1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Am I infected or is my system dying?

Discussion in 'Windows 7' started by Farmgirl22, May 22, 2015.

Thread Status:
Not open for further replies.
Advertisement
  1. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft Windows 7 Home Premium, Service Pack 1, 64 bit
    Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz, Intel64 Family 6 Model 42 Stepping 7
    Processor Count: 4
    RAM: 4007 Mb
    Graphics Card: Intel(R) HD Graphics Family, 1811 Mb
    Hard Drives: C: Total - 463737 MB, Free - 372141 MB; Q: Total - 11999 MB, Free - 2473 MB;
    Motherboard: LENOVO, 1141A24
    Antivirus: Panda Free Antivirus, Updated and Enabled

    My laptop has started running VERY slowly lately. When I start the task manager and watch the EKG looking portion of it, the CPU usage has sudden spikes every so often, and the memory bars are at 3.6Gs. The spikes seem to correspond with when my computer "freezes", and it's been running slowly all the time lately.

    I've run my Panda scans and it hasn't picked up anything. I've also recently backed up the whole computer (so I pray it wasn't infected!) on an external drive in case this system's days are numbered (it is probably 4 years old).

    Also, potentially unrelated, but lately my printer has been "offline", even though it's connected wirelessly to 2 other computers and works flawlessly. Just not this one, and it happened around the same time as the slowness started, which is why I'm mentioning it here instead of starting it's own thread. My trackpad has also been freezing, as well as the fingerprint scanner seems to be fritzing too.

    Thanks!
     
  2. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    Go here, then click the large blue "Download Now @ Bleeping Computer" button to download and save AdwCleaner.exe to your desktop.

    Close all open windows first, then double-click AdwCleaner.exe to load its main window.

    Click the "Scan" button, then allow the scanning process to finish.
    (Note: Several seconds may pass before the scanning process starts, so be patient.)

    Click the "Cleaning" button, then click "OK".

    Allow the cleaning process to finish.

    When it's finished, click "OK" in each window that appears.

    The computer will restart.

    When the log appears during restart, save it.

    Return here to your thread, then copy-and-paste the ENTIRE log here.

    ------------------------------------------------------------

    Go here, then click the large blue "Download Now @ Author's Site" button to download and save TFC.exe (Temp File Cleaner by OldTimer) to your desktop.

    After it's downloaded and saved, close all open windows.

    Double-click it to load its main window.

    Click the "Start" button.

    If there are a large number of temp files or if there are multiple user accounts, the temp file deletion process may appear to freeze and may take a few minutes, so don't interfere with or abort it.

    After it's finished, restart the computer.

    Advise how many temp files in MB's it found and deleted.

    -------------------------------------------------------------
     
  3. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    I just remembered something from using Panda Free Antivirus in the past.

    It may detect the download and use of AdwCleaner as a threat, so you may need to disable it first.

    I eventually got rid of Panda and replaced it with Microsoft Security Essentials because it became too intrusive.

    --------------------------------------------------------
     
  4. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Here's the logfile for ADW, I haven't run the other program yet.

    # AdwCleaner v4.205 - Logfile created 22/05/2015 at 11:53:38
    # Updated 21/05/2015 by Xplode
    # Database : 2015-05-21.2 [Server]
    # Operating system : Windows 7 Home Premium Service Pack 1 (x64)
    # Username : Becca - BECCALAPTOP
    # Running from : C:\Users\Becca\Desktop\AdwCleaner.exe
    # Option : Cleaning

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\ProgramData\Partner
    Folder Deleted : C:\Users\Becca\AppData\Roaming\Mozilla\Firefox\Profiles\gpt0dswt.default\Extensions\[email protected]

    ***** [ Scheduled tasks ] *****


    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    Key Deleted : HKLM\SOFTWARE\Classes\S
    Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
    Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}

    ***** [ Web browsers ] *****

    -\\ Internet Explorer v11.0.9600.17801


    -\\ Mozilla Firefox v38.0.1 (x86 en-US)

    [gpt0dswt.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN11408&pf=V7&trgb=FF&p2=%5EBBG%5EOSJ000%5EYY%5EUS&gct=hp&apn_ptnrs=BBG&apn_dtid=%5EOSJ000%5EYY%5EUS&apn_dbr=ff_38.0.1[...]
    [gpt0dswt.default\prefs.js] - Line Deleted : user_pref("[email protected]", true);
    [gpt0dswt.default\prefs.js] - Line Deleted : user_pref("extensions.enabledAddons", "amznUWL2%40amazon.com:1.10,DivXWebPlayer%40divx.com:2.0.2.039,tineye%40ideeinc.com:1.1,%7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145,readable%40evernote.c[...]
    [gpt0dswt.default\prefs.js] - Line Deleted : user_pref("extensions.foxlingo.addit.defaultAddons", "{ \"software\": {\"20\": {\"id\": \"20\",\"title\": \"Babylon\",\"type\": \"EXE\",\"url\": \"hxxps://www.addonfox.com/partners/rd/babylon/\",\"hom[...]
    [gpt0dswt.default\prefs.js] - Line Deleted : user_pref("extensions.xpiState", "{\"app-profile\":{\"[email protected]\":{\"d\":\"C:\\\\Users\\\\Becca\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\gpt0dswt.default\\\\extensions\\\\a[...]

    -\\ Google Chrome v43.0.2357.65

    [C:\Users\Becca\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
    [C:\Users\Becca\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

    *************************

    AdwCleaner[R0].txt - [2601 bytes] - [22/05/2015 11:51:01]
    AdwCleaner[R1].txt - [2660 bytes] - [22/05/2015 11:52:40]
    AdwCleaner[S0].txt - [2650 bytes] - [22/05/2015 11:53:38]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2709 bytes] ##########
     
  5. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    OK, TFC says it got rid of 1,956 MB.
     
  6. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    Click Start, then type MSCONFIG in the search or run box, then press the Enter key.

    When the small "System Configuration" window appears, click the "Startup" tab.

    Write down ONLY the names in the "Startup Item" column that have a checkmark next to them.

    If the "Startup Item" column isn't wide enough to see the entire name of any of them, widen the column.

    Submit those names here in a vertical list.

    Make sure to spell them EXACTLY as you see them there.

    --------------------------------------------------------------
     
  7. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    I notice you're using the Google Chrome browser.

    It's known to be system-hungry and cause slowness in some computers, so that may be part of the issue.

    ------------------------------------------------------------
     
  8. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Here's the list of startups, as requested. I also don't use Chrome very often--usually only if I'm reading my work email on IceWarp WebClient. (I seem to be unable to add it to Thunderbird and FF won't open the page.)

    ThinkVantage Active Protection System
    SmartAudio Control Panel application
    FMAPP Application
    ThinkVantage Communications Utility
    ThinkVantage AutoLock
    Microsoft Security Client
    Access Connections
    Intel(r) Common User Interface (there are three of these???)
    Microsoft Windows Operating System
    Software Manager
    TomTom HOME
    RCIMGDIR
    ThinkPad Power Manager
    Power Reg
    DivX Update
    Monitor Application
    Adobe Reader and Acrobat Manager
    Paperport
    Paperport (yes, there are two.)
    Nuance PDF Products
    Nuance PDF Products (again, there are two)
    Brother ControlCenter
    Status Monitor Application
    Panda Cloud Antivirus
    Panda Security URL Filtering
    Memeo Backup
    Memeo Dashboard
    Evernote
    Bluetooth Software
    The Print Shop

    Note: I think some of the duplicates are because my two different Brother printers used two different versions of Control Center (3 & 4 respectively--no idea if I can get rid of one of them.
     
  9. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    You didn't spell the entire list accurately and correctly, so I'm unable to research some of them.

    Uncheck these startup entries:

    Intel Common User Interface (all 3 entries)

    Software Manager

    TomTomHOME

    PowerReg

    DivX Update

    Adobe Reader and Acrobat Manager

    EverNote


    After you're done, click Apply - OK/Close - Restart.

    -----------------------------------------------------------------

    You appear to have both Panda Antivirus and Microsoft Security Essentials installed in your computer.

    Multiple antivirus programs in the same computer will fight each other and bog it down.

    I suggest you get rid of Panda and keep Microsoft because it's more user-friendly and less problematic.

    ------------------------------------------------------------------
     
  10. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Any hints as to which ones I've misspelled? In the meantime I'll go ahead and get rid of the ones you listed and restart it. :)
     
  11. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    You can also uncheck these startup entries:

    Paperport

    Nuance PDF Products


    ---------------------------------------------------------

    I've got a Windows 10 computer to work on and update, so I'm going off-line for the rest of the day.

    I'll check back here in the morning.

    ---------------------------------------------------------
     
  12. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Got all those things fixed, anything else I need to do?
     
  13. replay

    replay

    Joined:
    Aug 12, 2003
    Messages:
    5,536
    I would not worry about. Chrome being the culprit........ Have loaded chrome many many times with never a problem, and use it myself, excellent fast browser
     
  14. flavallee

    flavallee Trusted Advisor

    Joined:
    May 12, 2002
    Messages:
    80,693
    First Name:
    Frank
    You unchecked the startup entries and uninstalled one of the antivirus programs?

    If so, how is the computer running now?

    ---------------------------------------------------------
     
  15. Farmgirl22

    Farmgirl22 Thread Starter

    Joined:
    Jun 11, 2006
    Messages:
    7,697
    Yes, I unchecked the suggested startup entries and uninstalled the panda AV. It runs better I think, but I didn't use it much over the holiday weekend. Should I update this thread in a day or two?
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1148662

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice