1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Performance issues - virus or malware??

Discussion in 'Virus & Other Malware Removal' started by bjay100, Jan 28, 2010.

Thread Status:
Not open for further replies.
Advertisement
  1. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
    Problem:

    My computer varies between speedy and laggy. Opening up applications, browser windows, tabs, certain websites, and especially working with email via Thunderbird can be excruciatingly slow.

    I really notice the lag when I play the MMORG Ultima Online. I *think* I have a decent computer, good connection, and a nice ping to their servers (35). However, I can never keep up with other players and freeze often. Often when I start to play, I'm fine. Rebooting, restarting, or switching to a different character sometimes helps. After a while my CPU starts to whine loudly as well.

    Because of this, I began to look into ways to speed things up and lessen it's burden. As a result, I think I have too many memory hogs in my task manager. In addition, I think even the "normal" processes are using way to much. But this is just my lay-person opinion - you guys are the experts. I'm not sure if I have some sort of malware causing it.

    I'll include what I have going on in my task manager along with my HijackThis log. I appreciate all the help you can give!

    Computer Specs
    :

    Windows XP
    Intel Celeron CPU 2.53 GHz
    2.53 GHz, 1.00 GB of RAM
    NVIDIA GeForce 7600 GS
    Viotek VIO55 550 watt ATX power supply

    Task Manager Info:

    [​IMG]
    [​IMG]

    HijackThis Log:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:24:11 AM, on 1/28/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\system32\ctfmon.exe
    D:\apps\SpyBot_SD\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
    C:\Program Files\ICQ6Toolbar\ICQ Service.exe
    D:\apps\mozy\mozybackup.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
    C:\WINDOWS\system32\vmnat.exe
    C:\WINDOWS\system32\vmnetdhcp.exe
    C:\Program Files\VMware\VMware Player\vmware-authd.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\PayPal\PayPal Plug-In\RBroker.exe
    C:\WINDOWS\system32\taskmgr.exe
    C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
    C:\Program Files\Windows NT\Accessories\wordpad.exe
    D:\apps\HiJackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
    R3 - URLSearchHook: (no name) - - (no file)
    O1 - Hosts: 71.32.42.116 firewall
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\apps\SPYBOT~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {78875F5C-A685-4405-8DC5-D48DC65452B0} - (no file)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: OToolbarHelper Class - {EAD3A971-6A23-4246-8691-C9244E858967} - C:\Program Files\PayPal\PayPal Plug-In\PayPalHelper.dll
    O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: PayPal Plug-In - {DC0F2F93-27FA-4f84-ACAA-9416F90B9511} - C:\Program Files\PayPal\PayPal Plug-In\OToolbar.dll
    O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
    O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\apps\SpyBot_SD\Spybot - Search & Destroy\TeaTimer.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll
    O9 - Extra 'Tools' menuitem: &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.33.0\gears.dll
    O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\apps\SPYBOT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\apps\SPYBOT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
    O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
    O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1140134308093
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1144492294843
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {F2D35D99-63B1-46D3-970C-6E22320D5DCB} (kSoloCntrlIE Class) - http://www.ksolo.com/getPlugin.do
    O17 - HKLM\System\CCS\Services\Tcpip\..\{3EC61898-33A3-4321-8C01-BB542C9A3421}: NameServer = 68.2.16.30,68.1.208.30
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = pivotallabs.com,flood.pivotallabs.com
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = pivotallabs.com,flood.pivotallabs.com
    O17 - HKLM\System\CS3\Services\Tcpip\Parameters: SearchList = pivotallabs.com,flood.pivotallabs.com
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = pivotallabs.com,flood.pivotallabs.com
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: FlipShare Service - Unknown owner - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
    O23 - Service: Google Update Service (gupdate1c9c9159af915a2) (gupdate1c9c9159af915a2) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
    O23 - Service: MozyHome Backup Service (mozybackup) - Mozy, Inc. - D:\apps\mozy\mozybackup.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - d:\apps\OpenVPN\bin\openvpnserv.exe
    O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Player\vmware-authd.exe
    O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
    O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
    O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe

    --
    End of file - 9784 bytes


    Thank you so much!

    Bjay100
     
  2. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
    Also, if it helps, it's Window's XP Professional verson 2002, service pack 3.

    When I started trying to speed things up, even browsing through files was slow. It would take forever. Even entering info into the browser URL box or the search area, I had to wait for the cursor to appear and blink in the box.

    I also suddenly was running out of memory (got a lot of pop-ups about that) and disk space. I couldn't do a defrag because it said I only had 3% free space and needed 15%. So I moved a lot of movie files to another drive to make room - got it to 43% two days go. Now it's at 35% (29.29 GB capacity, 10.40 free space).

    The problems improved after I ran disk cleanup, defragged, did check disk, changed my display card, increased my pagefile and made it static (2048 MB), chose performance over quality settings, removed the theme I was using,and removed some start-up and service items I recognized and didn't need.

    When I ran Ad-aware, it found and removed a dropper trojan. There was another trojan found weeks ago, but I cannot remember the name, Avast said it had fixed it.

    After I made these changes, I was super speedy on my desktop, in the browser, and in the game, but then after just a couple hours the game was laggy and the computer was noticeably slower (albeit better than before).

    And things slow way down if I attempt to run my game and two other associated programs (Ventrillo voice server and a map server program). Others in the game with much higher pings and computers with less resources than mine have no problems doing it.

    I use the free version of Avast, 4.8 Home Edition. Not sure if that is a resource hog or not and I have Spybot S&D Resident going as well.

    I have broadband cable and my computer is on a network. The other computers are often on (Macs). One is on 24/7 and when that one runs movies or uploads/downloads, my computer comes to a standstill or crawl guaranteed. But the problems seem to happen regardless, even if the others are off.

    Hope all this helps. It's driving me nuts.
     
  3. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
  4. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
  5. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
    Bump. :D
     
  6. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
    *cries* Bump. :p
     
  7. bjay100

    bjay100 Thread Starter

    Joined:
    Jan 28, 2010
    Messages:
    20
    Bump. If I can't be helped here, can you let me know so I can retract my question and ask elsewhere?

    I saw a request that we don't ask the same question at other websites - so I'm trying to respect that. If my question is not appropriate for this site, please let me know so I can try another place.

    Thank you. :)
     
  8. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - Performance issues virus
  1. FusionTecg
    Replies:
    15
    Views:
    1,325
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/898248

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice