I've run Cleaning Procedures but still have slow Start Up?

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by tonyex, Sep 3, 2008.

  1. tonyex

    tonyex Private E-2

    My PC is a Dell Dimension 9150 two years old, running XP Media Centre 2002 u/g to 2005 and SP3 v 3311. I have a BT Vision Home Hub wireless network which shows a 7616kB connection speed

    My pc takes exactly 4mins from when the desktop appears until I can open anything, this includes the pc finding the net.This is since I installed SP3.
    When desktop has loaded the Netgear logon icon appears green in the Task Bar. After 4mins Spysweeper and Bitdefender icons load in Task Bar annd Netgear goes red. After 1 min Netgear goes green and the wireless network connection icon appears and connects.

    I have reinstalled my Netgear programme and updated my wireless card driver. My signal is v good at 100% and speed is 54Mbps but will drop to 1Mbps and low signal.

    I had trouble with wininstaller but have managed to update it and can install software.

    This all seems to have happened since I ran Ashampoo WinOptimiser, Regmechanic and CCleaner. I have recently installed an HPC5280 all in one printer which is shared by the oonly other pc on my home network.


    Having run all the Cleaning tools my start up time has not been improved at all. Only when Spybot completely deleted Winclear, on its second run at start up, did the pc start as I would hope; but this was a one off!

    Attached are log files from SAS and combofix. there is no log from MBAM as no malware was found. The other logs follow.
     

    Attached Files:

  2. tonyex

    tonyex Private E-2

    Here are the other logs. Only from MG.

    I have just updated my Spysweeper programme and in its first sweep it has quarantined EICAR-AV-Test as a high rated virus.

    hope someone can help me.

    Thanks for all the guidance with the cleaning programmes a great help and easy to follow.

    tonyex
     

    Attached Files:

  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    You are not having malware problems. You are having problems related to the software that you are running. Most likely due to SpySweeper and BitDefender. Looking at your Scheduled Tasks in the ComboFix log SpwSweeper has almost 30 tasks scheduled to run. I suggest that you uninstall SpySweeper and delete all the SpySweeper tasks in the C:\WINDOWS\Tasks folder and then see how things are running. If that does not change anything then uninstall BiDefender and retest. This is just a test to see which of these may be causing your problems. I'm not saying that I want you to run without protection. It is just a matter of which protection to use.;)

    Just a false positive.
     
  4. tonyex

    tonyex Private E-2

    Thanks Chas for the welcome and info. glad I have no malware.:)

    I've done as you suggest but it has made no difference to the start up time at all.

    Is it a problem with my start up list?:
     
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Are you sure they uninstalled completely? Uninstall SUPERAntiSpyware too and then show me a log from MGtools with Bitdefender, Spy Sweeper and SUPERAntiSpyware all uninstalled.

    BitDefender and Spy Sweeper would be the most likely big issues. You do have other unnecessary junk but some you may use which we would not ( like Kontiki for 4oD, iPode Service, Bonjour Service).

    Other items impacting startup which you would have to decide if you really need or not are the below:
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [btbb_wcm_McciTrayApp] "C:\Program Files\btbb_wcm\McciTrayApp.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
     
  6. tonyex

    tonyex Private E-2

    I have uninstalled programmes as asked, attached is the MG log. I will consider the start up queries you raise and modify start up file later unless you ask othwerwise.

    Thanks again
     

    Attached Files:

  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay they all uninstall completely. Since you say that doing this did not help, you should reinstall BitDefender and Spy Sweeper now to get you protection back in place.

    Okay but remember not to use MSconfig to control startups permanently. Follow the guidelines given in the below link:

    Dealing with Startup Processes


    Now we need to cleanup some items from running ComboFix.

    Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.

    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommed you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significan amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /u
        • Notes: The space between the combofix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
      • Delete the C:\combofix folder from combofix.
    3. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    4. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    7. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.
    8. After doing the above, you should work thru the below link:
     
  8. tonyex

    tonyex Private E-2

     
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I don't recommend running this way for very long. You will get infected.

    I suggest that you post in the Software Forum. Perhaps your problems are related to your wireless software.
     
  10. tonyex

    tonyex Private E-2

    Thanks Chas for all your help. Sorry for the late reply ,have been away for a few days.
    Have reinstalled Bitdefender and Spysweeper still no improvement

    Will now post problem on software forum as you suggest.
     
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome and good luck. :)
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds