IE8 horribly slow..

Discussion in 'Internet Explorer' started by shawn, Mar 23, 2009.

  1. shawn

    shawn Guest

    I have all the latest updates in my XP Pro. I was using IE7 just fine when I
    noticed IE8 was out, so I downloaded it.

    When opening IE8 the tab says "Connecting..." and takes about 50 seconds to
    finally load Google. It does this EVERY time I open it. IE8 itself opens up
    immediately within 2-3 seconds.

    It's a shame because I only use IE for one (maybe two) websites at work that
    require it. Otherwise I use Firefox.

    Any suggestions?
     
    shawn, Mar 23, 2009
    #1
    1. Advertisements

  2. shawn

    Kevin Guest

    shawn,
    Many people have been experiencing slow performance with IE 8
    It is sometimes attributed to having very many entries listed in the
    Restricted Zone list.
    These entries are usually installed by anti-spyware programs (Spybot,
    IESpyAd etc.)
    If your using anti spyware software, either use it to remove the listed
    websites or you can just manually remove them.
    Let us know if this corrects your issue. OK?
    -Kevin
     
    Kevin, Mar 23, 2009
    #2
    1. Advertisements

  3. shawn

    oppiman Guest

    It "corrects" the issue.
    But I would not speak of a "correction" in this regards.
    The list maintained by spybot is pretty good and IE7 or IE6 did not have
    problems with it.
    Why does IE8 needs so long to load such a list?
     
    oppiman, Mar 23, 2009
    #3
  4. shawn

    shawn Guest

    Correct. If IE6 and IE7 worked fine, then IE8 should also.

    Kevin said "It is sometimes attributed to having very many entries listed in
    the
    Restricted Zone list. These entries are usually installed by anti-spyware
    programs (Spybot,
    IESpyAd etc.) If your using anti spyware software, either use it to remove
    the listed
    websites or you can just manually remove them. Let us know if this corrects
    your issue. OK?"

    I do use Spybot, but no way. I'm not removing protection. That's ridiculous!
    That's like a doctor telling you not to wear a condom!! I'm not interested
    in having A.I.D.S. or even a computer infection.
     
    shawn, Mar 23, 2009
    #4
  5. shawn

    Kevin Guest

    I don't remember where I read it but according to the article IE 8 has much
    more sufisticated security mesures built in that it renders the static list
    method of protection obsolete.
     
    Kevin, Mar 23, 2009
    #5
  6. shawn

    Peter Foldes Guest

    Shawn

    Copied from a post by PA Bear MS MVP

    <snip>

    If you have SpywareBlaster installed & all Protections enabled and/or you
    have Spybot installed & fully Immunized and/or you're running IESpyAd
    ZonedOut, you may find IE8 falling all over itself & CPU spiking to 100% due
    to the number of sites these "protections" add to Restricted Sites zone.

    This behavior is related to new component in IE8 called Loosely-Coupled
    Internet Explorer (LCIE).

    Current & related references include:

    => IE8 issues if immunization by Spybot-S&D is enabled
    http://msmvps.com/blogs/donna/archi...mmunization-by-spybot-s-amp-d-is-enabled.aspx

    Discussion related to the above:
    http://www.calendarofupdates.com/updates/index.php?showtopic=17654

    => Internet Explorer 8 Final Available Now (Comments section)
    <QP>
    Friday, March 20, 2009 2:41 PM by EricLaw [MSFT]
    <snip>
    @Donna: We have determined that there is a problem with the SpyBot Search
    and Destroy "innoculate" feature which puts 10000 domains in the restricted
    sites list.

    *** It's possible that this might be causing the performance problems on
    startup that some folks are reporting here. ***
    </QP>
    http://blogs.msdn.com/ie/archive/2009/03/19/internet-explorer-8-final-available-now.aspx

    => IE8 and Loosely-Coupled IE (LCIE):
    http://blogs.msdn.com/ie/archive/2008/03/11/ie8-and-loosely-coupled-ie-lcie.aspx

    => Loosely-Coupled Internet Explorer (LCIE)
    http://www.microsoft.com/windows/internet-explorer/readiness/developers-existing.aspx#lcie

    <end snip>
     
    Peter Foldes, Mar 23, 2009
    #6
  7. shawn

    oppiman Guest

    Thanks Peter

    Well, I can live without a static list, if the new protection features
    really are superior.
    I'll test for a while...
    The static list was very good in the past, but it is just a static list and
    does not update automatically.
    A lot of the domains (over 10000) in the list that Spybot currently provides
    are no longer active.
    The list gets longer and longer and who does Spybot updates daily?
    Remember, Spybot is supercool, but it is no real-time protection.
    If IE8 really has working method to detect "problems" without a static block
    list provided by a third party then I would not care about IE8 being slow
    while loading 10000+ entries.

    greetings
    oppiman





     
    oppiman, Mar 23, 2009
    #7
  8. shawn

    shawn Guest

    Thanks very much for all the info guys. Now that I think about it, maybe
    I'll see if I can remove the "condom" (items in restricted zones) for just
    IE8.. then next time I immuninize (sp?) with Spybot I'll exclude IE. I
    really only use it for one or two websites anyway, so not like it matters.
     
    shawn, Mar 23, 2009
    #8
  9. PA Bear [MS MVP], Mar 23, 2009
    #9
  10. shawn

    VanguardLH Guest

    Probably better would say it is a workaround (in the hopes that
    Microsoft addresses this new problem to implement a fix that actually
    corrects the problem).

    A huge list of Restricted Sites resulting in slowing IE8 has been
    attributed by some as a consequence of the new Loosely-Coupled Internet
    Explorer (LCIE) scheme that separates the frame (or chrome) from the
    tab's resources.

    http://blogs.msdn.com/ie/archive/2008/03/11/ie8-and-loosely-coupled-ie-lcie.aspx
    http://blogs.msdn.com/ie/archive/2008/07/28/ie8-and-reliability.aspx

    Personally I have to wonder why users would only want to neuter a "bad"
    web site by using the Restricted Sites security zone to reduce what web
    browser features are available when visiting those "bad: sites.
    Wouldn't it be better to NOT go to those sites at all if they really
    were "bad"? Adding sites to the Restricted Sites security zone does
    NOT prevent you from going to those sites.
     
    VanguardLH, Mar 23, 2009
    #10
  11. shawn

    shawn Guest

    But those sites on the restricted sites list aren't sites I visit.. I doubt
    I've visited 99% of those sites. They're sites that others sites may have
    advertisements or installing spyware from.
     
    shawn, Mar 23, 2009
    #11
  12. PA Bear [MS MVP], Mar 23, 2009
    #12
  13. shawn

    shawn Guest

    So is there a way to delete all Restricted Sites in one keypress? Through IE
    all I see is manually one by one.
     
    shawn, Mar 23, 2009
    #13
  14. shawn

    VanguardLH Guest

    *Content* from those 3rd party "bad" sites will NOT be blocked when you
    visit the parent site. Neither will any scripts in that 3rd party
    content get blocked if the parent site is rendered under a
    non-Restricted Sites security zone. You visit a good site and are
    rendering it under the Internet security zone. That good site had
    content delivered to it from a bad site. You still remain under the
    Internet security zone because you are still at the parent site which is
    unrestricted.

    Putting a site in the Restricted Sites security zone only neuters its
    behaviors *if* you go to that site. It does NOT prevent content from
    that site from being delivered to a parent site. If the parent site is
    being rendered under the Internet security zone (or any zone other than
    Restricted Sites) then that 3rd party content from the bad site will not
    get neutered when delivered to the parent site. Different security
    zones are not applied separately to the parent site from the sources
    used to delivery content to that parent site. Only one security zone
    gets applied and that's to the parent site.

    You can still get frame busting code executing from the domain listed in
    the Restricted Sites security zone when its content gets delivered to a
    web page that is *not* also rendered under the Restricted Sites security
    zone. Whether the 3rd party content is neutered depends on the
    *visited* web page using the SECURITY attribute on that content's frame.
    See interesting reads, especially the 2nd one, at:

    http://msdn.microsoft.com/en-us/library/ms534622(VS.85).aspx
    http://blogs.msdn.com/ie/archive/2008/01/18/using-frames-more-securely.aspx

    If they protect you from unknown or untrusted content then you're safe.
    But if they trust that 3rd party content or decide to just let it slide
    through then you putting that 3rd party content in the Restricted Sites
    security zone will not neuter it. Not securing banner ads in a web page
    is how some content providers manage to break out of that ad box.
    That's why other utilities have evolved which checked if a good site has
    links to bad sites (which can result in the good site getting listed as
    a bad site). BrowserDefender, Web of Trust, SiteAdvisor, and
    LinkScanner are some that see if the parent site has links to content
    from bad sites.

    IE will warn you (if the prompt is enabled) if you display a page with
    mixed content (non-SSL and SSL content) but it doesn't warn you if a
    page is rendered under one security zone but has content delivered to it
    from other sources that would be by themselves rendered under a more
    restrictive security zone.

    The Restricted Sites zone is not giving the protection you think its
    does regarding 3rd party content on a web site. Just one security zone
    per *visited* web site is used to render a page regardless from where it
    gets some of its content. I haven't found technical documentation
    stipulating that IE will render a web page under multiple security zones
    (without the aid of the visited web page to secure its own frames). I
    am definitely not a web designer intimate in everything that can be
    possibly coded into a web page so there might be other methods of
    security 3rd party content - but then the web page is doing that, not a
    security zone setting in the web browser.

    If you want to neuter a bad domain, are you going to trust that some web
    page rendered under the Internet security zone does the neutering on
    your behalf? That site might trust the 3rd party content provider but
    you don't. Also, the web page that you actually visit might itself
    broker the 3rd party content so it appears to originate from the same
    domain as that web page you visited. Not you or your web browser will
    see that the content came from somewhere else. Not all 3rd party
    content in a web page will appear to come from off the web page's
    domain. In those cases, the owner of that web page is even more likely
    to trust that 3rd party content (that you don't trust).

    If you want to prevent content from a "bad" site, including the
    possibility that it delivers malicious code through a visited site (that
    you also don't neuter or where that page doesn't neuter its 3rd party
    content), then you need to look at *blocking* that 3rd party content.
    That means doing filtering upstream of the web browser.
     
    VanguardLH, Mar 23, 2009
    #14
  15. shawn

    VanguardLH Guest

    Not within the UI presented for IE's config screens. You have to do a
    registry edit. That's why it was suggested you use the same security
    utility that you used to add those entries. The security zone entries
    are saved in the registry at:

    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\Domains

    Each subkey is the domain (with another subkey if a subdomain was
    specified). They're all mixed together. Their data item's value
    specifies in which security zone they belong. If you don't have a lot
    of Trusted Sites entries, just record those you do have, if any, and
    then just delete the Domains key and recreate it. There is also an
    EscDomains subkey but I'm not familiar with it. Check if any domains
    are listed there, too.

    I am familiar with using regedit.exe (either manually or with .reg
    files). I haven't much used the 'reg.exe' command but I tested the
    following in a virtual machine where they worked. Run the following
    command (in a command shell or using Start->Run), where each shown below
    would be on one line:

    reg delete
    "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\Domains"

    reg add
    "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\Domains"

    reg delete
    "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\EscDomains"

    reg add
    "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\EscDomains"

    As whenever editing the registry, export a key or its parent before
    modifying or deleting it to provide you a backup for recovery.
    'reg.exe' also has a save parameter if you want to use commands to
    saving, deleting, and recreating the keys. When you delete the key, all
    subkeys are lost so when you recreate it they won't be there anymore.
     
    VanguardLH, Mar 23, 2009
    #15
  16. shawn

    Max Burke Guest

    I received an email from Karen Klass (Spybot support team) today;
    They are aware of the problem IE8 RTM is having with Spybot and are
    working on why it's happening and how to fix it. (Spybot S&D)
     
    Max Burke, Mar 23, 2009
    #16
  17. Max, please keep us in the loop if & when you hear anything more. Thanks!
     
    PA Bear [MS MVP], Mar 24, 2009
    #17
  18. shawn

    Max Burke Guest

    I will.

    I'm still trying to figure out why I got the email, but it is welcome.

    I have several other minor bugs poping up (I'll post about in new
    threads) that IE8 RC1 never had.
     
    Max Burke, Mar 24, 2009
    #18
  19. shawn

    shawn Guest

    Thanks!! That is what I needed.

    Although I should note that deleting all those does not speed up IE8.. it
    still takes 50-60 seconds to load anything.
     
    shawn, Mar 24, 2009
    #19
  20. shawn

    VanguardLH Guest

    Yet tried loading IE8 in its no add-ons mode and retest?

    Yet tried disabling security software (anti-virus, anti-malware,
    anti-whatever, firewall, etc.) an retest?

    Yet tried rebooting into Windows' Safe Mode and retest?
     
    VanguardLH, Mar 25, 2009
    #20
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.