Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Inactive Malware Help Topics

User Tag List

Computer very slow at times

This is a discussion on Computer very slow at times within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. My coworker's comp. is sometimes very slow. Can somebody please take a log at his log if there is anything


 
 
Thread Tools Search this Thread
Old 08-13-2007, 07:35 AM   #1
Registered Member
 
Join Date: Jan 2007
Posts: 69
OS: XP and Fedora 6



My coworker's comp. is sometimes very slow. Can somebody please take a log at his log if there is anything that can cause this slowness??
Thank you!

Deckard's System Scanner v20070809.63
Run by sreco on 2007-08-13 at 15:21:03
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
37: 2007-08-13 13:21:21 UTC - RP648 - Deckard's System Scanner Restore Point
36: 2007-08-13 07:43:15 UTC - RP647 - Točka preverjanja sistema
35: 2007-08-09 11:01:59 UTC - RP646 - Installed Adobe Reader 8.1.0
34: 2007-08-08 10:03:32 UTC - RP645 - Točka preverjanja sistema
33: 2007-08-07 07:00:35 UTC - RP644 - Točka preverjanja sistema


-- First Restore Point --
1: 2007-06-01 06:29:57 UTC - RP612 - Točka preverjanja sistema


Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 256 MiB (512 MiB recommended).


-- HijackThis Clone ------------------------------------------------------------

Emulating logfile of HijackThis v1.99.1
Scan saved at 2007-08-13 15:28:05
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\explorer.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\DigiPortal Software\ChoiceMail\ChoiceMail.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SpeedFan\speedfan.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.bin
C:\download\dss.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe

R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKEY_LOCAL_MACHINE\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKEY_LOCAL_MACHINE\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKEY_LOCAL_MACHINE\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKEY_LOCAL_MACHINE\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ChoiceMail] "C:\Program Files\DigiPortal Software\ChoiceMail\ChoiceMail.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Startup: SpeedFan.lnk = C:\Program Files\SpeedFan\speedfan.exe
O8 - Extra context menu item: I&zvoz v Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Raziskovanje - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra 'Tools' menuitem: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine) - https://office.microsoft.com/officeup...ntent/opuc.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - https://v5.windowsupdate.microsoft.co...?1096938256152
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/...sh/swflash.cab
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{86BD5752-C4BF-4AFF-A76F-47CFBD89D46B}: NameServer = 193.189.160.11,193.189.160.12
O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O20 - AppInit_DLLs: sockspy.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - "C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - "C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" /service
O23 - Service: SIMATIC NET Synchronization Service (Sim9Sync) - Siemens AG - C:\WINDOWS\system32\sim9sync.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - "C:\Program Files\Softwin\BitDefender10\vsserv.exe" /service
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - "C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service


-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 giveio - c:\windows\system32\giveio.sys
R0 speedfan - c:\windows\system32\speedfan.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
R2 Dpmtrcdd - c:\windows\system32\drivers\dpmtrcdd.sys <Not Verified; Siemens AG; SIMATIC NET Software>
R2 s7osmcax - c:\windows\system32\drivers\s7osmcax.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>
R2 s7otranx - c:\windows\system32\drivers\s7otranx.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>
R2 s7otsadx - c:\windows\system32\drivers\s7otsadx.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>
R3 S7oppilx (Siemens PC/PPI Cable) - c:\windows\system32\drivers\s7oppilx.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>

S3 bdfdll - c:\program files\softwin\bitdefender9\bdfdll.sys (file missing)
S3 s7oefs_x (SIMATIC MPI/EFS Driver) - c:\windows\system32\drivers\s7oefs_x.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>
S3 s7oppitx - c:\windows\system32\drivers\s7oppitx.sys <Not Verified; SIEMENS AG; SIEMENS® STEP 7/S7(TM) Programmable Controller>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S4 Sim9Sync (SIMATIC NET Synchronization Service) - c:\windows\system32\sim9sync.exe <Not Verified; Siemens AG; SIMATIC NET Software>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Files created between 2007-07-13 and 2007-08-13 -----------------------------

2007-08-13 15:12:07 0 d-------- H:\Deckard
2007-08-09 13:03:38 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe


-- Find3M Report ---------------------------------------------------------------

2007-08-13 15:23:52 81984 --a------ C:\WINDOWS\system32\bdod.bin
2007-08-13 15:10:45 0 d-------- C:\Documents and Settings\sreco.PROCESS\Application Data\OpenOffice.org2
2007-08-13 15:10:15 0 d-------- C:\Program Files\SpeedFan
2007-08-09 13:10:03 0 d-------- C:\Documents and Settings\sreco.PROCESS\Application Data\Adobe
2007-08-09 13:04:11 0 d-------- C:\Program Files\Common Files\Adobe
2007-07-26 08:15:17 0 d-------- C:\Program Files\eTovorni listi
2007-07-21 01:19:01 0 d-------- C:\Program Files\SurfAccuracy


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [24.01.2003 21:00]
"BDMCon"="C:\Program Files\Softwin\BitDefender10\bdmcon.exe" [15.11.2006 20:01]
"BDAgent"="C:\Program Files\Softwin\BitDefender10\bdagent.exe" [11.10.2006 18:22]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [03.08.2005 07:46]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11.05.2007 03:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ChoiceMail"="C:\Program Files\DigiPortal Software\ChoiceMail\ChoiceMail.exe" [08.04.2003 12:53]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [13.10.2004 18:24]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=sockspy.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hwfwvoz]
C:\Program Files\Pizl\Wwtlwpi.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S7UB Start]
"C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SurfAccuracy]
C:\Program Files\SurfAccuracy\SAcc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"Sim9Sync"=2 (0x2)
"ose"=3 (0x3)




-- End of Deckard's System Scanner: finished at 2007-08-13 at 15:28:55 ---------
Attached Files
File Type: txt extra.txt (12.8 KB, 17 views)
Tiansen is offline  
Sponsored Links
Advertisement
 
Old 08-13-2007, 10:20 AM   #2
TSF Security Manager
Emeritus
 
tetonbob's Avatar
 
Join Date: Jan 2005
Location: Transylvania County, North Carolina, USA
Posts: 52,197
OS: XP Pro; XP Home; Win7 x86 & x64



It would seem to be this:

CPU 0: AMD Athlon(tm) XP 1700+
Percentage of Memory in Use: 71%
Physical Memory (total/avail): 255.48 MiB / 72.52 MiB

Total Physical Memory: 256 MiB (512 MiB recommended).

I don't see any malware in that log, and the system seems well protected.

Java should be updated, but other than that, I would say that the system needs general maintenance (defrag, temp file cleaning) and more RAM.

Here's how to update Java:

Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update.

Updating Java:
  • Download the latest version of Java Runtime Environment (JRE) 6 u2.
  • Scroll down to where it says "The Java SE Runtime Environment (JRE) allows end-users to run Java applications". (4th one down)
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-6u2-windowsi586-p.exe to install the newest version.
  • After the install is complete, go into the Control Panel and double-click the Java Icon. (looks like a coffee cup)
    • On the General tab, under Temporary Internet Files, click the Settings button.
    • Next, click on the Delete Files button
    • There are two options in the window to clear the cache - Leave BOTH Checked
      • Applications and Applets
        Trace and Log Files
    • Click OK on Delete Temporary Files Window
      Note: This deletes ALL the Downloaded Applications and Applets from the CACHE.
    • Click OK to leave the Temporary Files Window
    • Click OK to leave the Java Control Panel.

---------------------------------------------------------------------------------------------








Windows will operate with less than 512, but in reality, 512MB is the minimum RAM one should run XP with, 1GB is much better. Modern applications are resource hungry.
__________________
Practice Safe Surfing
Because what you don't know, CAN hurt you.
Proud Member of UNITE since 2006

Microsoft MVP Consumer Security 2009 - 2015
tetonbob is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
Slow Shutdown
I having some problem with a slow shutdown on my PC and i found this Error at the Event Viewer.Please help me take a look at it Thank You Application Error Event Type: Warning Event Source: Userenv Event Category: None Event ID: 1517 Date: 10/26/2005 Time: 11:59:25 PM User: NT...
Daniel89 Windows XP Support 15 12-02-2005 07:30 AM
Computer Boot Up Problems
Hi, I’m posting this message on several computer help forums, hoping that someone out there knows the answer to my question. This is extreamly complex so I will try to be as detailed as possible. If you need more info just ask, Thanks. Shuttle XPC SN45GV2 / FN45 Motherboard Shuttle 250W Power...
david_97531 Motherboards, Bios & CPU 1 12-30-2004 04:16 AM
Windows won't shut down!
I have Windows XP Office, and just recently whenever I click on Turn Off Computer in the Start menu it will then give me the choice to Stand By, Turn Off, or Restart. The Stand By option works, but Restart and Turn Off only show a busy signal for a moment and then nothing happens. I tried...
ryan Windows XP Support 4 11-15-2002 02:23 PM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 07:48 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts