I have been working with a friend of mine whose CPU utilization is out of control. Ad-Aware, SpyBot S&D, E-Trust Antivirus, etc. all come up empty. Had him install Process Explorer and Save the PID as a text file... Can someone give me a hand? This is the process running 98% and causing his PC to lag on start-up.
Process PID CPU Description Company Name
AcroTray.exe 2516 AcroTray Adobe Systems Inc.
alg.exe 3164 Application Layer Gateway Service Microsoft Corporation
AnyDVD.exe 2044 AnyDVD Application SlySoft, Inc.
csrss.exe 756 Client Server Runtime Process Microsoft Corporation
ctfmon.exe 440 CTF Loader Microsoft Corporation
DPCs n/a Deferred Procedure Calls
DrgToDsc.exe 2028 Drag To Disc Application Roxio
explorer.exe 1920 Windows Explorer Microsoft Corporation
fxssvc.exe 1988 Fax Service Microsoft Corporation
gcasDtServ.exe 460 Microsoft AntiSpyware Data Service Microsoft Corporation
gcasServ.exe 344 Microsoft AntiSpyware Service Microsoft Corporation
InoRpc.exe 272 Computer Associates International, Inc.
InoRT.exe 604 Computer Associates International, Inc.
InoTask.exe 648 Computer Associates International, Inc.
Interrupts n/a Hardware Interrupts
jusched.exe 288 Java(TM) 2 Platform Standard Edition binary Sun Microsystems, Inc.
LEXBCES.EXE 1588 LexBce Service Lexmark International, Inc.
LEXPPS.EXE 1660 LEXPPS.EXE Lexmark International, Inc.
LogWatNT.exe 932
lsass.exe 844 LSA Shell (Export Version) Microsoft Corporation
LwbWheel.exe 212 Mouse Control Application
lxbbbmgr.exe 136 Lexmark X74-X75 Button Manager Lexmark International, Inc.
lxbbbmon.exe 192 Lexmark X74-X75 Button Monitor Lexmark International, Inc.
MDM.EXE 1048 Machine Debug Manager Microsoft Corporation
MsPMSPSv.exe 1764 WMDM PMSP Service Microsoft Corporation
nvsvc32.exe 1260 NVIDIA Driver Helper Service, Version 56.64 NVIDIA Corporation
Playlist.exe 536 Roxio AudioCentral Media Manager Playlist Roxio, Inc.
procexp.exe 3748 1.54 Sysinternals Process Explorer Sysinternals
qbdagent2002.exe 2896 QBDAgent Module
RxMon.exe 2036 Roxio AudioCentral Media Manager Tray App Roxio, Inc.
services.exe 832 Services and Controller app Microsoft Corporation
smss.exe 688 Windows NT Session Manager Microsoft Corporation
snmp.exe 1468 SNMP Service Microsoft Corporation
spoolsv.exe 1620 Spooler SubSystem App Microsoft Corporation
sstray.exe 1976 NVIDIA nForce(TM) Taskbar Application NVIDIA Corporation
svchost.exe 1028 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1108 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1208 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1252 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1332 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1316 98.46 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1500 Generic Host Process for Win32 Services Microsoft Corporation
System 4
System Idle Process 0
tcpsvcs.exe 1408 TCP/IP Services Application Microsoft Corporation
wdfmgr.exe 1744 Windows User Mode Driver Manager Microsoft Corporation
winlogon.exe 780 Windows NT Logon Application Microsoft Corporation
Process: svchost.exe Pid: 1316
Type Name
Desktop \Default
Directory \Windows
Directory \BaseNamedObjects
Directory \KnownDlls
Event \BaseNamedObjects\DINPUTWINMM
Event \BaseNamedObjects\userenv: User Profile setup event
File \Device\KsecDD
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9
File C:\WINDOWS\system32
File \Device\NamedPipe\net\NtControlPipe15
Key HKLM
Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32
Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32
KeyedEvent \KernelObjects\CritSecOutOfMemoryEvent
Mutant \BaseNamedObjects\SHIMLIB_LOG_MUTEX
Semaphore \BaseNamedObjects\shell.{A48F1A32-A340-11D1-BC6B-00A0C90312E1}
Thread svchost.exe(1316): 1320
Thread svchost.exe(1316): 1400
Token NT AUTHORITY\SYSTEM
WindowStation \Windows\WindowStations\WinSta0
WindowStation \Windows\WindowStations\WinSta0
