Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Weird lag?


  • Please log in to reply

#1
Orpo

Orpo

    New Member

  • Member
  • Pip
  • 3 posts
Hi,

First of all, thank you for this cool website.

I'm having a problem whilst playing Counter-Strike, that the game lags all the time with spikes that do not show on the ping(latency). Also looking at the net_graph there is no loss or choke of packets. The problem appeared about a month ago and I can't atleast remember of making any changes to my system. This problem only comes up with Counter-Strike(though i don't play any other multi-player games). Last time simiar problems appeared I had somekind of spam-server installed presumably by a virus/trojan, or so the Internet Service Provider told me..

It might be also a setting in CS, but to be on the safe side here is my Hijack THIS log. Thank you for any possible help on this.

Logfile of HijackThis v1.99.0
Scan saved at 16:53:47, on 30.1.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Welho-tietoturvapalvelut\Common\FSM32.EXE
C:\Program Files\D-Tools\daemon.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\PROGRA~1\WELHO-~1\backweb\6629059\Program\SERVIC~1.EXE
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsgk32st.exe
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\FSGK32.EXE
C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\program\fsbwsys.exe
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fssm32.exe
C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\Program\BackWeb-6629059.exe
C:\Program Files\Welho-tietoturvapalvelut\fswsclds.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Welho-tietoturvapalvelut\Common\FSMA32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FSMB32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FCH32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FAMEH32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsav32.exe
C:\Program Files\Welho-tietoturvapalvelut\DFW\Program\fsdfwd.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O1 - Hosts: 64.91.255.87 www.dcsresearch.com
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - (no file)
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Welho-tietoturvapalvelut\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Welho-tietoturvapalvelut\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Oheistiedot - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1100021001209
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O23 - Service: Adobe LM Service - Unknown - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Welho-tietoturvapalvelut - Unknown - C:\PROGRA~1\WELHO-~1\backweb\6629059\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown - C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent - Unknown - C:\Program Files\Welho-tietoturvapalvelut\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown - C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\fswsclds.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
  • 0

Advertisements


#2
Guest_thatman_*

Guest_thatman_*
  • Guest
Hi


Please download the stinger, download it from here:


1) Please reboot into safe mode (continually tap the F8 key while your system is starting, select Safe Mode from the menu).

2)Be sure you're able to view hidden files

Please run the Stinger now when It has finnished

Reboot your PC

Rescan with HijackThis and post a new log into this thread

Thank you

kc :tazz:
  • 0

#3
Orpo

Orpo

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
Thanks, thatman,

Last night when playing I had no lagspikes :tazz:, might all this be happening because of my connection/ISP problems?

Anyway here is the log, though i don't think that stinger found any viruses/trojans on my CPU.

Logfile of HijackThis v1.99.0
Scan saved at 14:57:36, on 31.1.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\WELHO-~1\backweb\6629059\Program\SERVIC~1.EXE
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsgk32st.exe
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\FSGK32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fssm32.exe
C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\program\fsbwsys.exe
C:\Program Files\Welho-tietoturvapalvelut\fswsclds.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Welho-tietoturvapalvelut\Common\FSMA32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FSMB32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FCH32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Common\FAMEH32.EXE
C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsav32.exe
C:\Program Files\Welho-tietoturvapalvelut\DFW\Program\fsdfwd.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Welho-tietoturvapalvelut\Common\FSM32.EXE
C:\Program Files\D-Tools\daemon.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\Program\BackWeb-6629059.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O1 - Hosts: 64.91.255.87 www.dcsresearch.com
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - (no file)
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Welho-tietoturvapalvelut\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Welho-tietoturvapalvelut\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Oheistiedot - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1100021001209
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O23 - Service: Adobe LM Service - Unknown - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Welho-tietoturvapalvelut - Unknown - C:\PROGRA~1\WELHO-~1\backweb\6629059\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown - C:\Program Files\Welho-tietoturvapalvelut\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent - Unknown - C:\Program Files\Welho-tietoturvapalvelut\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown - C:\Program Files\Welho-tietoturvapalvelut\backweb\6629059\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service - F-Secure Corporation - C:\Program Files\Welho-tietoturvapalvelut\fswsclds.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
  • 0

#4
Guest_thatman_*

Guest_thatman_*
  • Guest
Hi

Try a trojan scan http://www.geekstogo...=download&id=45 TDS3
  • 0

#5
Orpo

Orpo

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
I've done TDS-3 scan also with newest updates - didn't find anything..
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP