Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slowed Speeds, High CPU and PF Usage and Virtual Memory Messages


  • This topic is locked This topic is locked
23 replies to this topic

#1 faye raye

faye raye

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:12:12 PM

Posted 19 December 2014 - 11:29 AM

Hello. Lately, I've been growing more and more concerned over the slowness of my PC- it takes longer to boot up when it's been turned off than it used to, and programs take longer to open. It all seems realted to when the CPU Usage reported in Task Manager is up to 100%, which it is quite often lately, or the PF Usage, which is also often high.

 

Online speeds aren't any different, in fact since Firefox was updated recently they almost seem faster, but - if a site with lots of traffic or a page with many images, say, are trying to load, the browser might hang, or, AOL will say it's Re-connecting, and sometimes it signs off entirely. I cannot currently load videos because activating their loading causes AOL to sign off, and if a download is set to take longer than an hour or two , at some point AOL will need to re-connect and fail the download.

 

Also, in the past week there were three instances in which Windows gave the "Virtual Memory is Low" message, one of which when the PC was idle- connected to the Web but no one was using it.  I haven't gotten another one for about five days now, though.

 

I have a good amount of free space on the harddrive, and I have run Windows Cleanup and I just recently DeFragmented. Could these be virus symptoms?

 

I have



BC AdBot (Login to Remove)

 


#2 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 19 December 2014 - 11:30 AM

Hello there     :welcome:
 
Welcome to Bleeping Computer, I'm LighthouseParty. Let's run a couple of scans to see what could be causing this.
 
:step1: Please download MiniToolBox to your desktop

  • Double click MiniToolBox.
  • Select the following and then press go.
  • Post the log in your next reply.

Flush DNS
Reset IE Proxy Settings
Reset FF Proxy Settings
List Installed Programs
List Restore Points
 
:step2: Please download Malwarebytes Anti-Malware to your desktop

  • Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
  • On the dashboard, click update now.
  • After that, click scan now - the scan will now begin.
  • When the scan's completed, select apply actions - make sure the action is quarantine.
  • Restart your computer.

How to get the log.

  • On the dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.

:step3: Please download Security Check to your desktop

  • Double click SecurityCheck and follow the on-screen instructions.
  • A log should open, called checkup.txt.
  • Please post the contents of it in your next reply.

:step4: Non-malware removal steps
 
Run System File Checker - http://support.microsoft.com/KB/929833
Run Disk Check - http://support.microsoft.com/kb/2641432
Run Disk Cleanup - http://windows.microsoft.com/en-gb/windows/delete-files-using-disk-cleanup

Thanks and good luck!



#3 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female

Posted 20 December 2014 - 07:43 PM

Here's MiniTool Box:

 

MiniToolBox by Farbar  Version: 30-11-2014
Ran by Dashel R (administrator) on 20-12-2014 at 09:47:14
Running from "C:\Documents and Settings\Dashel R\My Documents\Downloads"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
"Reset IE Proxy Settings": IE Proxy Settings were reset.

"Reset FF Proxy Settings": Firefox Proxy settings were reset.



=========================== Installed Programs ============================
7-Zip 9.22beta (HKLM\...\7-Zip) (Version:  - )
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.53.64 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Photoshop CS (HKLM\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 11 - Adobe Systems, Inc.)
AFPL Ghostscript 8.53 (HKLM\...\AFPL Ghostscript 8.53) (Version:  - )
AFPL Ghostscript Fonts (HKLM\...\AFPL Ghostscript Fonts) (Version:  - )
AIM Toolbar (HKLM\...\AIMToolbar) (Version:  - )
AOL Coach Version 1.0(Build:20030807.3) (HKLM\...\AolCoach) (Version:  - )
AOL Coach Version 2.0(Build:20041026.5 en) (HKLM\...\AolCoach2_en) (Version:  - )
AOL Deskbar (HKLM\...\AOL Deskbar) (Version:  - )
AOL Instant Messenger (HKLM\...\AOL Instant Messenger) (Version:  - )
AOL Toolbar (HKCU\...\AOL Toolbar) (Version:  - )
AOL Uninstaller (Choose which Products to Remove) (HKLM\...\AOL Uninstaller) (Version:  - AOL Inc.)
AOL You've Got Pictures Screensaver (HKLM\...\AOL YGP Screensaver) (Version:  - )
Apple Application Support (HKLM\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{10E3A6DD-84D8-4D8A-BB11-5E5314BCA7FD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft MediaImpression (HKLM\...\{18472E28-FCA0-421F-BDAC-AC65012E29F2}) (Version: 1.2.19.330 - ArcSoft)
Artoonix 1.2 (HKLM\...\Artoonix 1.2 Release 1_is1) (Version:  - 9Spikes Software)
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.0 - )
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Camera Driver (HKLM\...\{D1B3874F-3057-11D6-B2EA-0050BA18806B}) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 3.28 - Piriform)
Cheat Engine 6.3 (HKLM\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
CoolSoft VirtualMIDISynth 1.12.0 (HKLM\...\CoolSoft VirtualMIDISynth) (Version: 1.12.0.0 - CoolSoft)
Crash Analysis Tool (HKLM\...\{D5F881C2-B134-474E-AA60-B25DD218AE0D}) (Version: 1.00.0001 - Dell)
Delete Virtual-Mate Launcher (HKLM\...\{56C64E81-FC93-4cb9-9EBF-953662950D3B}_is1) (Version: 1.0.0 - Interlex Inc.)
Dell Digital Jukebox Driver (HKLM\...\Dell Digital Jukebox Driver) (Version:  - )
Dell Driver Reset Tool (HKLM\...\{5905F42D-3F5F-4916-ADA6-94A3646AEE76}) (Version: 1.02.0000 - Dell Inc.)
Dell Media Experience (HKLM\...\{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version:  - )
Dell Photo AIO Printer 922 (HKLM\...\Dell Photo AIO Printer 922) (Version:  - )
Dell Support Center (HKLM\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.0.07311 - Dell)
Dell System Restore (HKLM\...\{74F7662C-B1DB-489E-A8AC-07A06B24978B}) (Version: 2.00.0000 - Dell Inc.)
DellSupport (HKLM\...\{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}) (Version: 6.0.3062 - Dell)
devkitProUpdater 1.5.3 (HKLM\...\devkitProUpdater) (Version: 1.5.3 - devkitPro)
DivX (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 5.2.1 - DivXNetworks, Inc.)
FLAC Installer 1.1.2a (remove only) (HKLM\...\FLAC) (Version: 1.1.2a - Mike Wren, Cyberial Multimedia)
foobar2000 v1.3.3 (HKLM\...\foobar2000) (Version: 1.3.3 - Peter Pawlowski)
FormatFactory 3.0.1 (HKLM\...\FormatFactory) (Version: 3.0.1 - Free Time)
Free Audio Editor (HKLM\...\Free Audio Editor) (Version:  - FAE Inc.)
Free Download Manager 3.9.4 (HKLM\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
get_iplayer 4.9 (HKLM\...\get_iplayer) (Version: 4.9 - infradead.org)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.1.2003.1856 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.21.69 - Google Inc.) Hidden
iDraw3.32 Chara Maker (HKLM\...\iDraw3.32 Chara Maker) (Version:  - )
Intel® 537EP V9x DF PCI Modem (HKLM\...\Intel® 537EP V9x DF PCI Modem) (Version:  - )
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4396 - )
Intel® PRO Network Adapters and Drivers (HKLM\...\PROSet) (Version:  - )
Intel® PROSet for Wired Connections (HKLM\...\{17334AAF-C9E7-483B-9F45-E3FCAF07FFA7}) (Version: 8.00.5000 - Dell)
Internet Explorer Default Page (Version: 1.00.03 - Dell Inc.) Hidden
iPod Agent 1.0.1.0 (HKLM\...\iPod Agent_is1) (Version: 1.0.1.0 - iPodSoft)
iPod for Windows 2005-02-07 (Version: 3.1.0 - Apple Computer, Inc.) Hidden
iPod Reset Utility (HKLM\...\{20ED157B-1A84-4DF7-945E-4951A38A9CBA}) (Version: 1.0.4.71 - Apple Inc.)
Itibiti RTC (Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{616445AF-BBCF-41C1-A4D6-8CFF171C182D}) (Version: 11.1.4.62 - Apple Inc.)
IZArc 4.1.8 (HKLM\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.8 - Ivan Zahariev)
JumpStart PreSchool v1.4 (HKLM\...\PRSCHOOL_1.4) (Version:  - )
KRISTAL Audio Engine (HKLM\...\KRISTAL Audio Engine) (Version:  - )
Learn2 Player (Uninstall Only) (HKLM\...\StreetPlugin) (Version:  - )
Memeo AutoSync (HKLM\...\{75B7F766-7998-44d8-A202-F1EC76A121BA}) (Version:  - Memeo Inc.)
Memeo Instant Backup (HKLM\...\{8E666407-AC41-46a2-9692-6C7BFCBFDD37}) (Version: 4.60.0.7923 - Memeo Inc.)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Plus! Digital Media Edition Installer (HKLM\...\{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}) (Version: 1.1.0.3514 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM\...\MSTTS) (Version:  - )
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL Inc.) Hidden
Microsoft VC9 runtime libraries (Version: 1.0.0 - AOL LLC) Hidden
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Modem Event Monitor (HKLM\...\{7A0EFAFB-AC4B-4B88-8C6B-6731BE88DB68}) (Version:  - )
Modem Helper (HKLM\...\{7F142D56-3326-11D5-B229-002078017FBF}) (Version: 2.25 - BVRP Software)
Modem On Hold (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 1.12 - BVRP Software, Inc)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.2.0 - Mozilla)
MSN (HKLM\...\MSNINST) (Version:  - )
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (HKLM\...\{AEB9948B-4FF2-47C9-990E-47014492A0FE}) (Version: 6.00.3883.8 - Microsoft Corporation)
msxml4 (HKLM\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name)
Musicmatch for Windows Media Player (HKLM\...\{E93E5EF6-D361-481E-849D-F16EF5C78EBC}) (Version: 0.00.000 - )
OpenOffice.org 2.0 (HKLM\...\{69579772-D2F7-4018-9882-B5ECA01CB6B4}) (Version: 2.0.8990 - OpenOffice.org)
PAP project files (HKLM\...\PAP project files_is1) (Version:  - )
PDFill PDF Editor 4.1 with Writer and Tools (Unicode) (HKLM\...\{9242140C-E909-45B4-8315-2A3CC0786FB0}) (Version: 4.1 - PlotSoft)
PDFill PDF Writer (HKLM\...\PDFill PDF Writer) (Version:  - )
Pokémon Play It! v2 (HKLM\...\{58A38F4A-E9DB-11D3-A680-00105AA6FA07}) (Version:  - )
Qualxserve Service Agreement (HKLM\...\{0F756CD9-4A1E-409B-B101-601DDC4C03AA}) (Version: 1.10.0000 - Dell)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealPlayer (HKLM\...\RealPlayer 6.0) (Version:  - )
RPG Maker 2003 v1.08 (HKLM\...\RPG Maker 2003_is1) (Version:  - Enterbrain, Inc.)
RPG MAKER VX Ace Lite (HKLM\...\RPGVXAceLite_E_is1) (Version: 1.01b - Enterbrain)
RPGC (HKLM\...\RPGC) (Version:  - )
Sandboxie 3.64 (32-bit) (HKLM\...\Sandboxie) (Version: 3.64 - SANDBOXIE L.T.D)
Seagate Dashboard (HKLM\...\{C3A11907-930D-41AC-A135-CC3B12F92011}) (Version: 1.1.0.1421 - Memeo Inc.)
Search for the Secret Keys (HKLM\...\{8667F541-5CB6-44BD-B2CC-28D96A885EBF}) (Version: 1.0 - )
Sonic RecordNow! (HKLM\...\{9541FED0-327F-4DF0-8B96-EF57EF622F19}) (Version: 7.3 - Sonic Solutions)
Sonic Update Manager (HKLM\...\{09DA4F91-2A09-4232-AB8C-6BC740096DE3}) (Version: 2.9 - Sonic Solutions)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.12.01.5211 - Analog Devices)
Subtitle Edit v3.0 (HKLM\...\SubtitleEdit_is1) (Version: 3.0 - Nikse)
TigerGame Superjoy Box Series (HKLM\...\TigerGame Superjoy Box Series) (Version:  - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
VideoPad Video Editor (HKLM\...\VideoPad) (Version: 3.22 - NCH Software)
Viewpoint Media Player (HKLM\...\ViewpointMediaPlayer) (Version:  - )
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WIFi Locator version 1.1 (HKLM\...\{80A11778-F86C-4DB2-9DB5-D5B886BEFD05}_is1) (Version: 1.1 - http://tcpmonitor.altervista.org/)
WinAce Archiver (HKLM\...\WinAce Archiver) (Version: 2.594 - e-merge GmbH)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.5.0540.0 - Microsoft Corporation)
Windows Genuine Advantage v1.3.0254.0 (Version: 1.3.0254.0 - Microsoft) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 10 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 10 (Version: 9.00.3636 - Microsoft Corporation) Hidden
Winnie the Pooh Kindergarten Deluxe (HKLM\...\{B4C418D9-832B-4D65-99B6-F3B3EF1F1DDF}) (Version: 1.0 - )
WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WordPerfect Office 12 (HKLM\...\{AF19F291-F22F-4798-9662-525305AE9E48}) (Version: 12.0.0.238 - Corel Corporation)
========================= Restore Points ==================================

30-11-2014 09:07:19 System Checkpoint
08-11-2004 11:05:43 System Checkpoint
02-12-2014 00:32:49 System Checkpoint
03-12-2014 03:44:11 System Checkpoint
07-12-2014 13:07:26 System Checkpoint
08-12-2014 14:02:00 System Checkpoint
10-12-2014 06:26:55 System Checkpoint
10-12-2014 23:07:36 Software Distribution Service 3.0
12-12-2014 02:34:18 System Checkpoint
13-12-2014 08:36:22 System Checkpoint
14-12-2014 19:28:17 System Checkpoint
16-12-2014 10:53:28 System Checkpoint
17-12-2014 13:35:19 System Checkpoint

**** End of log ****
 

 

 

I just ran Malwarebytes day before yesterday, all it found was 14 PUPs, which I quarantiuned.

 

Here's SecurityCheck: 

 

 Results of screen317's Security Check version 0.99.93  
 Windows XP Service Pack 3 x86   
 Internet Explorer 6 Out of date!
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 avast! Free Antivirus    
 iPod Reset Utility    
`````````Anti-malware/Other Utilities Check:`````````
 CCleaner     
 Adobe Flash Player 10 Flash Player out of Date!
  Adobe Flash Player     15.0.0.246 Flash Player out of Date!  
 Mozilla Firefox (34.0.5)
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 6%
````````````````````End of Log``````````````````````
 



#4 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 21 December 2014 - 04:10 AM

I just ran Malwarebytes day before yesterday, all it found was 14 PUPs, which I quarantiuned.

 

Hello there,

 

Please run a fresh scan with Malwarebytes Anti-Malware and include the log.. also include the log from yesterday's scan.

 

How to get the log.

  • On the dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.


#5 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:12:12 PM

Posted 21 December 2014 - 02:59 PM

I'm sorry for not being able to produce a Malwarebytes log, but whenever I try to run the program now, it cannot get past the "Initializing" step, it stays on the Pre-Scan Actions for hours and doesn't progress. And, the first time I ran it, I didn't think to Export the log, and then I had to uninstall the whole program because while it was installed, even if it wasn't running, it was somehow blocking AOL from connecting, I looked in the settings to try to adjust, so finally I had to try uninstalling it.


Edited by faye raye, 21 December 2014 - 03:01 PM.


#6 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 21 December 2014 - 03:08 PM

Hello there,

 

Okay, we'll leave the Malwarebytes Anti-Malware step for now.

:step1: Please uninstall some programs
 
There's currently some programs on your PC that we need to remove, for the time-being at least. Press the Windows + R key on your keyboard and type in appwiz.cpl and press enter. Navigate to each of the following below one-by-one and click uninstall:

  • AIM Toolbar
  • AOL Toolbar
  • Google Toolbar for Internet Explorer
  • WinPcap 4.1.2

If any programs listed above aren't in Programs and Features, you can just skip them. Please download JavaRa from here and once opened it, select 'remove JRE' (If that's not there, select remove Java Runtime). Make sure you skip the re-install Java option!

:step2: Please download rKill to your desktop

  • Double click it (Win 7, 8 and Vista users, right-click and select run as admin)
  • The tool will run and then a log file should open.
  • Please post the contents of it in your next reply.

Please don't restart your computer before running the next step.

:step3: Please download AdwCleaner to your desktop

  • Double click adwcleaner_x.xxx.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • If prompted, click I agree.
  • Click scan. When it's finished, select clean.
  • Allow AdwCleaner to restart your computer.
  • Once your computer's restarted, a log should appear.
  • Please post this in your next reply.

:step4: Please download Junkware Removal Tool to your desktop

  • Double click JRT.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • Press any key and the scan will begin.
  • At the end, a log will open. Please post this in your next reply.

:step5: Please visit the ESET Online Scanner webpage
:exclame: Internet Explorer MUST be used for this step.  :exclame:

  • Click the checkbox next to 'Yes, I accept the Terms of Use' and click start.
  • Select the checkboxes which are displayed in the picture below.

jqnp8z.png

  • Press start and the scan will now begin - this scan will take a long time.
  • When the scand finished, select list threats and then export.
  • Choose a name for the log (e.g ESET) and click save (to your desktop)
  • Press the back button and then click finish. Please include the contents of the log in your reply.


#7 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female

Posted 23 December 2014 - 02:30 AM

I uninstalled the programs you said to. Here's the logs:

 

Rkill 2.6.9 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/22/2014 07:01:24 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\WINDOWS\wanmpsvc.exe (PID: 1696) [WD-HEUR]
 * C:\WINDOWS\system32\dla\tfswctrl.exe (PID: 2940) [WD-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Reparse Point/Junctions Found (Most likely legitimate)!

     * C:\WINDOWS\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a => C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492 [Dir]
     * C:\WINDOWS\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Workflow.Compiler\v4.0_4.0.0.0__31bf3856ad364e35 => C:\WINDOWS\WinSxS\MSIL_Microsoft.Workflow.Compiler_31bf3856ad364e35_4.0.0.0_x-ww_97359ba5 [Dir]

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost
  127.0.0.1 4chan.org
  127.0.0.1 danbooru.donmai.us
  127.0.0.1 fanfiction.net
  127.0.0.1 hoboes.net
  127.0.0.1 kinkfest.dreamwidth.org
  127.0.0.1 m.fanfiction.net
  127.0.0.1 rule34.paheal.net
  127.0.0.1 www.4chan.org
  127.0.0.1 www.danbooru.donmai.us
  127.0.0.1 www.fanfiction.net
  127.0.0.1 www.kinkfest.dreamwidth.org
  127.0.0.1 www.m.fanfiction.net
  127.0.0.1 www.rule34.paheal.net

Program finished at: 12/22/2014 07:06:44 PM
Execution time: 0 hours(s), 5 minute(s), and 20 seconds(s)
 

 

# AdwCleaner v4.106 - Report created 22/12/2014 at 19:40:01
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Dashel R - NO1
# Running from : C:\Documents and Settings\Dashel R\My Documents\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\NCH Software
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\Program Files\Viewpoint
Folder Deleted : C:\Documents and Settings\Dashel R\Local Settings\Application Data\CrashRpt
Folder Deleted : C:\Documents and Settings\Dashel R\Application Data\NCH Software

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\SelectionLinks.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{987D9269-F8A1-408F-BF62-4397D2F5363E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0722BEB-FDA1-4AA1-A2A8-15A74A5B3F70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F1963E76-845B-474C-8C7F-D69A96D8AA34}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E00DE9B9-B128-4C39-B732-B5D85013FA48}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{300BEC06-B743-4D19-86B9-11DC711D7FFB}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59}]
Key Deleted : HKCU\Software\UpToDown
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\USyndication
Key Deleted : HKLM\SOFTWARE\MetaStream
Key Deleted : HKLM\SOFTWARE\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\sl-dlc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Mozilla Firefox v34.0.5 (x86 en-US)


-\\ Google Chrome v


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R0].txt - [23930 octets] - [23/02/2014 08:41:40]
AdwCleaner[R10].txt - [3185 octets] - [20/03/2014 16:35:30]
AdwCleaner[R11].txt - [3108 octets] - [21/03/2014 06:39:00]
AdwCleaner[R12].txt - [3322 octets] - [22/03/2014 10:14:45]
AdwCleaner[R13].txt - [3383 octets] - [22/03/2014 11:01:12]
AdwCleaner[R14].txt - [2334 octets] - [22/03/2014 11:12:32]
AdwCleaner[R15].txt - [3534 octets] - [22/03/2014 11:44:46]
AdwCleaner[R16].txt - [3595 octets] - [22/03/2014 11:57:14]
AdwCleaner[R17].txt - [2640 octets] - [22/03/2014 14:20:02]
AdwCleaner[R18].txt - [2582 octets] - [22/03/2014 16:02:36]
AdwCleaner[R19].txt - [2855 octets] - [26/03/2014 21:32:17]
AdwCleaner[R1].txt - [24524 octets] - [06/03/2014 17:56:18]
AdwCleaner[R20].txt - [2884 octets] - [26/03/2014 21:52:42]
AdwCleaner[R21].txt - [3006 octets] - [27/03/2014 06:03:09]
AdwCleaner[R22].txt - [3067 octets] - [27/03/2014 06:29:51]
AdwCleaner[R23].txt - [3259 octets] - [12/04/2014 16:22:13]
AdwCleaner[R24].txt - [3192 octets] - [12/04/2014 16:39:24]
AdwCleaner[R25].txt - [3372 octets] - [12/04/2014 19:57:54]
AdwCleaner[R26].txt - [3433 octets] - [12/04/2014 20:32:32]
AdwCleaner[R27].txt - [3555 octets] - [12/04/2014 20:49:49]
AdwCleaner[R28].txt - [4693 octets] - [03/05/2014 07:25:51]
AdwCleaner[R29].txt - [4774 octets] - [03/05/2014 08:50:25]
AdwCleaner[R2].txt - [2904 octets] - [11/03/2014 08:55:55]
AdwCleaner[R30].txt - [3860 octets] - [03/05/2014 09:25:16]
AdwCleaner[R31].txt - [4328 octets] - [03/05/2014 14:34:50]
AdwCleaner[R32].txt - [4389 octets] - [03/05/2014 15:55:53]
AdwCleaner[R33].txt - [3985 octets] - [03/05/2014 16:17:15]
AdwCleaner[R34].txt - [5005 octets] - [03/05/2014 16:50:23]
AdwCleaner[R35].txt - [4796 octets] - [03/05/2014 16:53:37]
AdwCleaner[R36].txt - [4538 octets] - [03/05/2014 16:59:01]
AdwCleaner[R37].txt - [9078 octets] - [22/12/2014 19:30:05]
AdwCleaner[R3].txt - [1946 octets] - [11/03/2014 16:03:52]
AdwCleaner[R4].txt - [1989 octets] - [12/03/2014 12:02:56]
AdwCleaner[R5].txt - [2049 octets] - [12/03/2014 12:05:54]
AdwCleaner[R6].txt - [1873 octets] - [12/03/2014 12:39:19]
AdwCleaner[R7].txt - [1993 octets] - [12/03/2014 13:41:16]
AdwCleaner[R8].txt - [1762 octets] - [18/03/2014 13:20:49]
AdwCleaner[R9].txt - [2958 octets] - [20/03/2014 11:19:13]
AdwCleaner[S0].txt - [24451 octets] - [06/03/2014 19:01:12]
AdwCleaner[S10].txt - [3481 octets] - [22/03/2014 11:02:48]
AdwCleaner[S11].txt - [2397 octets] - [22/03/2014 11:37:28]
AdwCleaner[S12].txt - [3691 octets] - [22/03/2014 11:58:34]
AdwCleaner[S13].txt - [2919 octets] - [26/03/2014 21:39:01]
AdwCleaner[S14].txt - [2946 octets] - [26/03/2014 21:53:34]
AdwCleaner[S15].txt - [3129 octets] - [27/03/2014 06:31:54]
AdwCleaner[S16].txt - [3325 octets] - [12/04/2014 16:26:52]
AdwCleaner[S17].txt - [3495 octets] - [12/04/2014 20:33:29]
AdwCleaner[S18].txt - [4789 octets] - [03/05/2014 07:32:44]
AdwCleaner[S19].txt - [4866 octets] - [03/05/2014 09:16:14]
AdwCleaner[S1].txt - [3063 octets] - [11/03/2014 08:59:24]
AdwCleaner[S20].txt - [4471 octets] - [03/05/2014 15:58:57]
AdwCleaner[S21].txt - [8473 octets] - [22/12/2014 19:40:01]
AdwCleaner[S2].txt - [2061 octets] - [11/03/2014 16:06:29]
AdwCleaner[S3].txt - [2157 octets] - [12/03/2014 12:08:35]
AdwCleaner[S4].txt - [1967 octets] - [12/03/2014 12:44:46]
AdwCleaner[S5].txt - [2072 octets] - [12/03/2014 13:42:35]
AdwCleaner[S6].txt - [1825 octets] - [18/03/2014 13:54:24]
AdwCleaner[S7].txt - [3055 octets] - [20/03/2014 11:23:38]
AdwCleaner[S8].txt - [3283 octets] - [20/03/2014 16:37:44]
AdwCleaner[S9].txt - [3202 octets] - [21/03/2014 06:40:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S21].txt - [9014 octets] ##########
 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Microsoft Windows XP x86
Ran by Dashel R on Mon 12/22/2014 at 22:15:47.42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\free download manager



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] "C:\WINDOWS\launcher.exe"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\viewpoint"
Successfully deleted: [Folder] "C:\Program Files\viewpoint"



~~~ FireFox

Emptied folder: C:\Documents and Settings\Dashel R\Application Data\mozilla\firefox\profiles\y4brb0h9.default-1410831217343\minidumps [9 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 12/22/2014 at 22:48:53.70
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

Again I have to apologize, this time for not having an ESET log, but when MS ended support for XP, I thought it would be dangerous to use IE without further support, so I turned off the access to it, and ever since I did that, it seems to not work when I set the access back again, I cicik on the icon but it doesn't appear.



#8 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 23 December 2014 - 05:10 AM

Okay, I understand - good precaution step to take.

 

Please visit the link for the ESET Online Scanner using your current browser and it will require you to download the scanner to your desktop. Double-click it and follow the instructions for it in reply #6.



#9 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:12:12 PM

Posted 27 December 2014 - 05:58 PM

Here's the ESET log- there are two, because the first time I forgot to put a check in all of the specified boxes.

C:\Documents and Settings\Dashel R\Local Settings\Application Data\Freecorder\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.12\bin\PriceGongIE.dll    a variant of Win32/PriceGong.A potentially unwanted application    deleted - quarantined
C:\Documents and Settings\Dashel R\My Documents\Downloads\dap10_setup_inst(1).exe    a variant of Win32/InstallCore.QW potentially unwanted application    deleted - quarantined
C:\Documents and Settings\Dashel R\My Documents\Downloads\FCTBSetup.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\Documents and Settings\Dashel R\My Documents\Downloads\FFSetup3.0.1.exe    a variant of Win32/Hao123.A potentially unwanted application    deleted - quarantined
C:\Program Files\Freecorder\freecorder.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\Program Files\Freecorder\tbFree.dll    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\Program Files\Google\New Folder\freecorder.exe    a variant of Win32/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Dashel R\Application Data\DefaultTab\DefaultTab\DefaultTabUninstaller.exe.vir    Win32/Toolbar.DefaultTab.E potentially unwanted application    deleted - quarantined
C:\Qoobox\Quarantine\C\Documents and Settings\Dashel R\Application Data\DefaultTab\DefaultTab\uninstalldt.exe.vir    a variant of Win32/Toolbar.DefaultTab.E potentially unwanted application    deleted - quarantined
 

C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\VideoPad\videopad.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\VideoPad\videopadsetup_v3.22.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
C:\Documents and Settings\Dashel R\My Documents\Downloads\vpsetup.exe    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application    deleted - quarantined
 



#10 Guest_LighthouseParty_*

Guest_LighthouseParty_*

  • Guests
  • OFFLINE
  •  

Posted 28 December 2014 - 01:47 PM

How is the PC running now?



#11 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female

Posted 28 December 2014 - 07:58 PM

It's slightly improved speed-wise, the CPU usage seems lower, but I'm still seeing PF Usage at like 894 or more. Also, while AOL is connected to the Internet, Windows programs still seem to run less efficently, like sound on videos will sound slighty distorted and they won't play smoothly, but this isn't present when not connected to the Internet, and AOL still disconnects sometimes.



#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,886 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:12 PM

Posted 29 December 2014 - 09:15 AM

Then you need to identify the process (or processes) causing the high CPU utilization and where it is running from. Windows Task Manager does not provide enough information.

These are more tools to investigate services, running processes, programs that run at startup, and gather additional information to identify them or resolve problems:These tools will provide information about each process, CPU usage, file description and its location. Most of them are stand-alone portable apps in a zip file so no installation is necessary.

These are specific tools to investigate Svchost.exe:Investigating Svchost.exe Tutorials::
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female

Posted 31 December 2014 - 01:44 PM

I'm not so good at deciphering the details of these kinds of prgrams, but from what I can see, in ProcessExplorer, the System idle Process seems to run the highest most of the time, along with Firefox and AOL when those are running, and something called Interrupts, whic is sdescribed as n/a Hardware Interrupts and DPCs. System Idle Process can get to eighties-ninety sometimes. I also ran the SVChost Viewer, and none of the svchosts running seem to be anything unusual.

 

Yeseterday, the PC was running a large video -editing program and a converter while connected to the Internet, and the PC was getting stuck and AOL disconnecting as I've said before. However, I guess the slowness and getting stuck could just be something that happens when the PC is running a lot at the same time. The really frustrating thing is AOL's constant need to re-connect.

 

I've used a phone to listen to what's happening on the phone line recently when it had signed off and I was unsuccessfully trying to sign back on, and I could hear a kind of static and a distant-sounding ringing of someone else's call! I think there is some kind of trouble with the phone lines around my home, but my question is: could that kind of problem at all influence the PC to run more slowly/freeze up when AOL dis/re-connects, and how it seems that AOL sometimes does that when Firefox is trying to load a certain kind of web page with, say, a lot of content- like a built-in media player or starting to load a video embedded on a web page? It doesn't always dis-re-connect when trying to load those kinds of pages, but sometimes it seems to.


Edited by faye raye, 31 December 2014 - 01:47 PM.


#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,886 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:12:12 PM

Posted 31 December 2014 - 02:18 PM

System Idle process is used for measuring how much idle time the CPU is having at any particular time (100% minus the sum of all tasks CPU usage). It accounts for processor time when the system is not processing other threads and will display how much CPU resources, as a percentage are 'idle' and available for use. One instance of this process operates per CPU, and runs to occupy the processor when other threads are not running. System Idle process also issues HLT commands which put unused parts of the CPU into a suspend mode, thereby cooling the processor. Normally this process should take up at least 90%+ of processor time on average (this is the value in the CPU column). In non-technical terms, this figure represents how much CPU time has not been requested by anything else on your system...see Why Is The System Idle Process Hogging All The Resources?.

System is a process in NT "kernel mode" that contains most of the system threads and handles various basic system functions. When Windows loads, the Windows kernel starts and runs in kernel mode to set up paging and virtual memory. It then creates some system processes and allows them to run in "user mode" but restricts their access to critical areas of the operation system.

Every process started by Windows, except for the System process, runs in user mode. The User mode processes must request use of the kernel by means of a system call in order to perform privileged operations on their behalf. Kernel mode has full access to system resources and controls scheduling, thread prioritization, interrupt handlers, memory management and the interaction with hardware. The system process cannot be terminated.

For more detailed information, please refer to:If you are using a phone line to connect to the Internet, line trouble can certainly be a factor. I live in a rural area far from the towers so my WiFi does not always get optimal connection. At times I get disconnected or pages just freeze when browsing due to poor connection speed.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 faye raye

faye raye
  • Topic Starter

  • Members
  • 168 posts
  • OFFLINE
  •  
  • Gender:Female

Posted 31 December 2014 - 05:29 PM

Thanks for the information- I figured that System Idle Process' heavy load was normal.

 

Now here's an example of what I meant: Avast has been saying that it can be updated to the latest version. I just tried to do it earlier. and AOL signed off. I haven't been able to update it because every time I try, this happens. Is it possible for that to be connected to phone line issues?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users