Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

old laptop is working very slow, Toshiba Satellite M60 BK3

Started by mraskin , Oct 15 2017 11:10 PM

  • Please log in to reply

#31
mraskin
Posted 22 October 2017 - 05:34 PM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

here is the log from minitoolbox

Attached Files

  • Attached File  MTB.txt   23.16KB   447 downloads

Edited by mraskin, 22 October 2017 - 05:35 PM.

  • 0

Advertisements

#32
RKinner
Posted 22 October 2017 - 07:37 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Uninstall:  DriverTuner 3.5.0.1

 

It's causing an error so probably not working which may be a good thing as it has a really horrible rep.

 

Rerun Minitoolbox.  I think they have changed it since the last time I ran it.  Just check the List Devices box then the All box then go.


  • 0

#33
mraskin
Posted 23 October 2017 - 12:43 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

Ok , uninstalled the DriverTuner

And here is the new log from minitoolbox:

Attached Files

  • Attached File  MTB.txt   29.09KB   455 downloads

Edited by mraskin, 23 October 2017 - 12:44 AM.

  • 0

#34
mraskin
Posted 23 October 2017 - 12:59 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

Interrupts are still running  between 13 to 20.


  • 0

#35
RKinner
Posted 23 October 2017 - 06:22 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

OK.  Minitoolbox just lists the drivers for me so don't expect a big change.

 

I see two possibilities.

 

You have a NetworkX device but NetworkX is not on the list of installed programs. 

Copy the next two lines:

sc stop NetworkX
sc config NetworkX start= disabled

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste (or Edit then Paste) and the copied lines should appear.  Hit Enter if the prompt does not return.

 

Check Interrupts again.

 

If that doesn't help go to intel.com

 

https://downloadcenter.intel.com/

 

Get their automatic driver update  utility by clicking on Get Started under

Automatically update your drivers

and follow the instructions.  Does it find any updates for you?  If so check Interrupts again.

 

I don't see any signs of malware but just in case, make sure Avast is up to date and has the latest definitions then run a boot-time scan:

 

 

It takes like 6 hours so I usually let it run at night or while away at work.


Click on the Avast ball.  Then click on Protection, then on Antivirus, then on Other Scans then on Boot-time Scan.  Click on Install Special Definitions.  Click on Run on Next PC Reboot.

  Reboot and let it run a scan.  It may take hours.
Once it finishes it should load windows.   Mute your speakers so it doesn't wake you up when Windows boots.

When you reboot you will see the scan start.  It will tell you where it saves its log.  Usually it's C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.   This is a hidden location so you will need to tell Windows to let you see it:

http://www.howtogeek...-windows-vista/

Copy and paste the text from the log to a Reply when done.
 

 


  • 0

#36
mraskin
Posted 23 October 2017 - 10:18 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

After the first step the Interrupts now between 2 to 19

 

Intel scan didn't find any new updates:

 

Attached Thumbnails

  • Intel driver scan log.JPG

Edited by mraskin, 23 October 2017 - 11:14 AM.

  • 0

#37
mraskin
Posted 23 October 2017 - 02:18 PM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

I clicked on Install Special Definitions and it is more then 1 hour since Avast is installing it. Is this normal? 


  • 0

#38
RKinner
Posted 23 October 2017 - 04:26 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Depends on your network link.  Doesn't take that long on mine.  About 2 minutes on a 40 Mbps connection.  Might be having problems.  Will it let you close the Avast User Interface and reopen it so you can try again?

 

Also since Interrupts appear to be changing try searching for

 

services.msc

 

then hit Enter.

 

Find Windows Management Instrumentation (WMI) and STOP the service.  Does that stop or slow down the changes?


  • 0

#39
mraskin
Posted 24 October 2017 - 12:13 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

here is the log from Avast:

02/03/2016 10:33
Scan of all local drives

File C:\AdwCleaner\Quarantine\C\Program Files\Bench\BService\bhelper.dll.vir is infected by Win32:SmartAd-A [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\Bench\Wd\wd.exe.vir is infected by Win32:Adware-gen [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\BlockAndSurf-soft\BlockAndSurfHF161.dll.vir is infected by Win32:GenMaliciousA-IAP [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\BlockAndSurf-soft\BlockNSurf.exe.vir is infected by Win32:GenMaliciousA-IAP [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\509df526-e442-4a14-bec0-bb25672d9b6a-2.exe.vir is infected by Win32:IeEnablerC-A [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\509df526-e442-4a14-bec0-bb25672d9b6a-3.exe.vir is infected by Win32:Crossrider-AI [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\509df526-e442-4a14-bec0-bb25672d9b6a-4.exe.vir is infected by Win32:Adware-gen [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\509df526-e442-4a14-bec0-bb25672d9b6a-5.exe.vir is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\MediaPlayerplus-bg.exe.vir is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\MediaPlayerplus-bho.dll.vir is infected by Win32:Crossrider-AK [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\MediaPlayerplus-codedownloader.exe.vir is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\MediaPlayerplus-nova.exe.vir is infected by Win32:Adware-gen [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\MediaPlayerplus-novainstaller.exe.vir is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\NewPlayer\NewPlayer.exe.vir is infected by Win32:Dropper-gen [Drp], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\plugins\ScanTack.Bromon.dll.vir is infected by Win32:Adware-gen [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\plugins\ScanTack.BrowserAdapterS.dll.vir is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\plugins\ScanTack.CompatibilityChecker.dll.vir is infected by Win32:Adware-gen [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\plugins\ScanTack.PurBrowse.dll.vir is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\ScanTack.BrowserAdapter.exe.vir is infected by Win32:BrowseFox-BE [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\ScanTack.PurBrowse.exe.vir is infected by Win32:Adware-BVO [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\ScanTackBAApp.dll.vir is infected by Win32:Adware-BVQ [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\utilScanTack.exe.vir is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\bin\{9acd1534-e8f8-40cb-b5ac-4996fe01175b}.dll.vir is infected by Win32:BrowseFox-C [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\ScanTackUninstall.exe.vir|>nsis.hdr is infected by NSIS:BrowseFox-B [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\ScanTack\updateScanTack.exe.vir is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\Main\bin\CltMngSvc.exe.vir is infected by Win32:Conduit-F [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\Main\bin\SPTool.dll.vir is infected by Win32:Conduit-H [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\Main\bin\uninstall.exe.vir|>$R2\$PLUGINSDIR\SPtool.dll is infected by Win32:Conduit-H [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\Main\bin\uninstall.exe.vir is infected by Win32:Adware-CXX [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\cltmng.exe.vir is infected by Win32:Conduit-F [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\SPTool64.exe.vir is infected by Win32:Conduit-I [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\SPVC32.dll.vir is infected by Win32:Conduit-F [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir is infected by Win32:Conduit-I [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\SPVC64.dll.vir is infected by Win32:Conduit-I [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir is infected by Win32:Conduit-I [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\SearchProtect\UI\bin\cltmngui.exe.vir is infected by Win32:Conduit-I [Adw], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\Uninstaller\Uninstall.exe.vir is infected by Win32:Installer-U [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\Yontoo\Y2Desktop.Updater.exe.vir is infected by MSIL:Yontoo-A [Adw], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036097.exe is infected by Win32:Crossrider-AI [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036098.exe is infected by Win32:Crossrider-AI [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036100.exe is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036101.dll is infected by Win32:Crossrider-AK [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036102.exe is infected by Win32:Crossrider-AG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP158\A0036160.exe is infected by Win32:MultiPlug-CQ [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_gems_offer_multilang.exe|>{tmp}\package_gems_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_gems_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_secureprotect_offer_multilang.exe|>{tmp}\package_secureprotect_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_secureprotect_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_selectiontool_offer_multilang.exe|>{tmp}\package_SelectionTool_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_selectiontool_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_bueno_offer_multilang.exe|>{tmp}\package_bueno_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_bueno_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_scantack_offer_multilang.exe|>{tmp}\package_scantack_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_scantack_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_ddragonR_offer_multilang.exe|>{tmp}\package_ddragonR_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_ddragonR_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_qone8_offer_multilang.exe|>{tmp}\package_qone8_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_qone8_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_secprotwhite_offer_multilang.exe|>{tmp}\package_secprotwhite_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_secprotwhite_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_mobogenie_offer_multilang.exe|>{tmp}\package_mobogenie_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_mobogenie_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_qone8_pariente_offer_multilang.exe|>{tmp}\package_qone8_pariente_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_qone8_pariente_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_ddragon_offer_multilang_IF.exe|>{tmp}\package_ddragon_installer_multilang_IF.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_ddragon_offer_multilang_IF.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_plushd_offer_multilang.exe|>{tmp}\package_plushd_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_plushd_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_rocket_offer_multilang.exe|>{tmp}\package_rocket_installer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe|>{tmp}\package_rocket_offer_multilang.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038597.exe is infected by Win32:Adware-ASG [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038598.dll is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038599.dll is infected by Win32:Agent-BBPE [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038607.dll is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038609.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038610.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038612.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038613.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038614.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038615.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038617.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038618.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP170\A0038611.exe is infected by Win32:OptimizerPro-P [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP171\A0038729.exe is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP173\A0038753.exe is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP174\A0038764.exe is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP174\A0038780.exe is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP174\A0038781.exe is infected by Win32:Adware-BVO [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038804.exe is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038805.dll is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038806.exe is infected by Win32:Adware-BVO [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038833.dll is infected by Win32:BrowseFox-J [PUP], Moved to chest
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038834.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038840.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038841.dll is infected by Win32:Adware-BVQ [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP175\A0038842.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0038843.exe is infected by Win32:Adware-BVO [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0038844.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0038845.dll is infected by Win32:Adware-BVQ [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0038846.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039780.exe is infected by Win32:Adware-BVO [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039781.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039782.dll is infected by Win32:Adware-BVQ [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039796.exe is infected by Win32:Crossrider-AI [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039798.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039799.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039800.dll is infected by Win32:Crossrider-AK [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039804.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039783.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039801.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039873.exe|>nsis.hdr is infected by NSIS:BrowseFox-B [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039891.exe is infected by Win32:Installer-U [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039874.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039876.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039878.dll is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039880.dll is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039911.exe is infected by Win32:Crossrider-AI [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039913.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039914.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039915.dll is infected by Win32:Crossrider-AK [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039916.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039919.exe is infected by Win32:Crossrider-AG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP178\A0039953.exe is infected by Win32:GenMaliciousA-VRG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP178\A0039955.exe is infected by Win32:Eorezo-CG [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP179\A0039965.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP179\A0039966.dll is infected by Win32:Adware-BVQ [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP179\A0039967.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP179\A0039968.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP179\A0039970.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039979.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039980.dll is infected by Win32:BrowseFox-B [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039981.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039982.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039983.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP180\A0039984.exe is infected by Win32:Adware-BVO [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039985.exe is infected by Win32:Adware-BVO [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039986.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039987.dll is infected by Win32:BrowseFox-B [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039988.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039991.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039992.dll is infected by Win32:BrowseFox-B [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0039993.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0040001.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0040002.dll is infected by Win32:BrowseFox-B [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP181\A0040003.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\Windows\SoftwareDistribution\Download\666547ae4ac76f7f8b5f6928f175461d\BIT7CD8.tmp|>mrt.exe Error 42127 {CAB archive is corrupted.}
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Yontoo\dat\DIBS.dat|>[Embedded_I#042cd] is infected by Win32:BrowseFox-CM [PUP], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Yontoo\dat\DIBS.dat|>[Embedded_I#63cd2] is infected by Win32:GenMaliciousA-ICP [PUP], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Yontoo\dat\DIBS.dat is infected by Win32:BrowseFox-CM [PUP], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Yontoo\dat\Phoenix.dat is infected by Win32:GenMaliciousA-TTR [Adw], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Local Settings\Application Data\AnyProtectScannerSetup.exe|>nsis.hdr is infected by NSIS:Adware-RM [PUP], Deleted
File C:\_OTL\MovedFiles\04212014_104418\c_Program Files\fst_ca_88\fst_ca_88.exe is infected by Win32:Eorezo-CD [PUP], Deleted
File C:\_OTL\MovedFiles\05222014_195308\C_Documents and Settings\Michael.TOSHIBA\Local Settings\Application Data\AnyProtectScannerSetup.exe|>nsis.hdr is infected by NSIS:Adware-RM [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Documents and Settings\Michael.TOSHIBA\Local Settings\Application Data\t4pc_en_3\upt4pc_en_3.exe is infected by Win32:Eorezo-CG [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\fst_ca_94\fst_ca_94.exe is infected by Win32:Eorezo-CD [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\plugins\ScanTack.BrowserAdapterS.dll is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\plugins\ScanTack.PurBrowse.dll is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\ScanTack.BrowserAdapter.exe is infected by Win32:BrowseFox-BE [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\ScanTack.PurBrowse.exe is infected by Win32:Adware-BVO [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\ScanTackBAApp.dll is infected by Win32:BrowseFox-B [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\utilScanTack.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\bin\{9acd1534-e8f8-40cb-b5ac-4996fe01175b}.dll is infected by Win32:BrowseFox-C [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\ScanTack.FirstRun.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\ScanTackUninstall.exe|>nsis.hdr is infected by NSIS:BrowseFox-B [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\ScanTack\updateScanTack.exe is infected by Win32:BrowseFox-J [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\t4pc_en_3\predm.exe is infected by Win32:Adware-ASG [PUP], Deleted
Number of searched folders: 33334
Number of tested files: 615005
Number of infected files: 165

----------------------------------------
10/23/2017 19:14
Scan of C:

Scan of *STARTUP

File C:\AdwCleaner\Quarantine\C\Program Files\BlockAndSurf-soft\Uninstall.exe.vir|>$PLUGINSDIR\b.dll is infected by Win32:Adware-gen [Adw], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\api\chrome.js is infected by BV:Crossrider-B [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\api\cookie.js is infected by BV:Crossrider-B [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\api\message.js is infected by BV:Crossrider-B [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\api\monitor.js is infected by JS:Crossrider-M [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\lib\crossriderAPI.js is infected by BV:Crossrider-C [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\lib\events.js is infected by JS:Crossrider-M [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\360-54246.crx.vir|>js\lib\reports.js is infected by JS:Crossrider-F [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\lib\crossriderAPI.js is infected by BV:Crossrider-C [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\lib\reports.js is infected by JS:Crossrider-F [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\lib\events.js is infected by JS:Crossrider-M [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\api\message.js is infected by BV:Crossrider-B [PUP], Moved to chest
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\api\cookie.js is infected by BV:Crossrider-B [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\api\chrome.js is infected by BV:Crossrider-B [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.crx.vir|>js\api\monitor.js is infected by JS:Crossrider-M [PUP], Deleted
File C:\AdwCleaner\Quarantine\C\Program Files\MediaPlayerplus\54246.xpi.vir|>chrome\content\search_dialog.xul is infected by BV:Pirrit-E [PUP], Deleted
File C:\RECYCLER\S-1-5-21-1293464134-3710048992-3381499047-1006\Dc13.exe is infected by Win32:UnwantedSig [PUP], Deleted
File C:\RECYCLER\S-1-5-21-1293464134-3710048992-3381499047-1006\Dc14.exe is infected by Win32:UnwantedSig [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP157\A0035917.exe|>nsis.hdr is infected by NSIS:ConvertAd-C [Adw], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP176\A0039794.exe|>$PLUGINSDIR\b.dll is infected by Win32:Adware-gen [Adw], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP177\A0039922.exe is infected by Win32:PUP-gen [PUP], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP178\A0039954.exe|>{embedded}\setup.exe is infected by Win32:AdwareSig [Adw], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP178\A0039954.exe is infected by Win32:AdwareSig [Adw], Deleted
File C:\System Volume Information\_restore{1BCB9690-B571-4002-B87E-DCE810AE89FC}\RP178\A0039956.exe is infected by Win32:AdwareSig [Adw], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Mozilla\Firefox\Profiles\dp9xcvwz.default\extensions\[email protected]\bootstrap.js is infected by JS:Adware-C [Trj], Deleted
File C:\_OTL\MovedFiles\04212014_104418\C_Documents and Settings\Michael.TOSHIBA\Application Data\Yontoo\dat\Paladin.dat is infected by Win32:Adware-gen [Adw], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Documents and Settings\Michael.TOSHIBA\Application Data\Mozilla\FireFox\Profiles\dp9xcvwz.default\extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com\chrome\content\search_dialog.xul is infected by BV:Pirrit-E [PUP], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Documents and Settings\Michael.TOSHIBA\Application Data\VOPackage\VOPackage.exe|>nsis.hdr is infected by NSIS:ConvertAd-C [Adw], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\t4pc_en_3\Tuto4PC_widget.exe is infected by Win32:AdwareSig [Adw], Deleted
File C:\_OTL\MovedFiles\05292014_194144\C_Program Files\t4pc_en_3\unins000.exe is infected by Win32:AdwareSig [Adw], Deleted
Number of searched folders: 36445
Number of tested files: 738701
Number of infected files: 30

  • 0

#40
mraskin
Posted 24 October 2017 - 12:14 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

I stopped Windows Management Instrumentation  and Interrupts are still high between 6 to 15.


  • 0

Advertisements

#41
RKinner
Posted 24 October 2017 - 03:58 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

OK.  Let's try Latency Monitor:

 

Go to

http://www.resplendence.com/downloads

 

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.51

Click on Download free home edition

 

Save it then right click and Run As Admin.  It will install.  and then start the program.  It will tell you to click on the Start button but there isn't one.  Instead click on the green arrowhead (looks like a Play button).  Let it run for a bit then click on Drivers.  File, Export View, Save it to your Desktop so you can find it easily.  The default name is drivers.txt.  Open Drivers.txt and copy and paste the text into a Reply.


  • 0

#42
mraskin
Posted 24 October 2017 - 06:00 AM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts
Thank you very much for your help.
Im heading out to airport for 2 weeks vacation.
I will be back on November 8th.
I will continue this troubleshooting right away upon my arrival.
Thanks allot.
  • 0

#43
mraskin
Posted 19 November 2017 - 12:42 PM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

I'm back.

I downloaded LatencyMon 6.51

When I clicked the green button (looks like Play) the process starts and then the laptop gets stuck completely. I had o do the hard reset.

Tried again to run LatencyMon 6.51, same thing repeated, i.e. laptop froze. Again had to do the hard reset.

I tried 3 times to run LatencyMon 6.51 and same outcome each time.


  • 0

#44
RKinner
Posted 19 November 2017 - 12:49 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Did you remember to right click and Run As Admin?

 

See if why so slow will do any better.

 

http://www.resplendence.com/whysoslow


  • 0

#45
mraskin
Posted 19 November 2017 - 12:54 PM

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 238 posts

yes of course I ran it as Admin


  • 0
Back to Hardware, Components and Peripherals · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Hardware
  3. Hardware, Components and Peripherals

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP