Computer taking up too much memory

[sickchik]

Ok. My brand new crappy computer is going wacko. Anyone see anything? I have ran all the malware checks, and got nothing major.

[Monkey Proof]

im sure that you are going crazy right now trying to figure out your new computer but can you be more specific in whats going on? those processes are taking a lot of resource. good thing you have 2gigs of RAM.

reading "crappy new computer going wacko" made me laugh...sorry

[sickchik]

im sure that you are going crazy right now trying to figure out your new computer but can you be more specific in whats going on? those processes are taking a lot of resource. good thing you have 2gigs of RAM.

reading "crappy new computer going wacko" made me laugh...sorry

<{POST_SNAPBACK}>

It's a little bit of everything going on. Remember? I said i kept hearing my firewall pop on and off? Well I didn't switch and now i guess I am gonna pay for it. My shutdown freezes cold. I can't burn a movie or a cd. I says it's done as soon as it starts and ruins my disc. ummmmmm The "safely remove hardware" icon is in my taskbar. I have nothing plugged in or in the drives. On startup as soon as that little icon pops up, a few weird lines pop through my screen for about a half of a second. Somethin's up.

I guess i will start googling my processes, maybe that will turn up something.

[Monkey Proof]

im starting to do the same on my end, kind a drag since i cant cut n paste anything from the image.

if possible. post another HJt log.

[sickchik]

im starting to do the same on my end, kind a drag since i cant cut n paste anything from the image.

if possible. post another HJt log.

<{POST_SNAPBACK}>

Should I post it here?

I found this but I am not even sure if i have it. here

[Monkey Proof]

post the log here since it will be related to the issues at hand.

[sickchik]

post the log here since it will be related to the issues at hand.

<{POST_SNAPBACK}>

Ok I will next Look at the second line on this.

[sickchik]

And here's my log. Tarun said it was good though. Just 1 entry I removed that didn't help.

Logfile of HijackThis v1.99.1

Scan saved at 8:03:54 PM, on 2/25/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\DISC\DiscUpdateMgr.exe

C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe

C:\WINDOWS\arservice.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\ewido anti-malware\ewidoguard.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

C:\HP\KBD\KBD.EXE

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\RTHDCPL.EXE

c:\windows\system\hpsysdrv.exe

C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe

C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

C:\WINDOWS\system32\svchost.exe

C:\Documents and Settings\HP_Administrator\Desktop\Desktop\Anti-Malware Pro\HijackThis.exe

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [DiscUpdateManager] C:\Program Files\DISC\DiscUpdateMgr.exe

O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run

O4 - HKLM\..\Run: [CaISSDT] "C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe"

O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe"

O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe"

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [spySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1140050844843

O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll

O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll

O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

[sickchik]

post the log here since it will be related to the issues at hand.

<{POST_SNAPBACK}>

Ok I will next Look at the second line on this.

<{POST_SNAPBACK}>

Well s***. Take a look at the first line.

[Capman]

See here.

[sickchik]

See here.

<{POST_SNAPBACK}>

Ok it says f-secure anti virus program. I don't have that.

[Capman]

Ok, we can rule that out then.

[sickchik]

Ok, we can rule that out then.

<{POST_SNAPBACK}>

LMAO. I knew there was a reason i liked you.

[Capman]

LOL with a capitol L, oh and O and L again, but this ain't getting anything sorted though.

[sickchik]

:unsure:

[Tarun]

What concerns me is why everything is taking up so much memory.

[Capman]

Ok I have spent a lot of time reading up on this now, without actually learning much except for the fact that everyone who seems to have that IadHide5.dll in that folder does not have anything bad showing up with all the malware scanners.

Considering that it is in a temp folder then I would suggest doing the following:

Go to C:\Documents and Settings\HP_Administrator\Local Settings\Temp, and select everything in that folder and delete it (but do not delete the temp folder itself).

If this does not work in normal mode then try again in safe mode.

[sickchik]

It is okay. I needed a back up of all my data anyway. I am using Nero BackItUp to back up my data. I am going to restore since it is new and I don't have much on here. Nero is really easy to use, if you use double layer dvd's. I have all the junk on here from my linksys set up that I don't need anymore. So I am gonna start over.

Edit: I did delete that file manually in safe mode and it came back.

[Ma TriX 0978]

Lol just back-up all your data, reformat your drive, reinstall all anti-viruses, windows defender firewalls etc, and your set.

[corjello]

Lol just back-up all your data, reformat your drive, reinstall all anti-viruses, windows defender firewalls etc, and your set.

<{POST_SNAPBACK}>

that can be a pain tho.

I like that task manager you have Sickchick, whered you get it?

ima download it

)corjello(

[sickchik]

Lol just back-up all your data, reformat your drive, reinstall all anti-viruses, windows defender firewalls etc, and your set.

<{POST_SNAPBACK}>

that can be a pain tho.

I like that task manager you have Sickchick, whered you get it?

ima download it

)corjello(

<{POST_SNAPBACK}>

it's called taskmanagersecurity.exe. I would stay away from it.

[corjello]

really? The cnet's staff rated 4 out 5 or whatever. What dont you like about it?

)corjello(

[Tarun]

It's shareware and it's really crap. I used it at the college once and some of it was good, but the rest was terrible.

[corjello]

aww, well i thought it would be a nice addition. Any alternatives?

)corjello(

[SenutyEnool]

aww, well i thought it would be a nice addition. Any alternatives?

)corjello(

<{POST_SNAPBACK}>

Ermm, yeah, what alternatives are out there as I've downloaded it.

Cheers :P