srt6 Posted June 27, 2008 Report Share Posted June 27, 2008 I installed uTorrent about two weeks ago.Everything ran well at first, then I started to get an occasional buzz from the speakers that disappeared when I clicked the mouse.This went on for about a week, and then the keyboard started having intermittent problems. Now it is totally FUBAR, and the mouse is starting to degrade and when I open a browser it has a mind of its own.I am guessing that this is a virus, but I have been running AVAST antivirus and Ad-Aware anti-spyware, and have never had any such problems before uTorrent.Could this have anything to do with uTorrent? The torrents I accessed all came from mininova.I am running Windows XP, and I am hoping not to have to wipe the hard drive clean and start over.I did read the FAQ's, and will try the fix for AVAST when I get home, but it doesn't sound likely to help.Thanks in advance, Jeff Link to comment Share on other sites More sharing options...
Switeck Posted June 27, 2008 Report Share Posted June 27, 2008 Your computer may have become crippled by your hard drive controller/s reverting to PIO mode.Or failing hardware or bad drivers...Have you tried Process Explorer and HijackThis! Link to comment Share on other sites More sharing options...
srt6 Posted June 29, 2008 Author Report Share Posted June 29, 2008 Thanks, I'll give these a try. Link to comment Share on other sites More sharing options...
Bobbias Posted June 29, 2008 Report Share Posted June 29, 2008 Post the logs here, since those programs don't simply tell you that something is wrong. They're advanced programs, and take a lot of work to figure out sometimes. Link to comment Share on other sites More sharing options...
srt6 Posted July 1, 2008 Author Report Share Posted July 1, 2008 Process Explorer:Process PID CPU Description Company NameSystem Idle Process 0 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 672 Windows NT Session Manager Microsoft Corporation csrss.exe 924 Client Server Runtime Process Microsoft Corporation winlogon.exe 948 Windows NT Logon Application Microsoft Corporation services.exe 992 0.78 Services and Controller app Microsoft Corporation svchost.exe 1168 Generic Host Process for Win32 Services Microsoft Corporation Playlist.exe 2236 Roxio AudioCentral Media Manager Playlist Roxio, Inc. SZServer.exe 1216 STOPzilla Service iS3, Inc. STOPzilla.exe 1748 STOPzilla Application iS3, Inc. svchost.exe 1260 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1568 3.13 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1612 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1728 Generic Host Process for Win32 Services Microsoft Corporation aswUpdSv.exe 220 avast! Antivirus updating service ALWIL Software ashServ.exe 340 avast! antivirus service ALWIL Software spoolsv.exe 928 Spooler SubSystem App Microsoft Corporation ATKKBService.exe 1332 ASUS Keyboard Service ASUSTeK COMPUTER INC. dvpapi.exe 1424 Command Software Systems, Inc. GoogleUpdaterService.exe 1592 gusvc Google McciCMService.exe 640 mcci+McciCMService Motive Communications, Inc. MOVIEL~1.EXE 2348 Movielink Manager Core Movielink LLC nvsvc32.exe 2380 NVIDIA Driver Helper Service, Version 83.91 NVIDIA Corporation slserv.exe 2592 Smart Link MsPMSPSv.exe 2776 WMDM PMSP Service Microsoft Corporation ashMaiSv.exe 3312 avast! e-Mail Scanner Service ALWIL Software ashWebSv.exe 3376 avast! Web Scanner ALWIL Software alg.exe 1368 Application Layer Gateway Service Microsoft Corporation svchost.exe 3468 Generic Host Process for Win32 Services Microsoft Corporation lsass.exe 1004 LSA Shell (Export Version) Microsoft Corporation WgaTray.exe 2488 Windows Genuine Advantage Notification Microsoft Corporationexplorer.exe 1708 Windows Explorer Microsoft Corporation smax4pnp.exe 1840 SMax4PNP Analog Devices, Inc. SMax4.exe 1884 Audio Control Panel Analog Devices, Inc. rundll32.exe 1912 Run a DLL as an App Microsoft Corporation DrgToDsc.exe 1980 Drag To Disc Application Roxio RxMon.exe 1992 Roxio AudioCentral Media Manager Tray App Roxio, Inc. ashDisp.exe 2008 avast! service GUI component ALWIL Software Movielink User.exe 2012 Movielink Manager User App Movielink LLC jusched.exe 2024 Java Platform SE binary Sun Microsystems, Inc. realsched.exe 2040 RealNetworks Scheduler RealNetworks, Inc. ctfmon.exe 204 CTF Loader Microsoft Corporation GoogleToolbarNotifier.exe 1828 GoogleToolbarNotifier Google Inc. VeohClient.exe 268 Veoh Client Veoh Networks RtWLan.exe 1312 RtWLan (ASUS) Application ASUSTek Computer Inc. boincmgr.exe 1372 BOINC Manager for Windows Space Sciences Laboratory boinc.exe 2360 BOINC client Space Sciences Laboratory wcg_dddt_autodock_6.05_windows_intelx86 3612 45.31 Created under grants from the National Institutes of Health National Institute of General Medical Sciences grant numbers P01 GM48870 and R01 GM069832. The Scripps Research Institute and IBM Corporation wcg_hcc1_img_6.06_windows_intelx86 4016 49.22 GoogleUpdater.exe 1048 Google Updater Google WinCinemaMgr.exe 1524 WinCinema Manager InterVideo Inc. TDKLauncher.exe 2068 TDKInstaller/TDKLauncher MFC Application TDK iexplore.exe 3156 Internet Explorer Microsoft Corporation procexp.exe 5728 1.56 Sysinternals Process Explorer Sysinternals - www.sysinternals.comrundll32.exe 1968 Run a DLL as an App Microsoft CorporationHiJack This:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 1:42:32 AM, on 7/1/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16674)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\STOPzilla!\STOPzilla.exeC:\Program Files\Analog Devices\Core\smax4pnp.exeC:\Program Files\Analog Devices\SoundMAX\Smax4.exeC:\WINDOWS\system32\RunDLL32.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exeC:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\Movielink\MovielinkManager\Movielink User.exeC:\Program Files\Java\jre1.6.0_05\bin\jusched.exeC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files\Veoh Networks\Veoh\VeohClient.exeC:\Program Files\ASUS WiFi-AP Solo\RtWLan.exeC:\WINDOWS\ATKKBService.exeC:\Program Files\BOINC\boincmgr.exeC:\Program Files\Common Files\Command Software\dvpapi.exeC:\Program Files\Google\Google Updater\GoogleUpdater.exeC:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exeC:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeC:\Program Files\Common Files\Motive\McciCMService.exeC:\Program Files\TDK\TDKLauncher\TDKLauncher.exeC:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exeC:\PROGRA~1\MOVIEL~1\MOVIEL~1\MOVIEL~1.EXEC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\slserv.exeC:\WINDOWS\system32\MsPMSPSv.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\BOINC\boinc.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\WgaTray.exeC:\Program Files\BOINC\projects\www.worldcommunitygrid.org\wcg_dddt_autodock_6.05_windows_intelx86C:\Program Files\BOINC\projects\www.worldcommunitygrid.org\wcg_hcc1_img_6.06_windows_intelx86C:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.att.netR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)O2 - BHO: SITEguard BHO - {1827766B-9F49-4854-8034-F6EE26FCB1EC} - C:\Program Files\STOPzilla!\SZSG.dllO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dllO2 - BHO: STOPzilla Browser Helper Object - {E3215F20-3212-11D6-9F8B-00D0B743919D} - C:\Program Files\STOPzilla!\SZIEBHO.dllO3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dllO3 - Toolbar: STOPzilla - {98828DED-A591-462F-83BA-D2F62A68B8B8} - C:\Program Files\STOPzilla!\SZSG.dllO4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exeO4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /trayO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe"O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [LoadMSvcmm] "C:\Program Files\Movielink\MovielinkManager\Movielink User.exe"O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osbootO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHideO4 - Startup: TDK Launcher.lnk = C:\Program Files\TDK\TDKLauncher\TDKLauncher.exeO4 - Global Startup: ASUS WiFi-AP Solo.lnk = ?O4 - Global Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exeO4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exeO4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exeO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO10 - Unknown file in Winsock LSP: c:\program files\common files\is3\anti-spyware\is3lsp.dllO16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1161092669314O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cabO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: DvpApi (dvpapi) - Command Software Systems, Inc. - C:\Program Files\Common Files\Command Software\dvpapi.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exeO23 - Service: Movielink Core Service - Movielink LLC - C:\PROGRA~1\MOVIEL~1\MOVIEL~1\MOVIEL~1.EXEO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exeO23 - Service: STOPzilla Service (szserver) - iS3, Inc. - C:\Program Files\Common Files\iS3\Anti-Spyware\SZServer.exe--End of file - 9391 bytesThanks for the help, JeffP.S. - my home computer keyboard is now working, and I'm able to go online without spawning 20 instant pages. I did install StopZilla; perhaps that helped. I also reseated all boards, too. Link to comment Share on other sites More sharing options...
jewelisheaven Posted July 1, 2008 Report Share Posted July 1, 2008 Get rid of IS3 completely, it's still hooked. Stop unnecessary proceses like movielink and dvpapi and possibly motive and that roxio suite if it's still not "fixed". Link to comment Share on other sites More sharing options...
srt6 Posted July 2, 2008 Author Report Share Posted July 2, 2008 Are you sure about IS3/StopZilla?Thing got better after I installed it - keyboard resumed functioning, and I can now use the internet from this computer. I did do adware & antivirus scans; found lots of adware, but no viruses.Could I have a power supply problem? For a few months, about every 10th or 20th time I start my computer, I have to unplug it for a minute before it will boot up - if I don't it goes through a few seconds of start up, and then shuts off.Thanks, Jeff Link to comment Share on other sites More sharing options...
Firon Posted July 2, 2008 Report Share Posted July 2, 2008 Possible. Try going into the device manager and uninstall all your IDE and SATA devices. THen reboot. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.