Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 8.1 64bit - slow startup


  • This topic is locked This topic is locked
11 replies to this topic

#1 Smoker25

Smoker25

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 21 May 2017 - 07:21 PM

Hi,

 

when Windows boots up the desktop hangs for about 15-20 seconds before loading all the icons. It's not really that big of a deal but it wasn't like that before and I'd like to find out why it keeps happening.

 

Can someone help?

Attached Files



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 24 May 2017 - 08:39 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

ATTENTION: System Restore is disabled
Turn System Restore On for Drives in Windows 10
http://www.tenforums.com/tutorials/4533-system-protection-turn-off-drives-windows-10-a.html
===

Remove this program in bold via the Control Panel > Programs > Programs and Features.
ClipGrab 3.6.5 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien)
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.


Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

CHR Extension: (Chrome Web Store Payments) - C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.

Please let me know what problem persists with this computer.

#3 Smoker25

Smoker25
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 25 May 2017 - 08:15 AM

Hello, nasdaq.

 

I did everything you said but it didn't do anything. Windows still hangs at startup. Is there anything else I could try?

 

Also, can you tell me what those two Chrome extensions were and why was it necessary to remove ClipGrab? It's a program I use all the time.

 

Thanks for your help :)

Attached Files


Edited by Smoker25, 25 May 2017 - 08:15 AM.


#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 25 May 2017 - 01:21 PM

ClicGrab will normally install some PUP.OpenCandy.Installer

https://malwaretips.com/blogs/pup-optional-opencandy-virus/
Decide if you wan to keep it.
===

Google these 2 strings in bold.

C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => moved successfully
C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully

I know I do not want them on my computer.

===

Error: (0) Failed to create a restore point.
https://support.microsoft.com/en-us/help/17228/windows-protect-my-pc-from-viruses

Let me know if you can or not create a restore point.

===

Windows still hangs at startup. Is there anything else I could try?

What do you do to get it started?

#5 Smoker25

Smoker25
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 25 May 2017 - 04:21 PM

ClipGrab lets you choose which version you want to download - the one with embedded adware and the one without. I always download the one without and I never had any problems with it.

 

I tried googling those two extensions but couldn't find any info on what they actually do. Is it something serious? Should I change my passwords etc.?

 

System restore is disabled because I never found it to be useful in any way. I tried restoring once or twice in the past and it made things even worse.

 

And finally, Windows does start on its own but it just takes a little longer than it should. It starts loading the desktop icons, then it hangs for about 10-15 seconds and then loads the rest. I can move my mouse when it happens so it's not a total freeze. Like I said, it's not that big of a deal but I'd just like to know why it happens and whether it might be a virus or something.



#6 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 26 May 2017 - 06:58 AM



I tried googling those two extensions but couldn't find any info on what they actually do. Is it something serious? Should I change my passwords etc.?


I would remove this one.
C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully

https://forums.malwarebytes.com/topic/186965-removal-instructions-for-youndoo-elex/
===

And finally, Windows does start on its own but it just takes a little longer than it should. It starts loading the desktop icons, then it hangs for about 10-15 seconds and then loads the rest. I can move my mouse when it happens so it's not a total freeze. Like I said, it's not that big of a deal but I'd just like to know why it happens and whether it might be a virus or something.


Check the integrity of the operating system files.
How to run sfc /Scannow
http://support.microsoft.com/kb/929833

When completed refer to the Microsoft article again and follow the instructions to view details of the System File Checker process

Post the contents of the sfcdetails.txt file for my review.
Let me know if the problem persists.

#7 Smoker25

Smoker25
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 26 May 2017 - 08:36 AM

 

 

I would remove this one.
C:\Users\Smoker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully

https://forums.malwarebytes.com/topic/186965-removal-instructions-for-youndoo-elex/
===

 

My browser hasn't been hijacked and Malwarebytes couldn't find anything.

 

 

 

Check the integrity of the operating system files.
How to run sfc /Scannow
http://support.microsoft.com/kb/929833

When completed refer to the Microsoft article again and follow the instructions to view details of the System File Checker process

Post the contents of the sfcdetails.txt file for my review.
Let me know if the problem persists.

 

No integrity violations found. 

Attached Files


Edited by Smoker25, 26 May 2017 - 08:36 AM.


#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 26 May 2017 - 12:59 PM

Navigate to this page.
http://learn.flexerasoftware.com/SVM-EVAL-Personal-Software-Inspector

Download and run the Flexera Software Personal Software Inspector.

Update all the 3rd party divers that are old.

#9 Smoker25

Smoker25
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 27 May 2017 - 06:00 AM

I updated Adobe AIR. Everything else is up-to-date.



#10 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 27 May 2017 - 08:01 AM

It the problem persists lets reset these services.



Please Download Tweaking.com - Windows Repair from Here
[list]
  • Install and then run the program
  • Execute the instructions on Step 1 Important
  • Click Next on Step 2 Optional, do the Pre Scan skip Step 3 and 4 Optional for now.
  • On Step 5 Backup System Restore Do a Registry backup. When you have completed this click Next
  • Click Repairs - Open Repairs in the bottom right corner
  • Uncheck the All repair button then select just the item(s) listed below

  • 01 - Repair Registry Permissions
    03 - Reset Service permissions
    04 - Register System Files
    05 - Repair WMI
    10 - Remove Policies Set By Infections
    17 - Repair Windows Updates
    19 - Repair Volume Shadow Copy Service
    21 - Repair MSI (Windows Installer)
    26 - Restore Important Windows Services
    27 - Set Windows Service to Default Startup
    
  • Click the Start button and let the process run to completion. Copy any error messages into Notepad, Save it on your Desktop. ( Reboot if asked to do so)
  • Please copy and paste the Contents of this file on your next reply.

  • ===

    Restart the computer normally.

    How is the computer running now?



#11 Smoker25

Smoker25
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:06 AM

Posted 27 May 2017 - 05:34 PM

I updated the INF driver and the Realtek audio driver and it seems to be booting up faster than before. NOD32 system startup file check is also performed on every reboot. I disabled it and now it boots up even faster. 

 

Things seem to be okay now so feel free to close this topic.

 

Thank you very much for your help, nasdaq :)



#12 nasdaq

nasdaq

  • Malware Response Team
  • 39,963 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:06 AM

Posted 28 May 2017 - 07:43 AM

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/


https://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
Simple and easy ways to keep your computer safe and secure on the Internet.
===




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users