Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Overworking?


  • Please log in to reply
26 replies to this topic

#1 DogStar5988

DogStar5988

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 05 January 2013 - 12:38 PM

Hey everyone, I haven't been here in years but I'm back with a new issue. I got a new desktop about 6 months ago with Windows 7. Everything was perfect until recently I've noticed more and more that it sometimes seems to be struggling with something. The fans are working really hard as soon as I start it up and making a lot of noise where it used to be totally silent. I checked the fans and they are fine and unobstructed. I've forgotten what scans you guys like with these posts so please let me know if you want me to run anything.
I'm guessing that something on here is taking a lot of my computer's resources so I'd like to find out what it is and stop it.
Thanks in advance!

BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 05 January 2013 - 09:12 PM

Hello and Welcome back -
Please try these few checks for us to see how the system is going -

First -
You could list the Make and Model of computer, and post a snapshot with Speccy as this may give us a bit more to look at -
Publish a Snapshot using Speccy << Follow These Directions


Next -
Please download MiniToolBox, Save it to your desktop and run it.

Checkmark the following boxes:

•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
List devices >>(Problem only)<<
•List Users, Partitions and Memory size.
•List Minidump Files

Click Go and copy / paste the result (Result.txt) in your next reply -
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Last -
Please download Security Check by Screen317 from HERE or HERE, and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

Thank You -

#3 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 05 January 2013 - 09:22 PM

Ok thanks, I think this is everything.

http://speccy.piriform.com/results/4b0TItYxHD78gOuo6T7Pr6h


MiniToolBox by Farbar Version: 25-11-2012
Ran by Gary (administrator) on 05-01-2013 at 20:14:06
Running from "C:\Users\Gary\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Gary-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 50-E5-49-5A-0B-50
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::71e7:3928:60ae:6fd8%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, January 05, 2013 5:45:29 PM
Lease Expires . . . . . . . . . . : Sunday, January 06, 2013 5:45:28 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 240182601
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-E7-CD-A2-50-E5-49-5A-0B-50
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{3FC22772-3613-4E1E-B99A-FD00CCE85D80}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:3c1a:18f:bc50:d030(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c1a:18f:bc50:d030%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:400a:800::1000
74.125.225.41
74.125.225.40
74.125.225.34
74.125.225.35
74.125.225.32
74.125.225.37
74.125.225.38
74.125.225.36
74.125.225.46
74.125.225.39
74.125.225.33


Pinging google.com [74.125.225.35] with 32 bytes of data:
Reply from 74.125.225.35: bytes=32 time=33ms TTL=54
Reply from 74.125.225.35: bytes=32 time=14ms TTL=54

Ping statistics for 74.125.225.35:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 33ms, Average = 23ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=88ms TTL=50
Reply from 72.30.38.140: bytes=32 time=110ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 88ms, Maximum = 110ms, Average = 99ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 3ms, Average = 2ms
===========================================================================
Interface List
10...50 e5 49 5a 0b 50 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 276
192.168.1.6 255.255.255.255 On-link 192.168.1.6 276
192.168.1.255 255.255.255.255 On-link 192.168.1.6 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:9d38:953c:3c1a:18f:bc50:d030/128
On-link
10 276 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::3c1a:18f:bc50:d030/128
On-link
10 276 fe80::71e7:3928:60ae:6fd8/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10998

Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10998

Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9999

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9999

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9001

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9001

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8002


System errors:
=============
Error: (01/05/2013 01:23:26 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (01/05/2013 01:23:26 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/05/2013 11:23:40 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (01/05/2013 11:23:40 AM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/04/2013 08:19:03 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error:
%%1069

Error: (01/04/2013 08:19:03 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error:
%%1330

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/04/2013 08:18:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Motorola Device Manager service.

Error: (01/04/2013 08:13:04 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Apple Mobile Device service, but this action failed with the following error:
%%1056

Error: (01/04/2013 08:12:04 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (01/04/2013 08:11:55 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10998

Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10998

Error: (01/05/2013 04:15:34 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9999

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9999

Error: (01/05/2013 04:15:33 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9001

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9001

Error: (01/05/2013 04:15:32 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/05/2013 04:15:31 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8002


CodeIntegrity Errors:
===================================
Date: 2013-01-05 14:00:11.628
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.627
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.626
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.620
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.618
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.617
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.600
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.598
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-05 14:00:11.596
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-03 16:23:26.977
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.135)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Amazon Cloud Drive (Version: 0.09.25.3)
Amazon MP3 Downloader 1.0.12 (Version: 1.0.12)
Amazon MP3 Uploader (Version: 1.0.6)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Bing Bar (Version: 7.1.391.0)
Black & White® 2 (Version: 1.00.0000)
Black & White® 2 Battle of the Gods (Version: 1.00.0000)
Bonjour (Version: 3.0.0.10)
calibre (Version: 0.9.0)
Cities XL 2011 (Version: 1.0.0)
Curse Client (Version: 5.1.1.584)
Diablo III (Version: 1.0.5.12811)
Download Manager and Options (Version: 1.0)
Dropbox (Version: 1.6.12)
Dungeon Siege III
Etron USB3.0 Host Controller (Version: 0.98)
EVGA Precision 2.0.3 (Version: 2.0.3)
G-Force (Version: 4.2.0)
Google Chrome (Version: 23.0.1271.97)
Google Update Helper (Version: 1.3.21.123)
iCloud (Version: 2.1.1.3)
iExplorer 3.0.1.3
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
iTunes (Version: 11.0.1.12)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.0.3 (Version: 2.0.3)
Junk Mail filter update (Version: 14.0.8089.726)
Kaspersky Anti-Virus 2013 (Version: 13.0.1.4190)
LEGO Universe
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
McAfee Security Scan Plus (Version: 3.0.285.6)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.10516.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MotoCast (Version: 2.0.31)
Motorola Device Manager (Version: 2.2.35)
Motorola Device Software Update (Version: 1.0.41)
MOTOROLA MEDIA LINK (Version: 1.9.0002.0)
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Music Manager
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 306.23 (Version: 306.23)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Origin (Version: 8.5.0.4550)
Pando Media Booster (Version: 2.6.0.1)
Picasa 3 (Version: 3.8)
Plants vs. Zombies
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 7.36.1224.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6316)
Replay Music (Version: 3.95)
Speccy (Version: 1.19)
Star Trek Online
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1128)
TeamSpeak 3 Client (Version: 3.0.8.1)
The Sims™ 3 (Version: 1.26.89)
The Sims™ 3 Ambitions (Version: 4.10.1)
The Sims™ 3 High-End Loft Stuff (Version: 3.0.38)
The Sims™ 3 Outdoor Living Stuff (Version: 7.3.2)
The Sims™ 3 Pets (Version: 10.0.96)
The Weather Channel App
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Warcraft III
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WModem Driver Installer (Version: 2.0.6.9)
World of Warcraft (Version: 5.1.0.16357)

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 8175.2 MB
Available physical RAM: 6425.56 MB
Total Pagefile: 16348.59 MB
Available Pagefile: 13039.92 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.85 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:1862.92 GB) (Free:1689.25 GB) NTFS

========================= Users: ========================================

User accounts for \\GARY-PC

Administrator Gary Guest
UpdatusUser

========================= Minidump Files ==================================

No minidump file found


**** End of log ****








Results of screen317's Security Check version 0.99.56
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Kaspersky Anti-Virus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
JavaFX 2.0.3
Java 7 Update 7
Java version out of Date!
Adobe Flash Player 11.5.502.135
Adobe Reader 10.1.4 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
Google Chrome 22.0.1229.79
Google Chrome 22.0.1229.92
Google Chrome 22.0.1229.94
Google Chrome 23.0.1271.64
Google Chrome 23.0.1271.91
Google Chrome 23.0.1271.95
Google Chrome 23.0.1271.97
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Kaspersky Lab Kaspersky Anti-Virus 2013 avp.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 06 January 2013 - 02:27 AM

Hello again -

You could list the Make and Model of computer < < - It seems like you missed this, but you got the rest, thanks -

It looks like a minor infection may have deleted your Hosts file - This leaves you less protected.
To reset the Hosts file back to the default automatically, click the Fix it link, click Run in the File Download dialog box, and then follow the steps in this Fix it wizard. >>
http://go.microsoft.com/?linkid=9668866 <<

Do you use / download songs from iTunes quite often ? There seems to be several error issues with this, but I will wait for your answer.

""Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys""
This relates to a Kaspersky file. Have you just installed or updated to a new version of your Antivirus ?

Please update your version of SUPERAntiSpyware, as these should be checked every few days.

Thank You -

#5 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 06 January 2013 - 11:19 AM

Oh sorry, well the manufacturer is iBUYPOWER Computers. I am also showing a company called Gigabyte Technology Co. on the side of the tower. I downloaded and ran that Microsoft Fix with no problems. Yes I do tend to purchase music from iTunes a lot. Kaspersky updates constantly so I'm sure a new update was done recently.
Thanks again!

#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 06 January 2013 - 04:20 PM

Hi -
I would like you to run 3 items -
First -
Please download AdwCleaner by Xplode onto your desktop.
If you are prompted, please disable your Antivirus - Information (temp disable) HERE
Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the content of that logfile with your next answer.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

Next -
Please download Junkware Removal Tool to your desktop
Junkware Removal Tool by thisisu
•Shut down your protection software now to avoid potential conflicts.
•Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete depending on your system's specifications.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt into your next message.

Finally -
Run a Disk Check on your C: drive in Windows:

•Click Start and open Computer
•Right-click on C: (or your main hard drive letter) and select Properties
•Click on the Tools tab
•Under Error-checking click the Check Now... button
•Mark the 2 boxes next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors
•Click on the Start button
•When the message box pops up, click the Schedule disk check button and >> Restart << your computer
•Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so

This will take (on average) from 1 to 2 hours, depending on your system, to complete the 5 stages - Please let it finish all stages -
Once finished, it will reboot your system back to Normal Mode -

Thank You -

Edited for JRT link -

Edited by noknojon, 06 January 2013 - 04:25 PM.


#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 06 January 2013 - 06:02 PM

Hi again -
Only after you have completed the 3 steps above, can you please run these 3 programs -

First -
Update your Malwarebytes Anti-Malware program and run a Quick scan.
Please post the log back here -

Next -
Update your SUPERAntiSpyware program and run a Quick scan.
Please post the log back here -

Finally -
To clean out your temporary internet files and other generally unwanted temp files.
Download TFC by OldTimer from > > http://www.bleepingcomputer.com/download/tfc/ to your desktop.
Double-click TFC.exe to run it.
Note: If you are running on Vista / Windows7, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
There is no log produced, as this will clean out Temp unwanted files only -

Thank You -

#8 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 06 January 2013 - 10:42 PM

Ok here are the first ones.

# AdwCleaner v2.104 - Logfile created 01/06/2013 at 16:19:42
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Gary - GARY-PC
# Boot Mode : Normal
# Running from : C:\Users\Gary\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Gary\AppData\Roaming\Mozilla\Firefox\Profiles\6yryxtqw.default\searchplugins\Askcom.xml
Folder Deleted : C:\ProgramData\Ask

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Softonic
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Users\Gary\AppData\Roaming\Mozilla\Firefox\Profiles\6yryxtqw.default\prefs.js

Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedEngine", "Ask.com");

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Gary\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1443 octets] - [06/01/2013 16:19:42]

########## EOF - C:\AdwCleaner[S1].txt - [1503 octets] ##########









~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.4.1 (01.06.2013:2)
OS: Windows 7 Home Premium x64
Ran by Gary on Sun 01/06/2013 at 16:25:37.69
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Gary\AppData\Roaming\mozilla\firefox\profiles\6yryxtqw.default\minidumps [142 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/06/2013 at 16:32:14.24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#9 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 06 January 2013 - 11:05 PM

And here are the other logs

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 01/06/2013 at 10:02 PM

Application Version : 5.6.1014

Core Rules Database Version : 9829
Trace Rules Database Version: 7641

Scan type : Quick Scan
Total Scan Time : 00:02:22

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 635
Memory threats detected : 0
Registry items scanned : 60454
Registry threats detected : 0
File items scanned : 10940
File threats detected : 41

Adware.Tracking Cookie
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\Y54MH86Q.txt [ /invitemedia.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\X8O7G5RS.txt [ /adtechus.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\Q9ENXAA4.txt [ /collective-media.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\OX2DKKYJ.txt [ /traffiqexchange.rotator.hadj7.adjuggler.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\3L00YKVR.txt [ /ar.atwola.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\317GULNI.txt [ /atwola.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\RNUIX1W7.txt [ /fastclick.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\4X1PKYPC.txt [ /ads.pubmatic.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\LBY0KDK6.txt [ /doubleclick.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\KLF7BA18.txt [ /media6degrees.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\EDI1C5IM.txt [ /imrworldwide.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\3NR0KYTX.txt [ /revsci.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\0YRYE7NU.txt [ /server.cpmstar.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\XCWBZ1OW.txt [ /ad.yieldmanager.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\4C50LK6M.txt [ /a.intentmedia.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\QTJRPLO4.txt [ /advertising.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\9568GF2A.txt [ /tacoda.net ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\TKUN1T0B.txt [ /tacoda.at.atwola.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\PAPD2AOB.txt [ /atdmt.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\VML6IVA5.txt [ /tribalfusion.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\OGS8E3D7.txt [ /adbrite.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\M99Z4NG9.txt [ /at.atwola.com ]
C:\Users\Gary\AppData\Roaming\Microsoft\Windows\Cookies\V9CW6RCM.txt [ /ru4.com ]
C:\USERS\GARY\Cookies\Y54MH86Q.txt [ Cookie:gary@invitemedia.com/ ]
C:\USERS\GARY\Cookies\X8O7G5RS.txt [ Cookie:gary@adtechus.com/ ]
C:\USERS\GARY\Cookies\Q9ENXAA4.txt [ Cookie:gary@collective-media.net/ ]
C:\USERS\GARY\Cookies\OX2DKKYJ.txt [ Cookie:gary@traffiqexchange.rotator.hadj7.adjuggler.net/ ]
C:\USERS\GARY\Cookies\3L00YKVR.txt [ Cookie:gary@ar.atwola.com/ ]
C:\USERS\GARY\Cookies\317GULNI.txt [ Cookie:gary@atwola.com/ ]
C:\USERS\GARY\Cookies\RNUIX1W7.txt [ Cookie:gary@fastclick.net/ ]
C:\USERS\GARY\Cookies\LBY0KDK6.txt [ Cookie:gary@doubleclick.net/ ]
C:\USERS\GARY\Cookies\KLF7BA18.txt [ Cookie:gary@media6degrees.com/ ]
C:\USERS\GARY\Cookies\EDI1C5IM.txt [ Cookie:gary@imrworldwide.com/cgi-bin ]
C:\USERS\GARY\Cookies\3NR0KYTX.txt [ Cookie:gary@revsci.net/ ]
C:\USERS\GARY\Cookies\4C50LK6M.txt [ Cookie:gary@a.intentmedia.net/ ]
C:\USERS\GARY\Cookies\QTJRPLO4.txt [ Cookie:gary@advertising.com/ ]
C:\USERS\GARY\Cookies\9568GF2A.txt [ Cookie:gary@tacoda.net/ ]
C:\USERS\GARY\Cookies\TKUN1T0B.txt [ Cookie:gary@tacoda.at.atwola.com/ ]
C:\USERS\GARY\Cookies\VML6IVA5.txt [ Cookie:gary@tribalfusion.com/ ]
C:\USERS\GARY\Cookies\M99Z4NG9.txt [ Cookie:gary@at.atwola.com/ ]
C:\USERS\GARY\Cookies\V9CW6RCM.txt [ Cookie:gary@ru4.com/ ]







Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.05.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Gary :: GARY-PC [administrator]

Protection: Enabled

1/6/2013 9:57:10 PM
mbam-log-2013-01-06 (21-57-10).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 249719
Time elapsed: 2 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 06 January 2013 - 11:45 PM

Hi -
It seems like the system is a custom built (fairly good system)

Just a few items to look at .........

Internet Explorer 8 Out of date! - Download Internet Explorer 9 to update your browsers -

SUPERAntiSpyware log is OK, except for the Tracking cookies that can all be removed -

Malwarebytes Anti-Malware is clean and very quick (usually means a fairly clean sysyem)

The only other 2 scans you should run are first sfc /scannow
Go - Programs > Accessories > Right click on Command Prompt (select Run as Admin) > Type sfc /scannow and press Enter.
This will only take (on average) 10 to 15 minutes) - Please let it run uninterupted ........


Finish with this online scan, just to be sure we have cleaned all current problems -

Please note that this can take quite a while, so please do it when you have plenty of spare time -
Please run a free online scan with the ESET Online Scanner

Disable your antivirus program - Information on A/V control (temp disable) HERE if needed
Tick the box next to YES, I accept the Terms of Use
Click Start
Accept any security warnings from your browser.
Check Scan archives
Click Start
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click on List of found threats
Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
NOTE. If ESET doesn't find any threats it will NOT produce any log.

Please let me know if you are still having problems once this is completed -

Thank You -

#11 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 07 January 2013 - 12:09 PM

Ok Eset didn't find anything and the other went fine too. The tower still pretty much sounds like a jet engine. lol. It sometimes quiets down for a second but most of the time it still seems to be running hard. I'm just thinking that there is some program running in the background that is using up a lot of its resources. Is there a way to look and see what might be using more than its fair share?

#12 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 07 January 2013 - 03:55 PM

I got a new desktop about 6 months ago with Windows 7

Hi -
So far there is very little to show a major problem or program fault that is causing this ??
I was thinking a backlog of Temp files (or similar) so we ran TFC Cleaner, but this changed nothing yet -
Did you get a warranty with the computer as it is only 6 months old, I was thinking the shop may be able to look at it for you ??

If not, I have asked for a few other opinions on the problem, and they are reviewing the situation for you now -

Can you give us a day or so to see if the problem may be hardware or software related first.

Thank You -



#13 DogStar5988

DogStar5988
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:03:48 PM

Posted 07 January 2013 - 05:35 PM

Ok I'll check on the warranty. Let me know if you find anything else out. Thanks

#14 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 07 January 2013 - 05:42 PM

Will do -
I am talking to a few others now to see what else it may relate to

Thank You -

#15 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:05:48 AM

Posted 07 January 2013 - 05:48 PM

As an extra -

Meanwhile could you please download Autoruns for Windows
This may also be a help to show running processes -

Thanks -




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users