your CD drive.
6. Open ImgBurn, and click on Write image file to disc
7. Click on Browse for a file... icon:

Posted Image

8. Locate memtest86+-....iso file, and click Open button.
9. Click on ImgBurn green arrow to start burning bootable memtest86 CD:

Posted Image

10. Once the CD is created, boot from it, and memtest will automatically start to run.

The running program will look something like this depending on the size and number of ram modules installed:


Posted Image

It's recommended to run 5-6 passes. Each pass contains very same 8 tests.

This will show the progress of the test. It can take a while. Be patient, or leave it running overnight.

Posted Image

The following image is the test results area:

Posted Image

The most important item here is the errors line. If you see ANY errors, even one, most likely, you have bad RAM.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#15 newhorizon

newhorizon
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:07:40 AM

Posted 09 September 2011 - 09:48 PM

Hi thanks. I am away from my computer for a day. I'll get back to this soon as I return




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users