Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PC is too slow, and high CPU usage


  • This topic is locked This topic is locked
3 replies to this topic

#1 Addas

Addas

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:45 AM

Posted 13 June 2012 - 01:02 PM

Hello Bleeping Computer,
I am Addas, a new member to your forum, I searched for best Malware Removal site, and I found your forum :busy: .
My computer* is highly-infected as I think, Let's begin, My laptop is 3 years old, I use it daily for internet, programming, and gaming. Last 8 months it become too slow, so I used Speeding programs to speed up my PC like Registry cleaners, junk cleaners, and etc. . Last 4 months, my anti-virus (Kaspersky Internet Security), anti-malware (Malwarebytes' Anti-Malware), and anti-spyware (SUPERAntiSpyware) detected 47 viruses/malwares/spywares/adwares in total (I deleted the log). Last 2 weeks, my PC always freezing and not responding like when I name/rename something, everything do the same action, so I do a repair install, this was working until last week, the same problems happened, I scanned with my anti-virus, anti-malware, anti-spyware and nothing detected! This corrupt my hard disk, so I bought a new one and restored the backup! and the problem didn't go! So I use it with freezing till today's morning, I was cleaning my PC with Advanced SystemCare 5 and I found 2 KEYLOGGERS! when I deleted them, my computer become in mess, I download new windows update and requested a Disk Doctor and found one error with Advanced SystemCare 5, I didn't know what to do in freezed computer so I tried to restarted my computer in Safe Mode, but the Safe Mode freezes, I forget that I request a checkdisk , and install the updates, so my computer restarted and made a checkdisk and found 5 issues, it restarted again and made a failure windows update, restarted again and requested a checkdisk again, but this time it is too slow, and the same thing happened but much slower! so I used to shutdown the computer with the shutdown button,
and my computer is working in freeze (Not Responding) mode, so I tried to backup the hard disk but it gives me an error "A Volume Shadow Copy Service component encountered an unexpected error. Check the Application event log for more information. (0x80042302)." which is in event viewer "Volume Shadow Copy Service error: Unexpected error calling routine GetProviderMgmtInterface. hr = 0x8004230f, The shadow copy provider had an unexpected error while trying to process the specified operation." so I made a sfc scan using command prompt, it found errors and fixed it, but the major problem didn't fix, and I came here. Any help will be appreciated!

P.S: After the 47 viruses/malwares/spywares/adwares I removed my anti-malware,and anti-spyware and changed to Bitdefender Anti-virus plus, and before that my computer thinks I turned off a fake anti-virus called PC Cleaners Pro.

P.S 2: I think the keylogger took some info from my computer as the junk files were 1 GB, so I didn`t use internet anymore in my infected PC, so I transfer info and files by a flash disk

P.S 3: I end task manager processes to give more CPU like explorer.exe

*P.S: I uses Windows 7 Ultimate service pack 1 (build 7601) in a laptop (Notebook) (Acer Aspire 4935G)

Attached Files



BC AdBot (Login to Remove)

 


#2 Addas

Addas
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:45 AM

Posted 15 June 2012 - 09:06 AM

Sorry, but can someone from Malware Response Team help me for my problem, Sorry, but it is urgent!

Thanks

#3 nasdaq

nasdaq

  • Malware Response Team
  • 39,225 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:45 PM

Posted 18 June 2012 - 09:14 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

If you have a CD Emulator Software (Daemon Tools, Alcohol etc) installed, the drivers this software uses can interfere with the Anti-Rootkit tools we use. These interferences can take a few forms, like GMER crashing or causing BSODs, or Rootkit scans produces large amounts of FPs and general dross. This 'dross' often makes it hard to differentiate between genuine malicious Rootkits, and the legitimate drivers used by CM Emulators.

Disable the CD emulators....

Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.

Do not re-enable these drivers until otherwise instructed. Or when this computer is clean.

HOW TO: Enable the CD Emulators... < restore only when we are finished.

To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_enable which will appear on your desktop.

Your Emulation drivers are now re-enabled.

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it

  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please post the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

===

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.

If needed.
The scan will also create this Attach.txt log I would also like to see the content.
Please post it in a other post for my review, do not attach the file.

Posted Image

Please post the logs for my review.

#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,225 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:45 PM

Posted 24 June 2012 - 09:54 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users