Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Invasion of Undetectable Malware: No Idea What to Do

Windows 7 Mysterious Malware Unidentifiable Urgent Help Malwarebytes

  • Please log in to reply

#31
Waste of Space

Waste of Space

    Member

  • Topic Starter
  • Member
  • PipPip
  • 77 posts

Nothing in VEW that would explain the crash tho there was a slight uptick in the number of Hardware ECC Recovered so it may be more of the drive failing.  

Running the start-up version of CHKDSK took 50 minutes this morning, so I fear you're bang-on about the drive failing.  However, the PC still continues to run faster than it did before all this trouble began last week, so I'm grovellingly grateful to you for that.  Audio quality is improved too; I'm hearing things in the stereo mix which I'd never noticed before. However, video streaming is still stuttering somewhat and there seems to be a problem with audio and video being slightly out of sync, which I guess we'll have to blame on Seagate and chums.  I can't expect even someone as knowledgeable as yourself to be able to wave a magic wand and sort out poor quality issues.

 

I meant to ask, will MBAM and Avast come into conflict with one another, especially when they both attempt to block me from accessing what they consider to be a dubious website?

 

Many thanks.


Edited by Waste of Space, 11 April 2017 - 02:14 AM.

  • 0

Advertisements


#32
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP

I run Avast with MBAM and haven't had any problems.  They seem to get along OK.

 

For the  stuttering

You can try DPC Latency Checker:

 
 
The download is:
 
 
Just download, save and run it by right click and run as admin.  Do you see red in the graph?
 
However, when Process Explorer shows a low value for Interrupts it is usually not a DPC issue.
 
Interrupts 0.44 0 K 0 K n/a Hardware Interrupts and DPCs

 

 
What program are you using to watch your videos?  Start Process Explorer, watch a video and make a process explorer log at the point where it stutters.

  • 0

#33
Waste of Space

Waste of Space

    Member

  • Topic Starter
  • Member
  • PipPip
  • 77 posts

Sorry for the delay in replying to your very helpful post.  It's been a tough week.

 

I downloaded and ran DPC Latency Checker and can report that none of the graph was in the red zone.  As for running Process Explorer to analyse the stuttering streaming problem, is the idea that I hit the stop button the moment a video stalls and then immediately run the scan?  I'm not sure the stop button will be of a mind to respond that swiftly when the stuttering strikes, but I can certainly give it a go.  Thanks for the suggestion.

 

Incidentally, Malwarebytes Anti-Exploit (Free) has mysteriously vanished from my PC.  What the dang [bleep].....?

 

Have a bearable weekend.


  • 0

#34
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP

No need to stop anything.  Just have Process Explorer running at the same time, if the video/audio starts to stutter, switch to the Process Explorer window (Alt + Tab and then select the window) and File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


  • 0

#35
Waste of Space

Waste of Space

    Member

  • Topic Starter
  • Member
  • PipPip
  • 77 posts

Not sure if I did this right.  Quite possibly I didn't.  But thanks for running an expert eyeball over it.

 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
chrome.exe 47.96 167,148 K 230,196 K 1120 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 17.02 94,448 K 161,948 K 3956 Google Chrome Google Inc. (Verified) Google Inc
procexp64.exe 12.67 28,028 K 52,924 K 192 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
dwm.exe 9.23 27,044 K 49,548 K 1940 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
System 4.27 308 K 9,192 K 4
audiodg.exe 1.83 23,508 K 22,836 K 604 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
Interrupts 1.97 0 K 0 K n/a Hardware Interrupts and DPCs
svchost.exe 0.59 21,380 K 30,784 K 460 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 0.01 153,444 K 147,688 K 1908 Google Chrome Google Inc. (Verified) Google Inc
System Idle Process 0 K 24 K 0
csrss.exe 0.49 7,940 K 15,536 K 520 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
AvastSvc.exe 0.44 92,300 K 42,252 K 1420 Avast Service AVAST Software (Verified) AVAST Software s.r.o.
WINWORD.EXE 18,348 K 53,472 K 4156 Microsoft Office Word Microsoft Corporation (Verified) Microsoft Corporation
svchost.exe < 0.01 13,480 K 12,780 K 1232 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.44 24,948 K 41,528 K 1768 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
reader_sl.exe 0.04 1,660 K 4,724 K 3928 Adobe Acrobat SpeedLauncher Adobe Systems Incorporated (Verified) Adobe Systems
services.exe 0.05 6,332 K 7,372 K 552 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
lsm.exe 0.02 2,572 K 3,792 K 608 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
CCleaner64.exe 0.03 8,296 K 2,092 K 328 CCleaner Piriform Ltd (Verified) Piriform Ltd
aswidsagenta.exe 0.07 26,444 K 30,132 K 3992 Avast Behavior Shield AVAST Software s.r.o. (Verified) AVAST Software s.r.o.
mbae-svc.exe 0.02 6,896 K 10,108 K 2016 Malwarebytes Anti-Exploit Service Malwarebytes Corporation (Verified) Malwarebytes Corporation
AvastUI.exe 0.01 13,376 K 24,204 K 3280 Avast Antivirus AVAST Software (Verified) AVAST Software s.r.o.
svchost.exe 0.02 9,852 K 13,912 K 1016 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe 0.01 7,872 K 9,872 K 1764 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.02 7,720 K 13,540 K 1944 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.01 12,564 K 12,504 K 3692 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 0.01 1,004 K 2,324 K 2324 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe 0.30 22,732 K 12,456 K 112 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 107,328 K 106,840 K 976 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 0.01 2,468 K 4,188 K 452 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
mbae64.exe < 0.01 1,768 K 4,340 K 2296 Malwarebytes Anti-Exploit 64bit tasks Malwarebytes Corporation (Verified) Malwarebytes Corporation
wuauclt.exe 2,260 K 6,836 K 3144 Windows Update Microsoft Corporation (Verified) Microsoft Windows
WR_Tray_Icon.exe 2,184 K 872 K 4560 Tweaking.com - Windows Repair Tray Icon Tweaking.com (Verified) Tweaking LLC
WmiPrvSE.exe 2,700 K 6,464 K 4220 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2,796 K 5,120 K 592 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1,572 K 3,596 K 504 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 1,992 K 5,348 K 4036 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 2,248 K 6,008 K 2700 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 2,108 K 5,304 K 4012 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.01 4,500 K 7,560 K 824 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 23,964 K 17,200 K 892 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 4,412 K 7,744 K 732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 14,984 K 13,024 K 1372 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1,892 K 4,764 K 2860 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,464 K 4,816 K 448 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,856 K 5,196 K 1840 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SpotifyWebHelper.exe 1,752 K 4,792 K 3188 SpotifyWebHelper Spotify Ltd (Verified) Spotify AB
spoolsv.exe 7,036 K 8,708 K 1508 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
splwow64.exe 2,252 K 5,716 K 968 Print driver host for 32bit applications Microsoft Corporation (Verified) Microsoft Windows
smss.exe 536 K 984 K 312 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
rundll32.exe 3,712 K 8,320 K 3672 Windows host process (Rundll32) Microsoft Corporation (Verified) Microsoft Windows
RtkAudioService64.exe 1,792 K 4,164 K 1092 Realtek Audio Service Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVCpl64.exe 8,284 K 7,036 K 2600 Realtek HD Audio Manager Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVBg64.exe 14,400 K 6,880 K 1200 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
procexp.exe 2,548 K 7,708 K 1672 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
mbae.exe 5,440 K 7,060 K 3748 Malwarebytes Anti-Exploit Malwarebytes Corporation (Verified) Malwarebytes Corporation
lsass.exe 2.46 4,924 K 9,860 K 600 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
igfxtray.exe 2,376 K 4,972 K 2560 igfxTray Module Intel Corporation (Verified) Intel Corporation
igfxsrvc.exe 2,152 K 4,944 K 2376 igfxsrvc Module Intel Corporation (Verified) Intel Corporation
igfxpers.exe 2,000 K 5,396 K 2380 persistence Module Intel Corporation (Verified) Intel Corporation
hpwuschd2.exe 968 K 3,372 K 3656 hpwuSchd Application Hewlett-Packard (Verified) Hewlett-Packard Company
hkcmd.exe 2,260 K 4,900 K 2924 hkcmd Module Intel Corporation (Verified) Intel Corporation
chrome.exe 17,492 K 26,740 K 4888 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 4,268 K 8,476 K 4252 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 4,488 K 9,732 K 4300 Google Chrome Google Inc. (Verified) Google Inc
armsvc.exe 1,180 K 3,520 K 1752 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems

  • 0

#36
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP
chrome.exe 47.96 167,148 K 230,196 K 1120 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 17.02 94,448 K 161,948 K 3956 Google Chrome Google Inc. (Verified) Google Inc

 

 

Something in Chrome is eating up the CPU.  Probably an Extension.  Click on the three bars in the upper right of Chrome and then Settings then Extensons.  Uncheck everything you do not need to play your video.  Restart Chrome and try it again.


  • 0

#37
Waste of Space

Waste of Space

    Member

  • Topic Starter
  • Member
  • PipPip
  • 77 posts

Well, this is kinda mystifying.  The only enabled extensions I have in place are AdBlock, Google Docs, Google Sheets and Google Slides.

 

If I uncheck AdBlock and try watching streamed video, I'll presumably be plagued by on-screen animated adverts, constantly-changing static adverts etc. that'll place more of a demand on the CPU/memory than AdBlock itself does.  Maybe my CPU just needs to be taken to the vets' and put to sleep.

 

And as I mentioned earlier, Malwarebytes Anti-Exploit Free seems to have ceased functioning altogether, even though it's still nominally listed as an installed program.

 

Perhaps the moral of the story is simply that my PC urgently needs to rendezvous with a dumpster and be replaced by a shiny new can of worms.


  • 0

#38
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,598 posts
  • MVP

Have you got a downloaded video you could watch?

 

Go into device manager and find your network adapters.  Right click on each and Disable.  Then play your video and make a process explorer log.

 

Also try changing out Adblock for Ublock origin

 

https://chrome.googl...hjbkeiagm?hl=en

 

Then watch a video and make a process explorer log.


  • 0






Similar Topics


Also tagged with one or more of these keywords: Windows 7, Mysterious, Malware, Unidentifiable, Urgent, Help, Malwarebytes

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP