1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

New RAM New Mobo VISTA IS STILL SLOW!!!

Discussion in 'General Hardware' started by stupidbiznitch9, Apr 2, 2008.

  1. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,488 (11.47/day)
    Thanks Received:
    9,768
    my mousemate recently upgraded to 2GB, but her system is the following:

    1x160GB samsung IDE hard drive
    2x1GB (was 2x512MB) DDR400
    ATI x1650pro (DDR2)
    asrock 4core (the AGP and PCI-E, DDR and DDR2 board)
    P4 3.2GHz presler

    her system runs with full aero, dual screening 2x 17" flat CRT's at 1280x1024.
    She games, she watches HD movies, she runs winamp with visualisations 24/7.
    The only reason she went 2GB was the occasional HDD lag in the witcher and crysis.
     
  2. Ryethe New Member

    Joined:
    Jan 12, 2006
    Messages:
    34 (0.01/day)
    Thanks Received:
    1
    I'm on vista as well and it runs reasonably well. In fact Crysis runs better in 64bit vista than 64bit XP :laugh: go figure.

    Running 4 GB of RAM and an Athlon X2 5600+.

    Currently I'm running 2 partitions, 1 for work and 1 for gaming. The gaming partition starts up like a dream. The work partition has more background processes so it takes a while to get going.

    I'm assuming this is a start up issue? I say this because when I had 2GB of ram Vista ran reasonably well once it was completely started up. Programs launched just as fast as XP and games didn't feel any slower. Even though I didn't run any benchmarks, if I can't see it with my eyes then what's the point of higher FPS?

    I'd recommend going into MSconfig and disabling everything you don't need. There's a lot of clunkers in there than you don't need at start up. I was always astounded at the startup time of Ubuntu... until I started adding programs to launch at startup. Startup programs destroyed my system.
     
  3. stupidbiznitch9 New Member

    Joined:
    Dec 21, 2006
    Messages:
    245 (0.08/day)
    Thanks Received:
    3
    well gaming is fine, but window switching, application loading, that stuff is slow
     
  4. OnBoard

    OnBoard New Member

    Joined:
    Sep 16, 2006
    Messages:
    3,044 (1.02/day)
    Thanks Received:
    379
    Location:
    Finland
    stupidbiznitch9: If you have a SATAII HDD, use AHCI, it's way faster than IDE mode. Disable indexing, superfetch and extra services (http://forums.techpowerup.com/showthread.php?t=24912). Upgrade to SP1, does wonders for HDD transfers. Before it 1GB file to another HD was something like 60MB/s->30MB/s, now it's 190MB/s->55MB/s. Burst is 190MB/s and 60MB/s read average for my HDDs in AHCI.

    If it's still slow after all that you could also make swap file set size on another HDD/partition & OC your processor (get 1GB more ram, 2GB if you want to keep dual channel, but lose ½-1GB due to 32bit restriction).

    And btw, all that reinstall+format talk is useless. I run my XP installation nearly 3 years without any reinstalls or formats just fine hardly ever BSOD and no it wasn't sluggish. You just have to maintain the system / fix problems. Hope it helps :)
     
  5. stupidbiznitch9 New Member

    Joined:
    Dec 21, 2006
    Messages:
    245 (0.08/day)
    Thanks Received:
    3
    this is a 64-bit os, and i only have an IDE hard drive....
     
  6. OnBoard

    OnBoard New Member

    Joined:
    Sep 16, 2006
    Messages:
    3,044 (1.02/day)
    Thanks Received:
    379
    Location:
    Finland
    K, then AHCI mode is out of question but you can still do the other stuff. Disabling superfetch stops the memory hog usage, that Vista does on startup and if you start a program that isn't cached it will have to dumb the memory first and then start it.

    Easy to tell if it's on, you should only have couple megabytes of mem free. Without it Vista uses something like 800-900MB. Some like it, I don't as it produces constant HDD usage on startup.

    Windows defender also has automatic scans scheduled, they start when computer is idle, but can be disabled. Might defrag also when idle, haven't found out yet where that is hidden. 64bit would allow the full usage of 4GB mem but that should be the problem here. I'd suggest that you try this dual core widget to see your processor & mem usage: http://widgetfront.com/vista-sidebar-gadgets/multi-meter-dual-core/

    That comes also handy to determine hat Aero is actually less resource hog that Vista basic style. CPU wise that is. Basic theme uses about 1.6megs of mem and Aero 55MB (dwm.exe). But if you take a windows and wiggle it around basic theme goes 2x70% processor load on my computer and Aero only 22% other core and 3% other.

    So if you want to save memory or CPU cycles adjust accordingly.
     
    Last edited: Apr 3, 2008
  7. warup89

    warup89

    Joined:
    Mar 9, 2006
    Messages:
    1,131 (0.36/day)
    Thanks Received:
    104
    Location:
    WA
    Im using 8gbs of ram and i can see at idle vista takes up to 1.5 gigs, and in my other machine that has 2gb with xp only takes 200mb at idle.
     
  8. Kursah

    Kursah

    Joined:
    Oct 15, 2006
    Messages:
    7,987 (2.69/day)
    Thanks Received:
    1,777
    Location:
    Missoula, MT, USA
    Well you will be met with some limitations of older technology like IDE...which is still decent, but cannot keep up with SATA and will probably hinder your Vista speed somewhat...along with DDR 667, while decent timings, is more in the low-mid-range DDR2...800-1066+ would help there...

    Can't expect Windows 2K speed from Vista with your kind of rig, it's not gonna happen. Maybe overclocking could help some, a good SATA II drive (seagate 7200.11's with perpendicular tech are pretty damn good), would help out.

    I've ran Vista on a P4 rig with 2gb of RAM without too much issue, it was not nearly as snappy as my rig (see sys specs), took longer to do just about anything that would relate to hardware speed, which is a lot, especially in Vista. I just went Vista x64 a little over a week ago, and man for me it's fast...I'm enjoying Vista w/SP1 too...faster, snappier, does a great job.

    Sorry to hear you're having issues, but to an extent I think a lot of it is you having too high of expectations for what you're providing the OS to run on, but that is my opinion.

    Also, another note, I know everyone else has hounded ya...but a fresh install WILL help, how could it not? Fresh install, fresh drivers, no registry or excessive junk file buildup (that can even be missed by programs like CCLeaner, which is a great program), it just makes sense, especially if swapping mobo's. Again, that's just my opinion though.

    I hope you get Vista running how you like it...but if not, XP SP3 is just around the corner, and the RC2 I tried was doing pretty good things at least in my experience.

    :toast:
     
  9. OnBoard

    OnBoard New Member

    Joined:
    Sep 16, 2006
    Messages:
    3,044 (1.02/day)
    Thanks Received:
    379
    Location:
    Finland
    Yep, HDD will be the botteneck always and buying a fast sata drive would help with that a bit. Keep the old for storage & games, if you don't mind slower loading times. But the start of HDD (outer edge of the disk) is always fastest so first partition should be swap partition then Windows/application partition and rest for rest. If you want to maximize the speed of what you got.

    Ideally if you get a new HDD you make a 4,5GB partion for it and place 4GB swap file there (Windows complaints if there isn't 10% space free). Then cut the rest of the space in half and make a partition for your games/programs that need fast startup and use last partition for storage. Keep Windows in the old HDD and use rest of the space of it as you wish.

    Swap and Windows shouldn't be on same partition/disk for best performance. Above is what I use, although my swap partition is only 1GB, because I used that in XP with 2GB mem. Didn't have space to store all my junk to re-partition, so it'll have to do with another 3GB swap on another HDD.

    edit: forgot, after that you can change drive letters in disk management, S: is a nice drive letter for swap partition or P: if yo like Page File term better. Although you have to change swap partition drive letter before it has the swap. Or leave them be if you don't mind the order of the drives.
     
    Last edited: Apr 3, 2008
  10. Cartel

    Cartel

    Joined:
    Dec 30, 2006
    Messages:
    13 (0.00/day)
    Thanks Received:
    1
    Vista runs wicked for me.
    There are a whole bunch of things you need to do, including disabling services, enabling cache, disabling crap in your bios like serial ports and all that.
    Turn on 32bit disk access, ect, ect.

    Dont forget gpedit.msc, dcomcfg.exe.
    disable dcom.

    ect
    ect
    ect
     
  11. Wile E

    Wile E Power User

    Joined:
    Oct 1, 2006
    Messages:
    24,324 (8.16/day)
    Thanks Received:
    3,778
    If he wants programs to load faster when he opens them, disabling Superfetch is the last thing he wants to do.

    But above all, I think he needs to do a CLEAN INSTALL.
     
  12. Cartel

    Cartel

    Joined:
    Dec 30, 2006
    Messages:
    13 (0.00/day)
    Thanks Received:
    1
    Here, do yourself a favour

    PHP:
    Name,Startup Type
    Application Experience
    ,Automatic
    Application Information
    ,Manual
    Application Layer Gateway Service
    ,Disabled
    Application Management
    ,Manual
    Ati External Event Utility
    ,Automatic
    AVG7 Alert Manager Server
    ,Automatic
    AVG7 Resident Shield Service
    ,Automatic
    AVG7 Update Service
    ,Automatic
    Background Intelligent Transfer Service
    ,Manual
    Base Filtering Engine
    ,Automatic
    Block Level Backup Engine Service
    ,Manual
    Certificate Propagation
    ,Manual
    CNG Key Isolation
    ,Manual
    COM
    Event System,Automatic
    COM
    System Application,Manual
    Computer Browser
    ,Disabled
    Cryptographic Services
    ,Automatic
    DCOM Server Process Launcher
    ,Automatic
    Desktop Window Manager Session Manager
    ,Automatic
    DHCP Client
    ,Automatic
    Diagnostic Policy Service
    ,Automatic
    Diagnostic Service Host
    ,Manual
    Diagnostic System Host
    ,Manual
    Distributed Link Tracking Client
    ,Automatic
    Distributed Transaction Coordinator
    ,Disabled
    DNS Client
    ,Manual
    Extensible Authentication Protocol
    ,Disabled
    Function Discovery Provider Host,Manual
    Function Discovery Resource Publication,Manual
    Group Policy Client
    ,Automatic
    Health Key 
    and Certificate Management,Manual
    Human 
    Interface Device Access,Manual
    IKE 
    and AuthIP IPsec Keying Modules,Disabled
    Interactive Services Detection
    ,Manual
    Internet Connection Sharing 
    (ICS),Disabled
    IP Helper
    ,Disabled
    IPsec Policy Agent
    ,Automatic
    KtmRm 
    for Distributed Transaction Coordinator,Manual
    Link
    -Layer Topology Discovery Mapper,Manual
    LVCOMSer
    ,Manual
    LVSrvLauncher
    ,Manual
    Messenger Sharing Folders USN Journal Reader service
    ,Disabled
    Microsoft 
    .NET Framework NGEN v2.0.50727_X86,Manual
    Microsoft iSCSI Initiator Service
    ,Manual
    Microsoft Software Shadow Copy Provider
    ,Manual
    Multimedia 
    Class Scheduler,Automatic
    Net
    .Tcp Port Sharing Service,Disabled
    Netlogon
    ,Manual
    Network Access Protection Agent
    ,Manual
    Network Connections
    ,Manual
    Network 
    List Service,Automatic
    Network Location Awareness
    ,Automatic
    Network Store 
    Interface Service,Automatic
    Offline Files
    ,Disabled
    Parental Controls
    ,Manual
    PC Tools Firewall Plus
    ,Automatic
    Peer Name Resolution Protocol
    ,Disabled
    Peer Networking Grouping
    ,Disabled
    Peer Networking Identity Manager
    ,Disabled
    Performance Logs 
    Alerts,Manual
    Plug 
    and Play,Automatic
    PnP
    -X IP Bus Enumerator,Disabled
    PNRP Machine Name Publication Service
    ,Disabled
    Portable Device Enumerator Service
    ,Automatic
    Print Spooler,Disabled
    Problem Reports 
    and Solutions Control Panel Support,Disabled
    Process Monitor
    ,Automatic
    Program Compatibility Assistant Service
    ,Automatic
    Protected Storage,Manual
    Quality Windows Audio Video Experience
    ,Manual
    ReadyBoost
    ,Automatic
    Remote Access Auto Connection Manager
    ,Disabled
    Remote Access Connection Manager
    ,Disabled
    Remote Procedure Call 
    (RPC),Automatic
    Remote Procedure Call 
    (RPCLocator,Manual
    Remote Registry
    ,Disabled
    Routing 
    and Remote Access,Disabled
    Secondary Logon
    ,Automatic
    Secure Socket Tunneling Protocol Service
    ,Disabled
    Security Accounts Manager
    ,Automatic
    Security Center
    ,Automatic (Delayed Start)
    Server,Disabled
    Shell Hardware Detection
    ,Automatic
    SL UI Notification Service
    ,Disabled
    Smart Card
    ,Disabled
    Smart Card Removal Policy
    ,Disabled
    SNMP Trap
    ,Disabled
    Software Licensing
    ,Automatic
    SSDP Discovery
    ,Disabled
    Superfetch
    ,Automatic
    System Event Notification Service
    ,Automatic
    Tablet PC Input Service
    ,Disabled
    Task Scheduler
    ,Automatic
    TCP
    /IP NetBIOS Helper,Disabled
    Telephony
    ,Disabled
    Terminal Services
    ,Disabled
    Terminal Services Configuration
    ,Disabled
    Terminal Services UserMode Port Redirector
    ,Disabled
    Themes
    ,Automatic
    Thread Ordering Server
    ,Manual
    TPM Base Services
    ,Disabled
    UPnP Device Host
    ,Disabled
    User Profile Service
    ,Automatic
    Virtual Disk
    ,Manual
    Volume Shadow Copy
    ,Manual
    WebClient
    ,Disabled
    Windows Audio
    ,Automatic
    Windows Audio Endpoint Builder
    ,Automatic
    Windows Backup
    ,Manual
    Windows CardSpace
    ,Disabled
    Windows Color System
    ,Manual
    Windows Connect Now 
    Config Registrar,Manual
    Windows Defender
    ,Automatic
    Windows Driver Foundation 
    User-mode Driver Framework,Manual
    Windows Error Reporting Service
    ,Manual
    Windows Event Collector
    ,Manual
    Windows Event Log
    ,Automatic
    Windows Firewall
    ,Disabled
    Windows Image Acquisition 
    (WIA),Manual
    Windows Installer
    ,Manual
    Windows Management Instrumentation
    ,Automatic
    Windows Media Center Extender Service
    ,Disabled
    Windows Media Center Receiver Service
    ,Disabled
    Windows Media Center Scheduler Service
    ,Disabled
    Windows Media Center Service Launcher
    ,Disabled
    Windows Media Player Network Sharing Service
    ,Disabled
    Windows Modules Installer
    ,Manual
    Windows Presentation Foundation Font Cache 3.0.0.0
    ,Manual
    Windows Remote Management 
    (WS-Management),Disabled
    Windows Search
    ,Disabled
    Windows Time
    ,Automatic (Delayed Start)
    Windows Update,Automatic (Delayed Start)
    WinHTTP Web Proxy Auto-Discovery Service,Disabled
    Wired AutoConfig
    ,Manual
    WLAN AutoConfig
    ,Manual
    WMI Performance Adapter
    ,Manual
    Workstation
    ,Disabled
     
  13. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.01/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    Because of the way memory is addressed in 64bit you need 8gigs to fully take advantage of it. 32bit applications take close to double the memory to operate in 64bit. 64bit is for hardcore gamers, workstations, and power users.

    Use 32bit vista and it will run alot faster. You don't have enough ram for 64bit vista + multitasking.
     
  14. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.01/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    It depends on how much background processes you have running.
     
  15. Grasshopper New Member

    Joined:
    May 2, 2007
    Messages:
    160 (0.06/day)
    Thanks Received:
    14
    Location:
    Sofia, Bulgaria
    I have 4G and my 64bit Vista runs fine. The 32bit apps take more memory than usual, but far from double. I'm now on hunt for native 64bit software, but it looks like te developers are holding back for some reson.
     
  16. MarkJohnson New Member

    Joined:
    Feb 3, 2008
    Messages:
    8 (0.00/day)
    Thanks Received:
    1
    Does your hard drive constantly run when switching apps? If so, then you'll need more RAM for your system. What happens is Vista likes to load all kinds of stuff into your RAM (thanks to superfetch, windows search, and ready boost and a few others) and hogs up your memory. Then when you run 1 program you are fine, but when you run the second one then it runs out of RAM and kicks your current program to virtual memory(your hard drive) and it can take forever some times. so each time you switch programs it dumps the current one off onto the hard drive. it is actually better to quit each program before starting a new one.

    also a new hard drive will help a ton also. the newer SATA drives will run twices as fast as the older IDE drives. My IDE ran approximately 45MB/s and my new Seagate perpendicular 2 drive runs around 90MB/s and most other SATA drives run over 60MS/s except those new green drives that save power.

    I agree with everyone on the complete reinstall of Vista. it can wreak havoc on an upgrade and slow you down a lot and give you problems.

    Also, make sure you go to the manufacturer website and get the latest drivers as they can speed you up. Vista is still being updated on a daily basis and latest drivers can make a huge difference. if you can list all the make and model numbers of all your parts then maybe we can offer better advice. The more information we get from you then the better we are able to help you. It can be hard to try and guess what you need with only partial information. I'd hate to see you buy things you may not need.

    Hope this helps
    -=Mark=-
     
  17. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,488 (11.47/day)
    Thanks Received:
    9,768
    the amount used is less than 5% more. nowhere near double.
     
  18. OnBoard

    OnBoard New Member

    Joined:
    Sep 16, 2006
    Messages:
    3,044 (1.02/day)
    Thanks Received:
    379
    Location:
    Finland
    Obviously it's not working for him, hence this topic ;) But there is a learning process to the superfetch, so it could get better in time.
     
  19. stupidbiznitch9 New Member

    Joined:
    Dec 21, 2006
    Messages:
    245 (0.08/day)
    Thanks Received:
    3
    I will try a fresh re-install and get back to you all.....thnks!!
     
  20. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.01/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    4gbs is fine but not for massive multitasking. Folding plus torrent plus crysis etc.
     
  21. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.01/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
  22. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,488 (11.47/day)
    Thanks Received:
    9,768
    using 8GB of ram will increase the amount of ram vista uses due to superfetch cranking things up, but it doesnt mean apps will all use double the amount of ram... (page 5 of that article mentions this)

    i am reading the article now, but it would be nice to know the point you're trying tomake.



    this is what you meant and i see your misconception. What they're saying is 64 bit apps are larger, not the memory usage. The apps are larger and access more data, therefore they use more ram - if EVERYTHING used more ram, their comment about music and videos wouldnt make sense.

    64 bit apps are larger, therefore needing more ram. 32 bit apps are the same size, so 32 bit apps are the ones that only get a small increase in mem usage. Seriously, i tested this with games at least when making the switch - checked task manager on a few games when i formatted and went x64, and the memory usage only changed 100-200MB at most (we're talking 1.5-2GB total use, btw)

    One reason i argue with toms logic is that with vista, x64 is free - the codes work on both versions. its not like you're outlaying $300 here to go x64, you just have to format. x64 seems a lot more stable due to games hitting a limit and crashing under x86, go check out the issues people had/have with stalker and supreme commander crashing at around 1.2GB-1.5GB of ram usage.

    and thus the crashes, 1.5GB + system ram + video card ram often equals over 4GB. a lot of games/apps are now adjusted to fix this as they mention on that page, but not all.
     
    Last edited: Apr 3, 2008
  23. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.01/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    Superfetch is there to speed things up. :)

    So just add more ram and everything is fine. 8GB is ideal. Thats what I have in my gaming rig thats vista x64.
     
  24. stupidbiznitch9 New Member

    Joined:
    Dec 21, 2006
    Messages:
    245 (0.08/day)
    Thanks Received:
    3
    this is my highjackthis repsort; before i reinstall, i see a bunch of wierd "missing files"

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 4:09:23 PM, on 4/3/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16609)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files (x86)\LimeWire\LimeWire.exe
    C:\Program Files (x86)\Windows Media Player\wmplayer.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Grisoft\AVG7\avgcc.exe
    C:\Program Files (x86)\Grisoft\AVG7\avgwb.dat
    C:\Users\Chris\Desktop\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O1 - Hosts: ::1 localhost
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
    O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Chris\Program Files (x86)\DNA\btdna.exe"
    O4 - HKCU\..\Run: [Microsoft Update Machine] rBot.exe
    O4 - HKCU\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
    O13 - Gopher Prefix:
    O16 - DPF: {8FD07749-EFFA-48C6-947C-45A8D7BF422F} (CLVistaGenie Control) - http://www.cyberlink.com/vista/prog/CLVistaGenie.cab
    O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GR99D3~1.DLL
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
    O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: Remote Procedure Call (TPM) (RPCT) - Unknown owner - C:\Program Files (x86)\Common Files\Microsoft Shared\Speech\mstinit.exe
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: SessionLauncher - Unknown owner - C:\Users\Chris\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~2\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --
    End of file - 10069 bytes




    (EDIT: how do i fix or replace those "missing files"?
     
  25. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,488 (11.47/day)
    Thanks Received:
    9,768
    if thats on SP1, i saw the same thing recently with a system i updated.

    I think the files are moved/renamed when udpated to SP1 and hijack this is picking up leftover traces.
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page