| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 91123 | 2008-06-27 02:28:00 | 100% CPU Usage System Idle | mark1978 (13845) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 682909 | 2008-06-27 03:41:00 | sorry bout that guys, I have cc cleaner, I have 1 1512 ram, Is there any way if I could show you a hijack that you guys would figur out what the problem is? | mark1978 (13845) | ||
| 682910 | 2008-06-27 03:44:00 | You could post a hijackthis log, but it maybe the burning program youre using and nothing else. Thats causing it | Speedy Gonzales (78) | ||
| 682911 | 2008-06-27 03:47:00 | If you want us to help you, answer the questions! :illogical The PC is probably being slowed down by software running in the background, and may need more RAM, but we can get to that later. If a process is using 100% cpu, that will slow things down a lot. .............. which process is using all the cpu? |
wratterus (105) | ||
| 682912 | 2008-06-27 03:57:00 | at the moment svchost and system idle, it fluctuates between 50 and 99% | mark1978 (13845) | ||
| 682913 | 2008-06-27 04:08:00 | Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 3:24:14 PM, on 6/27/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe D:\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\soundman.exe D:\Modem Booster\ModemBtr.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe D:\ESET NOD32 Antivirus\egui.exe D:\Spyware Doctor\pctsTray.exe C:\WINDOWS\system32\ctfmon.exe D:\ESET NOD32 Antivirus\ekrn.exe D:\Spyware Doctor\pctsAuxs.exe D:\Spyware Doctor\pctsSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Internet Explorer\iexplore.exe D:\Winamp\winamp.exe D:\HijackThis\HijackThis.exe D:\WinRAR\WinRAR.exe C:\Program Files\uTorrent\uTorrent.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.trademe.co.nz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O4 - HKLM\..\Run: [SoundMan] soundman.exe O4 - HKLM\..\Run: [Modem Booster] D:\Modem Booster\ModemBtr.exe O4 - HKLM\..\Run: [egui] "D:\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [ISTray] "D:\Spyware Doctor\pctsTray.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - utilities.pcpitstop.com O17 - HKLM\System\CCS\Services\Tcpip\..\{C97C6580-9832-4D4D-9B79-B0982E4DF3C8}: NameServer = 202.180.64.10,202.180.64.11 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - D:\Ad-Aware 2007\aawservice.exe O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - D:\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - D:\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - D:\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - D:\Spyware Doctor\pctsSvc.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 4949 bytes |
mark1978 (13845) | ||
| 682914 | 2008-06-27 04:13:00 | Ctrl-alt-delete, view / select columns, tick PID Then open up a command prompt Type netstat - no. To the right, in the command prompt, you'll see PID and the # The svchost entry will also show a PID (to the right). If it shows in the command prompt whats it say on the left?? |
Speedy Gonzales (78) | ||
| 682915 | 2008-06-27 04:17:00 | sorry speedy, how do I open a command prompt? | mark1978 (13845) | ||
| 682916 | 2008-06-27 04:19:00 | Start / all programs / accessories / command prompt Match the PID of the svchost in task manager with the PID you get in the command prompt |
Speedy Gonzales (78) | ||
| 682917 | 2008-06-27 04:20:00 | found it, it al says 0 | mark1978 (13845) | ||
| 682918 | 2008-06-27 04:23:00 | at the moment svchost and system idle, it fluctuates between 50 and 99% Ok, thanks for that. In the run box (Start/Run) I want you to type in: net stop bits and press enter then open it again and type in: net stop wuauserv and press enter (Feel free to copy and paste that text - might be quicker) Then have a look at the task manager, the CPU usage on svchost.exe should have dropped. Let me know what happens to the svchost.exe that was using lots of cpu after typing that text into the run box. :) |
wratterus (105) | ||
| 1 2 3 4 5 | |||||