[Laquena]

For the past 3 weeks my computer takes sometimes 8 minutes to shut down. Im pretty sure its a program somewhere or something like it.

ok I have a pretty well protected computer and I have done scans of all types to narrow it down but so far have come up with nothing.
I then checked my task manager and saw everything running perfect but I decided to go ahead and close a few programs before i went to shut down. It didnt work at first, but then I took more time to close some things and try it again. I noticed that when I closed svchost that was running as a 'network service' the computer all of a sudden shut down perfect.

so what actually happens is, i go to hit the shut down button and it take 2-4 minutes to show the shut down options. then i hit shut down on the opitions screen and it takes sometimes 4-5 minutes to shut off.
but like i said, when i terminated the one procress it worked regularly.

when i turn on the computer it goes fine; when i use the computer it works perfect. its just the shut down..

i realize i probably wont be able to terminate the process permantly because those svchost things are suppose to be there. But my guess is a program is clashing with it or triggering it..

how can i get this crap to stop, and is there a possible piece of software i can run to tell me which program is doing this.

you would think this computer was an angel until you tried shutting it down!


-thanx in advance

and i hope this was detailed enough

[Advertisements]

Hi Laquena! Welcome to G2G!

Do you have Norton Internet Security or Norton System Works or McAfee Security Suite installed on your computer? Or actually any Norton or McAfee product at all?

Fenor

[Fenor]

Hi Laquena! Welcome to G2G!

Do you have Norton Internet Security or Norton System Works or McAfee Security Suite installed on your computer? Or actually any Norton or McAfee product at all?

Fenor

[Laquena]

actually i do have mcafee and the thing drives me insane, i just leave it disabled until i need it.
but it still runs in the background even though i disable it. gah if its this software im gonna wanna through my head thru a wall.

thanx for the fast reply

[Fenor]

It is causing your computer to be slow, I can almost gaurantee it. Go to Add/Remove programs and uninstall everything listed there that is related to McAfee. Once it is gone, go HERE and download AVG Antivirus. It is a great program and it's free, with free program updates and virus definitions.

You will be surprised at just how much of a resource hog McAfee is, and how much better your computer runs without it installed.

Fenor

[Laquena]

ok im uninstalling it and i will let you know if its shutting down regularly or not.

[Laquena]

ok i still have the same problem.

svchost.exe
username: network service

when i shut this down my computer turns off perfectly.

I just want a regular shut down back. what should I try doing?

i've closed all actual applications, defragmented, run a pc check and uninstalled a few programs

next..

[Fenor]

Go to START-->RUN and type services.msc. This will open a window that displays the lists of services running. Go through the list and see if there is anything listed that pertains to Symantec or Norton.

Fenor

[Laquena]

thank you so much for a fast reply, AND thank you so much for helping me so far.

sadly none of those are in there, BUT i did take not of all the network services that are running and i've copied them for you to take a look at.

Remote Procedure Call (RPC)
Provides the endpoint mapper and other miscellaneous RPC services.

Remote Procedure Call (RPC) Locator
Manages the RPC name service database.

Performance Logs and Alerts
Collects performance data from local or remote computers based on preconfigured schedule parameters, then writes the data to a log or triggers an alert. If this service is stopped, performance information will not be collected. If this service is disabled, any services that explicitly depend on it will fail to start.

Distributed Transaction Coordinator
Coordinates transactions that span multiple resource managers, such as databases, message queues, and file systems. If this service is stopped, these transactions will not occur. If this service is disabled, any services that explicitly depend on it will fail to start.

DNS Client
Resolves and cac

Now im not sure which it is, but the only thing I have to go off of is when I close one of them in the task manager my computer shuts down just fine.

I also tried looking through all the services to see if there was anything that looked like it didnt belong there and I didnt notice anything.

gosh this is crazy stuff, thanks again for having patience and being such a great help

[Fenor]

Lets take a look at what you have installed on your computer. Please download HiJackThis (from the link in my signature) Install it, and double-click on the HiJackThis.exe icon. On the first screen click on Open the Misc Tools Section...on the next screen, click on the Open Uninstall Manager button and click on the Save List button and save it somewhere you will remember the location. Then find the file and open it and paste a copy of the Uninstall List created here.

Fenor

[Laquena]

ABBYY FineReader 5.0 Sprint
AC3Filter (remove only)
Adobe Acrobat 7.0.5 Professional
Adobe After Effects 6.5
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Encore DVD 1.5
Adobe GoLive CS2 English
Adobe Help Center 1.0
Adobe Illustrator CS2
Adobe InDesign CS2
Adobe Photoshop CS2
Adobe Stock Photos 1.0
Adobe SVG Viewer 3.0
Age of Empires III
All Sound Editor XP 1.10
AOL Instant Messenger
AsusUpdate
ATI - Software Uninstall Utility
ATI Display Driver
ATI Multimedia Center 9.03
ATI Multimedia Center 9.061
Azureus
Cakewalk Pro Audio 9
CDBurnerXP Pro 3
C-Media High Definition Audio Driver
Creative MediaSource
Creative System Information
DAO
dBpowerAMP Music Converter
DivX
DVD Decrypter (Remove Only)
DVD to VCD AVI DivX Converter v3.2 (build 069)
Easy CD & DVD Creator 6
eMule
EO Video 1.36
EPSON Copy Utility 3
EPSON Scan
EPSON Smart Panel
ewido anti-malware
Google Earth
Google Talk (remove only)
HijackThis 1.99.1
HP Deskjet 3840
HP Software Update
J2SE Runtime Environment 5.0 Update 4
Macromedia Dreamweaver MX 2004
Macromedia Extension Manager
Macromedia Flash MX 2004
Macromedia Flash Player 8
Magic Video Batch Converter 3.6
Marvell Miniport Driver
Microsoft AntiSpyware
Microsoft Office Professional Edition 2003
Mozilla Firefox (1.5)
MSN Messenger 7.5
MSN Music Assistant
Nero 7 Demo
Nero 7 Premium
Nero PhotoShow Express
Net Transport 1.93.276 with FTP Transport 0.91
PowerDVD
Presto! BizCard 4.1 Eng
QuickTime Alternative 1.67
RealPlayer
Roll
Roxio Easy Media Creator 8 Suite
ScanToWeb
Security Task Manager 1.6f
SimCity 4
SmartFTP Client
Sonic Audio Module
Sonic Copy Module
Sonic Data Module
Sonic DLA
Sonic Express Labeler
Sonic Sonic MyDVD Studio Deluxe Suite
Sonic Update Manager
Sound Blaster Live! 24-bit
Spybot - Search & Destroy 1.4
Style Enhancer Micro 1.28
SybaseRecovery
Type Fonts
User Profile Hive Cleanup Service
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Windows Genuine Advantage v1.3.0254.0
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series
Windows Media Format Runtime
Windows Media Player 10
WinPcap 3.1 beta3
WinRAR archiver
Yahoo! extras
Yahoo! Install Manager
Yahoo! Messenger





-- User Profile Hive Cleanup Service - this was a tool i got off mircosoft's site and i thought it would help with the shut down. it didnt

[Fenor]

Please post one more log for me so I can get an even better picture about what is going on in your machine.

Lets take a look at what is starting up when your computer does. Please relocate HiJackThis, which you downloaded earlier, and double-click on the HiJackThis.exe icon. On the first screen click on Open the Misc Tools Section...on the next screen, click on the Generate StartupList log button and post a copy of the log here. You need not check either of the boxes next to this button.

Fenor

[Laquena]

StartupList report, 2/25/2006, 6:38:58 PM
StartupList version: 1.52.2
Started from : C:\Documents and Settings\DLS\Desktop\HijackThis.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)
* Using default options
==================================================

Running processes:

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxMediaDB.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\DLS\Desktop\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Common Startup:
[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
office.exe

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

Cmaudio = RunDll32 cmicnfg.cpl,CMICtrlWnd
gcasServ = "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
HPDJ Taskbar Utility = C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
ViewMgr = C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
CTSysVol = C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
UpdReg = C:\WINDOWS\UpdReg.EXE
dla = C:\WINDOWS\system32\dla\tfswctrl.exe
TkBellExe = "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
NWEReboot =
NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run

Yahoo! Pager = "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
AIM = C:\Program Files\AIM\aim.exe -cnetwait.odl
msnmsgr = "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
ATI DeviceDetect = C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
ATI Launchpad = "C:\Program Files\ATI Multimedia\main\LaunchPd.exe"
eMuleAutoStart = C:\Program Files\eMule\emule.exe -AutoStart

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe
SCRNSAVE.EXE=*Registry value not found*
drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry key not found*
HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------


Enumerating Browser Helper Objects:

(no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
(no name) - C:\Program Files\Yahoo!\Common\yiesrvc.dll - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}
(no name) - C:\WINDOWS\system32\dla\tfswshx.dll - {5CA3D70E-1895-11CF-8E15-001234567890}
(no name) - C:\Program Files\Yahoo!\Common\YIeTagBm.dll - {65D886A2-7CA7-479B-BB95-14D1EFB7946A}
(no name) - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll - {AE7CD045-E861-484f-8273-0445EE161910}
(no name) - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll - {C56CB6B0-0D96-11D6-8C65-B2868B609932}

--------------------------------------------------

Enumerating Task Scheduler jobs:

Spybot - Search & Destroy - Scheduled Task.job

--------------------------------------------------

Enumerating Download Program Files:

[Musicnotes Viewer]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\mnviewer.dll
CODEBASE = http://www.musicnote...ad/mnviewer.cab

[Shockwave ActiveX Control]
InProcServer32 = C:\WINDOWS\system32\macromed\Shockwave 10\Download.dll
CODEBASE = http://download.macr...director/sw.cab

[YInstStarter Class]
InProcServer32 = C:\Program Files\Yahoo!\Common\yinsthelper.dll
CODEBASE = C:\Program Files\Yahoo!\Common\yinsthelper.dll

[Microsoft PID Sniffer]
InProcServer32 = C:\WINDOWS\system32\odc.dll
CODEBASE = https://support.micr...ActiveX/odc.cab

[Office Update Installation Engine]
InProcServer32 = C:\WINDOWS\opuc.dll
CODEBASE = http://office.micros...ntent/opuc3.cab

[{4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21}]
CODEBASE = http://download.mcaf...01/mcinsctl.cab

[MSN Photo Upload Tool]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll
CODEBASE = http://spaces.msn.co...ad/MsnPUpld.cab

[MUWebControl Class]
InProcServer32 = C:\WINDOWS\system32\muweb.dll
CODEBASE = http://update.micros...b?1134764655921

[MsnMessengerSetupDownloadControl Class]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnMessengerSetupDownloader.ocx
CODEBASE = http://messenger.msn...pDownloader.cab

[{BCC0FF27-31D9-4614-A68E-C18E1ADA4389}]
CODEBASE = http://download.mcaf...,26/mcgdmgr.cab

[Shockwave Flash Object]
InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx
CODEBASE = http://fpdownload.ma...ash/swflash.cab

[QDiagHUpdateObj Class]
InProcServer32 = C:\WINDOWS\system32\qdiagh.ocx
CODEBASE = http://h30043.www3.h.../qdiagh.cab?326

[MSN Chat Control 4.5]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\MSNChat45.ocx
CODEBASE = http://chat.msn.com/...s/msnchat45.cab

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\system32\webcheck.dll
SysTray: C:\WINDOWS\system32\stobject.dll

--------------------------------------------------
End of report, 7,763 bytes
Report generated in 0.046 seconds

Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only






(thanx again)

[Fenor]

Though this probably doesn't have any bearing on your shutdown problem, I have noticed that you have a sound blaster 24-bit sound card installed, obviously in a PCI slot, but you also have the onboard audio enabled as well. What I would like you to do is go into your computer's BIOS/SETUP and disable the ONBOARD AUDIO. To get into your computer's BIOS/SETUP, turn off your computer and then turn it back on. During the initial bootup of your computer, it should say what key to press to enter SETUP, which is usually F1, F2 or the DEL key. Once in there go into the INTEGRATED PERIPHERALS section and find the ONBOARD AUDIO setting and set it to disabled. Make sure to SAVE CHANGES before exiting SETUP.

Now for the STARTUP items that I see listed in the log I had you post. Please go to START-->RUN and type msconfig. In the new window that appears, click on the STARTUP tab and uncheck the boxes next to the items that correspond to the following entries:

• Cmaudio = RunDll32 cmicnfg.cpl,CMICtrlWnd (If it still exists after you disabled the onboard audio previously
• ViewMgr = C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
• UpdReg = C:\WINDOWS\UpdReg.EXE
• TkBellExe = "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
• NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe
• Yahoo! Pager = "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
• AIM = C:\Program Files\AIM\aim.exe -cnetwait.odl
• msnmsgr = "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
• ATI Launchpad = "C:\Program Files\ATI Multimedia\main\LaunchPd.exe"
• eMuleAutoStart = C:\Program Files\eMule\emule.exe -AutoStart

Then click APPLY and OK and when asked restart your computer now. When your computer reboots, you will see a window popup on startup that states that you are in Selective Startup mode. Check the box stating don't show this again and click OK. Then shutdown and reboot your machine and post back how the shutdown time is now.

Fenor

Edited by Fenor, 25 February 2006 - 09:15 PM.

[Laquena]

awwwww bless you for being so awesome!
I believe it was the cmaudio causing [bleep]. my computer is shutting off perfectly with no major delay!

Im recommending this site to anyone else with issues!

awesome

[Fenor]

Glad your computer is working as it should now!

Fenor