Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

PC runs slow

slow malware spyware cleanup

  • Please log in to reply

#16
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

Vino's Event Viewer Applications Scan Log:

ino's Event Viewer v01c run on Windows 2008 in English
Report run at 29/04/2014 12:53:30 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Information Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 29/04/2014 7:24:46 PM
Type: Information Category: 0
Event: 903 Source: Microsoft-Windows-Security-SPP
The Software Protection service has stopped.

Log: 'Application' Date/Time: 29/04/2014 7:21:31 PM
Type: Information Category: 0
Event: 1000 Source: Microsoft-Windows-LoadPerf
Performance counters for the WmiApRpl (WmiApRpl) service were loaded successfully. The Record Data in the data section contains the new index values assigned to this service.

Log: 'Application' Date/Time: 29/04/2014 7:21:31 PM
Type: Information Category: 0
Event: 1001 Source: Microsoft-Windows-LoadPerf
Performance counters for the WmiApRpl (WmiApRpl) service were removed successfully. The Record Data contains the new values of the system Last Counter and Last Help registry entries.

Log: 'Application' Date/Time: 29/04/2014 7:19:46 PM
Type: Information Category: 0
Event: 1 Source: SecurityCenter
The Windows Security Center Service has started.

Log: 'Application' Date/Time: 29/04/2014 7:19:46 PM
Type: Information Category: 3
Event: 2000 Source: UNS
Intel® User Notification Service started.


Log: 'Application' Date/Time: 29/04/2014 7:19:46 PM
Type: Information Category: 0
Event: 902 Source: Microsoft-Windows-Security-SPP
The Software Protection service has started. 6.1.7601.17514

Log: 'Application' Date/Time: 29/04/2014 7:19:46 PM
Type: Information Category: 0
Event: 1003 Source: Microsoft-Windows-Security-SPP
The Software Protection service has completed licensing status check. Application Id=55c92734-d682-4d71-983e-d6ec3f16059f Licensing Status=
1: 01f5fc37-a99e-45c5-b65e-d762f3518ead, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 2e7d060d-4714-40f2-9896-1e4f15b612ad, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 3b965dfc-31d9-4903-886f-873a0382776c, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 586bc076-c93d-429a-afe5-a69fbc644e88, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
6: 5e35dc43-389b-47c5-b889-2088b06738cb, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 6a7d5d8a-92af-4e6a-af4b-8fddaec800e5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 9ab82e0c-ffc9-4107-baa1-c65a8bd3ccc3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 9f83d90f-a151-4665-ae69-30b3f63ec659, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: a63275f4-530c-48a7-b0d3-4f00d688d151, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: b8a4bb91-69b1-460d-93f8-40e0670af04a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
12: d2c04e90-c3dd-4260-b0f3-f845f5d27d64, 1, 1 [(0 [0x00000000, 1, 0], [(?)(?)( 1 0x00000000 0 0 msft:rm/algorithm/bios/4.0 0x00000000 0)(?)(?)(?)])(1 )(2 )]
13: e68b141f-4dfa-4387-b3b7-e65c4889216e, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
14: ee4e1629-bcdc-4b42-a68f-b92e135f78d7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
15: 4a8149bb-7d61-49f4-8822-82c7bf88d64b, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
16: afd5f68f-b70f-4000-a21d-28dbc8be8b07, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]



Log: 'Application' Date/Time: 29/04/2014 7:19:46 PM
Type: Information Category: 0
Event: 1066 Source: Microsoft-Windows-Security-SPP
Initialization status for service objects. C:\windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/2005, 0x00000000, 0x00000000
C:\windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\windows\system32\sppobjs.dll, msft:spp/volume/services/kms/licenserenewal/1.0, 0x00000000, 0x00000000


Log: 'Application' Date/Time: 29/04/2014 7:19:44 PM
Type: Information Category: 0
Event: 900 Source: Microsoft-Windows-Security-SPP
The Software Protection service is starting.

Log: 'Application' Date/Time: 29/04/2014 7:17:50 PM
Type: Information Category: 1
Event: 1003 Source: Microsoft-Windows-Search
The Windows Search Service started.


Log: 'Application' Date/Time: 29/04/2014 7:17:48 PM
Type: Information Category: 3
Event: 302 Source: ESENT
Windows (3276) Windows: The database engine has successfully completed recovery steps.

Log: 'Application' Date/Time: 29/04/2014 7:17:44 PM
Type: Information Category: 0
Event: 0 Source: iPod Service
The event description cannot be found.

Log: 'Application' Date/Time: 29/04/2014 7:17:36 PM
Type: Information Category: 3
Event: 301 Source: ESENT
Windows (3276) Windows: The database engine has begun replaying logfile C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log.

Log: 'Application' Date/Time: 29/04/2014 7:17:36 PM
Type: Information Category: 3
Event: 300 Source: ESENT
Windows (3276) Windows: The database engine is initiating recovery steps.

Log: 'Application' Date/Time: 29/04/2014 7:17:36 PM
Type: Information Category: 1
Event: 102 Source: ESENT
Windows (3276) Windows: The database engine (6.01.7601.0000) started a new instance (0).

Log: 'Application' Date/Time: 29/04/2014 7:17:22 PM
Type: Information Category: 0
Event: 0 Source: EvtEng
The event description cannot be found.

Log: 'Application' Date/Time: 29/04/2014 7:17:22 PM
Type: Information Category: 0
Event: 5617 Source: Microsoft-Windows-WMI
Windows Management Instrumentation Service subsystems initialized successfully

Log: 'Application' Date/Time: 29/04/2014 7:17:22 PM
Type: Information Category: 0
Event: 5615 Source: Microsoft-Windows-WMI
Windows Management Instrumentation Service started sucessfully

Log: 'Application' Date/Time: 29/04/2014 7:17:20 PM
Type: Information Category: 0
Event: 0 Source: QBIDPService
Service started successfully.

Log: 'Application' Date/Time: 29/04/2014 7:17:20 PM
Type: Information Category: 0
Event: 0 Source: RegSrvc
The event description cannot be found.
 


  • 0

Advertisements


#17
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

Attached is speccy log

Attached Files


Edited by fletch11, 29 April 2014 - 02:10 PM.

  • 0

#18
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

Process Explorer Log:

Process    CPU    Private Bytes    Working Set    PID    Description    Company Name    Verified Signer
System Idle Process    96.14    0 K    24 K    0            
procexp64.exe    2.03    42,464 K    55,040 K    5356    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Sysinternals
dwm.exe    0.59    58,776 K    36,488 K    1876    Desktop Window Manager    Microsoft Corporation    (Verified) Microsoft Windows
Interrupts    0.43    0 K    0 K    n/a    Hardware Interrupts and DPCs        
firefox.exe    0.25    225,600 K    238,720 K    2932    Firefox    Mozilla Corporation    (Verified) Mozilla Corporation
csrss.exe    0.23    2,720 K    27,460 K    744    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows
System    0.15    180 K    876 K    4            
svchost.exe    0.03    7,520 K    13,336 K    1492    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe    0.03    4,952 K    9,920 K    960    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
explorer.exe    0.02    50,816 K    70,544 K    1944    Windows Explorer    Microsoft Corporation    (Verified) Microsoft Windows
LMS.exe    0.02    2,480 K    4,720 K    1656    Local Manageability Service    Intel Corporation    (Verified) Intel Corporation
taskhost.exe    0.01    13,208 K    13,772 K    1796    Host Process for Windows Tasks    Microsoft Corporation    (Verified) Microsoft Windows
UNS.exe    0.01    3,896 K    8,764 K    848    User Notification Service    Intel Corporation    (Verified) Intel Corporation
svchost.exe    0.01    149,132 K    158,944 K    1048    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe    0.01    5,960 K    9,652 K    500    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
CNMNSST.exe    0.01    1,916 K    5,940 K    4708    Canon IJ Network Scanner Selector EX    CANON INC.    (Verified) Canon Inc.
TecoService.exe    < 0.01    3,080 K    7,268 K    2836    TOSHIBA eco Utility Service    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
iPodService.exe    < 0.01    2,764 K    6,872 K    4972    iPodService Module (64-bit)    Apple Inc.    (Verified) Apple Inc.
wlanext.exe    < 0.01    9,440 K    19,028 K    1376    Windows Wireless LAN 802.11 Extensibility Framework    Microsoft Corporation    (Verified) Microsoft Windows
AppleMobileDeviceService.exe    < 0.01    4,140 K    11,156 K    1628    MobileDeviceService    Apple Inc.    (Verified) Apple Inc.
lsass.exe    < 0.01    6,276 K    13,576 K    812    Local Security Authority Process    Microsoft Corporation    (Verified) Microsoft Windows
SearchIndexer.exe    < 0.01    43,680 K    30,572 K    3276    Microsoft Windows Search Indexer    Microsoft Corporation    (Verified) Microsoft Windows
EvtEng.exe    < 0.01    10,628 K    18,188 K    2444    Intel® PROSet/Wireless Event Log Service    Intel® Corporation    (Verified) Intel Corporation - Mobile Wireless Group
svchost.exe    < 0.01    29,136 K    42,272 K    1100    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe    < 0.01    14,072 K    21,592 K    1076    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe    < 0.01    16,448 K    17,360 K    1284    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
iFrmewrk.exe    < 0.01    13,412 K    25,000 K    2992    Intel® PROSet/Wireless Framework    Intel® Corporation    (Verified) Intel Corporation - Mobile Wireless Group
PanDhcpDns.exe    < 0.01    2,492 K    5,724 K    5088    Wireless PAN DHCP and DNS Server        (Verified) Intel Corporation - Mobile Wireless Group
SynTPEnh.exe    < 0.01    8,984 K    13,888 K    2672    Synaptics TouchPad Enhancements    Synaptics Incorporated    (Verified) Microsoft Windows Hardware Compatibility Publisher
iTunesHelper.exe    < 0.01    3,972 K    11,588 K    4748    iTunesHelper    Apple Inc.    (Verified) Apple Inc.
WmiPrvSE.exe    < 0.01    21,440 K    27,544 K    3376    WMI Provider Host    Microsoft Corporation    (Verified) Microsoft Windows
csrss.exe    < 0.01    2,680 K    7,088 K    676    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows
TODDSrv.exe    < 0.01    2,000 K    5,148 K    2272    TDCSrv Application    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
wuauclt.exe        2,228 K    6,548 K    1092    Windows Update    Microsoft Corporation    (Verified) Microsoft Windows
wmpnetwk.exe        16,144 K    12,276 K    4188    Windows Media Player Network Sharing Service    Microsoft Corporation    (Verified) Microsoft Windows
WmiPrvSE.exe        8,120 K    15,388 K    4372    WMI Provider Host    Microsoft Corporation    (Verified) Microsoft Windows
winlogon.exe        3,396 K    7,744 K    900    Windows Logon Application    Microsoft Corporation    (Verified) Microsoft Windows
wininit.exe        1,728 K    4,588 K    720    Windows Start-Up Application    Microsoft Corporation    (Verified) Microsoft Windows
VEW.exe        1,668 K    6,296 K    2892    Windows Event Viewer - Reports from 1 to 20 of the last events or between two dates.         (No signature was present in the subject)  
VEW.exe        1,664 K    6,008 K    2560    Windows Event Viewer - Reports from 1 to 20 of the last events or between two dates.         (No signature was present in the subject)  
VEW.exe        1,676 K    6,124 K    4404    Windows Event Viewer - Reports from 1 to 20 of the last events or between two dates.         (No signature was present in the subject)  
unsecapp.exe        2,116 K    6,036 K    3872    Sink to receive asynchronous callbacks for WMI client application    Microsoft Corporation    (Verified) Microsoft Windows
unsecapp.exe        1,808 K    5,088 K    3304    Sink to receive asynchronous callbacks for WMI client application    Microsoft Corporation    (Verified) Microsoft Windows
TPwrMain.exe        5,940 K    10,992 K    2912    TOSHIBA Power Saver    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TPCHWMsg.exe        2,912 K    6,380 K    3392    TOSHIBA PC Health Monitor    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TPCHSrv.exe        8,096 K    8,700 K    3156    TOSHIBA PC Health Monitor    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TosSmartSrv.exe        2,816 K    7,460 K    3684    TosSmartSrv.exe    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TosSENotify.exe        4,324 K    9,588 K    2976    TosSENotify.exe.mui    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TosReelTimeMonitor.exe        22,304 K    21,484 K    2340    Monitor of TOSHIBA ReelTime    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TosNcCore.exe        2,868 K    7,636 K    2312    Message Center    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TosCoSrv.exe        3,064 K    5,492 K    2304    TOSHIBA Power Saver    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
ThpSrv.exe        1,500 K    3,508 K    2240    TOSHIBA HDD Protection Service    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
ThpSrv.exe        2,084 K    5,480 K    2688    TOSHIBA HDD Protection Service    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
Teco.exe        2,948 K    7,036 K    2960    TOSHIBA eco Utility    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TCrdMain.exe        12,596 K    22,500 K    2952    TOSHIBA Flash Cards    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
TCrdKBB.exe        1,644 K    3,712 K    4032    TCrdKBB Application        (Verified) TOSHIBA CORPORATION
SynTPHelper.exe        1,576 K    3,696 K    4128    Synaptics Pointing Device Helper    Synaptics Incorporated    (Verified) Microsoft Windows Hardware Compatibility Publisher
svchost.exe        21,424 K    24,676 K    124    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        11,608 K    14,148 K    4884    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        18,912 K    19,480 K    1528    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        2,064 K    5,556 K    2192    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        1,344 K    3,656 K    1616    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
svchost.exe        2,660 K    5,952 K    3808    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows
spoolsv.exe        10,264 K    16,892 K    1484    Spooler SubSystem App    Microsoft Corporation    (Verified) Microsoft Windows
smss.exe        680 K    1,344 K    472    Windows Session Manager    Microsoft Corporation    (Verified) Microsoft Windows
SmoothView.exe        1,548 K    3,524 K    2944    SmoothView    TOSHIBA Corporation    (Verified) TOSHIBA CORPORATION
services.exe        6,668 K    10,572 K    780    Services and Controller app    Microsoft Corporation    (Verified) Microsoft Windows
RegSrvc.exe        2,624 K    6,836 K    2164    Intel® PROSet/Wireless Registry Service    Intel® Corporation    (Verified) Intel Corporation - Mobile Wireless Group
RAVCpl64.exe        9,260 K    11,108 K    2656    Realtek HD Audio Manager    Realtek Semiconductor    (Verified) Microsoft Windows Hardware Compatibility Publisher
RAVBg64.exe        8,656 K    9,980 K    2664    HD Audio Background Process    Realtek Semiconductor    (Verified) Microsoft Windows Hardware Compatibility Publisher
QBIDPService.exe        12,176 K    12,876 K    1240    QBIDPService    Intuit Inc.    (No signature was present in the subject) Intuit Inc.
procexp.exe        2,892 K    7,340 K    5444    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Microsoft Corporation
msseces.exe        6,488 K    14,888 K    2548    Microsoft Security Client User Interface    Microsoft Corporation    (Verified) Microsoft Corporation
MsMpEng.exe        57,116 K    37,700 K    528    Antimalware Service Executable    Microsoft Corporation    (Verified) Microsoft Corporation
mDNSResponder.exe        2,880 K    6,280 K    1096    Bonjour Service    Apple Inc.    (Verified) Apple Inc.
lsm.exe        2,816 K    4,500 K    820    Local Session Manager Service    Microsoft Corporation    (Verified) Microsoft Windows
KeNotify.exe        2,168 K    5,812 K    4136    KeNotify MFC Application    TOSHIBA CORPORATION    (Verified) Compal Electronics
igfxtray.exe        2,984 K    7,040 K    2748    igfxTray Module    Intel Corporation    (Verified) Microsoft Windows Hardware Compatibility Publisher
igfxsrvc.exe        2,688 K    6,672 K    2628    igfxsrvc Module    Intel Corporation    (Verified) Microsoft Windows Hardware Compatibility Publisher
igfxpers.exe        2,680 K    7,068 K    1384    persistence Module    Intel Corporation    (Verified) Microsoft Windows Hardware Compatibility Publisher
igfxext.exe        2,108 K    5,704 K    3924    igfxext Module    Intel Corporation    (Verified) Microsoft Windows Hardware Compatibility Publisher
iCloudServices.exe        3,388 K    11,200 K    1432    iCloud    Apple Inc.    (Verified) Apple Inc.
hkcmd.exe        3,560 K    10,320 K    2764    hkcmd Module    Intel Corporation    (Verified) Microsoft Windows Hardware Compatibility Publisher
dllhost.exe        2,616 K    7,504 K    3740    COM Surrogate    Microsoft Corporation    (Verified) Microsoft Windows
dllhost.exe        2,720 K    7,408 K    4112    COM Surrogate    Microsoft Corporation    (Verified) Microsoft Windows
conhost.exe        1,080 K    2,792 K    1400    Console Window Host    Microsoft Corporation    (Verified) Microsoft Windows
audiodg.exe        15,468 K    16,740 K    1172    Windows Audio Device Graph Isolation     Microsoft Corporation    (Verified) Microsoft Windows
 


  • 0

#19
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

OK - I think I followed all of the steps that you asked for.  Tried to pay attention to detail - hope I got it correct.  It's a lot of logs to go through - please know how much I appreciate your time.

 

Thanks much - Jill


  • 0

#20
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,010 posts
  • MVP

I need you to run VEW again for Applications.  OOPS.  I missed the second page.


  • 0

#21
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,010 posts
  • MVP

Looks pretty good right now tho it is running a bit hotter than I like.  It's at 55.  Shouldn't be a problem unless it goes up over about 60.  Uninstall Speccy as we don't need it any more.  

 

You might try Speedfan it will give you a real time indication of your temps if you keep it running:

 

Try speedfan
 
Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it.
 
It will tell you your temps.  If they seem hot (over 50) then check Automatic Fan Speed.
Leave it running and see if the temps drop.
 
 
 
Clear the Java Cache by following the instructions on
 
You do not have the latest Java.
First go into Control Panel, Add/Remove Software (XP) or Programs and Features (Vista/Win 7) and remove any old versions (which may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE)
I see:
 Java 7 Update 45
 
Java has been very vulnerable to infection so unless you absolutely need it you should not reinstall it.
 
If you feel you must have Java:
Get the latest Java at:
 
Save it to your PC then close all browsers and install it.  Do not let it install the yahoo toolbar or other foistware.
Once installed, go into Control Panel, Java, Security and set the slider to the Highest then OK.
 

 

Go to http://www.speedtest.net/ and click on Begin Test
 
When the Test finishes click on Share This Result and then select Forum then Copy then move to a reply and Ctrl + v
 
Does this appear to be about what you are paying your ISP for?
 
 
 
Download and save SpeedyFox
 
Close all browsers and Skype if you have it.  Right click on SpeedyFox and Run As Admin.  Optimize.  Close Speedyfox.  Firefox and Chrome should both open faster than in the past.
 
How is the PC running now?  Any error messages showing up when you boot?  

  • 0

#22
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

I can't thank you enough for all of this.  I'm still working on your latest ideas -- sending a quick note so you know I'm working on them.

 

I will uninstall Java -- I don't think I need it.  If I find out I do - I will install the latest version and try to keep up to date on the versions.

 

I am amazed that you found a hardware issue with the fan.  YES -- my laptop does get VERY hot.  I even thought about putting little coasters underneath to provide some airflow.  I will keep a closer eye on it from now on.

 

Question...the things that you had me do, were they mostly clean-up or did I have any malware/virus/spyware?  I'm just curious.  I use to use a freeware virus protection but it was then recommended (I don't remember by whom) that I use Windows security (runs effeciently and does a good job).  Is this still the case or would you recommend something else? 

 

OK - I have some more work to do on my end.  I may not get to it until later today but I am on the job!!!!  I'll keep you posted.  Thank you so much - Jill


  • 0

#23
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,010 posts
  • MVP

We removed some adware and some deadwood.  Nothing really evil.

 

Microsoft Security Essentials started off good but has been backburnered by MS and has been going downhill fast.  They don't even use it on Win 8.  Instead they use a beefed up Windows Defender.  I recommend the free Avast:

 

http://files.avast.c...virus_setup.exe

 

Download and Safe the file then uninstall Microsoft Security Essentials and then reboot.  Run the installer you downloaded earlier.  (Win 7 & Vista - right click and Run As Admin)

 

It will want to reboot again.  When it does they offer you the dropbox which you can uncheck and they will also offer you a paid version.  Stick with the free Basic version.

 

Stick with Avast for a while and see how you like it.  Some people object to the voice notification of updates.  To turn it off, click on the Avast ball then on Settings then on Appearance.  Then on Sounds and uncheck Automatic Updates OK.  (It will still update it just won't tell you about in a loud voice in the middle of the night.)
 
They have also started using their info popup to try and get you to upgrade so I go into Settings, Appearance, Popups and change the first two to 1 second.
 
If you haven't registered already then right click on the orange ball and select Registration Information and click on the link.  (They just want you name and email address).  The registration is good for 12-14 months then you will need to register again.  They will, of course, try to talk you into buying the product but you can always register again for another year free tho it may not be the default.
 
Once you have it installed and updating OK I recommend that you let it run a full boot-time scan while you sleep (takes about 6 hours so you don't want to stare at the screen the whole time).  I doubt it will find much but it's really a good check.
 
First mute the speakers so it won't wake you up when Windows loads.  Click on the Orange ball.  Click on Scans.  Change Quickscan to Boot-time Scan.  Click on Settings.  Where it says Heuristic Sensitivity click on the last rectangle so that all of them are  orange and it says High.  Check both boxes.  Then change When a threat is found ... to:  Move to Chest.  OK.  Now click on Start.  Close the Avast window and then reboot.  The scan will start.  It will tell you where it will save the report.  Usually it's 
C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.  When Windows loads Click on the Orange Ball then Scan, Then Scan History (at the bottom of the page). Click on the last scan and then Detailed Report.  If it found anything then open the aswBoot.txt file and copy and paste it.  If you can't find it then take a screen shot of the Detailed Report.
 
Just want to clarify that the fan is probably not at fault.  The problem is usually that the heatsink is clogged with dust.

  • 0

#24
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

Got busy with other stuff - still working on the latest instructions.

 

I will install Avast.  I have used it before and like it.  Will go back to it.  Thank you for the suggestion.

 

Quick question -- is the "heatsink clogged with dust" something that I can clean out?

 

Thanks again - Jill


  • 0

#25
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

My speed test result was:

 

Ping 13 ms

Download speed 7.23 Mbps

Upload speed 4.49 Mbps

 

http://www.speedtest...sult/3477119546

 

I use Cox Communications (bundled service - internet, phone, cable).  Went to their website and ran a speed test. Their results were as follows:

 

PING 27 ms

Download speed 5.82 Mbps

Upload speed 4.55 Mbps

 

 

Cox just suggested that we get an upgraded modem.  We bought a motorola surfboard SB6141.  However, it actually seems to have slowed things down and we now have complications when we try to stream over apple tv.  Plus, my internet connection does seem to be slower.  We could go back to the original modem:  motorola surfboard SB5101.  Or, maybe we should upgrade our router (a few years old) Netgear RangeMax duo wireless-pin router.  Do you happen to have any expertise in this area?  You've done plenty for me already so please don't feel obligated but we have been frustrated with our internet set-up lately and Cox hasn't been of much help.

 

Thanks much - Jill


  • 0

Advertisements


#26
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

OK - ran speed test again.  Got better results.

 

PING 11 ms

Download 22.45

Upload 9.67

 

My husband just said that our download speeds seem to be ok with the new modem but the upload speed is the issue.  We aren't sure why.  I don't have numbers to compare it to so I can't tell how fast or slow this really is.

 

Thanks again - Jill


  • 0

#27
fletch11

fletch11

    Member

  • Topic Starter
  • Member
  • PipPip
  • 52 posts

I ran speedy fox.  I do feel that things are running more efficiently although, internet connection still seems sluggish at times. Thank you so much for your help.  Is speedy fox something I should run periodically? 

 

I am concerned about the fan.  The hard drive is at 109 degrees Farenheit.  Core 0 and 1 huttle around 130 degrees.  It is a hot day here but I have a fan pointed directly at the computer and it has not cooled the computer down.  I checked "Automatic fan speed" but don't hear the laptop's fan kicking on (maybe it is something I will not hear).  Regardless, the temperatures have not come down.  I'll keep monitoring it.  If there is anything additional you can think of to help in this area, please let me know.

 

Thanks in advance for any internet speed tips you might have.

 

A few last questions....

 

1.  Do I need the following programs ( I want to make sure none are running programs in the background that I don't need)?

-Adobe Flash Player11?  I'm guessing this is used on some internet sites but don't understand the differences between this, shockwave, and

-Bonjour

-JMicron Flash Media Controller Driver

-Microsoft Silverlight - I don't use this

-Why do I need all of the Microsoft C++ add ons - are they used by other microsoft products?

-What is Mozilla Maintenance service -- is this running in my background?

-PlayReady PC (by Microsoft)

-Windows Live Essentials -- I dont' think I use this.

 

2.  Do you have recommendations for the following tools?

 

--On-line computer back-up program (that won't hog my resources)

--Is Firefox still the best browser to use?

--What search tool is most effective (I tend to just use google)?

 

Thank you again for your help.  I will go ahead and make a donation in return for the wonderful support.  Thank you - Jill


  • 0

#28
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,010 posts
  • MVP

Don't worry that much about the temps.  Speccy gives the temps in C not F and while I like to see it under 50C some laptops may just run 55C (due to poor design would be my guess).  Just monitor it and make sure it does not climb over 60 C under load. The default on Speedfan is also C.  When you switch it to F it really sounds a lot worse than it is.  A cooler tray will sometimes help.  I've seen them at Big Lots for $10.  I've also see a wire stand that sets them at a slight angle and allows better air flow. 

 

Uplink speed is always worse than download speed.  The average for cable seems to be that download is twice as fast as upload so your upload is actually quite good.  With cable the speed depends on the load as it is a shared service so the more people using it at one time the slower it is going to be so expect to get your best speed late at night when most people are sleeping or during the day when most are working.  Prime time is probably just like TV.  After working hours and before bedtime.  The FCC says peak usage is between 7 PM and 11 PM.  They also say that the actual speed only drops an average by about 4 % during peak vs non-peak.  Of course that is average and you might be on an oversubscribed network and see a much greater drop.  I doubt that the modem is the problem but it wouldn't hurt since you have the old one to try speedtest on both.  IF you have wireless I would check both wired and wireless speeds to see if there is a difference between modems.

 

-Adobe Flash Player11?   You need this to watch videos on most sites.  Make sure you always have the latest version.

 

-Bonjour - Mostly just checks for updates for Apple products (itunes and Safari) and also, I think, detects other Apple products on your local network.  Certainly can live without it unless you are a big iTunes user.

 

-JMicron Flash Media Controller Driver  This is your flash card reader.  Hard to get pictures from your camera without it.  I would leave it alone.

 

-Microsoft Silverlight - I don't use this .  Very few people do.  It's basically MS' version of Flash.  I never install it.

 

-Why do I need all of the Microsoft C++ add ons - are they used by other microsoft products?  Just leave these alone.  These are program languages used by various installed programs.  If you touch them you will break something.

 

-What is Mozilla Maintenance service -- is this running in my background?

 

I think it's more a task that checks when Firefox starts that you have the latest version.  It will automatically upgrade it for you.  See:

https://support.mozi...tenance-service

 

 

-PlayReady PC (by Microsoft)

 

PlayReady is a Digital Rights Management from Microsoft for portable devices. PlayReady can be ported to any kind of portable device, even if it uses non-Microsoft technology (OS, codecs, media player). PlayReady is backwards compatible with Windows Media DRM 10 content, meaning that content encrypted with WM DRM 10 (for instance, content for PlaysForSure devices) will play on a PlayReady terminal.

 

I think I would leave it alone.  Apparently you need it to watch some videos - tho I expect they are ones yo'd pay extra for.

 

 

-Windows Live Essentials -- I don't think I use this.  Doubtful you do.  Just uninstall it.

 

 

--On-line computer back-up program (that won't hog my resources)

 

Can't help you there.  What I do is clone my hard drive every 3 months or so.  I don't have a lot of data that I really need.

 

--Is Firefox still the best browser to use?

 

With 64 bit system like you have you might want to try Waterfox.  This uses the same user profile as Firefox and looks about the same but uses all 64 bits instead of being limited to 32. 

 

Chrome is probably a bit faster starting up.  It certainly opens my gmail account faster which isn't surprising since they both come from Google.  It also has an automatic translation feature which is handy when you plan foreign travel.  We went to Italy last year and I was buying train tickets on-line on Italian sites. 

 

Both Firefox and Chrome will work faster if you run SpeedyPC once in a while:

 

http://www.crystalidea.com/speedyfox

 

Download and Save then run by right clicking and Run As Admin.  Close all browsers and Skype then click on Optimize.

 

Also you should have AdBlock Plus add-on installed on both.  This gets rid of a lot of ads which speeds them up quite a bit.

--What search tool is most effective (I tend to just use google)?

 

Google is what I use.  With AdBlock Plus you don't even see their premium search results (the links at the top of the list that pay to get put at the top)

 

I think we are about done so I am going to give you my canned goodbye speech now:

 

OK.  It looks like it worked OK.  Unless you see other problems I think we are done and can clean up

Copy the following:

:Commands
[CLEARALLRESTOREPOINTS]
[Reboot]
Right click on OTL and Run As Administrator.   In the Custom Scans/Fixes box at the bottom, paste in the copied text (Ctrl + v) and then hit Run Fix.

That will get the last of the malware off the system.



You can uninstall or delete any tools we had you download and their logs.



OTL has a cleanup tab but DO NOT USE IT!.  There are reports that it leaves the PC unbootable.  Instead just delete  OTL.exe and the folder c:\_OTL.

To hide hidden files again:

Vista or Win7

# Open the Control Panel menu and click Folder Options.
# After the new window appears select the View tab.
# Remove the check in the  checkbox labeled Display the contents of system folders.
# Under the Hidden files and folders section select the radio button labeled Do not Show hidden files and folders.
# Check the checkbox labeled Hide protected operating system files.
# Press the Apply button and then the OK button and exit My Computer.

Also make sure you have the latest versions of any adobe.com products you use like Shockwave, Flash or Acrobat.  

Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program.  There is an exploit out there now that can use it to get on your PC.  For Adobe Reader:  Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript.  OK Close program.  It's the same for Foxit reader except you uncheck Enable Javascript Actions.

Unless you have the latest version of Avast which has its own update checker:  To help keep your programs up-to-date you should download and run the UpdateChecker:
http://www.filehippo.../updatechecker/
(You don't need to download Betas and if there is a program you don't use you can just uninstall it rather than update it.  Exception is MSN messenger which appears to be part of Windows.)
If you get a blocked program notice after installing updatechecker then change it to not run at start then manually run it once a week.
 Seems to work best if Firefox is the default browser.  Windows always hides its icon so you need to unhide it.  Click on the up arrow to the left of the clock.  Then click on Customize.  Maximize the window so you can see all of the options.  Scroll Down and find the File Hippo UpdateChecker and change its Behaviors to Show Icon and Notifications.  OK.  When you reboot you should see the icon.  It will take it a minute to finish checking then it will put up a bubble if you need to update something. Click on the bubble and it should open in your browser.  (Seems to work best if it uses Firefox.  If you do not use Firefox as your default browser then right click on the icon and click on Settings. Then on Results.  Change the Open Results in Default Browser to Custom Browser and then select the line that has Firefox.exe in it.  While there, also check Hide Beta Versions.  OK. )  You will see a list of programs that have updates with green down arrows next to them.  You do not need to download any Beta Versions.  There is an option Settings to Hide Beta Versions.  I do not advise updating Windows Messenger unless you really use it so I right click on the Icon and Customize Results then find Microsoft Messenger and change Show All Releases to Hide All Releases.  OK.

You can also try Secunia PSI Same kind of info.  You don't need both.
If you use Chrome/Firefox/IE then get the AdBlock Plus Add-on.  Go to adblockplus.org with each browser and get the add-on.

If Chrome/Firefox is slow loading make sure it only has the current Java add-on.  Then download and run Speedy Fox.
http://www.crystalidea.com/speedyfox .  Close Chrome/Firefox. Hit Optimize.   You can run it any time that Chrome/Firefox seems slow.

Be warned:  If you use Limewire, utorrent or any of the other P2P programs you will almost certain be coming back to the Malware Removal forum.  If you must use P2P then submit any files you get to http://virustotal.com before you open them.

Due to a recent rise in the number of Crytolocker infections I am now recommending you install:

CryptoPrevent

http://www.foolishIT.../cryptoprevent/

The free version does not update on its own so you should check for updated versions once in a while.



If you have a router, log on to it today and change the default password!  If using a Wireless router you really should be using encryption on the link.  Use the strongest (newest) encryption method that your router and PC wireless adapter support especially if you own a business.  See http://www.king5.com...-120637284.html and http://www.seattlepi...ted-1344185.php for why encryption is important.  If you don't know how, visit the router maker's website.  They all have detailed step by step instructions or a wizard you can download.

Special note on Java.  Old Java versions should be removed after first clearing the Java Cache by following the instructions in:
http://www.java.com/...lugin_cache.xml
Then remove the old versions by going to Control Panel, Programs and Features and Uninstall all Java programs which are not Java Version 7 update 25 or better.  These may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE.  Get the latest version from Java.com.  They will usually attempt to foist some garbage like the Ask toolbar, Yahoo toolbar or McAfee Security Scan on you as part of the download.  Just uncheck the garbage before the download (or install) starts.  If you use a 64-bit browser and want the 64-bit version of Java you need to use it to visit java.com.
Due to multiple security problems with Java we are now recommending that it not be installed unless you absolutely know you need it.  IF that is the case then go to Control Panel, Java, Security and slide it up to the highest level.  OK.

Make sure Windows Updates is turned and that it works.  Go to Control panel, Windows Updates and see if it works.  


My help is free but if you wish to show your appreciation, please donate to Kwiaht instead of me. It's a local environmental organization that I volunteer with: http://www.kwiaht.org/donate.htm
(The name means something like "clean place" in one of the local native-American dialects)

Ron

 
  • 0






Similar Topics


Also tagged with one or more of these keywords: slow, malware, spyware, cleanup

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP