Lots of Invisible things running in background.. I think ?

[Brawnydt]

I dont know if i did select the right category. Screenshot: http/prntscr.com/gcafz6
Hello. My problem is not really simple (because i searched all over the internet and got nothing). As you can see in the screenshot (the notification is saying there is no more room for notification symbols), there is a lot of "things" in my hidden symbols tab. They dont have a name. When i put my cursor over them, nothing shows up. When i open the tab they are starting to close one by one. Its lagging even when i try to type this. When they are active, CPU program shows that CPU usage is %7 or something. RAM usage is 2 Gigs when im not doing anything. Actually it all started when i started to use Win7. Apps were not working. Even google chrome were crashing sometimes. I fixed everything but this... I'm using advanced system care as antivirus program. Waiting for any type of solution (expect formatting). Thanks.

 

[Tolis_GR]

It could be malware generating. Try several anti-virus softwares, don't rely on a single one. Start with malwarebytes. Also, scan your OS for corrupt files, using command sfc /scannow

 

[JoshRoss]

7% and 2Gigs are very standard measurements. To check any running processes, you can go to Task Manager and look if there is anything suspicious, maybe a lot of random applications? See if there is anything there and let me know. Also, you can run AdwCleaner and Malwarebytes and get the logs here so I can look over them.

 

[Brawnydt]

7% and 2Gigs are very standard measurements. To check any running processes, you can go to Task Manager and look if there is anything suspicious, maybe a lot of random applications? See if there is anything there and let me know. Also, you can run AdwCleaner and Malwarebytes and get the logs here so I can look over them.

There is no suspicious applications running. Just normal programs like Steam, Discord. There is the log files:

# AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 24 19:22:45 2017
# Updated on 2017/05/08 by Malwarebytes
# Running on Windows 7 Ultimate (X64)
# Mode: clean
# Support: https/www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\Gallows\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\Gallows\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\ProgramData\Audyssey Labs
Deleted: C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}


***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{281F6AF0-62EF-46BA-9AA8-398B3AE03324}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{F2A08313-1662-4BB7-BEA8-85DA7B888C23}


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

Startpage deleted: http/www.search.ask.com/?o=APN10640A&gct=hp&d=473-104&v=n9397-133&t=4
Startpage deleted: about:blank
Startpage deleted: http/www.search.ask.com/?o=APN10640A&gct=hp&d=473-104&v=n9397-133&t=4
Startpage deleted: about:blank


*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

CAdwCleaner/AdwCleaner[S0].txt - [2452 B] - [2017/8/24 19:22:9]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

-------------------------------------------------------------------------------------------------------------------------------------------------------------

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 8/24/17
Scan Time: 9:52 PM
Log File: 5520e6b6-88fd-11e7-b3ef-6cf0496f2662.json
Administrator: Yes

-Software Information-
Version: 3.2.2.2018
Components Version: 1.0.186
Update Package Version: 1.0.2652
License: Free

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: OLD\Gallows

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 356632
Threats Detected: 11
Threats Quarantined: 0
(No malicious items detected)
Time Elapsed: 9 min, 49 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 11
PUP.Optional.MindSpark, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_gamingwonderland.dl.myway.com_0.localstorage, No Action By User, [259], [240305],1.0.2652
PUP.Optional.MindSpark, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_gamingwonderland.dl.tb.ask.com_0.localstorage, No Action By User, [259], [240306],1.0.2652
PUP.Optional.NewTabTV, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_search.newtabtvsearch.com_0.localstorage, No Action By User, [2382], [359410],1.0.2652
PUP.Optional.NewTabTV, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_tr.newtabtv.com_0.localstorage, No Action By User, [2382], [359416],1.0.2652
PUP.Optional.NewTabTV, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_tr.newtabtv.com_0.localstorage-journal, No Action By User, [2382], [359416],1.0.2652
PUP.Optional.MySearch.Generic, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_gettvstreamnow.dl.mysearch.com_0.localstorage, No Action By User, [7968], [383401],1.0.2652
PUP.Optional.FullTab, C:\USERS\GALLOWS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_search.fulltabsearch.com_0.localstorage, No Action By User, [2044], [376101],1.0.2652
HackTool.Agent, C:\PROGRAM FILES (X86)\DFX\PATCH.EXE, No Action By User, [440], [1570],1.0.2652
PUP.Optional.Plumbytes, C:\USERS\GALLOWS\DOWNLOADS\ANTIMALWARESETUP.EXE, No Action By User, [8123], [123575],1.0.2652
PUP.Optional.Plumbytes, C:\USERS\GALLOWS\DOWNLOADS\ANTIMALWARESETUP (2).EXE, No Action By User, [8123], [123575],1.0.2652
PUP.Optional.Plumbytes, C:\USERS\GALLOWS\DOWNLOADS\ANTIMALWARESETUP (1).EXE, No Action By User, [8123], [123575],1.0.2652

Physical Sector: 0
(No malicious items detected)


(end)

 

[Ralston18]

Most systems have "lots of things" running in the background.

Some are started automatically. They may or may not impact system performance.

My recommendation is to use Task Manager, Performance Monitor, and Resource Monitor to identify those "background" tasks.

And quantify what resources (CPU, disk, memory, network) that those tasks are using.

For example if you find some app using up CPU time there are two immediate questions: 1) did you install that app, and 2) if not, how did it get loaded?

Good chance that some software installation also brought along a lot of "friends" that got installed and they all launch at system start.

Identify everything being launched at startup and determine if that app/process/service is truly needed.

If not, disable it. Eventually you will remove/uninstall it if you do not have a known reason for it being there.

 

[JoshRoss]

Logs look good. Adwcleaner cleaned up the majority of the threats. As Ralston18 mentioned, Windows tasks can have a lot of activity, as it is an operating system, after all, if you want, I would recommend doing a full scan with anti-virus software of your choice, another scan with Hitman Pro and restart your computer. See if after restart it helped you in any way. Oh, and if I did help you out, be sure to mark as a solution

 

[Brawnydt]

Logs look good. Adwcleaner cleaned up the majority of the threats. As Ralston18 mentioned, Windows tasks can have a lot of activity, as it is an operating system, after all, if you want, I would recommend doing a full scan with anti-virus software of your choice, another scan with Hitman Pro and restart your computer. See if after restart it helped you in any way. Oh, and if I did help you out, be sure to mark as a solution

Looks like Hitman Pro worked well! It also cleaned my ARP.exe problem! But it created a problem on my mouse i think. I'm going to create another post for this problem in future. Thanks for your recommend!

 

[JoshRoss]

If it was a problem with your mouse, I think a simple driver update or plug into another port should solve the issue. Glad that your PC is now clean. If you need help in the future, feel free to post the topic, and I should be able to see and help you out! Best of luck!