BSOD during installation!

C

calamitag

Member
Joined
Jul 9, 2012
Posts
24
· OS - Windows 7 professional 64 bit service pack 1;
· x86 (64-bit)
· What was original installed OS on system: Windows 7 professional 64 bit;
· full retail version;
· Age of system: 13 months;
· Age of OS installation - have you re-installed the OS: 13 months no reinstallation;

· CPU: Intel Core i7-2670QM;
· Video Card: nVidia Quadro 1000M;
· MotherBoard: Hewlett-Packard 1631;
· Power Supply - brand & wattage: Hewlett Packard 45 W

· System Manufacturer: Hewlett Packard
· Exact model number: Product number: LY527EA#ABZ Elitebook 8560w


Hello, thank you for your invaluable free service you're offering since so long.
I got a BSOD while installing the bluetooth driver (picture):
15374920

Below the error message:
"The computer has rebooted from a bugcheck. The bugcheck was: 0x00000019 (0x0000000000000020, 0xfffffa80000090c0, 0xfffffa80000090c0, 0x0000000004000184). A dump was saved in: C:\Windows\Minidump\082213-28251-01.dmp. Report Id: 082213-28251-01."
How to prevent to see it again pls?
Thank you.
 
Last edited by a moderator:
Hi -

There were 3 dumps in the zip attachment dated July 2012; May and August 2013.

July 2012 - probable cause = Avast. The August dump shows that you updated your Avast installation.

May 2013 named Audials Tunebite -
Code: 
rrnetcap.sys        Thu Feb 18 09:18:44 2010 (4B7D4C44)
That same driver was found in the August dump.

Update or remove the product - Driver Reference Table - rrnetcap.sys

August 2013- probable cause = Microsoft Transport Driver Interface (TDI) driver (networking related) -
http://www.sysnative.com/drivers/driver.php?id=tdx.sys

There is a hotfix for tdx.sys from Microsoft - The applications that use the TDI driver for network traffic may stop responding in Windows Server 2008 R2 or in Windows 7

If you install it, be sure to create a system restore point first.

As for Bluetooth, I found these Broadcom drivers in your system files, but none were named in the BSODs -
Code: 
btmmhook	6.3.0.6300	382.28 KB (391,456 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btmmhook.dll
btncopy		6.3.0.6300	546.78 KB (559,904 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btncopy.dll
BtwNamespaceExt	6.3.0.6300	1.23 MB (1,284,896 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwnamespaceext.dll
btwnelib	6.3.0.6300	510.78 KB (523,040 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwnelib.dll
btwapi		6.3.0.6300	745.78 KB (763,680 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwapi.dll
btosif		6.3.0.6300	343.28 KB (351,520 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btosif.dll
btwpimif	6.3.0.6300	265.28 KB (271,648 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwpimif.dll
btrez		6.3.0.6300	22.92 MB (24,032,544 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btrez.dll
btwdins		6.3.0.6300	929.28 KB (951,584 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwdins.exe
bttray		6.3.0.6300	1.08 MB (1,132,320 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\bttray.exe
btwhidcs	6.3.0.6300	504.28 KB (516,384 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwhidcs.dll
BtBalloon	6.3.0.6300	135.78 KB (139,040 bytes)	22-Aug-13 10:58 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btballoon.dll
btwcp		6.3.0.6300	384.78 KB (394,016 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btwcp.dll
BTStackServer	6.3.0.6300	3.48 MB (3,653,408 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btstackserver.exe
BtAudioHelper	6.3.0.6300	294.78 KB (301,856 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btaudiohelper.dll
btosif_ol	6.3.0.6300	568.78 KB (582,432 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btosif_ol.dll
btosif_olx	6.3.0.6300	381.28 KB (390,432 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btosif_olx.dll
btosif_notes	6.3.0.6300	497.78 KB (509,728 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\btosif_notes.dll
BluetoothHeadsetProxy	6.3.0.6300	13.28 KB (13,600 bytes)	29-Jul-10 7:39 PM	Broadcom Corporation.	c:\program files\widcomm\bluetooth software\bluetoothheadsetproxy.exe


I would suggest running Driver Verifier first to see if it flags any 3rd party drivers - https://www.sysnative.com/forums/bs...river-verifier-blue-screen-death-related.html

Regards. . .

jcgriff2


Code: 
Debug session time: Thu Aug 22 09:37:30.845 2013 (UTC - 4:00)
Loading Dump File [C:\Users\a1\SysnativeBSODApps\082213-28251-01.dmp]
Built by: 7601.18205.amd64fre.win7sp1_gdr.130708-1532
System Uptime: 0 days 1:57:55.686
*** ERROR: Module load completed but symbols could not be loaded for tdx.sys
*** ERROR: Module load completed but symbols could not be loaded for afd.sys
Probably caused by : tdx.sys ( tdx+3714 )
BugCheck 19, {20, fffffa80000090c0, fffffa80000090c0, 4000184}
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x00000019]BAD_POOL_HEADER (19)[/url]
Bugcheck code 00000019
Arguments: 
Arg1: 0000000000000020, a pool block header size is corrupt.
Arg2: fffffa80000090c0, The pool entry we were looking for within the page.
Arg3: fffffa80000090c0, The next pool entry.
Arg4: 0000000004000184, (reserved)
BUGCHECK_STR:  0x19_20
PROCESS_NAME:  svchost.exe
FAILURE_BUCKET_ID:  X64_0x19_20_tdx+3714
MaxSpeed:     2200
CurrentSpeed: 2195
BiosVersion = 68SVD Ver. F.42
BiosReleaseDate = 07/15/2013
SystemManufacturer = Hewlett-Packard
SystemProductName = HP EliteBook 8560w
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
Debug session time: Tue May 28 05:21:54.758 2013 (UTC - 4:00)
Loading Dump File [C:\Users\a1\SysnativeBSODApps\052813-38984-01.dmp]
Built by: 7601.18113.amd64fre.win7sp1_gdr.130318-1533
System Uptime: 1 days 1:59:18.206
*** WARNING: Unable to verify timestamp for rrnetcap.sys
*** ERROR: Module load completed but symbols could not be loaded for rrnetcap.sys
Probably caused by : pacer.sys ( pacer!PcFilterRequestComplete+68 )
BugCheck D1, {1, 2, 8, 1}
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000D1]DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)[/url]
Bugcheck code 000000d1
Arguments: 
Arg1: 0000000000000001, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000008, value 0 = read operation, 1 = write operation
Arg4: 0000000000000001, address which referenced memory
PROCESS_NAME:  System
BUGCHECK_STR:  0xD1
DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT
FAILURE_BUCKET_ID:  X64_0xD1_CODE_AV_BAD_IP_pacer!PcFilterRequestComplete+68
MaxSpeed:     2200
CurrentSpeed: 2195
BiosVersion = 68SVD Ver. F.40
BiosReleaseDate = 03/13/2013
SystemManufacturer = Hewlett-Packard
SystemProductName = HP EliteBook 8560w
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
Debug session time: Tue Jul 10 14:55:23.469 2012 (UTC - 4:00)
Loading Dump File [C:\Users\a1\SysnativeBSODApps\071012-23056-01.dmp]
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
System Uptime: 0 days 0:09:32.421
*** WARNING: Unable to verify timestamp for aswSnx.SYS
*** ERROR: Module load completed but symbols could not be loaded for aswSnx.SYS
Probably caused by : aswSnx.SYS ( aswSnx+de708 )
BugCheck 50, {fffff8a016659004, 0, fffff88002ef4708, 0}
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x00000050]PAGE_FAULT_IN_NONPAGED_AREA (50)[/url]
Bugcheck code 00000050
Arguments: 
Arg1: fffff8a016659004, memory referenced.
Arg2: 0000000000000000, value 0 = read operation, 1 = write operation.
Arg3: fffff88002ef4708, If non-zero, the instruction address which referenced the bad memory
	address.
Arg4: 0000000000000000, (reserved)
BUGCHECK_STR:  0x50
DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT
PROCESS_NAME:  AvastSvc.exe
FAILURE_BUCKET_ID:  X64_0x50_aswSnx+de708
MaxSpeed:     2200
CurrentSpeed: 2195
BiosVersion = 68SVD Ver. F.26
BiosReleaseDate = 06/07/2012
SystemManufacturer = Hewlett-Packard
SystemProductName = HP EliteBook 8560w
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
 
Last edited:
It did come with the system. I tried to install the fix from Microsoft, it told me: "The update is not applicable to your computer."

fix not applicable.png
 
Hi -

Apologies for the failed install. The hotfix lists version number 7600, which is pre-Windows 7 SP1 (7601), so the update was likely rolled into W7 SP1.

Please continue with the other items in my post, specifically Driver Verifier.

Regards. . .

jcgriff2
 
Last edited:
Hello,

240820132838.jpg

above the BSOD I got running Driver Veriifier. Attached the minidump.
Even if I do not know if may be relevant for this post I have to inform you that every time I start up my computer the svchost service takes about 15% of the CPU causing the temperature to grow and the fun spinning fast; below images from the task manager:

Fdrespub issue.png svchost issue.png
thank you.

Best regards,

Giuseppe C.
 

Attachments

AntiLog64 AntiLog64.sys Mon Jul 22 11:28:39 2013
Zemana AntiLogger Driver > Zemana AntiLogger - The #1 Privacy Protection Software

Is this program something new you installed recently or was it just an update from the end of July?


Code: 
**************************Sat Aug 24 12:30:05.476 2013 (UTC - 4:00)**************************
Opened log file 'C:\Users\Owner\AppData\Local\Temp\SysnativeBSODApps\12415\dmps\outkdOutput1.txt'

Microsoft (R) Windows Debugger Version 6.12.0002.633 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\Owner\Bsodapps\SysnativeBSODApps\082413-20233-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: c:\symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (8 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.18205.amd64fre.win7sp1_gdr.130708-1532
Machine Name:
Kernel base = 0xfffff800`03406000 PsLoadedModuleList = 0xfffff800`036496d0
Debug session time: Sat Aug 24 12:30:05.476 2013 (UTC - 4:00)
System Uptime: 0 days 0:00:45.333
Loading Kernel Symbols
...............................................................
................................................................
........................................................
Loading User Symbols
Loading unloaded module list
...
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck C4, {f6, 354, fffffa80176bf880, fffff88004ab4cfe}

Unable to load image AntiLog64.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for AntiLog64.sys
*** ERROR: Module load completed but symbols could not be loaded for AntiLog64.sys
Probably caused by : AntiLog64.sys ( AntiLog64+2cfe )

Followup: MachineOwner
---------

4: kd> !analyze -v; !sysinfo cpuspeed; !sysinfo SMBIOS; lmtsmn; q
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
A device driver attempting to corrupt the system has been caught.  This is
because the driver was specified in the registry as being suspect (by the
administrator) and the kernel has enabled substantial checking of this driver.
If the driver attempts to corrupt the system, bugchecks 0xC4, 0xC1 and 0xA will
be among the most commonly seen crashes.
Arguments:
Arg1: 00000000000000f6, Referencing user handle as KernelMode.
Arg2: 0000000000000354, Handle value being referenced.
Arg3: fffffa80176bf880, Address of the current process.
Arg4: fffff88004ab4cfe, Address inside the driver that is performing the incorrect reference.

Debugging Details:
------------------


BUGCHECK_STR:  0xc4_f6

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

PROCESS_NAME:  svchost.exe

CURRENT_IRQL:  0

LAST_CONTROL_TRANSFER:  from fffff800039094ec to fffff8000347bb80

STACK_TEXT:  
fffff880`0bec2408 fffff800`039094ec : 00000000`000000c4 00000000`000000f6 00000000`00000354 fffffa80`176bf880 : nt!KeBugCheckEx
fffff880`0bec2410 fffff800`0391ebf4 : 00000000`00000354 fffffa80`176bf880 00000000`00000004 00000000`00000002 : nt!VerifierBugCheckIfAppropriate+0x3c
fffff880`0bec2450 fffff800`036d5b10 : 00002a78`8000006f fffff880`0bec2748 fffff880`0bec2b00 00000000`00000000 : nt!VfCheckUserHandle+0x1b4
fffff880`0bec2530 fffff800`03790085 : fffffa80`176bf800 00000000`00001000 fffffa80`0fd17b40 00000000`00000000 : nt! ?? ::NNGAKEGL::`string'+0x2026e
fffff880`0bec2600 fffff800`0347ae13 : 00000000`00000354 00000000`00000000 00000000`00000000 00000000`00000000 : nt!NtQueryInformationProcess+0x964
fffff880`0bec2a70 fffff800`034773d0 : fffff800`0390e2b3 00000000`0000002b fffff880`0bec2d50 fffff880`0bec2d18 : nt!KiSystemServiceCopyEnd+0x13
fffff880`0bec2c78 fffff800`0390e2b3 : 00000000`0000002b fffff880`0bec2d50 fffff880`0bec2d18 fffff800`034773d0 : nt!KiServiceLinkage
fffff880`0bec2c80 fffff880`04ab4cfe : 00000000`00000698 fffff880`0bec2d50 00000000`0000002b 00000000`00000000 : nt!VfZwQueryInformationProcess+0x63
fffff880`0bec2cd0 00000000`00000698 : fffff880`0bec2d50 00000000`0000002b 00000000`00000000 fffff880`0bec2d70 : AntiLog64+0x2cfe
fffff880`0bec2cd8 fffff880`0bec2d50 : 00000000`0000002b 00000000`00000000 fffff880`0bec2d70 00000000`00000002 : 0x698
fffff880`0bec2ce0 00000000`0000002b : 00000000`00000000 fffff880`0bec2d70 00000000`00000002 00000000`00000354 : 0xfffff880`0bec2d50
fffff880`0bec2ce8 00000000`00000000 : fffff880`0bec2d70 00000000`00000002 00000000`00000354 00000000`00000698 : 0x2b


STACK_COMMAND:  kb

FOLLOWUP_IP: 
AntiLog64+2cfe
fffff880`04ab4cfe 8bf8            mov     edi,eax

SYMBOL_STACK_INDEX:  8

SYMBOL_NAME:  AntiLog64+2cfe

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: AntiLog64

IMAGE_NAME:  AntiLog64.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  51ed4fa7

FAILURE_BUCKET_ID:  X64_0xc4_f6_AntiLog64+2cfe

BUCKET_ID:  X64_0xc4_f6_AntiLog64+2cfe

Followup: MachineOwner
---------

sysinfo: could not find necessary interfaces.
sysinfo: note that mssmbios.sys must be loaded (XPSP2+).
sysinfo: could not find necessary interfaces.
sysinfo: note that mssmbios.sys must be loaded (XPSP2+).
start             end                 module name
fffff880`0636e000 fffff880`063ac000   1394ohci 1394ohci.sys Sat Nov 20 05:44:56 2010 (4CE7A6A8)
fffff880`054e5000 fffff880`054f2000   Accelerometer Accelerometer.sys Fri May 13 14:47:02 2011 (4DCD7CA6)
fffff880`00e00000 fffff880`00e57000   ACPI     ACPI.sys     Sat Nov 20 04:19:16 2010 (4CE79294)
fffff880`01b0b000 fffff880`01b94000   afd      afd.sys      Tue Dec 27 22:59:20 2011 (4EFA9418)
fffff880`055c8000 fffff880`055de000   AgileVpn AgileVpn.sys Mon Jul 13 20:10:24 2009 (4A5BCCF0)
fffff880`09090000 fffff880`091c2000   agrsm64  agrsm64.sys  Tue Jan 26 12:52:20 2010 (4B5F2BD4)
fffff880`011a7000 fffff880`011b2000   amdxata  amdxata.sys  Fri Mar 19 12:18:18 2010 (4BA3A3CA)
fffff880`04ab2000 fffff880`04ad2000   AntiLog64 AntiLog64.sys Mon Jul 22 11:28:39 2013 (51ED4FA7)
fffff880`095b3000 fffff880`095be000   aswFsBlk aswFsBlk.SYS Thu May 09 04:47:16 2013 (518B6294)
fffff880`0469b000 fffff880`046be000   aswFW    aswFW.SYS    Thu May 09 04:48:40 2013 (518B62E8)
fffff880`01576000 fffff880`0157f000   aswKbd   aswKbd.sys   Thu May 09 04:47:49 2013 (518B62B5)
fffff880`0958b000 fffff880`095b3000   aswMonFlt aswMonFlt.sys Thu May 09 04:47:23 2013 (518B629B)
fffff880`017db000 fffff880`017e2000   aswNdis  aswNdis.sys  Sat Jan 09 16:22:03 2010 (4B48F37B)
fffff880`0176a000 fffff880`017b0000   aswNdis2 aswNdis2.sys Thu May 09 04:48:03 2013 (518B62C3)
fffff880`03fa6000 fffff880`03fba000   aswrdr2  aswrdr2.sys  Thu May 09 04:47:41 2013 (518B62AD)
fffff880`01aea000 fffff880`01afd000   aswRvrt  aswRvrt.sys  Thu May 09 04:47:02 2013 (518B6286)
fffff880`046e2000 fffff880`047e2000   aswSnx   aswSnx.SYS   Thu Jun 27 11:37:25 2013 (51CC5C35)
fffff880`04b7f000 fffff880`04be1000   aswSP    aswSP.SYS    Thu Jun 27 11:37:21 2013 (51CC5C31)
fffff880`046be000 fffff880`046d0000   aswTdi   aswTdi.SYS   Thu May 09 04:47:32 2013 (518B62A4)
fffff880`01aba000 fffff880`01aea000   aswVmm   aswVmm.sys   Thu Jun 27 11:35:59 2013 (51CC5BDF)
fffff960`00960000 fffff960`009c1000   ATMFD    ATMFD.DLL    Sun Dec 16 09:45:03 2012 (50CDDE6F)
fffff880`00ec8000 fffff880`00ed4000   BATTC    BATTC.SYS    Mon Jul 13 19:31:01 2009 (4A5BC3B5)
fffff880`047eb000 fffff880`047f2000   Beep     Beep.SYS     Mon Jul 13 20:00:13 2009 (4A5BCA8D)
fffff880`04aa1000 fffff880`04ab2000   blbdrive blbdrive.sys Mon Jul 13 19:35:59 2009 (4A5BC4DF)
fffff880`0202c000 fffff880`0203c000   BthEnum  BthEnum.sys  Mon Jul 13 20:06:52 2009 (4A5BCC1C)
fffff880`0205c000 fffff880`02073000   bthmodem bthmodem.sys Mon Jul 13 20:06:52 2009 (4A5BCC1C)
fffff880`0203c000 fffff880`0205c000   bthpan   bthpan.sys   Mon Jul 13 20:07:00 2009 (4A5BCC24)
fffff880`09200000 fffff880`0928c000   bthport  bthport.sys  Fri Jul 06 16:07:41 2012 (4FF7458D)
fffff880`09573000 fffff880`0958b000   BTHUSB   BTHUSB.sys   Wed Apr 27 23:54:56 2011 (4DB8E510)
fffff880`092ea000 fffff880`09573000   btwampfl btwampfl.sys Mon Jul 12 21:41:18 2010 (4C3BC43E)
fffff880`08c00000 fffff880`08c87000   btwaudio btwaudio.sys Mon Jul 19 17:43:27 2010 (4C44C6FF)
fffff880`08d5c000 fffff880`08dd9000   btwavdt  btwavdt.sys  Mon Jul 19 17:42:27 2010 (4C44C6C3)
fffff880`02073000 fffff880`02081000   btwl2cap btwl2cap.sys Mon Mar 01 21:25:23 2010 (4B8C7713)
fffff880`021e9000 fffff880`021eca00   btwrchid btwrchid.sys Mon Jul 19 17:43:43 2010 (4C44C70F)
fffff880`091ee000 fffff880`091fc000   ccdcmbox64 ccdcmbox64.sys Mon May 28 06:40:26 2012 (4FC3561A)
fffff880`09053000 fffff880`0905f000   ccdcmbx64 ccdcmbx64.sys Mon May 28 06:40:24 2012 (4FC35618)
fffff960`00620000 fffff960`00647000   cdd      cdd.dll      Sat Nov 20 07:55:34 2010 (4CE7C546)
fffff880`03f7c000 fffff880`03fa6000   cdrom    cdrom.sys    Sat Nov 20 04:19:20 2010 (4CE79298)
fffff880`00d3e000 fffff880`00dfe000   CI       CI.dll       Sat Nov 20 08:12:36 2010 (4CE7C944)
fffff880`04b4f000 fffff880`04b5a000   ckldrv   ckldrv.sys   Mon Mar 17 12:46:29 2008 (47DEA065)
fffff880`01a8a000 fffff880`01aba000   CLASSPNP CLASSPNP.SYS Sat Nov 20 04:19:23 2010 (4CE7929B)
fffff880`00ce0000 fffff880`00d3e000   CLFS     CLFS.SYS     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`054f2000 fffff880`054f6500   CmBatt   CmBatt.sys   Mon Jul 13 19:31:03 2009 (4A5BC3B7)
fffff880`014f3000 fffff880`01565000   cng      cng.sys      Fri Aug 24 11:47:16 2012 (5037A204)
fffff880`00ebf000 fffff880`00ec8000   compbatt compbatt.sys Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`05500000 fffff880`05510000   CompositeBus CompositeBus.sys Sat Nov 20 05:33:17 2010 (4CE7A3ED)
fffff880`09298000 fffff880`092a6000   crashdmp crashdmp.sys Mon Jul 13 20:01:01 2009 (4A5BCABD)
fffff880`04a00000 fffff880`04a83000   csc      csc.sys      Sat Nov 20 04:27:12 2010 (4CE79470)
fffff880`04a83000 fffff880`04aa1000   dfsc     dfsc.sys     Sat Nov 20 04:26:31 2010 (4CE79447)
fffff880`04b70000 fffff880`04b7f000   discache discache.sys Mon Jul 13 19:37:18 2009 (4A5BC52E)
fffff880`01a74000 fffff880`01a8a000   disk     disk.sys     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`0555d000 fffff880`0557f000   drmk     drmk.sys     Mon Jul 13 21:01:25 2009 (4A5BD8E5)
fffff880`021d6000 fffff880`021e9000   dump_dumpfve dump_dumpfve.sys Mon Jul 13 19:21:51 2009 (4A5BC18F)
fffff880`02082000 fffff880`021d6000   dump_iaStor dump_iaStor.sys Wed Jan 12 20:50:12 2011 (4D2E5A54)
fffff880`0928c000 fffff880`09298000   Dxapi    Dxapi.sys    Mon Jul 13 19:38:28 2009 (4A5BC574)
fffff880`050b4000 fffff880`051a9000   dxgkrnl  dxgkrnl.sys  Tue Apr 09 23:15:51 2013 (5164D967)
fffff880`051a9000 fffff880`051ef000   dxgmms1  dxgmms1.sys  Tue Apr 09 23:14:54 2013 (5164D92E)
fffff880`05035000 fffff880`050ae000   e1c62x64 e1c62x64.sys Wed Nov 28 14:17:24 2012 (50B66344)
fffff880`09000000 fffff880`09036000   fastfat  fastfat.SYS  Mon Jul 13 19:23:28 2009 (4A5BC1F0)
fffff880`01000000 fffff880`01014000   fileinfo fileinfo.sys Mon Jul 13 19:34:25 2009 (4A5BC481)
fffff880`011b2000 fffff880`011fe000   fltmgr   fltmgr.sys   Sat Nov 20 04:19:24 2010 (4CE7929C)
fffff880`0157f000 fffff880`01589000   Fs_Rec   Fs_Rec.sys   Wed Feb 29 22:41:06 2012 (4F4EEFD2)
fffff880`01a2e000 fffff880`01a68000   fvevol   fvevol.sys   Wed Jan 23 22:11:24 2013 (5100A65C)
fffff880`01589000 fffff880`015d2000   fwpkclnt fwpkclnt.sys Wed Jan 02 22:06:48 2013 (50E4F5C8)
fffff880`054de000 fffff880`054e4c00   GEARAspiWDM GEARAspiWDM.sys Thu May 03 15:56:17 2012 (4FA2E2E1)
fffff880`01014000 fffff880`01023000   GenEncSF GenEncSF.sys Mon Apr 06 01:30:51 2009 (49D9938B)
fffff800`039ec000 fffff800`03a35000   hal      hal.dll      Sat Nov 20 08:00:25 2010 (4CE7C669)
fffff880`05000000 fffff880`05024000   HDAudBus HDAudBus.sys Sat Nov 20 05:43:42 2010 (4CE7A65E)
fffff880`05024000 fffff880`05035000   HECIx64  HECIx64.sys  Tue Oct 19 19:33:43 2010 (4CBE2AD7)
fffff880`0906d000 fffff880`09086000   HIDCLASS HIDCLASS.SYS Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`09086000 fffff880`0908e080   HIDPARSE HIDPARSE.SYS Mon Jul 13 20:06:17 2009 (4A5BCBF9)
fffff880`0905f000 fffff880`0906d000   hidusb   hidusb.sys   Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`01a68000 fffff880`01a74000   hotcore3 hotcore3.sys Wed Jul 14 03:44:13 2010 (4C3D6ACD)
fffff880`01470000 fffff880`0147a000   hpdskflt hpdskflt.sys Fri May 13 14:47:02 2011 (4DCD7CA6)
fffff880`0667d000 fffff880`06689000   HpqKbFiltr HpqKbFiltr.sys Tue Feb 16 13:22:39 2010 (4B7AE26F)
fffff880`04b65000 fffff880`04b70000   HWiNFO64A HWiNFO64A.SYS Sat May 11 03:17:38 2013 (518DF092)
fffff880`01467000 fffff880`01470000   hwpolicy hwpolicy.sys Sat Nov 20 04:18:54 2010 (4CE7927E)
fffff880`0665f000 fffff880`0667d000   i8042prt i8042prt.sys Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`01053000 fffff880`011a7000   iaStor   iaStor.sys   Wed Jan 12 20:50:12 2011 (4D2E5A54)
fffff880`01023000 fffff880`01032000   IMGSF    IMGSF.sys    Mon Apr 06 01:31:11 2009 (49D9939F)
fffff880`04be1000 fffff880`04bf7000   intelppm intelppm.sys Mon Jul 13 19:19:25 2009 (4A5BC0FD)
fffff880`063b6000 fffff880`063e4000   jmcr     jmcr.sys     Mon Jul 30 22:57:46 2012 (501749AA)
fffff880`063ac000 fffff880`063b6000   johci    johci.sys    Mon Jul 16 03:15:35 2012 (5003BF97)
fffff880`054c0000 fffff880`054cf000   kbdclass kbdclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff800`00bb5000 fffff800`00bbf000   kdcom    kdcom.dll    Sat Feb 05 11:52:49 2011 (4D4D8061)
fffff880`0557f000 fffff880`055c2000   ks       ks.sys       Sat Nov 20 05:33:23 2010 (4CE7A3F3)
fffff880`014d8000 fffff880`014f3000   ksecdd   ksecdd.sys   Fri Jun 01 22:50:23 2012 (4FC97F6F)
fffff880`017b0000 fffff880`017db000   ksecpkg  ksecpkg.sys  Fri Aug 24 11:48:29 2012 (5037A24D)
fffff880`055c2000 fffff880`055c7200   ksthunk  ksthunk.sys  Mon Jul 13 20:00:19 2009 (4A5BCA93)
fffff880`092a6000 fffff880`092c9000   luafv    luafv.sys    Mon Jul 13 19:26:13 2009 (4A5BC295)
fffff880`00c7d000 fffff880`00ccc000   mcupdate mcupdate.dll Sat Nov 20 08:03:51 2010 (4CE7C737)
fffff880`091c2000 fffff880`091d1000   modem    modem.sys    Mon Jul 13 20:10:48 2009 (4A5BCD08)
fffff880`021ed000 fffff880`021fb000   monitor  monitor.sys  Mon Jul 13 19:38:52 2009 (4A5BC58C)
fffff880`054cf000 fffff880`054de000   mouclass mouclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`091d1000 fffff880`091de000   mouhid   mouhid.sys   Mon Jul 13 20:00:20 2009 (4A5BCA94)
fffff880`00fce000 fffff880`00fe8000   mountmgr mountmgr.sys Sat Nov 20 04:19:21 2010 (4CE79299)
fffff880`04650000 fffff880`0465b000   Msfs     Msfs.SYS     Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`00e60000 fffff880`00e6a000   msisadrv msisadrv.sys Mon Jul 13 19:19:26 2009 (4A5BC0FE)
fffff880`0147a000 fffff880`014d8000   msrpc    msrpc.sys    Sat Nov 20 04:21:56 2010 (4CE79334)
fffff880`04b5a000 fffff880`04b65000   mssmbios mssmbios.sys Mon Jul 13 19:31:10 2009 (4A5BC3BE)
fffff880`01455000 fffff880`01467000   mup      mup.sys      Mon Jul 13 19:23:45 2009 (4A5BC201)
fffff880`01600000 fffff880`01616000   NBVol    NBVol.sys    Tue May 17 06:50:37 2011 (4DD252FD)
fffff880`0144c000 fffff880`01455000   NBVolUp  NBVolUp.sys  Tue May 17 06:51:20 2011 (4DD25328)
fffff880`01618000 fffff880`0170a000   ndis     ndis.sys     Wed Aug 22 11:11:46 2012 (5034F6B2)
fffff880`05424000 fffff880`05430000   ndistapi ndistapi.sys Mon Jul 13 20:10:00 2009 (4A5BCCD8)
fffff880`05204000 fffff880`05233000   ndiswan  ndiswan.sys  Sat Nov 20 05:52:32 2010 (4CE7A870)
fffff880`05334000 fffff880`05349000   NDProxy  NDProxy.SYS  Sat Nov 20 05:52:20 2010 (4CE7A864)
fffff880`03e00000 fffff880`03e0f000   netbios  netbios.sys  Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`03fba000 fffff880`03fff000   netbt    netbt.sys    Sat Nov 20 04:23:18 2010 (4CE79386)
fffff880`0170a000 fffff880`0176a000   NETIO    NETIO.SYS    Wed Aug 22 11:11:28 2012 (5034F6A0)
fffff880`066a8000 fffff880`071f1000   Netwsw00 Netwsw00.sys Sun Jun 03 11:33:40 2012 (4FCB83D4)
fffff880`0465b000 fffff880`0466c000   Npfs     Npfs.SYS     Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`04b43000 fffff880`04b4f000   nsiproxy nsiproxy.sys Mon Jul 13 19:21:02 2009 (4A5BC15E)
fffff800`03406000 fffff800`039ec000   nt       ntkrnlmp.exe Mon Jul 08 23:15:54 2013 (51DB806A)
fffff880`0124d000 fffff880`013ef000   Ntfs     Ntfs.sys     Fri Apr 12 07:54:36 2013 (5167F5FC)
fffff880`047e2000 fffff880`047eb000   Null     Null.SYS     Mon Jul 13 19:19:37 2009 (4A5BC109)
fffff880`0531b000 fffff880`05334000   nusb3hub nusb3hub.sys Thu Dec 09 23:50:35 2010 (4D01B19B)
fffff880`06600000 fffff880`06631000   nusb3xhc nusb3xhc.sys Thu Dec 09 23:50:35 2010 (4D01B19B)
fffff880`06316000 fffff880`06317180   nvBridge nvBridge.kmd Sun Jun 05 06:46:48 2011 (4DEB5E98)
fffff880`05349000 fffff880`0537c000   nvhda64v nvhda64v.sys Mon Feb 25 00:27:35 2013 (512AF647)
fffff880`05831000 fffff880`06316000   nvlddmkm nvlddmkm.sys Fri Jun 21 05:06:16 2013 (51C41788)
fffff880`01b94000 fffff880`01bba000   pacer    pacer.sys    Sat Nov 20 05:52:18 2010 (4CE7A862)
fffff880`06642000 fffff880`0665f000   parport  parport.sys  Mon Jul 13 20:00:40 2009 (4A5BCAA8)
fffff880`00eaa000 fffff880`00ebf000   partmgr  partmgr.sys  Sat Mar 17 01:06:09 2012 (4F641BC1)
fffff880`09047000 fffff880`09053000   pccsmcfdx64 pccsmcfdx64.sys Thu May 31 02:12:34 2012 (4FC70BD2)
fffff880`00e6a000 fffff880`00e9d000   pci      pci.sys      Sat Nov 20 04:19:11 2010 (4CE7928F)
fffff880`01565000 fffff880`01576000   pcw      pcw.sys      Mon Jul 13 19:19:27 2009 (4A5BC0FF)
fffff880`091de000 fffff880`091ee000   point64  point64.sys  Wed May 18 04:07:20 2011 (4DD37E38)
fffff880`05520000 fffff880`0555d000   portcls  portcls.sys  Mon Jul 13 20:06:27 2009 (4A5BCC03)
fffff880`00ccc000 fffff880`00ce0000   PSHED    PSHED.dll    Mon Jul 13 21:32:23 2009 (4A5BE027)
fffff880`04b34000 fffff880`04b43000   PTFD     PTFD.SYS     Mon Apr 06 01:29:19 2009 (49D9932F)
fffff880`05400000 fffff880`05424000   rasl2tp  rasl2tp.sys  Sat Nov 20 05:52:34 2010 (4CE7A872)
fffff880`05233000 fffff880`0524e000   raspppoe raspppoe.sys Mon Jul 13 20:10:17 2009 (4A5BCCE9)
fffff880`0524e000 fffff880`0526f000   raspptp  raspptp.sys  Sat Nov 20 05:52:31 2010 (4CE7A86F)
fffff880`0526f000 fffff880`05289000   rassstp  rassstp.sys  Mon Jul 13 20:10:25 2009 (4A5BCCF1)
fffff880`04ae3000 fffff880`04b34000   rdbss    rdbss.sys    Sat Nov 20 04:27:51 2010 (4CE79497)
fffff880`05296000 fffff880`052a1000   rdpbus   rdpbus.sys   Mon Jul 13 20:17:46 2009 (4A5BCEAA)
fffff880`04635000 fffff880`0463e000   RDPCDD   RDPCDD.sys   Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`0463e000 fffff880`04647000   rdpencdd rdpencdd.sys Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`04647000 fffff880`04650000   rdprefmp rdprefmp.sys Mon Jul 13 20:16:35 2009 (4A5BCE63)
fffff880`01200000 fffff880`0123a000   rdyboost rdyboost.sys Sat Nov 20 04:43:10 2010 (4CE7982E)
fffff880`02000000 fffff880`0202c000   rfcomm   rfcomm.sys   Mon Jul 13 20:06:56 2009 (4A5BCC20)
fffff880`052a1000 fffff880`052ad000   rrnetcap rrnetcap.sys Thu Feb 18 09:18:44 2010 (4B7D4C44)
fffff880`05800000 fffff880`0582f000   SCSIPORT SCSIPORT.SYS Sat Nov 20 05:34:01 2010 (4CE7A419)
fffff880`017f2000 fffff880`017fa000   spldr    spldr.sys    Mon May 11 12:56:27 2009 (4A0858BB)
fffff880`03e0f000 fffff880`03f11980   SPUVCbv_x64 SPUVCbv_x64.sys Sun Sep 23 01:02:09 2012 (505E97D1)
fffff880`08c9e000 fffff880`08d27000   stwrt64  stwrt64.sys  Thu Sep 20 23:02:08 2012 (505BD8B0)
fffff880`052ad000 fffff880`052ae480   swenum   swenum.sys   Mon Jul 13 20:00:18 2009 (4A5BCA92)
fffff880`05448000 fffff880`054c0000   SynTP    SynTP.sys    Fri Jan 11 00:21:14 2013 (50EFA14A)
fffff880`05289000 fffff880`05296000   tapSF0901 tapSF0901.sys Mon Feb 11 07:51:36 2013 (5118E958)
fffff880`05510000 fffff880`05520000   tbhsd    tbhsd.sys    Thu Oct 13 13:37:54 2011 (4E9721F2)
fffff880`01800000 fffff880`01a00000   tcpip    tcpip.sys    Fri Jul 05 23:12:44 2013 (51D78B2C)
fffff880`0468e000 fffff880`0469b000   TDI      TDI.SYS      Sat Nov 20 04:22:06 2010 (4CE7933E)
fffff880`0466c000 fffff880`0468e000   tdx      tdx.sys      Sat Nov 20 04:21:54 2010 (4CE79332)
fffff880`01beb000 fffff880`01bff000   termdd   termdd.sys   Sat Nov 20 06:03:40 2010 (4CE7AB0C)
fffff880`06633000 fffff880`06642000   tpm      tpm.sys      Mon Jul 13 19:21:48 2009 (4A5BC18C)
fffff960`004a0000 fffff960`004aa000   TSDDD    TSDDD.dll    Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`01a00000 fffff880`01a26000   tunnel   tunnel.sys   Sat Nov 20 05:51:50 2010 (4CE7A846)
fffff880`052af000 fffff880`052c1000   umbus    umbus.sys    Sat Nov 20 05:44:37 2010 (4CE7A695)
fffff880`08d3f000 fffff880`08d5c000   usbccgp  usbccgp.sys  Fri Nov 04 23:44:06 2011 (4EB4B106)
fffff880`06631000 fffff880`06632f00   USBD     USBD.SYS     Fri Nov 04 23:43:53 2011 (4EB4B0F9)
fffff880`051ef000 fffff880`05200000   usbehci  usbehci.sys  Fri Nov 04 23:43:56 2011 (4EB4B0FC)
fffff880`052c1000 fffff880`0531b000   usbhub   usbhub.sys   Fri Nov 04 23:44:27 2011 (4EB4B11B)
fffff880`06318000 fffff880`0636e000   USBPORT  USBPORT.SYS  Fri Nov 04 23:44:03 2011 (4EB4B103)
fffff880`08d31000 fffff880`08d3f000   usbser   usbser.sys   Sat Nov 20 05:43:57 2010 (4CE7A66D)
fffff880`08d27000 fffff880`08d31000   usbser_lowerfltx64 usbser_lowerfltx64.sys Mon May 28 06:40:27 2012 (4FC3561B)
fffff880`00e9d000 fffff880`00eaa000   vdrvroot vdrvroot.sys Mon Jul 13 20:01:31 2009 (4A5BCADB)
fffff880`047f2000 fffff880`04800000   vga      vga.sys      Mon Jul 13 19:38:47 2009 (4A5BC587)
fffff880`04600000 fffff880`04625000   VIDEOPRT VIDEOPRT.SYS Mon Jul 13 19:38:51 2009 (4A5BC58B)
fffff880`017e2000 fffff880`017f2000   vmstorfl vmstorfl.sys Sat Nov 20 04:57:30 2010 (4CE79B8A)
fffff880`00ed4000 fffff880`00ee9000   volmgr   volmgr.sys   Sat Nov 20 04:19:28 2010 (4CE792A0)
fffff880`00c00000 fffff880`00c5c000   volmgrx  volmgrx.sys  Sat Nov 20 04:20:43 2010 (4CE792EB)
fffff880`01400000 fffff880`0144c000   volsnap  volsnap.sys  Thu Feb 24 22:38:18 2011 (4D67242A)
fffff880`071f1000 fffff880`071fe000   vwifibus vwifibus.sys Mon Jul 13 20:07:21 2009 (4A5BCC39)
fffff880`01bba000 fffff880`01bd0000   vwififlt vwififlt.sys Mon Jul 13 20:07:22 2009 (4A5BCC3A)
fffff880`01bd0000 fffff880`01beb000   wanarp   wanarp.sys   Sat Nov 20 05:52:36 2010 (4CE7A874)
fffff880`04625000 fffff880`04635000   watchdog watchdog.sys Mon Jul 13 19:37:35 2009 (4A5BC53F)
fffff880`00efc000 fffff880`00fbe000   Wdf01000 Wdf01000.sys Wed Jul 25 22:25:13 2012 (5010AA89)
fffff880`00fbe000 fffff880`00fce000   WDFLDR   WDFLDR.SYS   Wed Jul 25 22:29:04 2012 (5010AB70)
fffff880`046d0000 fffff880`046d9000   wfplwf   wfplwf.sys   Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff960`00060000 fffff960`00377000   win32k   win32k.sys   Tue Jun 04 23:33:59 2013 (51AEB1A7)
fffff880`09036000 fffff880`09047000   WinUSB   WinUSB.sys   Sat Nov 20 05:43:56 2010 (4CE7A66C)
fffff880`054f7000 fffff880`05500000   wmiacpi  wmiacpi.sys  Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`00e57000 fffff880`00e60000   WMILIB   WMILIB.SYS   Mon Jul 13 19:19:51 2009 (4A5BC117)

Unloaded modules:
fffff880`01afd000 fffff880`01b0b000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`03e15000 fffff880`03f69000   dump_iaStor.
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00154000
fffff880`03f69000 fffff880`03f7c000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00013000
quit:
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``



   --- E O J ---   2013 Aug 24 15:12:32 PM    _99-debug   Copyright 2012 Sysnative Forums
   --- E O J ---   2013 Aug 24 15:12:32 PM    _99-debug   Copyright 2012 Sysnative Forums
   --- E O J ---   2013 Aug 24 15:12:32 PM    _99-debug   Copyright 2012 Sysnative Forums
 
Hello, thank you for your tech support; I've uninstalled it. I wonder if you may tell me something about the issue related to svchost.exe taking too much CPU, thank you.
 
svchost.exe is a generic host process name for services that run from dynamic-link libraries, processes using common .dll's are clumped together under a single scvhost process.
To see what processes are running under the scvhost process at a command prompt(start in the search box type cmd hit enter) at the C: type paste tasklist /SVC it'll list all processes running.
 
Yes but tasklist /SVC list the processes running under each svchost by pid number so you can ID what is using the cpu clock cycles see the example below


Code: 
 Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Users\Owner>tasklist /SVC

Image Name                     PID Services
========================= ======== ============================================
System Idle Process              0 N/A
System                           4 N/A
smss.exe                       424 N/A
csrss.exe                      592 N/A
wininit.exe                    628 N/A
csrss.exe                      652 N/A
winlogon.exe                   684 N/A
services.exe                   740 N/A
lsass.exe                      760 EFS, KeyIso, ProtectedStorage, SamSs
lsm.exe                        768 N/A
svchost.exe                    880 DcomLaunch, PlugPlay, Power
svchost.exe                    976 RpcEptMapper, RpcSs
svchost.exe                    320 AudioSrv, Dhcp, eventlog,
                                   HomeGroupProvider, lmhosts, wscsvc
svchost.exe                    540 AudioEndpointBuilder, IPBusEnum, Netman,
                                   PcaSvc, SysMain, TabletInputService,
                                   TrkWks, UxSms, Wlansvc, wudfsvc
svchost.exe                    544 EventSystem, fdPHost, FontCache, netprofm,
                                   nsi, WdiServiceHost
svchost.exe                    896 Appinfo, BITS, Browser, EapHost, IKEEXT,
                                   iphlpsvc, LanmanServer, MMCSS, ProfSvc,
                                   Schedule, seclogon, SENS, ShellHWDetection,
                                   Themes, Winmgmt, wuauserv
svchost.exe                   1124 gpsvc
SbieSvc.exe                   1208 SbieSvc
svchost.exe                   1340 CryptSvc, Dnscache, LanmanWorkstation,
                                   NlaSvc, Wecsvc
wlanext.exe                   1416 N/A
conhost.exe                   1424 N/A
AvastSvc.exe                  1432 avast! Antivirus
spoolsv.exe                   1600 Spooler
svchost.exe                   1632 BFE, DPS, MpsSvc
armsvc.exe                    1712 AdobeARMservice
mDNSResponder.exe             1748 Bonjour Service
svchost.exe                   1780 FDResPub, SSDPSRV, upnphost, wcncsvc
svchost.exe                   1808 hpqcxs08, hpqddsvc
SDFSSvc.exe                   1968 SDScannerService
svchost.exe                   2108 stisvc
TeamViewer_Service.exe        2140 TeamViewer7
ThpSrv.exe                    2176 Thpsrv
TODDSrv.exe                   2200 TODDSrv
TosCoSrv.exe                  2232 TosCoSrv
WLIDSVC.EXE                   2332 wlidsvc
SDUpdSvc.exe                  2452 SDUpdateService
WLIDSVCM.EXE                  2584 N/A
SDWSCSvc.exe                  2772 SDWSCService
TecoService.exe               2808 TOSHIBA eco Utility Service
svchost.exe                   3004 HPSLPSVC
svchost.exe                   3256 PolicyAgent
SearchIndexer.exe             3852 WSearch
taskhost.exe                  3472 N/A
dwm.exe                       3984 N/A
explorer.exe                  3672 N/A
ThpSrv.exe                    2996 N/A
SynTPEnh.exe                  3920 N/A
RAVCpl64.exe                  3820 N/A
SynTPHelper.exe               2380 N/A
RAVBg64.exe                   1080 N/A
igfxtray.exe                  2884 N/A
hkcmd.exe                     2816 N/A
igfxpers.exe                  3972 N/A
SbieCtrl.exe                  4184 N/A
svchost.exe                   4268 p2pimsvc, p2psvc, PNRPsvc
Greenshot.exe                 4424 N/A
hpqtra08.exe                  4644 N/A
LMS.exe                       4820 LMS
AvastUI.exe                   5020 N/A
ToshibaServiceStation.exe     5080 N/A
KeNotify.exe                  4488 N/A
hpwuschd2.exe                 5136 N/A
concentr.exe                  5228 N/A
SDTray.exe                    5316 N/A
wfcrun32.exe                  5368 N/A
jusched.exe                   5396 N/A
wmpnetwk.exe                  5968 WMPNetworkSvc
svchost.exe                   5860 WinDefend
UNS.exe                       5360 UNS
TosSmartSrv.exe               4448 TOSHIBA HDD SSD Alert Service
TosSENotify.exe               4460 N/A
TMachInfo.exe                 2404 TMachInfo
ielowutil.exe                 5640 N/A
tosKillIndicator.exe          6744 N/A
tosKillIndicator.exe          6152 N/A
SbieSvc.exe                   7176 N/A
firefox.exe                  10484 N/A
tosKillIndicator.exe         14776 N/A
googleearth.exe              12732 N/A
audiodg.exe                   6788 N/A
plugin-container.exe         15604 N/A
FlashPlayerPlugin_11_8_80    13572 N/A
FlashPlayerPlugin_11_8_80    15424 N/A
cmd.exe                       8968 N/A
conhost.exe                   4760 N/A
tasklist.exe                 11320 N/A
WmiPrvSE.exe                 15288 N/A

C:\Users\Owner>
 
Hello, below the information you requestes:

Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Windows\system32>tasklist /SVC

Image Name                     PID Services
========================= ======== ============================================
System Idle Process              0 N/A
System                           4 N/A
smss.exe                       636 N/A
csrss.exe                      796 N/A
wininit.exe                    884 N/A
csrss.exe                      908 N/A
services.exe                   952 N/A
lsass.exe                      972 EFS, KeyIso, ProtectedStorage, SamSs
lsm.exe                        980 N/A
svchost.exe                    764 DcomLaunch, PlugPlay, Power
winlogon.exe                   160 N/A
nvvsvc.exe                    1056 nvsvc
nvwmi64.exe                   1080 NVWMI
svchost.exe                   1120 RpcEptMapper, RpcSs
svchost.exe                   1212 AudioSrv, Dhcp, eventlog,
                                   HomeGroupProvider, lmhosts, wscsvc
svchost.exe                   1252 AudioEndpointBuilder, CscService, hidserv,
                                   HomeGroupListener, Netman, PcaSvc, SysMain,
                                   TrkWks, UxSms, WdiSystemHost, Wlansvc,
                                   wudfsvc
svchost.exe                   1296 EventSystem, fdPHost, FontCache, netprofm,
                                   nsi, SstpSvc, WdiServiceHost,
                                   WinHttpAutoProxySvc
svchost.exe                   1324 AeLookupSvc, Appinfo, BITS, Browser,
                                   CertPropSvc, EapHost, iphlpsvc,
                                   LanmanServer, MMCSS, ProfSvc, RasMan,
                                   Schedule, SENS, SharedAccess,
                                   ShellHWDetection, Themes, Winmgmt, wuauserv
stacsv64.exe                  1356 STacSV
audiodg.exe                   1616 N/A
svchost.exe                   1652 gpsvc
hpservice.exe                 1764 hpsrv
nvxdsync.exe                  1916 N/A
nvvsvc.exe                    1924 N/A
nvwmi64.exe                   1932 N/A
svchost.exe                   1096 CryptSvc, Dnscache, LanmanWorkstation,
                                   NlaSvc, TapiSrv
AvastSvc.exe                  1796 avast! Antivirus
wlanext.exe                   1824 N/A
conhost.exe                   1704 N/A
afwServ.exe                   2084 avast! Firewall
spoolsv.exe                   2256 Spooler
svchost.exe                   2288 FDResPub, SCardSvr, SSDPSRV, upnphost
svchost.exe                   2316 BFE, DPS, MpsSvc
armsvc.exe                    2428 AdobeARMservice
AESTSr64.exe                  2448 AESTFilters
agr64svc.exe                  2480 AgereModemAudio
httpd.exe                     2500 Apache2.2
taskhost.exe                  2784 N/A
dwm.exe                       2828 N/A
explorer.exe                  2856 N/A
dllhost.exe                   3208 N/A
mDNSResponder.exe             3344 Bonjour Service
HD-LogRotatorService.exe      3408 BstHdLogRotatorSvc
btwdins.exe                   3668 btwdins
Crypserv.exe                  3720 Crypkey License
EvtEng.exe                    3820 EvtEng
GingerUpdateService.exe       3880 GingerUpdateService
HPDrvMntSvc.exe               3936 HPDrvMntSvc.exe
HPHotkeyMonitor.exe           3996 hpHotkeyMonitor
JetFlash220Svc-x64.exe        4076 JetFlash220Svc
mysqld.exe                    3472 mysql
rndlresolversvc.exe           3800 RealNetworks Downloader Resolver Service
ReflectService.exe            3976 ReflectService.exe
RegSrvc.exe                   4052 RegSrvc
SCPwrSetSvr.exe               3652 SCPwrSetSvr
c2c_service.exe               3300 Skype C2C Service
svchost.exe                   1832 stisvc
uArcCapture.exe               4156 uArcCapture
vcsFPService.exe              4184 vcsFPService
WLIDSVC.EXE                   4212 wlidsvc
xritedeviced.exe              4284 xritedeviced
WLIDSVCM.EXE                  4328 N/A
i1DisplayDeviceService.ex     4424 i1 Display Service
unsecapp.exe                  4480 N/A
WmiPrvSE.exe                  4664 N/A
httpd.exe                     5080 N/A
alg.exe                       5436 ALG
hpqWmiEx.exe                  5472 hpqwmiex
svchost.exe                   5548 bthserv
rundll32.exe                  5716 N/A
svchost.exe                   6084 PolicyAgent
ipoint.exe                    6172 N/A
sttray64.exe                  6340 N/A
SynTPEnh.exe                  6448 N/A
sidebar.exe                   6576 N/A
SearchIndexer.exe             6596 WSearch
WmiPrvSE.exe                  6740 N/A
SynTPHelper.exe               6924 N/A
wmpnetwk.exe                  7012 WMPNetworkSvc
netsession_win.exe            7068 N/A
TeaTimer.exe                  7120 N/A
AmoltoRecorder.exe            7160 N/A
netsession_win.exe            6136 N/A
Shareaza.exe                  6260 N/A
StikyNot.exe                  6236 N/A
Skype.exe                     6408 N/A
PCSuite.exe                   6372 N/A
BTTray.exe                    3036 N/A
AdobeARM.exe                  6556 N/A
SkyHistoryService.exe         6244 N/A
nusb3mon.exe                  6180 N/A
QLBCTRL.exe                   6208 N/A
QLBController.exe              316 N/A
Creative Cloud.exe            6192 N/A
Dropbox.exe                   6908 N/A
jusched.exe                   6964 N/A
IAStorIcon.exe                3980 N/A
VolCtrl.exe                   3632 N/A
acrotray.exe                  2668 N/A
Com4QLBEx.exe                 6396 Com4QLBEx
CEPServiceManager.exe         6276 N/A
BTStackServer.exe             3856 N/A
ServiceLayer.exe              7252 ServiceLayer
rundll32.exe                  7332 N/A
NclUSBSrv64.exe               7464 N/A
BluetoothHeadsetProxy.exe     7504 N/A
NclRSSrv.exe                  7512 N/A
NclMSBTSrvEx.exe              7548 N/A
CoreSync.exe                  5556 N/A
PrivacyIconClient.exe         5680 N/A
LMS.exe                       8208 LMS
UNS.exe                       8260 UNS
unsecapp.exe                  8272 N/A
Adobe CEF Helper.exe          8436 N/A
HPSA_Service.exe              8792 HP Support Assistant Service
HPWA_Service.exe              8884 HP Wireless Assistant Service
IAStorDataMgrSvc.exe          9028 IAStorDataMgrSvc
HPWA_Main.exe                 9056 N/A
svchost.exe                   4988 WinDefend
WUDFHost.exe                  6972 N/A
HPConnectionManager.exe       5396 N/A
hpCMSrv.exe                   7344 hpCMSrv
SearchProtocolHost.exe        8904 N/A
svchost.exe                   8956 p2pimsvc, p2psvc, PNRPsvc
dllhost.exe                   7312 N/A
cmd.exe                       9708 N/A
TrustedInstaller.exe          9732 TrustedInstaller
conhost.exe                   9692 N/A
firefox.exe                   8780 N/A
plugin-container.exe          7008 N/A
FlashPlayerPlugin_11_8_80     7132 N/A
FlashPlayerPlugin_11_8_80     2536 N/A
OUTLOOK.EXE                   2868 N/A
GingerServices.exe            9944 N/A
OSPPSVC.EXE                   8960 osppsvc
SearchProtocolHost.exe        8332 N/A
SearchFilterHost.exe          8748 N/A
tasklist.exe                  8504 N/A

C:\Windows\system32>

Thank you.
 
Last edited by a moderator:
Thank you, below the information requested:

Code: 
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Windows\system32>tasklist /SVC

Image Name                     PID Services
========================= ======== ============================================
System Idle Process              0 N/A
System                           4 N/A
smss.exe                       636 N/A
csrss.exe                      796 N/A
wininit.exe                    884 N/A
csrss.exe                      908 N/A
services.exe                   952 N/A
lsass.exe                      972 EFS, KeyIso, ProtectedStorage, SamSs
lsm.exe                        980 N/A
svchost.exe                    764 DcomLaunch, PlugPlay, Power
winlogon.exe                   160 N/A
nvvsvc.exe                    1056 nvsvc
nvwmi64.exe                   1080 NVWMI
svchost.exe                   1120 RpcEptMapper, RpcSs
svchost.exe                   1212 AudioSrv, Dhcp, eventlog,
                                   HomeGroupProvider, lmhosts, wscsvc
svchost.exe                   1252 AudioEndpointBuilder, CscService, hidserv,
                                   HomeGroupListener, Netman, PcaSvc, SysMain,
                                   TrkWks, UxSms, WdiSystemHost, Wlansvc,
                                   wudfsvc
svchost.exe                   1296 EventSystem, fdPHost, FontCache, netprofm,
                                   nsi, SstpSvc, WdiServiceHost,
                                   WinHttpAutoProxySvc
svchost.exe                   1324 AeLookupSvc, Appinfo, BITS, Browser,
                                   CertPropSvc, EapHost, iphlpsvc,
                                   LanmanServer, MMCSS, ProfSvc, RasMan,
                                   Schedule, SENS, SharedAccess,
                                   ShellHWDetection, Themes, Winmgmt, wuauserv
stacsv64.exe                  1356 STacSV
audiodg.exe                   1616 N/A
svchost.exe                   1652 gpsvc
hpservice.exe                 1764 hpsrv
nvxdsync.exe                  1916 N/A
nvvsvc.exe                    1924 N/A
nvwmi64.exe                   1932 N/A
svchost.exe                   1096 CryptSvc, Dnscache, LanmanWorkstation,
                                   NlaSvc, TapiSrv
AvastSvc.exe                  1796 avast! Antivirus
wlanext.exe                   1824 N/A
conhost.exe                   1704 N/A
afwServ.exe                   2084 avast! Firewall
spoolsv.exe                   2256 Spooler
svchost.exe                   2288 FDResPub, SCardSvr, SSDPSRV, upnphost
svchost.exe                   2316 BFE, DPS, MpsSvc
armsvc.exe                    2428 AdobeARMservice
AESTSr64.exe                  2448 AESTFilters
agr64svc.exe                  2480 AgereModemAudio
httpd.exe                     2500 Apache2.2
taskhost.exe                  2784 N/A
dwm.exe                       2828 N/A
explorer.exe                  2856 N/A
dllhost.exe                   3208 N/A
mDNSResponder.exe             3344 Bonjour Service
HD-LogRotatorService.exe      3408 BstHdLogRotatorSvc
btwdins.exe                   3668 btwdins
Crypserv.exe                  3720 Crypkey License
EvtEng.exe                    3820 EvtEng
GingerUpdateService.exe       3880 GingerUpdateService
HPDrvMntSvc.exe               3936 HPDrvMntSvc.exe
HPHotkeyMonitor.exe           3996 hpHotkeyMonitor
JetFlash220Svc-x64.exe        4076 JetFlash220Svc
mysqld.exe                    3472 mysql
rndlresolversvc.exe           3800 RealNetworks Downloader Resolver Service
ReflectService.exe            3976 ReflectService.exe
RegSrvc.exe                   4052 RegSrvc
SCPwrSetSvr.exe               3652 SCPwrSetSvr
c2c_service.exe               3300 Skype C2C Service
svchost.exe                   1832 stisvc
uArcCapture.exe               4156 uArcCapture
vcsFPService.exe              4184 vcsFPService
WLIDSVC.EXE                   4212 wlidsvc
xritedeviced.exe              4284 xritedeviced
WLIDSVCM.EXE                  4328 N/A
i1DisplayDeviceService.ex     4424 i1 Display Service
unsecapp.exe                  4480 N/A
WmiPrvSE.exe                  4664 N/A
httpd.exe                     5080 N/A
alg.exe                       5436 ALG
hpqWmiEx.exe                  5472 hpqwmiex
svchost.exe                   5548 bthserv
rundll32.exe                  5716 N/A
svchost.exe                   6084 PolicyAgent
ipoint.exe                    6172 N/A
sttray64.exe                  6340 N/A
SynTPEnh.exe                  6448 N/A
sidebar.exe                   6576 N/A
SearchIndexer.exe             6596 WSearch
WmiPrvSE.exe                  6740 N/A
SynTPHelper.exe               6924 N/A
wmpnetwk.exe                  7012 WMPNetworkSvc
netsession_win.exe            7068 N/A
TeaTimer.exe                  7120 N/A
AmoltoRecorder.exe            7160 N/A
netsession_win.exe            6136 N/A
Shareaza.exe                  6260 N/A
StikyNot.exe                  6236 N/A
Skype.exe                     6408 N/A
PCSuite.exe                   6372 N/A
BTTray.exe                    3036 N/A
AdobeARM.exe                  6556 N/A
SkyHistoryService.exe         6244 N/A
nusb3mon.exe                  6180 N/A
QLBCTRL.exe                   6208 N/A
QLBController.exe              316 N/A
Creative Cloud.exe            6192 N/A
Dropbox.exe                   6908 N/A
jusched.exe                   6964 N/A
IAStorIcon.exe                3980 N/A
VolCtrl.exe                   3632 N/A
acrotray.exe                  2668 N/A
Com4QLBEx.exe                 6396 Com4QLBEx
CEPServiceManager.exe         6276 N/A
BTStackServer.exe             3856 N/A
ServiceLayer.exe              7252 ServiceLayer
rundll32.exe                  7332 N/A
NclUSBSrv64.exe               7464 N/A
BluetoothHeadsetProxy.exe     7504 N/A
NclRSSrv.exe                  7512 N/A
NclMSBTSrvEx.exe              7548 N/A
CoreSync.exe                  5556 N/A
PrivacyIconClient.exe         5680 N/A
LMS.exe                       8208 LMS
UNS.exe                       8260 UNS
unsecapp.exe                  8272 N/A
Adobe CEF Helper.exe          8436 N/A
HPSA_Service.exe              8792 HP Support Assistant Service
HPWA_Service.exe              8884 HP Wireless Assistant Service
IAStorDataMgrSvc.exe          9028 IAStorDataMgrSvc
HPWA_Main.exe                 9056 N/A
svchost.exe                   4988 WinDefend
WUDFHost.exe                  6972 N/A
HPConnectionManager.exe       5396 N/A
hpCMSrv.exe                   7344 hpCMSrv
SearchProtocolHost.exe        8904 N/A
svchost.exe                   8956 p2pimsvc, p2psvc, PNRPsvc
dllhost.exe                   7312 N/A
cmd.exe                       9708 N/A
TrustedInstaller.exe          9732 TrustedInstaller
conhost.exe                   9692 N/A
firefox.exe                   8780 N/A
plugin-container.exe          7008 N/A
FlashPlayerPlugin_11_8_80     7132 N/A
FlashPlayerPlugin_11_8_80     2536 N/A
OUTLOOK.EXE                   2868 N/A
GingerServices.exe            9944 N/A
OSPPSVC.EXE                   8960 osppsvc
SearchProtocolHost.exe        8332 N/A
SearchFilterHost.exe          8748 N/A
tasklist.exe                  8504 N/A

C:\Windows\system32>
 
Last edited by a moderator:
I don't see anything unusual there, in task manager on the processes tab put a check mark in the box that says "show processes from all users" at the bottom then click on the column header that says "Image Name" to sort alphabetically scroll down to the svchost.exe area and give us a screen shot.
 
From what I can see they all look like legit processes, you can try downloading and running service host viewer, you'll have to match up the process by the amount of ram being used to see what in the host is running> svchost viewer - Home
I may just be the part of the networking driver.
 
Do you have a home group set up?
What does the Function Discovery Resource Publication (FDResPub) service do?

The Function Discovery Resource Publication (FDResPub) service is responsible for making the computer and resources attached to it (ex. printers) discoverable and available on the local network. Homegroups relies on this service to function.
Click to expand...

Do you use a Smart Card device?
Process Name: Microsoft Smartcard-Ressource server

Application using this process: Microsoft Smartcard-Ressource server

Software Description:

scardsvr.exe is an application belonging to the Microsoft Windows Operating System, which provides the authentication facilities for smart security cards on your local system.

It is Microsoft's Smart Card & Smart Card Helper service, also called Smart Card Resource Management Server. This service has a dual function : on the one hand it enables support for old non Plug & Play smart card readers, and on the other hand it also provides support for Plug & Play smart card readers.

The process is essential if you have a Smart Card reader, otherwise one should disable it by setting it to Manual on the Services tab.

scardsvr.exe is a system process that is needed for your PC to work properly. It should not be removed. .
Click to expand...

ssdpsrv - Simple Service Discovery Protocol Service is used to detect USB devices when plugged in.

UPNPhost - Universal Plug and Play host.

You can stop each of these services in in task manager to see which(if any ) is causing the CPU usage.
 

Has Sysnative Forums helped you? Please consider donating to help us support the site!

Back
Top