 Performance problem: "System Resources 48% free", Computer resources very low |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.  |
 Feb 12 2005, 11:37 AM
Post
#1
|
|
|
New Member  Group: Members Posts: 6 Joined: 3-January 05 Member No.: 8,518  |
 I have a P4 running Windows ME, but only 128MB of Rambus RAM. When I start the computer, and right-click My Computer Performance, the best I ever get, with nothing running in the system tray, is maybe 79%.  I'm sure it might take 5%-10% of the CPU's power and resources to run the ME operating system, but isn't 79% low? Right now, I have a few windows open and am running AVG anti-virus protection, so now the system resources are at 48%.  I've run Adware SE, Spyware Doc, AVG, Hijack This, Spybot, etc, and I can't find any lingering problems. I will post the Hijack log below, just in case. I can't even play counter-strike 1.6, because my CPU is too bogged down. Any help or suggestions about freeing up system resources? Thanks! QUOTE Logfile of HijackThis v1.99.0
Scan saved at 8:16:19 AM, on 2/12/2005 Platform: Windows ME (Win9x 4.90.3000) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\SYSTEM\SSDPSRV.EXE C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE C:\WINDOWS\EXPLORER.EXE C:\WINDOWS\TASKMON.EXE C:\WINDOWS\SYSTEM\SYSTRAY.EXE C:\WINDOWS\SYSTEM\HPSYSDRV.EXE C:\WINDOWS\SYSTEM\USBMMKBD.EXE C:\WINDOWS\LOADQM.EXE C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGCC.EXE C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGEMC.EXE C:\WINDOWS\SYSTEM\HIDSERV.EXE C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGAMSVR.EXE C:\WINDOWS\RunDLL.exe C:\WINDOWS\SYSTEM\WMIEXE.EXE C:\WINDOWS\SYSTEM\PSTORES.EXE C:\WINDOWS\SYSTEM\DDHELP.EXE C:\WINDOWS\SYSTEM\STIMON.EXE C:\HIJACKTHIS\HIJACKTHIS.EXE C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE C:\PROGRAM FILES\WINAMP\WINAMP.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://hp.my.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.hpwis.com/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.23.183.146:80 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\ACROBAT\ACTIVEX\ACROIEHELPER.OCX O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\TOOLS\IESDPB.DLL O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\TOOLS\IESDSG.DLL O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [USBMMKBD] usbmmkbd.exe O4 - HKLM\..\Run: [Hidserv] Hidserv.exe run O4 - HKLM\..\Run: [Delay] C:\WINDOWS\delayrun.exe O4 - HKLM\..\Run: [LoadQM] loadqm.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGEMC.EXE O4 - HKLM\..\Run: [AVG7_AMSVR] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [SSDPSRV] C:\WINDOWS\SYSTEM\ssdpsrv.exe O4 - HKLM\..\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe O4 - HKLM\..\RunServices: [Keyboard Manager] C:\Program Files\Netropa\One-touch Multimedia Keyboard\MMKeybd.exe O4 - HKLM\..\RunServices: [ATISmart] C:\WINDOWS\SYSTEM\ati2s9ag.exe O4 - HKCU\..\Run: [Taskbar Display Controls] RunDLL deskcp16.dll,QUICKRES_RUNDLLENTRY O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent O4 - Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html O8 - Extra context menu item: Translate into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\TOOLS\IESDPB.DLL O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O12 - Plugin for .spop: C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://hp.my.yahoo.com O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200207...meInstaller.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab |
 |
 
|
|
Feb 12 2005, 12:03 PM
Post
#2
|
|
 Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
Shughart,
Could you please post that log in the HijackThis Logs and Analysis, just in case? Our HijackThis team will see it much faster if it's there. In the meantime, here's what I'd like for you to do/answer: When you check your running processes, what unfamiliar thing, if any, do you see? You may list them if you'd like so we can go over them. Also, I would like to ask you if you have any firewalls running. ZoneAlarm, Sygate, and others seriously hog your system resources. And finally, when you check msconfig, (Start, Run, type MSCONFIG, and hit enter or ok. Under the StartUp tab, please list the items with a check mark in front of them. We can go through those as well. As a precaution though, we'll have our experts go over your log. But please reply back with this information and I'll see if any red flags go off. ~67~ -------------------- |
|
|
|
|
Feb 12 2005, 12:58 PM
Post
#3
|
|
|
New Member Group: Members Posts: 6 Joined: 3-January 05 Member No.: 8,518 |
Hi Texas,
Thanks a lot. Let me try to answer your questions. Here are my running processes: Explorer AVGemc AVGcc Loadqm Rundll Hidserv Delayrun ATIptaxx In msconfig, I'm running Selective Startup. Here's what's checked: Taskbar Display Controls ScanRegistry TaskMonitor SystemTray LoadPowerProfile USBMMKBD Hidserv Delay LoadQM (3 AVG entries) ATIPTA LoadPowerProfile *StateMgr KeyboardManager (3 ATI entries) Adobe Gamma Loader I don't think I have any firewalls running. Windows ME doesn't really come with any, I don't think, and I haven't added anything that I'm aware of. |
|
|
|
|
Feb 12 2005, 01:07 PM
Post
#4
|
|
|
Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
You are so very welcome, Shughart. Always happy to help.
Offhand, I don't see any firewall, but please grab a sandwich or other item on your lunch menu as I'll need a bit of time to go through each item I'm not familiar with. I do see at least one item that isn't good in your MSCONFIG. And please, do not be misguided about WinME. I also have it and I love it. Don't let anyone push you to get rid of it and update it to XP,  . In case you are unfamiliar with MSCONFIG's StartUp tab, it's just what it sounds like it'd be. Everything with the check mark is what loads everytime you boot your computer. There are hijacks and spyware hiding there oftentimes that the PC user is unaware of. This is why I suggested you give me that list. It's different than the Running Processes (Ctrl-Alt-Delete). So, enjoy your lunch while I do some research. I'll go as fast as I can. But do not worry. I'm fairly fast but thorough. Any instructions I give will be easy too, I promise. Be right back with you. ~67~ -------------------- |
|
|
|
|
Feb 12 2005, 01:38 PM
Post
#5
|
|
|
Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
I'm gonna skip the ones you must keep and go down in order as you have listed them:
LoadQM - disable. This is used for Windows Updates and isn't necessary. Rundll - disable. This MIGHT be a red flag. Instructions to follow. Hidserv - Your choice. This is the information about this item: This is the Human Interface Device Server for Win98SE/2000/Me/XP, it is required only if you are using USB Audio Devices you can disable via Msconfig. See here. Typical examples are USB multimedia keyboards with volume control and web-ready keyboards. For example - loaded by default with MS DSS80 Speakers because they have Volume, Mute and Bass controls on the speaker. Some users may experience problems disabling this - if this is the case then re-enable it. Equivalent to MMHid in Win98. On HP Computers, HIDSERV is the controller for the keyboard sound controls on the USB and PS/2 keyboards Delayrun - Your choice. This is the information about this item: On HP PCs this program is used to help prevent conflicts or timing issues on fast computers ATIptaxx - Your choice. This is the information about this item: Control panel for the ATI series of video cards allowing access to such features as display resolution, colour depth, etc. Available via Start -> Settings -> Control Panel -> Display. Some users may need it if they have optimised their settings Please feel free to either keep or disable those items. If you'd like, you could remove the ones you have a choice for, reboot, and see if there's much difference. Whether you remove those ones or not, you won't do any harm to your PC, and they will probably return upon your next reboot. Now for the MSCONFIG items: Taskbar Display Controls - unchecking this item will also stop that ATIptaxx (above) from reappearing in your running processes. Same information applies here as there. Your choice. But if you don't need or want or have any fancy settings on resolution, etc... feel free to unmark this one. Unnecessary. Task Monitor - Your choice. Here is the information on this item: The Task Monitor checks the disk-access patterns of programs when they are started and stores this information in log files in the Applog folder. Task Monitor also records the number of times you use a program. The Disk Defragmenter tool uses this information to optimize your hard disk so that programs that you use frequently are loaded faster. Not required - but can be useful. Note: for Norton Anti-Virus 2002 users, loading TaskMonitor will typically solve many, if not most, of those annoying IE scripting errors (per Symantec's Knowledgebase) LoadPowerProfile - Please list this item exactly as you see it, including brackets so I can be sure if it's a waste of time or a true problem. USBMMKBD - Leave this one alone ONLY if you need it to use special function keys on your keyboard. Otherwise, safe to uncheck it. Adobe Gamma Loader - Leave this one alone only if you are a graphics professional. Now, what I recommend: The ones for fancier keyboard functions you can Uncheck. All of the ATI stuff included. All of the AVG you must keep as those are your antivirus as you probably already know. The LoadPowerProfile, both of them, I'd Uncheck as well. They are hogging resources I'm sure. I skipped the things that are on BOTH lists as the same information applies. Whatever changes you make in MSCONFIG, will ask if you want to reboot. Please do so. Immediately check your resources and let's see how much we've improved with those changes. One more thing, I want to thank you for providing those lists for me. I know that wasn't easy since you can't just copy and paste. I appreciate your hard work and eagerness to get this resolved. If you are unsure of anything at all, please ask. I'm not leaving here until you are happy with your resources. ~67~ -------------------- |
|
|
|
|
Feb 12 2005, 01:47 PM
Post
#6
|
|
|
New Member Group: Members Posts: 6 Joined: 3-January 05 Member No.: 8,518 |
Okay, great. I have unchecked many of those startup items, and the comp is running faster.
So what is this "Rundll" thing in my processes? |
|
|
|
|
Feb 12 2005, 01:54 PM
Post
#7
|
|
|
Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
Oftentimes it can be a bad thing. It shouldn't typically be there.
That just makes me want you to post your log in the HijackThis Logs and Analysis forum. Our staff might see something in it that would tell us why it's there in your running processes. To just continue to hit Ctrl-Alt-Delete and End Task, your PC might get upset with you. Let's post that log and see what they find. So glad you've noticed a difference already. Glad I could help. ~67~ -------------------- |
|
|
|
|
Feb 12 2005, 03:31 PM
Post
#8
|
|
 Forum Regular Group: Members Posts: 307 Joined: 16-November 04 From: Queensland, Australia. Member No.: 5,292 |
You really are an "Angel" ~67~ ........great work.
-------------------- JTH
|
|
|
|
|
Feb 12 2005, 03:45 PM
Post
#9
|
|
|
Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
Aww, thank you very much, JTH!
How kind of you to say so. You've just made my day!   for you.
-------------------- |
|
|
|
|
Feb 12 2005, 10:29 PM
Post
#10
|
|
 Senior Member Group: Members Posts: 407 Joined: 7-December 04 From: Northern California Member No.: 6,604 |
I usually learn a little bit from most threads, but more than a little bit from this one. Good job!
-------------------- "Love to eat them mousies, mousies what I like to eat; bite they little heads off, nibble on they tiny feet". B. Kliban
|
|
|
|
|
Feb 12 2005, 10:54 PM
Post
#11
|
|
|
Bleeping Helper Group: Members Posts: 1,551 Joined: 13-August 04 From: Fort Worth Member No.: 2,035 |
You're very kind, twinsdad. Thanks!
I'm very passionate and committed when it comes to Win98/WinME. I feel so good when I'm able to give some guidance and help those who need it. I'm so honored with all the kind words. What a treasure it is to be here. I appreciate it you two. -------------------- |
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 8th January 2009 - 08:16 PM |
© 2003-2008 All Rights Reserved Bleeping Computer LLC.