Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Processes running with no username over 2K


  • Please log in to reply
5 replies to this topic

#1 Salem22

Salem22

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:23 PM

Posted 17 August 2011 - 10:07 PM

My computer has been running very slowly lately. When I looked at my task manager to see what was using up so much memory, I realized that some processes were running much higher than normal and without a username. The processes are csrss.exe, winlogon.exe, wisptis.exe (over 3K), and atieclxx.exe. When I try to stop them, it gives me an error message with the heading "Unable to Terminate Process"; the message reads: "The operation could not be completed. Access is denied."

I'm the only account/administrator on this computer. I have Windows 7.

I'd truly appreciate someone's help. Thanks in advance.

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:23 PM

Posted 17 August 2011 - 11:27 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 Salem22

Salem22
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:23 PM

Posted 18 August 2011 - 05:00 PM

Results of screen317's Security Check version 0.99.7
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Java™ 6 Update 17
Out of date Java installed!
Adobe Flash Player
Adobe Reader 9.1 MUI
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Norton ccSvcHst.exe
``````````End of Log````````````










MiniToolBox by Farbar
Ran by Nicole (administrator) on 18-08-2011 at 17:57:27
Windows 7 Home Premium (X64)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================



========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Nicole-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 00-26-C7-39-F8-E0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d4ca:158d:917c:babd%15(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 18, 2011 5:42:09 PM
Lease Expires . . . . . . . . . . : Friday, August 19, 2011 5:42:09 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 369108679
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-9F-B9-3C-C8-0A-A9-B3-01-BC
DNS Servers . . . . . . . . . . . : 192.168.1.1
71.243.0.12
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:89f:7f9:3f57:fefa(Preferred)
Link-local IPv6 Address . . . . . : fe80::89f:7f9:3f57:fefa%16(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.226.147
74.125.226.145
74.125.226.146
74.125.226.144
74.125.226.148


Pinging google.com [74.125.226.112] with 32 bytes of data:
Reply from 74.125.226.112: bytes=32 time=17ms TTL=251
Reply from 74.125.226.112: bytes=32 time=28ms TTL=251

Ping statistics for 74.125.226.112:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 28ms, Average = 22ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 69.147.125.65
72.30.2.43
98.137.149.56
209.191.122.70
67.195.160.76


Pinging yahoo.com [98.137.149.56] with 32 bytes of data:
Reply from 98.137.149.56: bytes=32 time=114ms TTL=250
Reply from 98.137.149.56: bytes=32 time=100ms TTL=250

Ping statistics for 98.137.149.56:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 100ms, Maximum = 114ms, Average = 107ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
15...00 26 c7 39 f8 e0 ......Intel® WiFi Link 1000 BGN
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.5 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.5 281
192.168.1.5 255.255.255.255 On-link 192.168.1.5 281
192.168.1.255 255.255.255.255 On-link 192.168.1.5 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.5 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.5 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
16 58 ::/0 On-link
1 306 ::1/128 On-link
16 58 2001::/32 On-link
16 306 2001:0:4137:9e76:89f:7f9:3f57:fefa/128
On-link
15 281 fe80::/64 On-link
16 306 fe80::/64 On-link
16 306 fe80::89f:7f9:3f57:fefa/128
On-link
15 281 fe80::d4ca:158d:917c:babd/128
On-link
1 306 ff00::/8 On-link
16 306 ff00::/8 On-link
15 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/18/2011 05:41:03 PM) (Source: Application Error) (User: )
Description: Faulting application name: rpcnet.exe, version: 8.0.898.0, time stamp: 0x4cf44cf4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x728d6a34
Faulting process id: 0x764
Faulting application start time: 0xrpcnet.exe0
Faulting application path: rpcnet.exe1
Faulting module path: rpcnet.exe2
Report Id: rpcnet.exe3

Error: (08/18/2011 05:41:02 PM) (Source: Application Error) (User: )
Description: Faulting application name: PsiService_2.exe, version: 2.0.1.124, time stamp: 0x46a641af
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x728d6a34
Faulting process id: 0x4b4
Faulting application start time: 0xPsiService_2.exe0
Faulting application path: PsiService_2.exe1
Faulting module path: PsiService_2.exe2
Report Id: PsiService_2.exe3

Error: (08/18/2011 05:41:01 PM) (Source: Application Error) (User: )
Description: Faulting application name: DVMExportService.exe, version: 1.2.7.2, time stamp: 0x4b6a2ac1
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x728d6a34
Faulting process id: 0x76c
Faulting application start time: 0xDVMExportService.exe0
Faulting application path: DVMExportService.exe1
Faulting module path: DVMExportService.exe2
Report Id: DVMExportService.exe3

Error: (08/18/2011 05:40:58 PM) (Source: Application Error) (User: )
Description: Faulting application name: CinemanowSvc.exe, version: 1.9.0.2, time stamp: 0x4b5120b2
Faulting module name: wmp.dll_unloaded, version: 0.0.0.0, time stamp: 0x4a98b4c2
Exception code: 0xc0000005
Fault offset: 0x728d6a34
Faulting process id: 0x720
Faulting application start time: 0xCinemanowSvc.exe0
Faulting application path: CinemanowSvc.exe1
Faulting module path: CinemanowSvc.exe2
Report Id: CinemanowSvc.exe3

Error: (08/18/2011 05:40:54 PM) (Source: Application Error) (User: )
Description: Faulting application name: GCalService.exe, version: 3.1.0.0, time stamp: 0x4ad55e37
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x728d6a34
Faulting process id: 0x6c0
Faulting application start time: 0xGCalService.exe0
Faulting application path: GCalService.exe1
Faulting module path: GCalService.exe2
Report Id: GCalService.exe3

Error: (08/18/2011 05:40:46 PM) (Source: Application Error) (User: )
Description: Faulting application name: ccSvcHst.exe, version: 109.0.3.4, time stamp: 0x4b86e0bf
Faulting module name: asEngine.dll_unloaded, version: 0.0.0.0, time stamp: 0x4c97b1dc
Exception code: 0xc0000005
Fault offset: 0x70fb9795
Faulting process id: 0xa90
Faulting application start time: 0xccSvcHst.exe0
Faulting application path: ccSvcHst.exe1
Faulting module path: ccSvcHst.exe2
Report Id: ccSvcHst.exe3

Error: (08/18/2011 07:13:52 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"

Error: (08/18/2011 07:09:36 AM) (Source: MsiInstaller) (User: SYSTEM)SYSTEM
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"

Error: (08/17/2011 09:38:50 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddWin32ServiceFiles: Unable to back up image of service rpcnetp since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (08/17/2011 09:37:49 PM) (Source: HPTouchSmartCalendar) (User: )
Description: Application Name: HP TouchSmart Calendar
Exception Type: System.IO.FileNotFoundException
at Microsoft.SDK.Samples.VistaBridge.Interop.IKnownFolder.GetPath(Int32 option)
at Microsoft.SDK.Samples.VistaBridge.Library.KnownFolders.KnownFolderManager.GetPath(Guid knownFolderId)
at Microsoft.SDK.Samples.VistaBridge.Library.KnownFolders.KnownFolders.get_Libraries()
at LifeCenter.CommonControls.Common.SetDefaultCalendarSynchFilePath()


System errors:
=============
Error: (08/18/2011 05:43:22 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%16405

Error: (08/18/2011 05:41:03 PM) (Source: Service Control Manager) (User: )
Description: The SeaPort service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:41:03 PM) (Source: Service Control Manager) (User: )
Description: The Remote Procedure Call (RPC) Net service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:41:03 PM) (Source: Service Control Manager) (User: )
Description: The Protexis Licensing V2 service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:41:02 PM) (Source: Service Control Manager) (User: )
Description: The DeviceVM Meta Data Export Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:41:01 PM) (Source: Service Control Manager) (User: )
Description: The CinemaNow Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:41:01 PM) (Source: Service Control Manager) (User: )
Description: The CalendarSynchService service terminated unexpectedly. It has done this 1 time(s).

Error: (08/18/2011 05:40:46 PM) (Source: Service Control Manager) (User: )
Description: The Norton Internet Security service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (08/18/2011 05:39:57 PM) (Source: Application Popup) (User: )
Description: There was error [DATABASE OPEN FAILED] processing the driver database.

Error: (08/18/2011 07:15:45 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft XML Core Services 4.0 Service Pack 2 for x64-based Systems (KB973688).


Microsoft Office Sessions:
=========================
Error: (08/18/2011 05:41:03 PM) (Source: Application Error)(User: )
Description: rpcnet.exe8.0.898.04cf44cf4unknown0.0.0.000000000c0000005728d6a3476401cc5def46a5e048C:\Windows\SysWOW64\rpcnet.exeunknownc4acfef1-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 05:41:02 PM) (Source: Application Error)(User: )
Description: PsiService_2.exe2.0.1.12446a641afunknown0.0.0.000000000c0000005728d6a344b401cc5def4659b440c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeunknownc482262c-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 05:41:01 PM) (Source: Application Error)(User: )
Description: DVMExportService.exe1.2.7.24b6a2ac1unknown0.0.0.000000000c0000005728d6a3476c01cc5def458a2f2dC:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exeunknownc403fd3e-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 05:40:58 PM) (Source: Application Error)(User: )
Description: CinemanowSvc.exe1.9.0.24b5120b2wmp.dll_unloaded0.0.0.04a98b4c2c0000005728d6a3472001cc5def44fac05fC:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exewmp.dllc23af509-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 05:40:54 PM) (Source: Application Error)(User: )
Description: GCalService.exe3.1.0.04ad55e37unknown0.0.0.000000000c0000005728d6a346c001cc5def44546e30C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exeunknownbf4860d2-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 05:40:46 PM) (Source: Application Error)(User: )
Description: ccSvcHst.exe109.0.3.44b86e0bfasEngine.dll_unloaded0.0.0.04c97b1dcc000000570fb9795a9001cc5def51065ffaC:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exeasEngine.dllbad42daf-c9e2-11e0-829a-dea2c478ba4d

Error: (08/18/2011 07:13:52 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Product: MSXML 4.0 SP2 (KB973688) -- Error 1935. An error occured during the installation of assembly component {7B2B4EA5-1028-B7E6-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9876.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (08/18/2011 07:09:36 AM) (Source: MsiInstaller)(User: SYSTEM)SYSTEM
Description: Product: MSXML 4.0 SP2 (KB954430) -- Error 1935. An error occured during the installation of assembly component {7B30B69B-0E6C-B7E0-A06B-D6B9ABF34537}. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, assembly name: Microsoft.MSXML2,type="win32",version="4.20.9870.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (08/17/2011 09:38:50 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service rpcnetp since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (08/17/2011 09:37:49 PM) (Source: HPTouchSmartCalendar)(User: )
Description: Application Name: HP TouchSmart Calendar
Exception Type: System.IO.FileNotFoundException
at Microsoft.SDK.Samples.VistaBridge.Interop.IKnownFolder.GetPath(Int32 option)
at Microsoft.SDK.Samples.VistaBridge.Library.KnownFolders.KnownFolderManager.GetPath(Guid knownFolderId)
at Microsoft.SDK.Samples.VistaBridge.Library.KnownFolders.KnownFolders.get_Libraries()
at LifeCenter.CommonControls.Common.SetDefaultCalendarSynchFilePath()


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.1)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 ActiveX (Version: 10.0.42.34)
Adobe Reader 9.1 MUI (Version: 9.1.0)
Adobe Shockwave Player (Version: 11.5.1.601)
Airport Mania (Version: 2.2.0.82)
Ancient Hearts (Version: 2.2.0.82)
ATI Catalyst Install Manager (Version: 3.0.758.0)
Bejeweled 2 Deluxe (Version: 2.2.0.82)
Blasterball 3 (Version: 2.2.0.82)
Bob the Builder Can-Do-Zoo (Version: 2.2.0.82)
Bookworm Adventures (Version: 2.2.0.82)
Bounce Symphony (Version: 2.2.0.82)
Broadcom 2070 Bluetooth 2.1 + EDR (Version: 6.2.1.1100)
Build-a-lot (Version: 2.2.0.87)
Build-a-lot 2 (Version: 2.2.0.82)
BumpTop (Version: 2.0.5532)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full Existing (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full New (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Light (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Previews Common (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0122.858.16002)
Catalyst Control Center InstallProxy (Version: 2010.0122.858.16002)
Catalyst Control Center Localization All (Version: 2010.0122.858.16002)
ccc-core-static (Version: 2010.0122.858.16002)
ccc-utility64 (Version: 2010.0122.858.16002)
CCC Help Chinese Standard (Version: 2010.0122.0857.16002)
CCC Help Chinese Traditional (Version: 2010.0122.0857.16002)
CCC Help Czech (Version: 2010.0122.0857.16002)
CCC Help Danish (Version: 2010.0122.0857.16002)
CCC Help Dutch (Version: 2010.0122.0857.16002)
CCC Help English (Version: 2010.0122.0857.16002)
CCC Help Finnish (Version: 2010.0122.0857.16002)
CCC Help French (Version: 2010.0122.0857.16002)
CCC Help German (Version: 2010.0122.0857.16002)
CCC Help Greek (Version: 2010.0122.0857.16002)
CCC Help Hungarian (Version: 2010.0122.0857.16002)
CCC Help Italian (Version: 2010.0122.0857.16002)
CCC Help Japanese (Version: 2010.0122.0857.16002)
CCC Help Korean (Version: 2010.0122.0857.16002)
CCC Help Norwegian (Version: 2010.0122.0857.16002)
CCC Help Polish (Version: 2010.0122.0857.16002)
CCC Help Portuguese (Version: 2010.0122.0857.16002)
CCC Help Russian (Version: 2010.0122.0857.16002)
CCC Help Spanish (Version: 2010.0122.0857.16002)
CCC Help Swedish (Version: 2010.0122.0857.16002)
CCC Help Thai (Version: 2010.0122.0857.16002)
CCC Help Turkish (Version: 2010.0122.0857.16002)
Chuzzle Deluxe (Version: 2.2.0.82)
CinemaNow Media Manager (Version: 1.9.1.102)
Corel Paint it! touch - IPM (Version: 1.1)
CyberLink DVD Suite (Version: 7.0.2527)
DigiFish Dolphin (Version: 1.10.000)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.82)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Dora's Carnival Adventure (Version: 2.2.0.82)
Dora's World Adventure (Version: 2.2.0.82)
DVD Menu Pack for HP TouchSmart Video (Version: 3.2.3715)
ESU for Microsoft Windows 7 (Version: 1.0.0)
FATE (Version: 2.2.0.82)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Advisor (Version: 3.4.10144.3282)
HP Customer Experience Enhancements (Version: 6.0.1.4)
HP DVB-T TV Tuner 8.0.64.43 (Version: 8.0.64.43)
HP ENVY Document Card Utilities (Version: 1.0.5)
HP Game Console
HP Games (Version: 1.0.0.80)
HP MediaSmart CinemaNow 2.0 (Version: 2.0)
HP MediaSmart DVD (Version: 4.0.3727)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.2.0)
HP Photo Creations (Version: 1.0.0.2261)
HP Quick Launch (Version: 1.0.18)
HP QuickWeb Installer (Version: 1.2.9.1)
HP Setup (Version: 1.2.3988.3281)
HP SimplePass Identity Protection (Version: 5.00.140)
HP Software Framework (Version: 3.5.16.1)
HP Support Assistant (Version: 4.3.1.2)
HP Tone Control (Version: 2.0.2)
HP TouchSmart (Version: 3.0.35.0)
HP TouchSmart Browser (Version: 3.0.0008)
HP TouchSmart Calendar (Version: 3.1.3574.19334)
HP TouchSmart Canvas (Version: 1.1.3657.30905)
HP TouchSmart Clock (Version: 3.0.3572.25998)
HP TouchSmart Internet TV (Version: 3.2.2513)
HP TouchSmart Music (Version: 3.2.3722)
HP TouchSmart Notes (Version: 3.2.3635.21983)
HP TouchSmart Paint it! by Corel - Content (Version: 1.0)
HP TouchSmart Paint it! by Corel - Core (Version: 1.0)
HP TouchSmart Paint it! by Corel - ICA (Version: 1.0)
HP TouchSmart Paint it! by Corel - Langauge (Version: 1.0)
HP TouchSmart Paint it! by Corel (Version: 1.5.0.96)
HP TouchSmart Photo (Version: 3.2.3722)
HP TouchSmart RSS (Version: 3.0.0006)
HP TouchSmart Tutorials (Version: 3.1.0.1)
HP TouchSmart Twitter (Version: 2.0.3649.35150)
HP TouchSmart Video (Version: 3.2.3722)
HP TouchSmart Weather (Version: 3.0.0.1)
HP TouchSmart Webcam (Version: 3.2.2511)
HP Update (Version: 5.001.000.014)
HP User Guides 0176 (Version: 1.01.0000)
HP Wireless Assistant (Version: 4.0.3.2)
HPAsset component for HP Active Support Library (Version: 3.0.0.3)
IDT Audio (Version: 1.0.6265.0)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
Java™ 6 Update 17 (64-bit) (Version: 6.0.170)
Java™ 6 Update 17 (Version: 6.0.170)
Jewel Quest 3 (Version: 2.2.0.82)
Jewel Quest Solitaire 2 (Version: 2.2.0.82)
JoJo's Fashion Show (Version: 2.2.0.82)
Junk Mail filter update (Version: 14.0.8089.726)
LabelPrint (Version: 2.5.2515)
Mah Jong Medley (Version: 2.2.0.82)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Default Manager (Version: 2.1.54.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Search Enhancement Pack (Version: 2.0.270.0)
Microsoft Silverlight (Version: 3.0.40818.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Touch Pack for Windows 7 (Version: 1.0.40517.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Movie Theme Pack for HP TouchSmart Video (Version: 3.2.3715)
MSN Toolbar (Version: 4.0.0369.0)
MSN Toolbar Platform (Version: 4.0.0369.0)
MSVCRT (Version: 14.0.1468.721)
Norton Internet Security (Version: 17.8.0.5)
Norton Online Backup (Version: 2.0.0.34)
Penguins! (Version: 2.2.0.82)
PhotoNow! (Version: 1.1.6904)
Plants vs. Zombies (Version: 2.2.0.82)
Polar Bowler (Version: 2.2.0.82)
Polar Golfer (Version: 2.2.0.82)
Power2Go (Version: 6.1.3715)
PowerDirector (Version: 8.0.2514)
PX Profile Update (Version: 1.00.1.)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.11.1127.2009)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30111)
Recovery Manager (Version: 5.5.2512)
Roxio CinemaNow 2.0 (Version: 1.0.254)
Skip-Bo - Castaway Caper (Version: 2.2.0.82)
Slingo Deluxe (Version: 2.2.0.82)
Synaptics Pointing Device Driver (Version: 15.0.13.3)
TextTwist 2 (Version: 2.2.0.82)
Tradewinds Legends (Version: 2.2.0.82)
Validity Sensors DDK (Version: 4.1.129.0)
Virtual Earth 3D (Beta) (Version: 4.0.903.16005)
Virtual Villagers - The Secret City (Version: 2.2.0.82)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414) (Version: 12/16/2009 6.2.0.9414)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Yahoo! Detect
Zuma's Revenge (Version: 2.2.0.82)

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 3893.86 MB
Available physical RAM: 1447.42 MB
Total Pagefile: 7785.86 MB
Available Pagefile: 5339.53 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.64 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:442.58 GB) (Free:402.87 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:22.89 GB) (Free:3.31 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32

========================= Users: ========================================

User accounts for \\NICOLE-PC

Administrator Guest Nicole


**** End of log ****






Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7502

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

8/18/2011 6:16:04 PM
mbam-log-2011-08-18 (18-16-04).txt

Scan type: Quick scan
Objects scanned: 168940
Time elapsed: 4 minute(s), 21 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)








GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-08-18 19:28:09
Windows 6.1.7600
Running: jnkc2p6g.exe


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f3955965e2
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f3955965e2 (not active ControlSet)

---- EOF - GMER 1.0.15 ----


Thanks again for all your help :)

Edited by Salem22, 18 August 2011 - 06:29 PM.


#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:23 PM

Posted 18 August 2011 - 08:26 PM

Let's see what's running there...

Download Process Explorer: http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
Unzip ProcessExplorer.zip, and double click on procexp.exe to run the program.
Click on View > Select Colunms.
In addition to already pre-selected options, make sure, the Command Line is selected, and press OK.
Go File>Save As, and save the report as Procexp.txt.
Post the content in your next reply.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#5 Salem22

Salem22
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:23 PM

Posted 18 August 2011 - 08:54 PM

Process PID CPU Private Bytes Working Set Description Company Name Command Line
System Idle Process 0 96.36 0 K 24 K
System 4 0.35 116 K 384 K
Interrupts n/a 0.55 0 K 0 K Hardware Interrupts and DPCs
smss.exe 328 524 K 464 K
csrss.exe 448 < 0.01 2,364 K 2,528 K
wininit.exe 520 1,972 K 1,620 K
services.exe 576 6,452 K 7,308 K
svchost.exe 768 0.01 4,728 K 6,180 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k DcomLaunch
igfxsrvc.exe 3924 3,144 K 4,536 K igfxsrvc Module Intel Corporation C:\Windows\system32\igfxsrvc.exe -Embedding
WmiPrvSE.exe 4304 3,288 K 5,368 K
WmiPrvSE.exe 720 5,960 K 9,932 K
svchost.exe 828 5,536 K 6,676 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k RPCSS
atiesrxx.exe 908 1,828 K 2,124 K AMD External Events Service Module AMD C:\Windows\system32\atiesrxx.exe
atieclxx.exe 3484 2,656 K 4,048 K
svchost.exe 972 18,796 K 15,444 K Host Process for Windows Services Microsoft Corporation C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
audiodg.exe 2980 16,920 K 16,832 K
svchost.exe 344 0.01 35,252 K 36,960 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k netsvcs
taskeng.exe 3804 2,928 K 7,172 K Task Scheduler Engine Microsoft Corporation taskeng.exe {C90DABDF-26F5-47B6-B003-E7D328711FCB}
svchost.exe 1016 < 0.01 149,460 K 149,140 K Host Process for Windows Services Microsoft Corporation C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
wisptis.exe 3500 3,836 K 4,232 K
wisptis.exe 3760 0.05 4,872 K 6,204 K
TabTip.exe 3776 6,332 K 8,140 K
TabTip32.exe 3916 816 K 664 K
dwm.exe 3876 0.34 30,916 K 22,512 K Desktop Window Manager Microsoft Corporation "C:\Windows\system32\Dwm.exe"
stacsv64.exe 436 < 0.01 12,820 K 4,408 K IDT PC Audio IDT, Inc. C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
svchost.exe 1176 < 0.01 10,416 K 13,704 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k LocalService
hpservice.exe 1236 < 0.01 1,904 K 2,288 K HpService Hewlett-Packard C:\Windows\system32\Hpservice.exe
vcsFPService.exe 1276 0.01 6,224 K 4,092 K Validity Sensors Fingerprint Service Validity Sensors, Inc. C:\Windows\system32\vcsFPService.exe
svchost.exe 1332 < 0.01 12,704 K 12,064 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k NetworkService
spoolsv.exe 1460 6,884 K 6,128 K Spooler SubSystem App Microsoft Corporation C:\Windows\System32\spoolsv.exe
DpHostW.exe 1516 10,892 K 14,076 K DigitalPersona Local Host DigitalPersona, Inc. C:\Program Files\DigitalPersona\Bin\DpHostW.exe
svchost.exe 1572 < 0.01 12,092 K 9,296 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
AESTSr64.exe 1688 1,316 K 1,220 K Andrea filters APO access service (64-bit) Andrea Electronics Corporation C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
btwdins.exe 1720 2,408 K 3,680 K Bluetooth Support Server Broadcom Corporation. C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
GCalService.exe 1768 < 0.01 17,944 K 4,660 K HP TouchSmart Calendar Hewlett-Packard "C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe"
HPTouchSmartSyncCalReminderApp.exe 4940 < 0.01 30,644 K 25,060 K HP TouchSmart Calendar Hewlett-Packard HPTouchSmartSyncCalReminderApp.exe
CinemaNowSvc.exe 1816 0.04 6,052 K 2,416 K CinemaNow Service Application CinemaNow, Inc. C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
DVMExportService.exe 1932 < 0.01 1,780 K 3,484 K Windows Metadata Export Service DeviceVM, Inc. "C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe"
svchost.exe 1964 6,332 K 6,732 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
HPWMISVC.exe 1992 2,372 K 3,432 K C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
ccsvchst.exe 2028 0.08 22,848 K 10,680 K Symantec Service Framework Symantec Corporation "C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\diMaster.dll" /prefetch:1
ccsvchst.exe 3748 0.03 19,116 K 6,536 K
PsiService_2.exe 1488 1,104 K 908 K PsiService PsiService Protexis Inc. "c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
rpcnet.exe 2120 1,408 K 1,384 K rpcnet Absolute Software Corp. C:\Windows\SysWOW64\rpcnet.exe
SeaPort.exe 2168 4,888 K 4,032 K Microsoft SeaPort Search Enhancement Broker Microsoft Corporation "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
WLIDSVC.EXE 2224 5,284 K 4,732 K "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSVCM.EXE 2748 1,484 K 1,348 K
SearchIndexer.exe 2504 < 0.01 25,952 K 19,192 K Microsoft Windows Search Indexer Microsoft Corporation C:\Windows\system32\SearchIndexer.exe /Embedding
svchost.exe 1716 2,584 K 3,436 K Host Process for Windows Services Microsoft Corporation C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskhost.exe 3940 9,328 K 4,856 K Host Process for Windows Tasks Microsoft Corporation "taskhost.exe"
wmpnetwk.exe 4832 8,584 K 7,600 K Windows Media Player Network Sharing Service Microsoft Corporation "C:\Program Files\Windows Media Player\wmpnetwk.exe"
HPHC_Service.exe 4852 23,280 K 14,136 K HP Health Check Service Hewlett-Packard "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
HPWA_Service.exe 4392 < 0.01 50,548 K 38,536 K HPPA_Service Hewlett-Packard "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
LMS.exe 1028 0.02 2,528 K 4,848 K Local Manageability Service Intel Corporation C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
hpqWmiEx.exe 2532 1,968 K 5,756 K hpqwmiex Module Hewlett-Packard Company "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
UNS.exe 3052 5,220 K 10,736 K User Notification Service Intel Corporation "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"
InputPersonalization.exe 4140 3,660 K 1,352 K Input Personalization Server Microsoft Corporation "C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
taskhost.exe 5156 5,244 K 7,196 K
lsass.exe 632 0.01 5,708 K 7,640 K Local Security Authority Process Microsoft Corporation C:\Windows\system32\lsass.exe
lsm.exe 648 < 0.01 2,840 K 2,652 K
csrss.exe 536 0.30 4,192 K 6,912 K
winlogon.exe 624 3,208 K 3,284 K
DPAgent.exe 3932 5,368 K 6,368 K DigitalPersona Local Agent DigitalPersona, Inc. "C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"
DpAgent.exe 5060 1,804 K 4,476 K DigitalPersona 64-bit Helper Process DigitalPersona, Inc. "C:\Program Files\DigitalPersona\Bin\DPAgent.exe"
explorer.exe 4020 0.03 35,120 K 46,736 K Windows Explorer Microsoft Corporation C:\Windows\Explorer.EXE
igfxpers.exe 3384 3,640 K 6,212 K persistence Module Intel Corporation "C:\Windows\System32\igfxpers.exe"
SynTPEnh.exe 3400 0.20 9,976 K 8,080 K Synaptics TouchPad Enhancements Synaptics Incorporated "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
SynTPHelper.exe 4348 1,672 K 1,716 K
sttray64.exe 3412 7,804 K 8,268 K IDT PC Audio IDT, Inc. "C:\Program Files\IDT\WDM\sttray64.exe"
HPMSGSVC.exe 3420 < 0.01 3,172 K 4,196 K Hewlett-Packard Company "C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
HPToneCtl.exe 3604 3,512 K 3,692 K Tone Control Hewlett-Packard "C:\Program Files\Hewlett-Packard\HPToneControl\HPToneCtl.exe"
jusched.exe 3900 4,784 K 5,220 K Java™ Platform SE binary Sun Microsystems, Inc. "C:\Program Files\Java\jre6\bin\jusched.exe"
chrome.exe 5920 0.01 37,844 K 59,156 K Google Chrome Google Inc. "C:\Users\Nicole\AppData\Local\Google\Chrome\Application\chrome.exe"
rundll32.exe 3372 4,848 K 7,496 K Windows host process (Rundll32) Microsoft Corporation C:\Windows\system32\rundll32.exe "C:\Users\Nicole\AppData\Local\Google\Chrome\APPLIC~1\130782~1.112\gcswf32.dll",BrokerMain browser=chrome
chrome.exe 2588 18,708 K 27,560 K Google Chrome Google Inc. "C:\Users\Nicole\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Nicole\AppData\Local\Google\Chrome\Application\13.0.782.112\gcswf32.dll" --lang=en-US --channel=5920.05B73E00.1170882498 --flash-broker=3372 /prefetch:4
chrome.exe 3020 27,532 K 40,404 K Google Chrome Google Inc. "C:\Users\Nicole\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/disabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SSLFalseStart/FalseStart_enabled/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --disable-client-side-phishing-detection --channel=5920.05878160.143253416 /prefetch:3
procexp.exe 3692 2,380 K 6,312 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com "C:\Users\Nicole\Desktop\procexp.exe"
procexp64.exe 4844 1.19 19,888 K 34,744 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com "C:\Users\Nicole\Desktop\procexp.exe"
hpdocstart.exe 4396 1,072 K 872 K HP ENVY Guides Flash Storage Autoplay Hewlett-Packard Development Company, L.P. "C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe"
jusched.exe 4424 1,288 K 1,048 K Java™ Platform SE binary Sun Microsystems, Inc. "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
hpwuschd2.exe 4440 1,384 K 1,724 K hpwuSchd Application Hewlett-Packard "C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe"
mswinext.exe 4416 0.39 38,152 K 59,548 K MSN® Toolbar Microsoft Corp. "C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe"
MOM.exe 4572 0.01 42,052 K 7,844 K Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
CCC.exe 1032 < 0.01 64,912 K 17,424 K Catalyst Control Centre: Host application ATI Technologies Inc. "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
HPWA_Main.exe 2772 < 0.01 60,772 K 55,508 K HP Wireless Assistant Hewlett-Packard "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
hpCaslNotification.exe 4324 32,108 K 10,012 K hpCaslNotification Hewlett-Packard Development Company L.P. "C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>Bluetooth®: Off

WLAN: On</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_on.ico</IconPath><ID>285540202</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:23 PM

Posted 18 August 2011 - 09:03 PM

I don't see anything unusual.
System Idle Process (CPU NOT used) is listed at 96.36%. Perfect!

So....what are the actual issues?

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users