Crimson101 Posted November 3, 2009 Report Share Posted November 3, 2009 As the title says. Sorry for the trouble. This started a few days ago.. Logfile of Trend Micro HijackThis v2.0.2Scan saved at 8:17:55 PM, on 11/2/2009Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\LEXBCES.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\LEXPPS.EXEC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\PROGRA~1\AVG\AVG8\avgwdsvc.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Common Files\Command Software\dvpapi.exeC:\WINDOWS\ehome\ehtray.exeC:\Program Files\Java\jre1.5.0_10\bin\jusched.exeC:\windows\system\hpsysdrv.exeC:\Program Files\HP\hpcoretech\hpcmpmgr.exeC:\WINDOWS\System32\hphmon05.exeC:\HP\KBD\KBD.EXEC:\WINDOWS\ehome\ehSched.exeC:\Program Files\Hotspot Shield\bin\openvpnas.exeC:\WINDOWS\AGRSMMSG.exeC:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\WINPENJR\Win32\pphidpad.exeC:\WINDOWS\system32\PnkBstrA.exeC:\Program Files\QuickTime\QTTask.exeC:\WINDOWS\system32\PnkBstrB.exeC:\Program Files\Lexmark X6100 Series\lxbfbmgr.exeC:\Program Files\DAEMON Tools\daemon.exeC:\PROGRA~1\AVG\AVG8\avgrsx.exeC:\SlimQ\Fahid.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Lexmark X6100 Series\lxbfbmon.exeC:\Program Files\PowerISO\PWRISOVM.EXEC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\Program Files\TELUS\eProtect Advisor\TEPA.exeC:\WINDOWS\SOUNDMAN.EXEC:\WINDOWS\ALCWZRD.EXEC:\WINDOWS\ALCMTR.EXEC:\Program Files\Sony\WALKMAN Launcher\WMAAD.exeC:\Program Files\dvd43\dvd43_tray.exeC:\PROGRA~1\AVG\AVG8\avgtray.exeC:\Program Files\D-Link\AirPlus XtremeG DWL-G132\AirPlusCFG.exeC:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exeC:\Program Files\MSN Messenger\MsnMsgr.ExeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Veoh Networks\Veoh\VeohClient.exeC:\WINDOWS\ehome\ehmsas.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeC:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exeC:\Program Files\Linksys\WUSB600N\WUSB600N.exeC:\WINDOWS\system32\wscntfy.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\Java\jre1.5.0_10\bin\jucheck.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\Program Files\uTorrent\uTorrent.exeC:\WINDOWS\System32\svchost.exeC:\Documents and Settings\Everybody\Desktop\procexp.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.ca/0SEENCA/SAOS01?FORM=TOOLBRR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.ca/0SEENCA/SAOS01?FORM=TOOLBRR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_CA&c=Q304&bd=pavilion&pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_CA&c=Q304&bd=pavilion&pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_CA&c=Q304&bd=pavilion&pf=desktopR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_CA&c=Q304&bd=pavilion&pf=desktopR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.ca/0SEENCA/SAOS01?FORM=TOOLBRR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.localO1 - Hosts: 87.118.118.162 nprotect.roseonlinegame.comO1 - Hosts: 87.118.118.162 update.nprotect.comO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: Pop-Up Blocker BHO - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\TELUS\TELUS Security service\pkR.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dllO2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)O2 - BHO: Form Filler BHO - {56071E0D-C61B-11D3-B41C-00E02927A304} - C:\Program Files\TELUS\TELUS Security service\FreeBHOR.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLLO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dllO2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dllO2 - BHO: (no name) - {E14DCE67-8FB7-4721-8149-179BAA4D792C} - (no file)O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLLO2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\program files\hp\digital imaging\bin\hpdtlk02.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dllO3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dllO3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dllO3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLLO3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLLO4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exeO4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exeO4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exeO4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXEO4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXEO4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exeO4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exeO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [updateManager] "c:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /rO4 - HKLM\..\Run: [PPHIDPAD] C:\WINPENJR\Win32\pphidpad.exeO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [iMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXEO4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNCO4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMENameO4 - HKLM\..\Run: [Lexmark X6100 Series] "C:\Program Files\Lexmark X6100 Series\lxbfbmgr.exe"O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033O4 - HKLM\..\Run: [FAhid] C:\SlimQ\Fahid.exeO4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXEO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osbootO4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [TEPA.exe] "C:\Program Files\TELUS\eProtect Advisor\TEPA.exe" /AUTORUNO4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exeO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [WMAAD] C:\Program Files\Sony\WALKMAN Launcher\WMAAD.exeO4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exeO4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exeO4 - HKLM\..\Run: [D-Link AirPlus XtremeG DWL-G132] C:\Program Files\D-Link\AirPlus XtremeG DWL-G132\AirPlusCFG.exeO4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -kO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.8472\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHideO4 - HKCU\..\Run: [Microsoft Windows Visual V2.0] C:\WINDOWS\msiutil.exeO4 - HKCU\..\Run: [Legacy VGA Drivers V1.0] C:\WINDOWS\certproc32.exeO4 - HKCU\..\Run: [sony DVDRam Version 1.8B] C:\WINDOWS\uiengine32.exeO4 - HKCU\..\Run: [Prauge DVDRam Version 2.3A] C:\WINDOWS\system32\spfx\hypinit32.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeO4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exeO4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exeO4 - Global Startup: Wireless Network Monitor.lnk = C:\Program Files\Linksys\WUSB600N\WUSB600N.exeO8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htmO8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspxO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\Windows Live Toolbar\Components\en-ca\msntabres.dll.mui/229?7480cab808d74681a60969a00ac5d061O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\Windows Live Toolbar\Components\en-ca\msntabres.dll.mui/230?7480cab808d74681a60969a00ac5d061O8 - Extra context menu item: Transfer by Image Converter 3 - C:\PROGRAM FILES\SONY\IMAGE CONVERTER 3\menu.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLLO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://samsayschau.spaces.live.com//PhotoUpload/MsnPUpld.cabO16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1152435199062O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1152435396359O16 - DPF: {88D8E8B7-A33B-4417-A385-8373484D43ED} (InstallHelper Class) - file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ThereInstallHelper.dllO16 - DPF: {8B486EF6-6B2A-4A1E-BB0D-236CB2DBB8D2} (There Voice Trainer) - file://c:\Program Files\There\ThereClient\ThereVoiceTrainer.dllO16 - DPF: {AAF421E6-7914-430A-9981-72B31AFF3BF4} (There Launcher) - file://c:\Program Files\There\ThereClient\ThereLauncher.dllO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cabO16 - DPF: {CEA3052D-65B9-44E2-A501-5E14024BC66F} (TricksterActiveX Control) - http://www.tricksteronline.com/control/tricksterActiveX.cabO16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_games/gamehouse/frenzy/SproutLauncher.cabO16 - DPF: {D88C7675-7CEE-4C9A-BDD4-7A43EED7794D} (Logout Class) - http://www.tricksteronline.com/control/KALogoutComponent.cabO16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cabO18 - Protocol: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} - F:\CDS300\__CDS2.dll (file missing)O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dllO20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll,avgrsstx.dllO23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exeO23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exeO23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: DvpApi (dvpapi) - Command Software Systems, Inc. - C:\Program Files\Common Files\Command Software\dvpapi.exeO23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exeO23 - Service: Image Converter SCSI Service (ICScsiSV) - Sony Corporation - C:\Program Files\Sony\IMAGE CONVERTER 3\ICScsiSV.exeO23 - Service: IcVzMonLauncher - Sony Corporation - C:\Program Files\Sony\IMAGE CONVERTER 3\IcVzMonLauncher.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exeO23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\IMAGE CONVERTER 3\IcVzMon.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXEO23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exeO23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exeO23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exeO23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exeO23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exeO23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exeO23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exeO23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe--End of file - 17081 bytesProcess PID CPU Description Company NameSystem Idle Process 0 97.72 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 0.76 smss.exe 1164 Windows NT Session Manager Microsoft Corporation csrss.exe 1276 Client Server Runtime Process Microsoft Corporation winlogon.exe 1308 Windows NT Logon Application Microsoft Corporation services.exe 1412 0.76 Services and Controller app Microsoft Corporation ati2evxx.exe 1604 ATI External Event Utility EXE Module ATI Technologies Inc. svchost.exe 1632 Generic Host Process for Win32 Services Microsoft Corporation ehmsas.exe 3584 Media Center Media Status Aggregator Service Microsoft Corporation svchost.exe 1744 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1960 Generic Host Process for Win32 Services Microsoft Corporation wscntfy.exe 616 Windows Security Center Notification App Microsoft Corporation wuauclt.exe 1624 Windows Update Automatic Updates Microsoft Corporation svchost.exe 336 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 592 Generic Host Process for Win32 Services Microsoft Corporation LEXBCES.EXE 1112 LexBce Service Lexmark International, Inc. LEXPPS.EXE 1200 LEXPPS.EXE Lexmark International, Inc. spoolsv.exe 1140 Spooler SubSystem App Microsoft Corporation svchost.exe 296 Generic Host Process for Win32 Services Microsoft Corporation AppleMobileDeviceService.exe 388 Apple Mobile Device Service Apple Inc. avgwdsvc.exe 644 AVG Watchdog Service AVG Technologies CZ, s.r.o. avgrsx.exe 2528 AVG Resident Shield Service AVG Technologies CZ, s.r.o. mDNSResponder.exe 928 Bonjour Service Apple Inc. dvpapi.exe 1240 Command Software Systems, Inc. ehsched.exe 1904 Media Center Scheduler Service Microsoft Corporation openvpnas.exe 424 mdm.exe 1884 Machine Debug Manager Microsoft Corporation PnkBstrA.exe 2184 PnkBstrB.exe 2352 svchost.exe 2572 Generic Host Process for Win32 Services Microsoft Corporation wdfmgr.exe 2752 Windows User Mode Driver Manager Microsoft Corporation ViewpointService.exe 2820 ViewMgr Viewpoint Corporation iPodService.exe 3440 iPodService Module Apple Inc. alg.exe 2928 Application Layer Gateway Service Microsoft Corporation svchost.exe 2300 Generic Host Process for Win32 Services Microsoft Corporation lsass.exe 1424 LSA Shell (Export Version) Microsoft Corporation ati2evxx.exe 328 ATI External Event Utility EXE Module ATI Technologies Inc.explorer.exe 1944 Windows Explorer Microsoft Corporation ehtray.exe 764 Media Center Tray Applet Microsoft Corporation jusched.exe 948 Java 2 Platform Standard Edition binary Sun Microsystems, Inc. jucheck.exe 2972 Java Update Checker Sun Microsystems, Inc. hpsysdrv.exe 1044 hpsysdrv Hewlett-Packard Company hpcmpmgr.exe 1428 HP Framework Component Manager Service Hewlett-Packard Company hphmon05.exe 1800 HPHmon05 Hewlett-Packard kbd.exe 196 KBD EXE Hewlett-Packard Company AGRSMMSG.exe 1992 SoftModem Messaging Applet Agere Systems atiptaxx.exe 2068 ATI Desktop Control Panel ATI Technologies, Inc. PPHIDPAD.EXE 2136 QTTask.exe 2192 QuickTime Task Apple Inc. lxbfbmgr.exe 2496 Lexmark X6100 Series Button Manager Lexmark International, Inc. lxbfbmon.exe 2616 Lexmark X6100 Series Button Monitor Lexmark International, Inc. daemon.exe 2520 Virtual DAEMON Manager DT Soft Ltd. FAHID.EXE 2544 PWRISOVM.EXE 2624 PowerISO Virtual Drive Manager PowerISO Computing, Inc. realsched.exe 2720 RealNetworks Scheduler RealNetworks, Inc. TEPA.exe 2872 TELUS eProtect Advisor TELUS SoundMan.exe 2932 Realtek Sound Manager Realtek Semiconductor Corp. alcwzrd.exe 3088 RealTek AlcWzrd Application RealTek Semicoductor Corp. Alcmtr.exe 3136 Realtek Azalia Audio - Event Monitor Realtek Semiconductor Corp. WMAAD.exe 3164 WALKMAN Launcher Sony Corporation DVD43_Tray.exe 3188 avgtray.exe 3296 AVG Tray Monitor AVG Technologies CZ, s.r.o. AirPlusCFG.exe 3328 D-Link Wireless LAN Monitor D-Link WZCSLDR2.exe 3336 ANIWZCS2 launcher for Windows. Wireless Service iTunesHelper.exe 3348 iTunesHelper Module Apple Inc. CTSyncU.exe 3388 Sync Manager msnmsgr.exe 868 Messenger Microsoft Corporation ctfmon.exe 3556 CTF Loader Microsoft Corporation VeohClient.exe 824 Veoh Client Veoh Networks hpqtra08.exe 1180 HP Digital Imaging Monitor (CUE) Hewlett-Packard Co. BackWeb-137903.exe 3476 WUSB600N.exe 3696 Linksys firefox.exe 1848 Firefox Mozilla Corporation uTorrent.exe 416 µTorrent BitTorrent, Inc. procexp.exe 3232 0.76 Sysinternals Process Explorer Sysinternals - www.sysinternals.comProcess: uTorrent.exe Pid: 416Name Description Company Name VersionACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.2180adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.2180ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.3520ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.2avgrsstx.dll AVG Resident Shield Starter AVG Technologies CZ, s.r.o. 8.0.0.134CLBCATQ.DLL Microsoft Corporation 2001.12.4414.308COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.2982comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.2180COMRes.dll Microsoft Corporation 2001.12.4414.258credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.2180ctype.nls DnsApi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.3394GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.3466hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.2180IadHide4.dll IAdHide BackWeb 6.2.3.66IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.2180Iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.2912kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.3541locale.nls LPK.DLL Language Pack Microsoft Corporation 5.1.2600.2180mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 1.0.6.2MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.2180MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.1.2600.2180msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.1.2600.2180msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.2180mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.3394netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.3462netshell.dll Network Connections Shell Microsoft Corporation 5.1.2600.2180ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.3520ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.2726oleaut32.dll Microsoft Corporation 5.1.2600.3266rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.2938RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.3555rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.2161rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.2180SAMLIB.dll SAM Library DLL Microsoft Corporation 5.1.2600.2180Secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.3592SETUPAPI.dll Windows Setup API Microsoft Corporation 5.1.2600.2180SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.3402shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.2180SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.3592sortkey.nls sorttbls.nls unicode.nls USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.3099USERENV.dll Userenv Microsoft Corporation 5.1.2600.2180USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.420.2600.2180uTorrent.exe µTorrent BitTorrent, Inc. 1.8.4.16688uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.2180VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.2180WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.2180WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.2180WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.2180wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.2180xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.2180Any help would be great. Thanks! Link to comment Share on other sites More sharing options...
moogly Posted November 3, 2009 Report Share Posted November 3, 2009 Select utorrent.exe and enable DLL mode (ctrl+d) in Process Explorer. Edit your previous log please. Link to comment Share on other sites More sharing options...
Crimson101 Posted November 3, 2009 Author Report Share Posted November 3, 2009 Edited. Is that correct? Link to comment Share on other sites More sharing options...
moogly Posted November 3, 2009 Report Share Posted November 3, 2009 Yep, it's OK.IadHide4.dll IAdHide BackWeb 6.2.3.66is injected into uT. That doesn't sound good even if it seems to come from Logitech webcam.http://www.neuber.com/taskmanager/process/iadhide4.dll.htmlHave you recently installed a Logitech webcam? Link to comment Share on other sites More sharing options...
Crimson101 Posted November 3, 2009 Author Report Share Posted November 3, 2009 Nope, don't even have a webcam. I have a logitech mouse though. Link to comment Share on other sites More sharing options...
moogly Posted November 3, 2009 Report Share Posted November 3, 2009 That probably comes from a Logitech device. You said this issue started few days ago. Have you installed new programs on your computer? Link to comment Share on other sites More sharing options...
Crimson101 Posted November 3, 2009 Author Report Share Posted November 3, 2009 Hmm... nothing really. I tried restoring back to a previous date I knew was safe but... no luck. Link to comment Share on other sites More sharing options...
moogly Posted November 3, 2009 Report Share Posted November 3, 2009 First step, try to remove this BackWeb from utorrent.exe.Then look at AVG:avgrsstx.dll AVG Resident Shield Starter AVG Technologies CZ, s.r.o. 8.0.0.134Maybe AVG is trying to scan files are downloading, so your computer is freezing. Append .!ut on files that are incomplete (it's an option in uT: Preferences > General) and check if that changes something.And are you running wireless? (I see D-link) Link to comment Share on other sites More sharing options...
Crimson101 Posted November 4, 2009 Author Report Share Posted November 4, 2009 Do you want me to uninstall the logitech device? or just remove it from uTorrent? If it's just to remove, can you tell me how to remove it from uTorrent? And I am running on a wireless D-Link. Oh by the way, I tried the enabling the .ut! incomplete thing but again, no luck.Can no one help me? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.