Computer slows to crawl, not responding

Welcome to Major Geeks!

Most likely just a false detection of the process.exe file that is embedded in MGtools. It is just a simple command line drive process listing tool.

Your logs are all clean so it is not looking like you are having malware problems and you may need to work your issues in the Software Forum. However let's first dig a little deeper to be sure nothing else could be hiding from view by running the below two scans.


Goto the below link and follow the instructions for running TDSSKiller from Kaspersky

• TDSSkiller - How to run

• Be sure to attach your log from TDSSKiller

Now also lease also download MBRCheck to your desktop.


See the download links under this icon http://forums.majorgeeks.com/chaslang/images/MGDownloadLoc.gif

• Double click MBRCheck.exe to run (vista and Win 7 right click and select Run as Administrator)
• It will show a Black screen with some information that will contain either the below line if no problem is found:
  • Done! Press ENTER to exit...
• Or you will see more information like below if a problem is found:
  • Found non-standard or infected MBR.
  • Enter 'Y' and hit ENTER for more options, or 'N' to exit:
• Either way, just choose to exit the program at this point since we want to see only the scan results to begin with.
• MBRCheck will create a log named similar to MBRCheck_07.16.10_00.32.33.txt which is random based on date and time.
• Attach this log to your next message. (See: HOW TO: Attach Items To Your Post )

Have you tried shutting down Norton before running TDSSkiller. Also with Norton shutdown, do IE and Firefox work better?

 

Your logs are all clean. You do not appear to be having malware problems. Try uninstalling Norton and see how things work. Also it is highly recommend to run the below after uninstalling Norton because it rarely uninstalls properly.


Please run the below then reboot. After reboot run it one more time.

Norton Removal Tool (SymNRT)


Also something else to try if the above has no effect. Stop using Firefox for the moment and use IE and see what happens. Do not even open Firefox!!!!!

 

Only if this test shows that it is your problem.

Normal

Your logs show it was using over 340 MB of memory. Is it good? Lots of people like it. I prefer IE which is actually safer/more secure. However my instructions are a test to see if it is your problem. By not opening it, it will not be running and using any memory and thus you may be able to answer whether or not it is causing you a problem.

Still does not mean it is malware. And playing online poker games is not something we recommend. Many people get infected at these sites. And if you were using Firefox and if Norton is still running, they still could be the source of your problems.

 

This came from Dell not from a person in your computer shop. Your PC is a Dell Computer and they install factory recovery partitions on their computers instead of doing the correct thing and giving you to DVDs you need to properly fix a PC when it has problems. Your logs showed me this information.

Code:

Item Value 
Drive C: 
Description Local Fixed Disk 
Compressed No 
File System NTFS 
Size 288.32 GB (309,584,719,872 bytes) 
Free Space 261.69 GB (280,988,610,560 bytes) 
Volume Name  
Volume Serial Number DED96327 
 
Drive D: 
Description Local Fixed Disk 
Compressed No 
File System NTFS 
Size 9.77 GB (10,485,755,904 bytes) 
Free Space 3.89 GB (4,174,716,928 bytes) 
Volume Name Recovery 
Volume Serial Number 3E204527 

It is not causing you a problem.

Let me repeat this again.... You don't have any malware.

 

Yes because in the past it has always been a resource hog. Supposedly newer versions are not as bad, but I'm not convinced that is true.

Reference this: How to Protect yourself from malware!

 

Did you uninstall it first via Add/Remove Programs?

Do you still see any of it running? Do you see files for it on your computer?

 

Let us know the results.

 

No!!! All PCs have a Master Boot Record. It is when they are infected or faked that it is a problem. Windows 7 shows as you saw.

Are you sure Norton is gone. Run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• C:\MGlogs.zip

 

But you installed Avast now which I did not request. Did you purchase this?

Uninstall all of the below and reboot your PC. Then tell me how things seem to run.

avast! Internet Security
PeerBlock 1.1 (r518)
Secunia PSI (2.0.0.3003)

Now Run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista or Win7, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• C:\MGlogs.zip

 

But the goal was to also see how your performance is without this protection installed and running. It is only going to be for the time frame it takes for us to do the experiment and to also look at your logs while no protection is installed.

 

What is the below? I don't see it in your installed programs list:

O4 - HKCU\..\Run: [GoTrusted] C:\Program Files\GoTrusted.com\GoTrusted Secure Tunnel v2.3.1.5\GoTrusted Secure Tunnel.exe


How are things running without Avast installed?

Your logs still show you are using Firefox too which is using quite a bit of memory. I suggested not running this earlier too to see how things work.

At this point I suggest that if you still have performance problems, that you uninstall Firefox, reboot, redownload and then reinstall with NO PLUGINs. Then see what happens. If still having problems, please reinstall your protection since it is not the problem and then post in the Software Forum for help.


Since you are not having malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /uninstall
     • Notes: The space between the combofix" and the /uninstall, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
3. Go back to step 6 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
6. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
7. Go to add/remove programs and uninstall HijackThis.
8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
   related to MGtools and some other items from our cleaning procedures.
10. After doing the above, you should work thru the below link:
    • How to Protect yourself from malware!

 

Yes it is. It showed in all of your logs. Check again. Make sure that you are looking in the C:\MGtools folder. Also if you do not have viewing of file extensions enabled, you will only see MGclean not MGclean.bat

 

You're welcome.

Nope. You're finished.

 

You're welcome. Surf safely.