services?
pca_primrose - 11 February 2008 - 11:12pm
<p>hi i have a problem wih cpu running at 100pc constantly.. i installed both ad aware and avg spyware tool but neither seems to have pickd anything up i would be very grateful if someone could have a look for me.. <br />
sorry if this isnt protocol.. its been a while since i have been on this site..<br />
kind regards</p>
<p>sandra</p>
<p>Logfile of Trend Micro HijackThis v2.0.2<br />
Scan saved at 23:09:10, on 11/02/2008<br />
Platform: Windows XP SP2 (WinNT 5.01.2600)<br />
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)<br />
Boot mode: Normal</p>
<p>Running processes:<br />
F:\WINDOWS\System32\smss.exe<br />
F:\WINDOWS\SYSTEM32\winlogon.exe<br />
F:\WINDOWS\system32\services.exe<br />
F:\WINDOWS\system32\lsass.exe<br />
F:\WINDOWS\system32\svchost.exe<br />
F:\WINDOWS\System32\svchost.exe<br />
F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe<br />
F:\WINDOWS\Explorer.EXE<br />
F:\WINDOWS\system32\spoolsv.exe<br />
F:\Program Files\Common Files\Real\Update_OB\realsched.exe<br />
F:\Program Files\QuickTime\qttask.exe<br />
F:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe<br />
F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe<br />
F:\PROGRA~1\Grisoft\AVG7\avgcc.exe<br />
F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe<br />
F:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe<br />
F:\WINDOWS\system32\ctfmon.exe<br />
F:\Program Files\Pantone, Inc\PANTONE(R) colorist\PANTONE(R) colorist.exe<br />
F:\WINDOWS\system32\netdde.exe<br />
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe<br />
F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe<br />
F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe<br />
F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe<br />
F:\PROGRA~1\Grisoft\AVG7\avgemc.exe<br />
F:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE<br />
F:\WINDOWS\system32\cisvc.exe<br />
F:\WINDOWS\system32\dllhost.exe<br />
F:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE<br />
F:\WINDOWS\system32\taskmgr.exe<br />
F:\WINDOWS\System32\svchost.exe<br />
F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe<br />
F:\WINDOWS\system32\imapi.exe<br />
F:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe<br />
F:\Program Files\iPod\bin\iPodService.exe<br />
F:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe<br />
F:\WINDOWS\system32\msiexec.exe<br />
F:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe<br />
F:\WINDOWS\system32\PSIService.exe<br />
F:\WINDOWS\system32\sessmgr.exe<br />
F:\Program Files\PC Connectivity Solution\ServiceLayer.exe<br />
F:\WINDOWS\system32\slserv.exe<br />
F:\Program Files\Analog Devices\SoundMAX\SMAgent.exe<br />
F:\WINDOWS\system32\svchost.exe<br />
F:\WINDOWS\system32\dllhost.exe<br />
F:\WINDOWS\system32\tlntsvr.exe<br />
F:\WINDOWS\System32\vssvc.exe<br />
F:\WINDOWS\system32\wbem\wmiapsrv.exe<br />
F:\WINDOWS\System32\dmadmin.exe<br />
F:\Program Files\Internet Explorer\IEXPLORE.EXE<br />
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe<br />
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe<br />
F:\WINDOWS\SYSTEM32\cidaemon.exe</p>
<p>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://www.google.co.uk/">http://www.google.co.uk/</a><br />
R3 - URLSearchHook: (no name) - <default> - (no file)<br />
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll<br />
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll<br />
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll<br />
O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - F:\Program Files\MorpheusBar\bar\2.bin\MORPHBAR.DLL (file missing)<br />
O2 - BHO: (no name) - {4D4F1696-2CF8-42B1-9D25-C0704CEF6EA2} - F:\Program Files\Internet Explorer\mexo.dll (file missing)<br />
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - F:\PROGRA~1\Yahoo!\Common\yiesrvc.dll<br />
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\SPYWAR~1\tools\iesdsg.dll (file missing)<br />
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre1.6.0_03\bin\ssv.dll<br />
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)<br />
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - F:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll<br />
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - F:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll<br />
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar3.dll<br />
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll<br />
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll<br />
O2 - BHO: (no name) - {BFB5B8CF-3F20-44F6-1C9A-A6ADA90C3DD7} - F:\Program Files\Messenger\qukafo.dll (file missing)<br />
O2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - F:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll<br />
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - F:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll<br />
O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - F:\Program Files\MorpheusBar\bar\2.bin\MORPHBAR.DLL (file missing)<br />
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar3.dll<br />
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll<br />
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent<br />
O4 - HKLM\..\Run: [TkBellExe] "F:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot<br />
O4 - HKLM\..\Run: [SiSUSBRG] F:\WINDOWS\SiSUSBrg.exe<br />
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime<br />
O4 - HKLM\..\Run: [PCSuiteTrayApplication] F:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup<br />
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"<br />
O4 - HKLM\..\Run: [AVG7_CC] F:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP<br />
O4 - HKLM\..\Run: [REGSHAVE] F:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN<br />
O4 - HKLM\..\Run: [DownloadAccelerator] "F:\Program Files\DAP\DAP.EXE" /STARTUP<br />
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized<br />
O4 - HKLM\..\Run: [MSConfig] F:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto<br />
O4 - HKLM\..\RunServices: [winlog] winlog.exe<br />
O4 - HKLM\..\RunServices: [WinProfile] sndcfg16.exe<br />
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe<br />
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe<br />
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')<br />
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')<br />
O4 - HKUS\S-1-5-18\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')<br />
O4 - HKUS\.DEFAULT\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')<br />
O4 - Startup: PANTONE(R) colorist.lnk = F:\Program Files\Pantone, Inc\PANTONE(R) colorist\PANTONE(R) colorist.exe<br />
O4 - Global Startup: ColorVisionStartup.lnk = F:\Program Files\PANTONE COLORVISION\Startup\ColorVisionStartup.exe<br />
O8 - Extra context menu item: &AOL Toolbar search - res://F:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML<br />
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://F:\WINDOWS\system32\GPhotos.scr/200<br />
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000<br />
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_03\bin\ssv.dll<br />
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_03\bin\ssv.dll<br />
O9 - Extra button: Panda ActiveScan - {653D93AF-C741-4e5e-8C1B-59BA43F93E16} - <a href="http://www.pandasoftware.com/activescan">http://www.pandasoftware.com/activescan</a> (file missing)<br />
O9 - Extra button: Panda ActiveScan Pro - {9B9B075F-22FF-48e7-A688-1719BE8873CC} - <a href="http://www.pandasoftware.com/products/activescanpro/default.asp">http://www.pandasoftware.com/products/activescanpro/default.asp</a> (file missing)<br />
O16 - DPF: Yahoo! Dots - <a href="http://download2.games.yahoo.com/games/clients/y/dtt1_x.cab">http://download2.games.yahoo.com/games/clients/y/dtt1_x.cab</a><br />
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - <a href="http://www.drivecleaner.com/.freeware/installdrivecleanerstart.cab">http://www.drivecleaner.com/.freeware/installdrivecleanerstart.cab</a><br />
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - <a href="http://www1.snapfish.co.uk/SnapfishUKActivia.cab">http://www1.snapfish.co.uk/SnapfishUKActivia.cab</a><br />
O16 - DPF: {71057C18-0507-4747-86BC-E11CE7512C5F} (mailhelper Class) - <a href="https://register.btinternet.com/templates/btmailcontrol013.cab">https://register.btinternet.com/templates/btmailcontrol013.cab</a><br />
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - <a href="http://www.crucial.com/controls/cpcScanner.cab">http://www.crucial.com/controls/cpcScanner.cab</a><br />
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - <a href="http://www.winantivirus.com/download/2007/download.php?file=2&aid=thishelp_rdt_uk_en_ed2&lid=sw7&affid=">http://www.winantivirus.com/download/2007/download.php?file=2&aid=thishelp_rdt_uk_en_ed2&lid=sw7&affid=</a><br />
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - <a href="http://static.photobox.co.uk/sg/common/uploader_uni.cab">http://static.photobox.co.uk/sg/common/uploader_uni.cab</a><br />
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - <a href="http://webgames.d.tmsrv.com/c=075adf2e334ddeb305ae99210301d809/aff=t_25oa_ukca_wg/p/release/popcap/wg_bejeweled2/popcaploader_v6.cab">http://webgames.d.tmsrv.com/c=075adf2e334ddeb305ae99210301d809/aff=t_25oa_ukca_wg/p/release/popcap/wg_bejeweled2/popcaploader_v6.cab</a><br />
O16 - DPF: {EC5A4E7B-02EB-451D-B310-D5F2E0A4D8C3} (webhelper Class) - <a href="https://register.btinternet.com/templates/btwebcontrol028.cab">https://register.btinternet.com/templates/btwebcontrol028.cab</a><br />
O17 - HKLM\System\CCS\Services\Tcpip\..\{829F73D0-B916-4E35-9B5F-C3B8ACE88924}: NameServer = 192.168.1.1<br />
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe<br />
O23 - Service: Apple Mobile Device - Apple, Inc. - F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe<br />
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe<br />
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe<br />
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe<br />
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgemc.exe<br />
O23 - Service: C-DillaSrv - C-Dilla Ltd - F:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE<br />
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - F:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE<br />
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe<br />
O23 - Service: InCD Helper (InCDsrv) - Nero AG - F:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe<br />
O23 - Service: iPod Service - Apple Inc. - F:\Program Files\iPod\bin\iPodService.exe<br />
O23 - Service: NMIndexingService - Nero AG - F:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe<br />
O23 - Service: ProtexisLicensing - Unknown owner - F:\WINDOWS\system32\PSIService.exe<br />
O23 - Service: ServiceLayer - Nokia. - F:\Program Files\PC Connectivity Solution\ServiceLayer.exe<br />
O23 - Service: SmartLinkService (SLService) - Smart Link - F:\WINDOWS\SYSTEM32\slserv.exe<br />
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - F:\Program Files\Analog Devices\SoundMAX\SMAgent.exe<br />
O24 - Desktop Component 0: (no name) - F:\Program Files\Messenger\rtesesi.html<br />
O24 - Desktop Component 1: (no name) - <a href="http://www.ephotozine.com/news/images/2454_1131601493.jpg">http://www.ephotozine.com/news/images/2454_1131601493.jpg</a><br />
O24 - Desktop Component 2: (no name) - <a href="http://www.warehouseexpress.com/navbar/title_5.gif">http://www.warehouseexpress.com/navbar/title_5.gif</a><br />
O24 - Desktop Component 3: (no name) - <a href="http://www.jobcentreplus.gov.uk/JCP/stellent/images/JCPLookComponent/greenstrip.gif">http://www.jobcentreplus.gov.uk/JCP/stellent/images/JCPLookComponent/greenstrip.gif</a></p>
<p>--<br />
End of file - 11612 bytes</p>
Log in to PCAnswers
How to...
Setup a WiFi Network
Christian Hall - 26 September 2008 - 2:13pm
Christian shows you how to install and setup a new router and broadband connection. He covers the basics from what each connection on your router is to how to secure your network in the administration panel. ... read more »
Latest PC news from TechRadar
- Exclusive: Virgin & ITV: Internet details not yet finalised
- Ballmer's CES keynote - all the details
- Virgin Media seals on-demand deal with ITV
- AMD rolls out much improved Phenom II CPU
- In Depth: Is 45nm silicon enough to save AMD?
- Windows 7 Beta available worldwide Friday
- Sony launches world's lightest 8-inch netbook
- Skype officially launches standalone videophone
Copyright 2006 - 2008 Future Publishing Limited(company registered number 2008885), a company registered in England and Wales
whose registered office is at Beauford Court, 30 Monmouth Street, Bath, BA1 2BW, UK
services?
Vino Rosso - 25 February 2008 - 12:48pm<p>Yes, there are a few obvious things that need to be dealt with.</p>
<p>If you still need help, please post a fresh HijackThis log.</p>