Jump to content

Crashed 8 times in 2 hours??


kyle2004uk

Recommended Posts

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:12:06, on 05/09/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\ccSvcHst.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files\Electronic Arts\EADM\Core.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Windows\system32\taskmgr.exe

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\IPSBHO.DLL

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\coIEPlg.dll

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming

O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKCU\..\Run: [DriverMax] "C:\Program Files\Innovative Solutions\DriverMax\devices.exe" -agent

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\coIEPlg.dll

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360 Premier Edition\Engine\3.8.0.41\ccSvcHst.exe

O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--

End of file - 6182 bytes

Link to comment
Share on other sites

**** EDIT *****

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 75.80 0 K 24 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 3.03 0 K 0 K Deferred Procedure Calls

System 4 2.27 56 K 4,748 K

smss.exe 312 312 K 200 K

csrss.exe 404 2,584 K 1,704 K

conhost.exe 1388 496 K 332 K

wininit.exe 456 924 K 400 K

services.exe 516 4,752 K 3,848 K

svchost.exe 700 3,108 K 3,576 K Host Process for Windows Services Microsoft Corporation

svchost.exe 780 3,580 K 3,468 K Host Process for Windows Services Microsoft Corporation

svchost.exe 852 16,260 K 9,344 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 5256 15,324 K 14,076 K

svchost.exe 900 70,268 K 67,376 K Host Process for Windows Services Microsoft Corporation

wlanext.exe 1376 1,200 K 1,532 K

dwm.exe 2284 67,392 K 31,196 K Desktop Window Manager Microsoft Corporation

WUDFHost.exe 2824 1,472 K 1,860 K

svchost.exe 956 24,152 K 25,744 K Host Process for Windows Services Microsoft Corporation

wuauclt.exe 380 1,364 K 1,636 K Windows Update Microsoft Corporation

svchost.exe 1104 7,268 K 8,460 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1292 4.55 16,696 K 16,304 K Host Process for Windows Services Microsoft Corporation

spoolsv.exe 1456 5,148 K 2,528 K Spooler SubSystem App Microsoft Corporation

svchost.exe 1492 9,404 K 5,560 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1604 5,968 K 6,852 K Host Process for Windows Services Microsoft Corporation

ccSvcHst.exe 1640 39,172 K 6,876 K Symantec Service Framework Symantec Corporation

ccSvcHst.exe 2212 20,108 K 3,352 K

svchost.exe 1716 1,332 K 2,896 K Host Process for Windows Services Microsoft Corporation

taskhost.exe 2188 7,740 K 5,856 K Host Process for Windows Tasks Microsoft Corporation

SearchIndexer.exe 2320 52,548 K 32,412 K Microsoft Windows Search Indexer Microsoft Corporation

SearchProtocolHost.exe 4624 1,928 K 6,224 K

SearchFilterHost.exe 4400 1,632 K 4,416 K

svchost.exe 2896 1,644 K 1,908 K Host Process for Windows Services Microsoft Corporation

wmpnetwk.exe 3736 6,224 K 5,920 K Windows Media Player Network Sharing Service Microsoft Corporation

IAStorDataMgrSvc.exe 668 18,060 K 5,068 K IAStorDataSvc Intel Corporation

lsass.exe 568 3,440 K 4,824 K Local Security Authority Process Microsoft Corporation

lsm.exe 580 1,332 K 1,388 K

csrss.exe 464 2,196 K 13,740 K

winlogon.exe 540 1,688 K 1,600 K

explorer.exe 2348 0.76 64,920 K 86,264 K Windows Explorer Microsoft Corporation

GrooveMonitor.exe 2692 1,744 K 1,860 K GrooveMonitor Utility Microsoft Corporation

AdobeARM.exe 2724 5,028 K 2,704 K Adobe Reader and Acrobat Manager Adobe Systems Incorporated

SetPoint.exe 2740 9,808 K 7,440 K Logitech SetPoint Event Manager (UNICODE) Logitech, Inc.

KHALMNPR.exe 2968 4,568 K 2,508 K Logitech KHAL Main Process Logitech, Inc.

IAStorIcon.exe 3172 21,624 K 6,424 K IAStorIcon Intel Corporation

igfxtray.exe 3180 1,360 K 1,140 K igfxTray Module Intel Corporation

hkcmd.exe 3188 2,192 K 1,316 K hkcmd Module Intel Corporation

igfxpers.exe 3220 1,316 K 2,120 K persistence Module Intel Corporation

uTorrent.exe 2456 10.61 39,176 K 46,412 K µTorrent BitTorrent, Inc.

procexp.exe 4160 1.52 19,268 K 34,592 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Core.exe 2496 7,384 K 6,612 K EA Download Manager Electronic Arts

firefox.exe 1712 1.52 91,164 K 114,444 K Firefox Mozilla Corporation

Process: uTorrent.exe Pid: 2456

Name Description Company Name Version

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.1.7600.16385

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.0

AUTHZ.dll Authorization Framework Microsoft Corporation 6.1.7600.16385

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.8530.16385

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.7600.16385

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.1.7600.16385

credssp.dll Credential Delegation Security Package Microsoft Corporation 6.1.7600.16385

CRYPT32.dll Crypto API32 Microsoft Corporation 6.1.7600.16385

CRYPTBASE.dll Base cryptographic API DLL Microsoft Corporation 6.1.7600.16385

CRYPTSP.dll Cryptographic Service Provider API Microsoft Corporation 6.1.7600.16385

dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.1.7600.16385

dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.1.7600.16385

DnsApi.dll DNS Client API DLL Microsoft Corporation 6.1.7600.16385

dwmapi.dll Microsoft Desktop Window Manager API Microsoft Corporation 6.1.7600.16385

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.1.7600.16385

fwpuclnt.dll FWP/IPsec User-Mode API Microsoft Corporation 6.1.7600.16385

GDI32.dll GDI Client DLL Microsoft Corporation 6.1.7600.16385

GPAPI.dll Group Policy Client API Microsoft Corporation 6.1.7600.16385

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.1.7600.16385

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.0.7600.16385

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.1.7600.16385

Iphlpapi.dll IP Helper API Microsoft Corporation 6.1.7600.16385

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16481

KERNELBASE.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

KernelBase.dll.mui Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

locale.nls

LPK.dll Language Pack Microsoft Corporation 6.1.7600.16385

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 6.1.7600.16415

MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.1.7600.16385

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.7600.16385

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.1.7600.16385

msxml3.dll MSXML 3.0 SP11 Microsoft Corporation 8.110.7600.16605

msxml3r.dll XML Resources Microsoft Corporation 8.110.7600.16385

netshell.dll Network Connections Shell Microsoft Corporation 6.1.7600.16385

netutils.dll Net Win32 API Helpers DLL Microsoft Corporation 6.1.7600.16385

nlaapi.dll Network Location Awareness 2 Microsoft Corporation 6.1.7600.16385

npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.1.7600.16385

NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.1.7600.16385

ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7600.16559

ntmarta.dll Windows NT MARTA provider Microsoft Corporation 6.1.7600.16385

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.1.7600.16385

oleaut32.dll Microsoft Corporation 6.1.7600.16567

peerdist.dll BranchCache Client Library Microsoft Corporation 6.1.7600.16385

profapi.dll User Profile Basic API Microsoft Corporation 6.1.7600.16385

psapi.dll Process Status Helper Microsoft Corporation 6.1.7600.16385

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.1.7600.16385

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.1.7600.16385

RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.1.7600.16385

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.1.7600.16385

sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.1.7600.16385

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.1.7600.16644

shfolder.dll Shell Folder Service Microsoft Corporation 6.1.7600.16385

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.1.7600.16385

slc.dll Software Licensing Client Dll Microsoft Corporation 6.1.7600.16385

SortDefault.nls

SSDPAPI.dll SSDP Client API DLL Microsoft Corporation 6.1.7600.16385

SspiCli.dll Security Support Provider Interface Microsoft Corporation 6.1.7600.16385

StaticCache.dat

SXS.DLL Fusion 2.5 Microsoft Corporation 6.1.7600.16385

upnp.dll UPnP Control Point API Microsoft Corporation 6.1.7600.16385

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 8.0.7600.16625

USER32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.1.7600.16385

USERENV.dll Userenv Microsoft Corporation 6.1.7600.16385

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7600.16385

uTorrent.exe µTorrent BitTorrent, Inc. 2.0.4.21586

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.1.7600.16385

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.1.7600.16385

webio.dll Web Transfer Protocols API Microsoft Corporation 6.1.7600.16385

WINHTTP.dll Windows HTTP Services Microsoft Corporation 6.1.7600.16385

WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.1.7600.16385

wkscli.dll Workstation Service Client DLL Microsoft Corporation 6.1.7600.16385

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.1.7600.16385

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.1.7600.16385

wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.1.7600.16385

wshtcpip.dll Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.1.7600.16385

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...