Problems...

Hello,

My computer started acting strangely a couple of days ago, and I would like some suggestions on what to do. I followed the Basic Spyware, Trojan and Virus Removal thread, but I didn't have much luck. I used the various programs, they found some infected files, but it didn't help this problem.

Basically, the computer is freezing almost every other second when I start up the computer or various programs. When I start something up, for a few minutes, the computer will freeze on and off. The mouse stops and the light that says the computer is thinking flashes on. Also, when I connect to the internet the whole computer freezes for about 30 seconds and then dials. I also get disconnected more often.

I am assuming that this is a virus of some sort, because the problem started happening very suddenly. If not, I am very sorry for posting and wasting peoples' time. I'm not too experienced with these sorts of things.

I appreciate any suggestions. Thank you!

 

http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Thanks for responding, here is the hijackthis scan log...

 

Please look in Add or Remove Programs for the following and Uninstall them if found:

Viewpoint

Please make sure System Restore is OFF and the Viewing of Hidden Files & Folders is Enabled as per the tutorial.


Now, look in Task Manager (Ctrl-Alt-Del) for the following running process and, if you see it, try to END it:

ViewMgr.exe

Now scan with HijackThis and Check the Boxes for the following:

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://hsremove.com/done.htm

O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll

O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKCU\..\Run: [Shellapi32] svcnet.exe

O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEARCH.HTML

Make sure All Browser Windows are Closed when you Click FIX.

NOW:
Please boot into Safe Mode with the Viewing of Hidden Files & Folders Enabled and navigate to and DELETE the following if they should remain:


C:\Program Files\Viewpoint ←–– Delete this whole folder if it exist!

svcnet.exe ←–– Search for this file and delete when found!

NEXT:
Run CCleaner and Spybot S&D and have Spybot fix what it finds.
Note: Dont forget to update Spybot S&D by selecting "Search For Updates"

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.


Reboot to Normal Windows , Scan with HijackThis and attach the new log.
Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now.

Good Luck!

 

Thank you so much for replying! I did most of what you said (there were some problems) but my computer is still running the same way. Here are the problems:

-There was no ViewMgr.exe in the processes list.
-I uninstalled viewpoint alright (but there were three files, viewpoint windows player, and 2 others, I removed them all).
-After uninstalling, these were not on the "hijackthis" list, so I couldn't fix them.

O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll

O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEARCH.HTML

-When I searched for "svcnet.exe" in safe mode, it wasn't there.
-Also, SpybotS&D had only one thing to fix, "WildTangent." That's not really a problem, but I thought I should put that out there.

I have attached the new logfile from "hijackthis." Thanks so much for your help, I really appreciate it!

 

Your HJT log is now clean!

Are you having any further problems?

 

Yes, I am still experiencing the same problems as before. Maybe it is something else causing them. Thanks for the help!

 

Check your Task Manager, does your CPU Usuage run at 100%??

You HJT log is clean, I dont see any problems. This could possible be a Software/Hardware problem. Have you recently installed any new hardware/software?

 

The CPU usage is at 100%, and I don't believe that I have installed any new software either. I actually did download DVD Decryptor, I don't know if that could have any effect on my computer. Thanks!

 

When in task manager, click on CPU. Tell me exactly what processes are running with so much CPU usage.

 

Sorry if this is completely not what you were asking for, but in the task manager, the CPU usage for the processes occasionally change from 00 to 02, but they mostly stay 00. System Idle Process is usually in the 90s range.

I don't know if this is relevant at all, but when I looked in the Performance tab to see the overall CPU usage, it is usually in the single digits range.

I hope this helps, and sorry about my lack of computer knowledge.

 

Thats what I was looking for. This sounds like it could be a Hardware or Software problem. I dont believe its Malware related, what I would recommend from here is posting this problem in the Software and/or Hardware Forum. Those guys will better assist you with this and could tell you more as I stay busy with malware.

Let me know!

 

I will ask in the hardware/software forum. Thank you very much for all of your help!

 

Your Welcome!

Good Luck!