Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

100% CPU Usage..?!

Started by Skullnbonz , Jul 09 2011 06:50 AM

  • Please log in to reply

#1
Skullnbonz
Posted 09 July 2011 - 06:50 AM

Skullnbonz

    New Member

  • Member
  • Pip
  • 6 posts
Long story short, my laptop runs on 100% CPU Usage all the time now and it never did before when i got new, I have no idea whats going on. I did i complete reboot on my laptop to make seem brand new and it still runs on 100% CPU Usage. If anyone could help this would be a life saver.

Thank You!


OTL logfile created on: 7/9/2011 7:38:32 AM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Ashton Crawford\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.75 Gb Total Physical Memory | 0.83 Gb Available Physical Memory | 47.38% Memory free
3.50 Gb Paging File | 2.24 Gb Available in Paging File | 64.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 223.33 Gb Total Space | 197.53 Gb Free Space | 88.45% Space Free | Partition Type: NTFS

Computer Name: ASHTONCRAWFORD | User Name: Ashton Crawford | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/09 07:37:53 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Ashton Crawford\Downloads\OTL.exe
PRC - [2011/07/03 11:06:58 | 003,077,528 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
PRC - [2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/08/27 21:17:58 | 000,117,640 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\16.7.0.30\ccSvcHst.exe
PRC - [2009/08/17 10:48:46 | 001,294,136 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
PRC - [2009/08/17 10:48:42 | 000,051,512 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
PRC - [2009/08/10 19:55:46 | 000,185,712 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
PRC - [2009/08/05 14:18:50 | 000,464,224 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
PRC - [2009/08/05 14:18:08 | 000,476,512 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
PRC - [2009/08/05 14:04:54 | 000,738,616 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
PRC - [2009/08/03 18:16:50 | 001,021,272 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
PRC - [2009/08/03 18:16:32 | 000,111,960 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
PRC - [2009/07/29 23:54:38 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009/07/29 23:54:10 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009/07/28 15:43:04 | 000,128,344 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
PRC - [2009/07/28 14:00:10 | 000,460,088 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
PRC - [2009/07/13 18:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2009/01/13 21:33:40 | 000,034,088 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\Utilities\KeNotify.exe


========== Modules (SafeList) ==========

MOD - [2011/07/09 07:37:53 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Ashton Crawford\Downloads\OTL.exe
MOD - [2010/08/20 22:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/07/04 08:41:22 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/08/27 21:17:58 | 000,117,640 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\16.7.0.30\ccSvcHst.exe -- (Norton Internet Security)
SRV - [2009/08/27 21:17:26 | 000,332,272 | ---- | M] (Google Inc.) [On_Demand | Stopped] -- C:\ProgramData\Partner\Partner.exe -- (Partner Service)
SRV - [2009/08/17 10:48:42 | 000,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2009/08/10 19:55:46 | 000,185,712 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe -- (cfWiMAXService)
SRV - [2009/08/05 14:18:50 | 000,464,224 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2009/08/03 18:16:32 | 000,111,960 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV - [2009/07/29 23:54:10 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009/07/28 15:43:04 | 000,128,344 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 18:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/05/22 11:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)


========== Driver Services (SafeList) ==========

DRV - [2009/08/27 21:17:59 | 000,875,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\NAVEX15.SYS -- (NAVEX15)
DRV - [2009/08/27 21:17:59 | 000,308,272 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\windows\system32\drivers\NIS\1007000.01E\SRTSP.SYS -- (SRTSP)
DRV - [2009/08/27 21:17:59 | 000,087,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\NAVENG.SYS -- (NAVENG)
DRV - [2009/08/27 21:17:59 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\system32\drivers\NIS\1007000.01E\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2009/08/13 08:18:22 | 000,372,736 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187Se.sys -- (RTL8187Se)
DRV - [2009/07/30 17:45:56 | 000,022,912 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2009/07/30 12:06:30 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009/07/24 15:57:06 | 000,275,536 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
DRV - [2009/07/14 15:28:42 | 000,023,512 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2009/07/13 15:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009/07/02 14:55:36 | 000,036,208 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\LPCFilter.sys -- (LPCFilter)
DRV - [2009/05/05 00:30:28 | 000,014,392 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) AMD PCI Express (3GIO)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=TSNA&bmod=TSNA
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TSNA&bmod=TSNA

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=TSNA&bmod=TSNA
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook....home.php?ref=hp
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.13\npGoogleOneClick8.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Users\Ashton Crawford\AppData\Local\Google\Update\1.2.183.13\npGoogleOneClick8.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)



O1 HOSTS File: ([2009/06/10 14:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.7.0.30\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe (TOSHIBA Electronics, Inc.)
O4 - HKLM..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe (Toshiba)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKCU..\Run: [MyTOSHIBA] C:\Program Files\TOSHIBA\My Toshiba\MyToshiba.exe (TOSHIBA)
O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.85.102 68.87.69.150
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.7.0.30\CoIEPlg.dll (Symantec Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/06 04:12:25 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/07/04 09:58:23 | 000,000,000 | ---D | C] -- C:\windows\System32\Wat
[2011/07/03 19:58:26 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\TOSHIBA_Corporation
[2011/07/03 12:45:20 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\LolClient
[2011/07/03 11:52:52 | 000,000,000 | ---D | C] -- C:\Riot Games
[2011/07/03 11:52:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
[2011/07/03 11:26:13 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\Desktop\LeagueOfLegends
[2011/07/03 11:07:27 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\PMB Files
[2011/07/03 11:07:10 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2011/07/03 11:06:50 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2011/07/03 10:54:02 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Macromedia
[2011/07/02 13:44:31 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\WinBatch
[2011/07/02 13:43:39 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\VirtualStore
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\AppData\Local\Temporary Internet Files
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Templates
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Start Menu
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\SendTo
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Recent
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\PrintHood
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\NetHood
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Documents\My Videos
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Documents\My Pictures
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Documents\My Music
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\My Documents
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Local Settings
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\AppData\Local\History
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Cookies
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\Application Data
[2011/07/02 13:43:37 | 000,000,000 | -HSD | C] -- C:\Users\Ashton Crawford\AppData\Local\Application Data
[2011/07/02 13:43:36 | 000,000,000 | --SD | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Videos
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Saved Games
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Pictures
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Music
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Links
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Favorites
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Downloads
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Documents
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Desktop
[2011/07/02 13:43:36 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011/07/02 13:43:36 | 000,000,000 | -H-D | C] -- C:\Users\Ashton Crawford\AppData
[2011/07/02 13:43:36 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\Temp
[2011/07/02 13:43:36 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\Microsoft
[2011/07/02 13:43:36 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Media Center Programs
[2011/07/02 11:50:07 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Adobe
[2011/07/02 11:49:52 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Google
[2011/07/02 11:49:51 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\Google
[2011/07/02 11:47:35 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\TOSHIBA
[2011/07/02 11:46:45 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\ATI
[2011/07/02 11:46:45 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Local\ATI
[2011/07/02 11:46:26 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011/07/02 11:46:26 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Searches
[2011/07/02 11:46:26 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011/07/02 11:46:08 | 000,000,000 | ---D | C] -- C:\Users\Ashton Crawford\AppData\Roaming\Identities
[2011/07/02 11:46:06 | 000,000,000 | -H-D | C] -- C:\Users\Ashton Crawford\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2011/07/02 11:46:01 | 000,000,000 | R--D | C] -- C:\Users\Ashton Crawford\Contacts
[2011/07/02 11:00:38 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011/07/02 10:47:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Toshiba Shared
[2011/07/02 10:47:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA DVD PLAYER
[2011/07/02 10:39:57 | 000,024,576 | ---- | C] (COMPAL ELECTRONIC INC.) -- C:\windows\System32\TSBWLS.dll
[2011/07/02 10:39:19 | 000,000,000 | ---D | C] -- C:\windows\System32\Microsoft.VC80.MFC
[2011/07/02 10:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\XP
[2011/07/02 10:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\win7_64
[2011/07/02 10:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\win7_32
[2011/07/02 10:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Vista64
[2011/07/02 10:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Vista32
[2011/07/02 10:38:05 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011/07/02 10:36:12 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek WLAN Driver
[2011/07/02 10:34:01 | 000,000,000 | ---D | C] -- C:\windows\System32\RTCOM
[2011/07/02 10:33:43 | 001,784,352 | ---- | C] (Waves Audio Ltd.) -- C:\windows\System32\WavesLib.dll
[2011/07/02 10:33:42 | 001,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\windows\System32\MaxxAudioEQ.dll
[2011/07/02 10:33:42 | 000,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\windows\System32\SRSTSXT.dll
[2011/07/02 10:33:42 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\windows\System32\RP3DHT32.dll
[2011/07/02 10:33:42 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\windows\System32\RP3DAA32.dll
[2011/07/02 10:33:42 | 000,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\windows\System32\SRSTSHD.dll
[2011/07/02 10:33:42 | 000,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\windows\System32\SRSHP360.dll
[2011/07/02 10:33:42 | 000,159,744 | ---- | C] (Waves Audio Ltd.) -- C:\windows\System32\MaxxAudioAPO20.dll
[2011/07/02 10:33:42 | 000,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\windows\System32\SRSWOW.dll
[2011/07/02 10:33:42 | 000,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\windows\System32\MaxxAudioAPO.dll
[2011/07/02 10:33:41 | 000,266,240 | ---- | C] (Fortemedia Corporation) -- C:\windows\System32\FMAPO.dll
[2011/07/02 10:33:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2011/07/02 10:33:41 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011/07/02 10:32:56 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011/07/02 10:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/07/02 10:29:36 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2011/07/02 10:29:35 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2011/07/02 10:29:33 | 000,348,160 | ---- | C] (AMD) -- C:\windows\System32\atieclxx.exe
[2011/07/02 10:29:33 | 000,176,128 | ---- | C] (AMD) -- C:\windows\System32\atiesrxx.exe
[2011/07/02 10:29:33 | 000,159,744 | ---- | C] (AMD) -- C:\windows\System32\atitmmxx.dll
[2011/07/02 10:29:33 | 000,011,776 | ---- | C] (AMD) -- C:\windows\System32\atimuixx.dll
[2011/07/02 10:28:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office Suite Activation Assistant
[2011/07/02 10:17:48 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011/07/02 10:17:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011/07/02 10:16:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011/07/02 10:15:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011/07/02 10:15:01 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011/07/02 10:10:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011/07/02 10:10:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2011/07/02 10:10:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2011/07/02 10:09:47 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/09 07:34:18 | 000,016,080 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/07/09 07:34:18 | 000,016,080 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/07/09 07:30:32 | 000,000,896 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-473040798-2775990048-1152663252-1000Core.job
[2011/07/09 07:24:06 | 000,000,882 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/09 07:21:00 | 000,000,886 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/09 07:19:28 | 000,000,948 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-473040798-2775990048-1152663252-1000UA.job
[2011/07/09 07:19:09 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2011/07/07 17:15:11 | 000,624,178 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2011/07/07 17:15:11 | 000,106,522 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2011/07/06 04:12:41 | 000,002,335 | ---- | M] () -- C:\Users\Ashton Crawford\Desktop\Google Chrome.lnk
[2011/07/05 14:15:32 | 1408,045,056 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/04 10:00:31 | 000,340,792 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2011/07/03 16:04:52 | 000,039,560 | ---- | M] () -- C:\Users\Ashton Crawford\Desktop\45924_146391222049269_100000351762787_315705_4428676_n.jpg
[2011/07/03 16:01:50 | 000,034,119 | ---- | M] () -- C:\Users\Ashton Crawford\Desktop\260114_219728121382245_100000351762787_799035_1349729_n.jpg
[2011/07/03 11:56:16 | 000,001,731 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2011/07/03 11:42:36 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/07/02 11:49:47 | 000,001,418 | ---- | M] () -- C:\Users\Ashton Crawford\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/07/02 11:45:15 | 000,000,016 | RHS- | M] () -- C:\windows\System32\drivers\fbd.sys
[2011/07/02 11:42:18 | 000,039,252 | ---- | M] () -- C:\windows\System32\license.rtf
[2011/07/02 10:57:01 | 000,000,000 | ---- | M] () -- C:\windows\NDSTray.INI
[2011/07/02 10:38:11 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2011/07/02 10:03:32 | 000,000,000 | ---- | M] () -- C:\windows\ativpsrm.bin
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/06 04:12:41 | 000,002,335 | ---- | C] () -- C:\Users\Ashton Crawford\Desktop\Google Chrome.lnk
[2011/07/06 04:11:44 | 000,000,948 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-473040798-2775990048-1152663252-1000UA.job
[2011/07/06 04:11:30 | 000,000,896 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-473040798-2775990048-1152663252-1000Core.job
[2011/07/03 16:04:56 | 000,039,560 | ---- | C] () -- C:\Users\Ashton Crawford\Desktop\45924_146391222049269_100000351762787_315705_4428676_n.jpg
[2011/07/03 16:01:57 | 000,034,119 | ---- | C] () -- C:\Users\Ashton Crawford\Desktop\260114_219728121382245_100000351762787_799035_1349729_n.jpg
[2011/07/03 12:16:09 | 000,000,886 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/03 12:16:06 | 000,000,882 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/03 11:56:16 | 000,001,731 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2011/07/03 11:42:36 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011/07/02 13:43:37 | 000,000,290 | ---- | C] () -- C:\Users\Ashton Crawford\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011/07/02 13:43:37 | 000,000,272 | ---- | C] () -- C:\Users\Ashton Crawford\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011/07/02 11:49:47 | 000,001,418 | ---- | C] () -- C:\Users\Ashton Crawford\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/07/02 11:46:27 | 000,001,424 | ---- | C] () -- C:\Users\Ashton Crawford\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/07/02 11:45:15 | 000,000,016 | RHS- | C] () -- C:\windows\System32\drivers\fbd.sys
[2011/07/02 10:57:01 | 000,000,000 | ---- | C] () -- C:\windows\NDSTray.INI
[2011/07/02 10:39:57 | 000,045,056 | ---- | C] () -- C:\windows\System32\HWS_Ctrl.dll
[2011/07/02 10:38:11 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf
[2011/07/02 10:35:02 | 000,073,728 | ---- | C] () -- C:\windows\System32\RtNicProp32.dll
[2011/07/02 10:33:44 | 000,000,520 | ---- | C] () -- C:\windows\System32\drivers\RTEQEX1.dat
[2011/07/02 10:33:44 | 000,000,520 | ---- | C] () -- C:\windows\System32\drivers\RTEQEX0.dat
[2011/07/02 10:29:33 | 000,219,120 | ---- | C] () -- C:\windows\System32\atiumdva.cap
[2011/07/02 10:29:33 | 000,197,654 | ---- | C] () -- C:\windows\System32\atiicdxx.dat
[2011/07/02 10:29:33 | 000,018,335 | ---- | C] () -- C:\windows\atiogl.xml
[2011/07/02 10:10:49 | 000,002,557 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2011/07/02 10:10:30 | 000,001,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2011/07/02 10:03:32 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin
[2011/07/02 10:01:42 | 1408,045,056 | -HS- | C] () -- C:\hiberfil.sys
[2009/07/13 21:57:37 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
[2009/07/13 21:33:53 | 000,340,792 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2009/07/13 19:05:48 | 000,624,178 | ---- | C] () -- C:\windows\System32\perfh009.dat
[2009/07/13 19:05:48 | 000,291,294 | ---- | C] () -- C:\windows\System32\perfi009.dat
[2009/07/13 19:05:48 | 000,106,522 | ---- | C] () -- C:\windows\System32\perfc009.dat
[2009/07/13 19:05:48 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd009.dat
[2009/07/13 19:05:05 | 000,000,741 | ---- | C] () -- C:\windows\System32\NOISE.DAT
[2009/07/13 19:04:11 | 000,215,943 | ---- | C] () -- C:\windows\System32\dssec.dat
[2009/07/13 16:55:01 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
[2009/07/13 16:51:43 | 000,073,728 | ---- | C] () -- C:\windows\System32\BthpanContextHandler.dll
[2009/07/13 16:42:10 | 000,064,000 | ---- | C] () -- C:\windows\System32\BWContextHandler.dll
[2009/06/10 14:26:10 | 000,673,088 | ---- | C] () -- C:\windows\System32\mlang.dat
[2009/04/28 04:37:00 | 000,028,672 | ---- | C] () -- C:\windows\System32\SPCtl.dll

========== LOP Check ==========

[2011/07/03 12:45:20 | 000,000,000 | ---D | M] -- C:\Users\Ashton Crawford\AppData\Roaming\LolClient
[2011/07/02 13:44:31 | 000,000,000 | ---D | M] -- C:\Users\Ashton Crawford\AppData\Roaming\WinBatch
[2009/07/13 21:53:46 | 000,004,110 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
RKinner
Posted 09 July 2011 - 01:02 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP
Get Process Explorer

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator). Click once or twice on the CPU column header to sort things by CPU usage with the big hitters at the top. File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Ron
  • 0

#3
Skullnbonz
Posted 12 July 2011 - 03:40 PM

Skullnbonz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts
Process PID CPU Private Bytes Working Set Description Company Name
System Idle Process 0 63.82 0 K 24 K
System 4 1.48 48 K 792 K
Interrupts n/a 4.45 0 K 0 K Hardware Interrupts and DPCs
smss.exe 256 220 K 660 K Windows Session Manager Microsoft Corporation
csrss.exe 408 1,440 K 4,300 K Client Server Runtime Process Microsoft Corporation
wininit.exe 468 880 K 2,924 K Windows Start-Up Application Microsoft Corporation
services.exe 552 4,496 K 5,652 K Services and Controller app Microsoft Corporation
svchost.exe 692 2,520 K 5,472 K Host Process for Windows Services Microsoft Corporation
WmiPrvSE.exe 1444 1,740 K 4,396 K WMI Provider Host Microsoft Corporation
svchost.exe 760 0.02 2,696 K 5,200 K Host Process for Windows Services Microsoft Corporation
atiesrxx.exe 808 816 K 2,636 K AMD External Events Service Module AMD
atieclxx.exe 1148 1,176 K 3,732 K AMD External Events Client Module AMD
svchost.exe 928 15,164 K 12,680 K Host Process for Windows Services Microsoft Corporation
audiodg.exe 3060 16,792 K 15,420 K Windows Audio Device Graph Isolation Microsoft Corporation
svchost.exe 964 1.39 37,076 K 39,872 K Host Process for Windows Services Microsoft Corporation
dwm.exe 2132 4.96 31,004 K 27,200 K Desktop Window Manager Microsoft Corporation
svchost.exe 1004 < 0.01 17,060 K 26,284 K Host Process for Windows Services Microsoft Corporation
taskeng.exe 3016 1,068 K 3,768 K Task Scheduler Engine Microsoft Corporation
NDSTray.exe 3192 6,560 K 4,004 K ConfigFree Task Tray Menu TOSHIBA CORPORATION
CFSwMgr.exe 2848 3,540 K 708 K ConfigFree Switch Manager Process TOSHIBA CORPORATION
wuauclt.exe 3568 1,236 K 4,900 K Windows Update Microsoft Corporation
svchost.exe 1112 0.01 6,228 K 10,232 K Host Process for Windows Services Microsoft Corporation
svchost.exe 1320 0.01 11,260 K 10,592 K Host Process for Windows Services Microsoft Corporation
spoolsv.exe 1432 4,716 K 6,236 K Spooler SubSystem App Microsoft Corporation
svchost.exe 1468 10,260 K 10,244 K Host Process for Windows Services Microsoft Corporation
svchost.exe 1572 4,036 K 7,408 K Host Process for Windows Services Microsoft Corporation
ccSvcHst.exe 1680 0.08 3,392 K 1,260 K Symantec Service Framework Symantec Corporation
svchost.exe 1760 1,216 K 3,876 K Host Process for Windows Services Microsoft Corporation
TODDSrv.exe 1812 < 0.01 924 K 3,292 K TDCSrv Application TOSHIBA Corporation
TosCoSrv.exe 1844 1,460 K 2,692 K TOSHIBA Power Saver TOSHIBA Corporation
SearchIndexer.exe 1944 0.01 16,256 K 8,592 K Microsoft Windows Search Indexer Microsoft Corporation
taskhost.exe 2076 2,320 K 4,864 K Host Process for Windows Tasks Microsoft Corporation
wmpnetwk.exe 3356 3,456 K 4,892 K Windows Media Player Network Sharing Service Microsoft Corporation
TMachInfo.exe 2880 0.01 17,368 K 18,684 K TSS TMachInfo Service TOSHIBA Corporation
CFIWmxSvcs.exe 3600 624 K 856 K ConfigFree Service Process TOSHIBA CORPORATION
CFSvcs.exe 492 1,652 K 2,148 K ConfigFree Service Process TOSHIBA CORPORATION
svchost.exe 1716 66,088 K 24,560 K Host Process for Windows Services Microsoft Corporation
TosSmartSrv.exe 3056 1,552 K 5,148 K TosSmartSrv.exe TOSHIBA Corporation
lsass.exe 568 2,548 K 5,888 K Local Security Authority Process Microsoft Corporation
lsm.exe 576 1,248 K 2,644 K Local Session Manager Service Microsoft Corporation
csrss.exe 476 2.12 1,664 K 13,268 K Client Server Runtime Process Microsoft Corporation
winlogon.exe 524 1,660 K 3,796 K Windows Logon Application Microsoft Corporation
explorer.exe 2176 0.45 21,864 K 33,176 K Windows Explorer Microsoft Corporation
RtHDVCpl.exe 2576 8,088 K 5,660 K HD Audio Control Panel Realtek Semiconductor
SynTPEnh.exe 2620 1.44 2,476 K 8,108 K Synaptics TouchPad Enhancements Synaptics Incorporated
SynTPHelper.exe 2976 520 K 2,060 K Synaptics Pointing Device Helper Synaptics Incorporated
KeNotify.exe 2968 1,088 K 3,580 K KeNotify MFC Application TOSHIBA CORPORATION
TPwrMain.exe 3028 2,536 K 5,440 K TOSHIBA Power Saver TOSHIBA Corporation
SmoothView.exe 3112 560 K 2,180 K SmoothView TOSHIBA Corporation
TCrdMain.exe 3212 5,452 K 10,112 K TOSHIBA Flash Cards TOSHIBA Corporation
ToshibaServiceStation.exe 3300 < 0.01 25,540 K 38,564 K TOSHIBA Service Station TOSHIBA Corporation
PMB.exe 3620 3.11 21,928 K 23,348 K Pando Media Booster
taskmgr.exe 1132 1.46 2,032 K 7,632 K Windows Task Manager Microsoft Corporation
chrome.exe 3980 0.01 37,464 K 55,408 K Google Chrome Google Inc.
chrome.exe 864 0.44 22,204 K 33,728 K Google Chrome Google Inc.
procexp (1).exe 144 14.66 24,980 K 30,680 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com
MOM.exe 2372 0.04 25,084 K 3,696 K Catalyst Control Center: Monitoring program Advanced Micro Devices Inc.
CCC.exe 3420 0.01 34,872 K 6,852 K Catalyst Control Centre: Host application ATI Technologies Inc.
TosSENotify.exe 3936 2,384 K 6,248 K TosSENotify.exe.mui TOSHIBA Corporation
  • 0

#4
Skullnbonz
Posted 12 July 2011 - 03:44 PM

Skullnbonz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 12/07/2011 2:42:54 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 12/07/2011 9:36:17 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 9:04:37 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 9:04:37 PM
Type: Error Category: 51
Event: 52236 Source: atikmdag
CPLIB :: General - Invalid Parameter

Log: 'System' Date/Time: 12/07/2011 8:44:53 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 6:43:20 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 12:13:37 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 11:41:39 AM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 8:44:14 AM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 4:45:03 AM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 3:00:43 AM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 12/07/2011 12:16:50 AM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 11:23:00 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 10:56:56 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 10:54:12 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 10:30:37 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 10:11:43 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 10:11:43 PM
Type: Error Category: 51
Event: 52236 Source: atikmdag
CPLIB :: General - Invalid Parameter

Log: 'System' Date/Time: 11/07/2011 9:30:01 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 8:48:58 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

Log: 'System' Date/Time: 11/07/2011 7:02:31 PM
Type: Error Category: 42
Event: 43029 Source: atikmdag
Display is not active

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 12/07/2011 9:03:47 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 11/07/2011 9:35:54 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 11/07/2011 6:17:11 PM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name dns.msftncsi.com timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 11/07/2011 9:30:56 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 10/07/2011 4:20:36 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 10/07/2011 12:49:15 AM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name isatap.hsd1.tx.comcast.net timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 09/07/2011 8:19:29 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 09/07/2011 8:09:22 PM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name isatap.hsd1.tx.comcast.net timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 06/07/2011 11:50:17 PM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name dns.msftncsi.com timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 05/07/2011 9:14:25 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 04/07/2011 4:58:56 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 04/07/2011 2:59:14 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 02/07/2011 5:57:01 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.
  • 0

#5
Skullnbonz
Posted 12 July 2011 - 03:48 PM

Skullnbonz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

THIS IS THE INFO. WITH THE APPLICATIONS



Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 12/07/2011 2:46:37 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 12/07/2011 11:41:51 AM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Log: 'Application' Date/Time: 11/07/2011 10:22:44 AM
Type: Error Category: 0
Event: 1 Source: BugSplat
The event description cannot be found.

Log: 'Application' Date/Time: 11/07/2011 10:07:49 AM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Log: 'Application' Date/Time: 11/07/2011 1:46:16 AM
Type: Error Category: 0
Event: 1 Source: BugSplat
The event description cannot be found.

Log: 'Application' Date/Time: 10/07/2011 3:25:33 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 90080108).

Log: 'Application' Date/Time: 10/07/2011 1:31:22 AM
Type: Error Category: 0
Event: 1 Source: BugSplat
The event description cannot be found.

Log: 'Application' Date/Time: 09/07/2011 3:03:41 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Log: 'Application' Date/Time: 09/07/2011 2:55:54 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: Au_.exe, version: 1.0.0.71, time stamp: 0x49ee67aa Faulting module name: WT_Plugin.dll, version: 1.0.0.53, time stamp: 0x465f0e86 Exception code: 0xc0000005 Fault offset: 0x00005598 Faulting process id: 0xf0c Faulting application start time: 0x01cc3e484a84b8ff Faulting application path: C:\Users\ASHTON~1\AppData\Local\Temp\~nsu.tmp\Au_.exe Faulting module path: C:\Users\ASHTON~1\AppData\Local\Temp\nsp9EF0.tmp\WT_Plugin.dll Report Id: 8b58dab5-aa3b-11e0-879d-0026223a77c6

Log: 'Application' Date/Time: 08/07/2011 12:22:50 AM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Log: 'Application' Date/Time: 06/07/2011 9:28:53 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 90080108).

Log: 'Application' Date/Time: 06/07/2011 3:12:18 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Log: 'Application' Date/Time: 05/07/2011 4:54:50 PM
Type: Error Category: 0
Event: 1008 Source: Microsoft-Windows-CEIP
A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 90080108).

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [d2dcfea7-bea6-45e7-85ee-a4a2f7e2332d]: Unable to retrieve file version!

Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [2668fbbd-fe4e-44b3-a1b8-85b09b3f8211]: Unable to retrieve file version!

Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [bbcf0586-8b94-46eb-a2b4-c5fefbce2751]: Unable to retrieve registry value!

Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [e4b859d8-de3c-4f9a-b55d-cdc1253ccbdb]: Unable to retrieve registry value!

Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [1df917db-3056-41af-bbac-0489a6b63d4d]: Unable to retrieve registry value!

Log: 'Application' Date/Time: 12/07/2011 9:36:23 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Error checking dependency [01d4f272-71b8-489b-85d3-97c263eac3b7]: Unable to retrieve registry value!

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]

Log: 'Application' Date/Time: 12/07/2011 9:36:22 PM
Type: Warning Category: 0
Event: 0 Source: TOSHIBA Service Station
Skipping empty element [tsu:setup_args]
  • 0

#6
RKinner
Posted 12 July 2011 - 07:50 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP
Something didn't quite go right with Process Explorer. You need to click on the CPU column header once or twice so that the heaviest CPU users are in order and let it settle down for a minute before you save the log.

One thing I can see is that your laptop's battery may be failing. Before running Process Explorer again, remove the main battery from the laptop and run it from a wall outlet.

Ron
  • 0

#7
Skullnbonz
Posted 13 July 2011 - 12:13 PM

Skullnbonz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts

I see what your saying I click CPU to list it in order, but there is one problem the programs are not settling down at all everything is kinda jumping all over the place but here is the INFO.





Process PID CPU Private Bytes Working Set Description Company Name
atieclxx.exe 2932 1,172 K 4,160 K
atiesrxx.exe 792 824 K 2,784 K AMD External Events Service Module AMD
CFIWmxSvcs.exe 3480 620 K 856 K ConfigFree Service Process TOSHIBA CORPORATION
CFSvcs.exe 2096 1,660 K 2,212 K ConfigFree Service Process TOSHIBA CORPORATION
CFSwMgr.exe 4020 3,540 K 532 K ConfigFree Switch Manager Process TOSHIBA CORPORATION
dllhost.exe 888 1,052 K 3,932 K COM Surrogate Microsoft Corporation
KeNotify.exe 3828 1,336 K 4,420 K
lsass.exe 564 2,660 K 6,336 K Local Security Authority Process Microsoft Corporation
lsm.exe 572 1,312 K 2,844 K
NDSTray.exe 2184 6,536 K 1,440 K ConfigFree Task Tray Menu TOSHIBA CORPORATION
RtHDVCpl.exe 3288 8,048 K 8,196 K HD Audio Control Panel Realtek Semiconductor
SearchIndexer.exe 1948 15,860 K 6,760 K Microsoft Windows Search Indexer Microsoft Corporation
services.exe 556 4,148 K 5,728 K
SmoothView.exe 3868 560 K 2,560 K SmoothView TOSHIBA Corporation
smss.exe 256 220 K 664 K
spoolsv.exe 1428 4,676 K 8,460 K Spooler SubSystem App Microsoft Corporation
svchost.exe 1548 4,200 K 7,644 K Host Process for Windows Services Microsoft Corporation
svchost.exe 1696 1,216 K 3,924 K Host Process for Windows Services Microsoft Corporation
svchost.exe 916 15,320 K 13,464 K Host Process for Windows Services Microsoft Corporation
svchost.exe 744 2,644 K 5,168 K Host Process for Windows Services Microsoft Corporation
svchost.exe 684 2,668 K 5,780 K Host Process for Windows Services Microsoft Corporation
svchost.exe 1464 10,340 K 9,808 K Host Process for Windows Services Microsoft Corporation
svchost.exe 948 42,352 K 44,484 K Host Process for Windows Services Microsoft Corporation
svchost.exe 3940 66,696 K 19,576 K Host Process for Windows Services Microsoft Corporation
SynTPHelper.exe 3836 520 K 2,388 K
taskeng.exe 3920 1,060 K 4,000 K Task Scheduler Engine Microsoft Corporation
taskhost.exe 3072 2,328 K 5,544 K Host Process for Windows Tasks Microsoft Corporation
TCrdMain.exe 3880 5,440 K 10,332 K TOSHIBA Flash Cards TOSHIBA Corporation
TosCoSrv.exe 1848 1,468 K 2,748 K TOSHIBA Power Saver TOSHIBA Corporation
ToshibaServiceStation.exe 3888 24,580 K 39,084 K TOSHIBA Service Station TOSHIBA Corporation
TosSENotify.exe 3932 2,388 K 6,236 K TosSENotify.exe.mui TOSHIBA Corporation
TPwrMain.exe 3844 2,540 K 5,704 K TOSHIBA Power Saver TOSHIBA Corporation
TrustedInstaller.exe 1148 8,528 K 13,828 K Windows Modules Installer Microsoft Corporation
wininit.exe 456 896 K 2,936 K
winlogon.exe 512 1,592 K 4,516 K
wuauclt.exe 2644 1,240 K 4,924 K Windows Update Microsoft Corporation
TosSmartSrv.exe 168 < 0.01 1,544 K 5,192 K TosSmartSrv.exe TOSHIBA Corporation
TODDSrv.exe 1812 < 0.01 924 K 3,312 K TDCSrv Application TOSHIBA Corporation
csrss.exe 396 < 0.01 2,344 K 4,528 K
TMachInfo.exe 2748 < 0.01 21,512 K 22,996 K TSS TMachInfo Service TOSHIBA Corporation
CCC.exe 2304 < 0.01 33,440 K 7,328 K Catalyst Control Centre: Host application ATI Technologies Inc.
wmpnetwk.exe 2196 0.01 5,180 K 6,552 K Windows Media Player Network Sharing Service Microsoft Corporation
svchost.exe 1312 0.01 9,948 K 9,712 K Host Process for Windows Services Microsoft Corporation
SynTPEnh.exe 3304 0.01 2,484 K 9,160 K Synaptics TouchPad Enhancements Synaptics Incorporated
svchost.exe 988 0.01 18,316 K 28,160 K Host Process for Windows Services Microsoft Corporation
svchost.exe 1172 0.02 6,240 K 10,624 K Host Process for Windows Services Microsoft Corporation
MOM.exe 3384 0.04 25,060 K 4,348 K Catalyst Control Center: Monitoring program Advanced Micro Devices Inc.
chrome.exe 2288 0.05 12,140 K 22,116 K Google Chrome Google Inc.
explorer.exe 3148 0.09 20,708 K 34,924 K Windows Explorer Microsoft Corporation
ccSvcHst.exe 1636 0.11 3,148 K 1,256 K Symantec Service Framework Symantec Corporation
chrome.exe 2060 0.20 38,196 K 54,960 K Google Chrome Google Inc.
chrome.exe 1196 0.42 23,708 K 36,148 K Google Chrome Google Inc.
System 4 0.53 48 K 864 K
PMB.exe 2076 0.80 32,364 K 27,540 K Pando Media Booster
csrss.exe 464 0.94 2,444 K 10,112 K
Interrupts n/a 1.20 0 K 0 K Hardware Interrupts and DPCs
dwm.exe 3140 2.18 22,456 K 28,116 K Desktop Window Manager Microsoft Corporation
procexp (1).exe 1028 8.59 22,192 K 24,688 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com
System Idle Process 0 84.78 0 K 24 K
  • 0

#8
RKinner
Posted 13 July 2011 - 02:44 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP
It could have used one more click and it's showing three Chrome browsers up when they were all supposed to be closed but I can use it. The heavy hitters are at the bottom but it is not showing any big drain on the CPU. Certainly no 100% Cpu usage. Is it still acting slow? Exactly when is it slow? At boot? When starting a browser? When changing to a new website? Can you leave Process Explorer open and try and get it to save a lot when you see it running slow?

Looking at your event logs it appears that TOSHIBA Service Station is having problems. I would look on the Toshiba site and see if they have a new version for your PC.

Also your video driver has a problem:
Event: 43029 Source: atikmdag
Display is not active
The one on the Toshiba site supposedly fixes this problem which is being blamed for causing slow startups:
http://www.sevenforu...29-52236-a.html

Ron
  • 0

#9
Skullnbonz
Posted 14 July 2011 - 11:58 AM

Skullnbonz

    New Member

  • Topic Starter
  • Member
  • Pip
  • 6 posts
The only time it will act slow is when i start up programs, especially games ans stuff like that, but before that my computer could run any download but every since my CPU usage began to peek it make programs slower than usual. Do you think it might be my Video Card? And i will look at for better updates on my drivers. I clicked on the link you gave me and it said that my drivers are pretty old (ANCIENT). What i have attached to this reply are the 3 Drivers that the program said i needed updates on. Where would I go to update those specific drivers?

Attached Thumbnails

  • Drivers.png

  • 0

#10
RKinner
Posted 14 July 2011 - 02:39 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP
Not sure what link you clicked on to get to uniblue which I don't trust very much but to get the latest drivers you should start with your PC Maker's website. I assume it's Toshiba so go here:
http://www.csd.toshi...rt/jsp/home.jsp and click on Download then put in your model and it should give you a list of drivers.

Sometimes if you do a manual windows update and click on Custom it will offer you hardware driver upgrades but your PC Maker's website is usually the best source.

You might find that things will work a lot faster if you change from Symantec to the free Avast. Symantec is a real resource hog. You might be able to turn it off temporarily to see if things open a lot faster without it.

If you decide to try Avast:

Download and Save the installer.
http://www.avast.com...ivirus-download
Download and save the norton removal tool
ftp://ftp.symantec.com/public/english_us_canada/removal_tools/Norton_Removal_Tool.exe
Uninstall Symantec (save the product license key in case you decide to reinstall it:http://us.norton.com/support/kb/web_view.jsp?wv_type=public_web&docurl=20080710133834EN&ln=en_US)

Run the Norton Removal tool.

Reboot

Install Avast.

Ron
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP