All computers on my network are running slowly - I suspect a virus

Viruses and worms
1

All 4 of the computers on my network are running slowly. Sometimes it takes as long as 5 minutes for the computer to recognize a mouse click and change screens or move the insertion cursor. I suspect a virus for several reasons: when I go to Task Manager, the CPU usage frequently shows 20-99% although the processes displayed (including System Idle Process) don’t add up to anything close to the CPU usage. Also, I am subscribed to Avast Total Support. After they run the utilities in Tech Toolkit, the computers may run well but slow down again after only an hour. I have run Avast Premier (on all computers) boot time scan, Malwarebytes, hitman pro, rkill, and several other scanners/cleaners to no avail. Attached are the logs from Malwarebytes and Farbar Recovery Scan Tool. When I try running aswMBR.exe, it crashes with the message: “Avast Antirootkit has stopped working”

2

Looking at the logs I would tend to suspect a network problem. If you isolate one computer how does that behave ?

CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:

CreateRestorePoint: HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-2487495775-1583957880-2242395255-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION Toolbar: HKU\.DEFAULT -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKU\S-1-5-21-2487495775-1583957880-2242395255-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File S2 PCCUJobMgr; No ImagePath 2015-01-28 18:17 - 2014-05-13 08:15 - 0010240 _____ () C:\Users\Jane\AppData\Local\Z@!-0875282c-aea3-4ba9-80e6-e9556e5f427c.tmp 2015-01-28 18:17 - 2014-05-13 08:15 - 0010240 _____ () C:\Users\Jane\AppData\Local\Z@!-9eb3104c-f33a-47c3-bcf9-992d415baf1c.tmp 2015-01-28 18:17 - 2014-05-13 08:15 - 0009216 _____ () C:\Users\Jane\AppData\Local\Z@S!-f1095cb2-50ad-49d4-be43-f4c551f49c94.tmp RemoveProxy: EmptyTemp: CMD: bitsadmin /reset /allusers

Save this as fixlist.txt, in the same location as FRST.exe

https://dl.dropboxusercontent.com/u/73555776/FRSTfix.JPG

Run FRST and press Fix
On completion a log will be generated please post that

3

I will try that.

The computer crashed while running fixlist.txt in FRST.exe. The BSOD appeared too briefly for me to read it. Once I got the computer rebooted (it took two tries) the fixlist.txt file was gone.

4

The main part of the fixlist was just clearing temporary files as there were no apparent malware items just a few orphans. Let me know how it goes on the isolated system