Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Might be infected


  • Please log in to reply

#16
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

On the website, change where it says Windows 7 64 bit to Windows 7 32 bit and hit the Suivant button.  That should show the correct drivers for your PC.

 

Start with the one that says Pilote - Jeu de Puces.  Click on the + and then on the Téléchargeant button.  Download and install this first.  This is the chipset driver package.  It tells Windows how to work with your motherboard.

 

Then we want the one that says  Pilote Graphiques.  There are two.  Try the second one first and if it doesn't work then try the first one.

 

Then open up the Pilote Stockage and try the second one.  If it doesn't work then try the third one.

 

 
Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.
 
Reboot. 
 
 
 
1. Please download the Event Viewer Tool by Vino Rosso
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:
 
* System
4. Under 'Select type to list', select:
* Error
* Warning
 
 
Then use the 'Number of events' as follows:
 
 
1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
 
 
Please post the Output log in your next reply then repeat but select Application.
 
Ron

  • 0

Advertisements


#17
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

System:

 

Vino's Event Viewer v01c run on Windows 2008 in French
Report run at 11/12/2014 21:15:36
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log -  Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Erreur Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Avertissement Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 
Application:
 
Vino's Event Viewer v01c run on Windows 2008 in French
Report run at 11/12/2014 21:16:09
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log -  Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Erreur Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Avertissement Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

  • 0

#18
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

That looks good assuming you rebooted before running VEW.  Let's try process explorer again as before:

 

Get Process Explorer
 
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

  • 0

#19
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 55.21 0 K 24 K 0
procexp.exe 15.73 20.716 K 34.080 K 2836 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
WmiPrvSE.exe 15.14 7.948 K 10.924 K 2372 WMI Provider Host Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
chrome.exe 3.44 120.476 K 172.404 K 2880 Google Chrome Google Inc. (Verified) Google Inc
dwm.exe 2.83 22.944 K 25.624 K 1624 Desktop Window Manager Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
Interrupts 3.17 0 K 0 K n/a Hardware Interrupts and DPCs
csrss.exe 1.18 2.136 K 12.636 K 508 Client Server Runtime Process Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
System 3.82 44 K 940 K 4
chrome.exe 0.70 63.652 K 71.248 K 5608 Google Chrome Google Inc. (Verified) Google Inc
svchost.exe 0.65 24.532 K 33.820 K 1084 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
chrome.exe 0.43 101.540 K 135.252 K 4488 Google Chrome Google Inc. (Verified) Google Inc
explorer.exe 0.38 22.292 K 31.836 K 1632 Windows Explorer Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
mbam.exe 0.37 31.884 K 38.868 K 3164 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
chrome.exe 0.22 141.940 K 186.408 K 4392 Google Chrome Google Inc. (Verified) Google Inc
flux.exe 0.14 28.536 K 12.968 K 3020 f.lux Flux Software LLC (Verified) Michael Herf
SbieCtrl.exe 0.07 2.704 K 7.312 K 3764 Sandboxie Control Sandboxie Holdings, LLC (Verified) Invincea
chrome.exe 0.06 40.492 K 45.344 K 2712 Google Chrome Google Inc. (Verified) Google Inc
avastui.exe 0.06 17.064 K 21.024 K 1664 avast! Antivirus AVAST Software (Verified) AVAST Software a.s.
chrome.exe 0.05 109.680 K 120.424 K 4444 Google Chrome Google Inc. (Verified) Google Inc
FileZilla Server.exe 0.05 1.244 K 3.360 K 2208 FileZilla Server FileZilla Project (No signature was present in the subject) FileZilla Project
AvastSvc.exe 0.04 85.488 K 43.748 K 1520 avast! Service AVAST Software (Verified) AVAST Software a.s.
lsass.exe 0.04 3.556 K 7.840 K 612 Local Security Authority Process Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
MOM.exe 0.03 25.408 K 3.556 K 2764 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. (No signature was present in the subject) Advanced Micro Devices Inc.
csrss.exe 0.04 1.356 K 3.340 K 432 Client Server Runtime Process Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 0.02 11.268 K 10.840 K 1968 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 0.02 74.636 K 75.404 K 992 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
services.exe 0.01 4.528 K 6.332 K 596 Services and Controller app Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
taskhost.exe 0.01 6.056 K 8.240 K 1872 Host Process for Windows Tasks Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe < 0.01 12.352 K 10.632 K 1424 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
SearchIndexer.exe < 0.01 23.120 K 9.876 K 2740 Microsoft Windows Search Indexer Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
CCC.exe < 0.01 63.408 K 2.556 K 3536 Catalyst Control Centre: Host application ATI Technologies Inc. (No signature was present in the subject) ATI Technologies Inc.
hpservice.exe < 0.01 1.056 K 3.160 K 1232 HpService Hewlett-Packard Company (A certificate was explicitly revoked by its issuer) Hewlett-Packard Company
ipoint.exe < 0.01 4.136 K 1.936 K 796 IPoint.exe Microsoft Corporation (Verified) Microsoft Corporation
svchost.exe < 0.01 1.332 K 4.160 K 3824 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
wuauclt.exe 1.384 K 5.096 K 6052 Windows Update Microsoft Corporation (Verified) Microsoft Windows Component Publisher
winlogon.exe 1.844 K 4.644 K 552 Windows Logon Application Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
wininit.exe 1.100 K 3.196 K 488 Windows Start-Up Application Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
unsecapp.exe 1.460 K 4.068 K 1932 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
ToolwizTimeFreeze.exe 5.972 K 7.316 K 3320 Toolwiz Toolwiz (Verified) XII CNC Inc.
taskeng.exe 1.224 K 3.892 K 440 Task Scheduler Engine Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 3.060 K 6.556 K 720 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 3.652 K 6.204 K 812 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 4.424 K 6.924 K 2176 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 6.568 K 12.600 K 1016 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
svchost.exe 14.608 K 12.284 K 948 Host Process for Windows Services Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
sqlwriter.exe 1.320 K 3.836 K 3740 SQL Server VSS Writer Microsoft Corporation (Verified) Microsoft Corporation
sppsvc.exe 7.292 K 10.036 K 5980 Microsoft Software Protection Platform Service Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
spoolsv.exe 4.652 K 8.232 K 1856 Spooler SubSystem App Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
smss.exe 264 K 784 K 304 Windows Session Manager Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
SbieSvc.exe 1.360 K 2.940 K 1268 Sandboxie Service Sandboxie Holdings, LLC (Verified) Invincea
mDNSResponder.exe 1.888 K 4.496 K 2124 Bonjour Service Apple Inc. (No signature was present in the subject) Apple Inc.
mbamservice.exe 186.648 K 75.760 K 3156 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
mbamscheduler.exe 4.516 K 7.148 K 2928 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
lsm.exe 1.460 K 3.016 K 620 Local Session Manager Service Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
jusched.exe 1.528 K 6.320 K 1684 Java Update Scheduler Oracle Corporation (Verified) Oracle America
jucheck.exe 3.316 K 10.272 K 4140 Java Update Checker Oracle Corporation (Verified) Oracle America
itype.exe 5.904 K 1.428 K 668 IType.exe Microsoft Corporation (Verified) Microsoft Corporation
IpOverUsbSvc.exe 8.248 K 8.224 K 2600 Microsoft Corporation (Verified) Microsoft Corporation
HPSupportSolutionsFrameworkService.exe 12.592 K 12.728 K 2308 SolutionsFrameworkService Hewlett-Packard Company (Verified) Hewlett-Packard Company
Crypserv.exe 2.088 K 3.424 K 2144 CrypKey License Service CrypKey (Canada) Ltd. (No signature was present in the subject) CrypKey (Canada) Ltd.
chrome.exe 66.788 K 74.324 K 5020 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 89.492 K 93.272 K 5684 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 33.400 K 33.336 K 4908 Google Chrome Google Inc. (Verified) Google Inc
chrome.exe 40.936 K 38.340 K 4828 Google Chrome Google Inc. (Verified) Google Inc
atiesrxx.exe 852 K 2.828 K 880 AMD External Events Service Module AMD (No signature was present in the subject) AMD
atieclxx.exe 1.340 K 3.984 K 1244 AMD External Events Client Module AMD (No signature was present in the subject) AMD
armsvc.exe 828 K 2.736 K 2076 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems

  • 0

#20
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

No change in the Interrupts.  Let's try booting into Safe Mode without Networking and then run Process Explorer again:

 

 
(Reboot and when you see the maker's logo, hear a beep or it talks about F8, start tapping the F8 key slowly.  Keep tapping until the Safe Mode Menu appears and choose Safe Mode (without Networking).  Login with your usual login.)
 
Run Process Explorer as before and save the log.  Reboot and post the saved log.
 
Also run VEW again as before and post both logs.

  • 0

#21
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

In addition to the above, if Interrupts is still high:

 

Shutdown, remove the battery and plug in the power adapter then start it up again.  I have seen some laptop batteries cause this.  Also can you verify that you have the original power adaptor for the laptop?  Some HPs are really picky about the adaptor.  There is a center pin inside the connector of the power adaptor that sometimes breaks off.  The laptop will still work but it will run a lot slower.


  • 0

#22
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

System:

 

Vino's Event Viewer v01c run on Windows 2008 in French
Report run at 13/12/2014 18:40:24
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log -  Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Erreur Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Avertissement Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 
Application:
 
Vino's Event Viewer v01c run on Windows 2008 in French
Report run at 13/12/2014 18:39:59
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log -  Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Erreur Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Avertissement Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

  • 0

#23
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 99.22 0 K 24 K 0
procexp.exe 0.37 15.216 K 27.536 K 1572 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
csrss.exe 0.26 1.856 K 6.060 K 376 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
Interrupts 0.08 0 K 0 K n/a Hardware Interrupts and DPCs
System 0.04 44 K 712 K 4
explorer.exe 0.02 18.084 K 33.672 K 1028 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
services.exe < 0.01 2.588 K 5.184 K 452 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe < 0.01 4.340 K 5.948 K 1336 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 5.844 K 4.604 K 868 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 31.764 K 35.900 K 280 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 1.940 K 4.732 K 1820 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 1.008 K 3.732 K 432 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 864 K 3.284 K 384 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 9.344 K 14.332 K 796 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1.828 K 4.580 K 664 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2.560 K 6.456 K 588 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 4.776 K 7.128 K 752 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
smss.exe 272 K 840 K 244 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
lsm.exe 1.100 K 2.868 K 476 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
lsass.exe 2.060 K 6.440 K 468 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 1.056 K 3.592 K 1172 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
ctfmon.exe 1.516 K 3.076 K 1076 CTF Loader Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 1.108 K 2.912 K 340 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows

  • 0

#24
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

OK.  It looks like whatever is causing the high interrupts is not around in Safe Mode.  Reboot and go into the Safe Mode menu again and the Enable Low Resolution Video option and run Process Explorer again.  That should show us if the video driver is at fault.  If that shows a high interrupts level then type in msconfig in the search box.  When msconfig.exe shows up, right click on it and Run As Admin.  Under Startup uncheck everything and Apply then under Services, check Hide Microsoft Services, thenuncheck all that remain.  OK and reboot and run Process Explorer and check Interrupts.

 

If the low resolution option is good then it's probably the video driver.  If msconfig is good then go back in and check half the items you unchecked and OK and restart and test again.  Try to determine what program is causing the problem.


  • 0

#25
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

This is with the low resolution in safe mode

 

Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 62.13 0 K 24 K 0
mbamservice.exe 16.75 184.616 K 77.864 K 3956 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
Interrupts 5.09 0 K 0 K n/a Hardware Interrupts and DPCs
procexp.exe 3.85 18.044 K 31.496 K 3020 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
svchost.exe 3.03 61.164 K 66.336 K 1000 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
BitTorrent.exe 2.77 31.628 K 46.544 K 2904 BitTorrent BitTorrent Inc. (Verified) BitTorrent Inc
System 2.58 52 K 1.444 K 4
mbam.exe 0.96 28.516 K 41.400 K 4072
svchost.exe 0.36 22.900 K 27.352 K 1092 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.34 31.284 K 25.452 K 4288 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.28 21.068 K 33.312 K 1700 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 0.27 5.000 K 9.368 K 520
taskhost.exe 0.24 6.120 K 8.904 K 1860 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
flux.exe 0.23 29.464 K 18.200 K 2376 f.lux Flux Software LLC (Verified) Michael Herf
AvastSvc.exe 0.20 54.148 K 42.040 K 1524 avast! Service AVAST Software (Verified) AVAST Software a.s.
SbieCtrl.exe 0.19 2.692 K 9.256 K 2400 Sandboxie Control Sandboxie Holdings, LLC (Verified) Invincea
svchost.exe 0.16 13.692 K 13.744 K 952 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
avastui.exe 0.10 12.224 K 16.072 K 2064 avast! Antivirus AVAST Software (Verified) AVAST Software a.s.
FileZilla Server.exe 0.09 1.232 K 3.812 K 2268 FileZilla Server FileZilla Project (No signature was present in the subject) FileZilla Project
SearchIndexer.exe 0.09 17.512 K 6.112 K 3160 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.09 2.700 K 5.468 K 828 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
MOM.exe 0.07 25.504 K 3.196 K 2584 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. (No signature was present in the subject) Advanced Micro Devices Inc.
csrss.exe 0.05 1.396 K 3.436 K 448
svchost.exe 0.01 11.872 K 11.024 K 1424 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
CCC.exe 0.01 39.872 K 3.156 K 4788 Catalyst Control Centre: Host application ATI Technologies Inc. (No signature was present in the subject) ATI Technologies Inc.
svchost.exe 0.01 4.676 K 8.240 K 1052 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
lsass.exe 0.01 3.480 K 8.856 K 608 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
ipoint.exe 0.01 5.084 K 7.320 K 1996 IPoint.exe Microsoft Corporation (Verified) Microsoft Corporation
hpservice.exe < 0.01 1.064 K 3.452 K 1232 HpService Hewlett-Packard Company (Verified) Microsoft Windows Hardware Compatibility Publisher
WmiPrvSE.exe 4.124 K 7.204 K 1724
WmiPrvSE.exe 2.312 K 5.256 K 5876
winlogon.exe 1.780 K 5.356 K 596
wininit.exe 948 K 3.336 K 508
unsecapp.exe 1.052 K 3.712 K 3116 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation (Verified) Microsoft Windows
ToolwizTimeFreeze.exe 5.884 K 8.700 K 2388 Toolwiz Toolwiz (Verified) XII CNC Inc.
taskeng.exe 1.036 K 3.620 K 1548
taskeng.exe 1.132 K 3.772 K 1696 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2.832 K 6.700 K 732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3.656 K 6.892 K 556 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 10.880 K 11.812 K 1928 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1.220 K 4.112 K 2348 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
sqlwriter.exe 1.396 K 4.492 K 2284 SQL Server VSS Writer Microsoft Corporation (Verified) Microsoft Corporation
sppsvc.exe 5.232 K 9.884 K 6124 Microsoft Software Protection Platform Service Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 4.784 K 8.276 K 1852 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 260 K 816 K 304
services.exe 4.420 K 7.280 K 564
SbieSvc.exe 1.392 K 3.416 K 1308 Sandboxie Service Sandboxie Holdings, LLC (Verified) Invincea
mDNSResponder.exe 1.576 K 4.488 K 1076 Bonjour Service Apple Inc. (No signature was present in the subject) Apple Inc.
mbamscheduler.exe 3.440 K 8.096 K 3508 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
lsm.exe 1.292 K 3.016 K 616
jusched.exe 816 K 3.092 K 2072 Java Update Scheduler Oracle Corporation (Verified) Oracle America
itype.exe 4.364 K 5.628 K 436 IType.exe Microsoft Corporation (Verified) Microsoft Corporation
IpOverUsbSvc.exe 7.956 K 9.840 K 3256 Microsoft Corporation (Verified) Microsoft Corporation
dwm.exe 1.112 K 4.180 K 1676 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 1.060 K 3.556 K 5004 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
Crypserv.exe 2.100 K 3.672 K 920
audiodg.exe 15.112 K 13.824 K 1148
atiesrxx.exe 860 K 3.064 K 892 AMD External Events Service Module AMD (No signature was present in the subject) AMD
atieclxx.exe 1.200 K 3.920 K 1248
armsvc.exe 840 K 3.012 K 360 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems

 


  • 0

Advertisements


#26
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Before proceeding with the msconfig, isn't it dangerous to uncheck antivirus from the startup & services menu?


Edited by Geekl33t, 15 December 2014 - 09:10 AM.

  • 0

#27
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,031 posts
  • MVP

Not if you don't go surfing while they are unchecked.


  • 0

#28
Geekl33t

Geekl33t

    Member

  • Topic Starter
  • Member
  • PipPip
  • 22 posts

Hi RKinner sorry for this late answer. I wasn't home so I couldn't make the scan and provide it. But I want to stop this I found the reason why it went to sleep mode because I pushed the windows button along with F5 (I wanted to refresh the page). But anyways I thank you for the help I really appriciated I appertly am not infected, and that's the most important :)

 

Thanks a lot :D


Edited by Geekl33t, 26 December 2014 - 12:49 PM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP