Help - Search - Members - Calendar
Full Version: Please Help, I Have Syssvcnt.exe Using All Cpu Capacity
Lavasoft Support Forums > Archived Topics > Archives: Resolved/Inactive Topics > Resolved/Inactive HijackThis Logs
jupiter2
Apr 5 2007, 04:14 AM
Hi, I just set up my computer for internet use last week. I have Cox high speed internet and the installed cox security suite. I have run the virus scan several times. I also have the Adware SE personal (boy, that sure did pull out a lot of stuff!). Anyway, my computer still freezes up and when I look at task manager I see the syssvcnt.exe process using 99% of the CPU. I can't end this, it tells me I'm not allowed.

I have run the hijackthis program and I have a log file, please let me know when I can send it.

I have a compaq desktop, several years old, running windows 2000 w/service pack 4.

Thank you for your help.

Jim


Ai_Tak
Apr 5 2007, 06:33 AM
Please post both the Ad-Aware SE log and the hijackthis log.
jupiter2
Apr 5 2007, 05:41 PM
QUOTE(Ai_Tak @ Apr 5 2007, 06:33 AM) *
Please post both the Ad-Aware SE log and the hijackthis log.


Will do, thanks. Here is the hijackthis log. I will get the adware log this afternoon.

Jim

Logfile of HijackThis v1.99.1
Scan saved at 7:47:05 PM, on 4/4/2007
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\COMPAQ\ACLIENT\ACLIENT.exe
c:\Program Files\Cox\Applications\App\syssvcnt.exe
C:\WINNT\System32\cpqalert.exe
C:\WINNT\CPQDIAG\CPQDFWAG.EXE
C:\Program Files\COMPAQ\CpqWebDMI\webdmi.EXE
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\nvsvc32.exe
C:\PROGRA~1\EFFICI~1\ENTERN~1\app\pppoeservice.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
c:\dmi\win32\bin\Win32sl.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\cpqdmi.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\Promon.exe
C:\Program Files\Compaq\Easy Access Keyboard\MMKeybd.exe
C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\WINNT\system32\CHKADMIN.EXE
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Compaq\Easy Access Keyboard\MEDIACTR.EXE
C:\Program Files\Compaq\Easy Access Keyboard\MMUSBKB2.EXE
C:\Program Files\Cox\Applications\app\Console.exe
C:\WINNT\system32\wuauclt.exe
c:\Program Files\Common Files\Command Software\dvpapi.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\WinZip\winzip32.exe
C:\DOCUME~1\jamesk\LOCALS~1\Temp\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sandiego.cox.net/cci/home
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/.../search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: AuthPopupBHO01.cBHO - {3C7195F6-D788-4D50-BA72-2EE212EDAC78} - c:\Program Files\Cox\Applications\App\popupbho01.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\winnt\downloaded program files\googletoolbar1.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\winnt\downloaded program files\googletoolbar1.dll
O3 - Toolbar: Cox Popup Blocker - {2C0A5F28-48D8-408B-9172-9C6121025BCE} - c:\Program Files\Cox\Applications\App\popupbho01.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [Promon.exe] Promon.exe
O4 - HKLM\..\Run: [Easy Access Keyboard] C:\Program Files\Compaq\Easy Access Keyboard\MMKeybd.exe
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [CHKADMIN] CHKADMIN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINNT\system32\\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Window manager] C:\WINNT\SYSTEM32\sks.exe
O4 - HKLM\..\Run: [WinManage] C:\WINNT\SYSTEM32\efzx.exe
O4 - HKLM\..\Run: [Windos Manage] qzfdx.exe
O4 - HKLM\..\Run: [ESP] c:\Program Files\Cox\Applications\app\start.exe
O4 - HKLM\..\RunServices: [Windos Manage] qzfdx.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\system32\msjava.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {1B4F9DD7-2D7C-44B5-9126-73206DA0AE75} (CNavigationManager Object) - http://www3.authentium.com/cssrelease/bin/wizard.exe
O16 - DPF: {D18F962A-3722-4B59-B08D-28BB9EB2281E} (PhotosCtrl Class) - http://photos.yahoo.com/ocx/us/yexplorer1_9us.cab
O23 - Service: Altiris Client Service (AClient) - Altiris, Inc. - C:\COMPAQ\ACLIENT\ACLIENT.exe
O23 - Service: Cox High Speed Internet Security Suite System Service (AuthSysSvc) - Authentium, Inc. - c:\Program Files\Cox\Applications\App\syssvcnt.exe
O23 - Service: Compaq Local Alerter (CPQALERT) - Compaq Computer Corporation - C:\WINNT\System32\cpqalert.exe
O23 - Service: Compaq Remote Diagnostics Enabling Agent (CpqDfwWebAgent) - Compaq Computer Corporation - C:\WINNT\CPQDIAG\CPQDFWAG.EXE
O23 - Service: CPQDMI - Compaq Computer Corporation - C:\WINNT\System32\cpqdmi.exe
O23 - Service: Compaq DMI Web Agent (CpqWebDmi) - Compaq Computer Corporation - C:\Program Files\COMPAQ\CpqWebDMI\webdmi.EXE
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: DvpApi (dvpapi) - Command Software Systems, Inc. - c:\Program Files\Common Files\Command Software\dvpapi.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - C:\PROGRA~1\EFFICI~1\ENTERN~1\app\pppoeservice.exe
O23 - Service: Win32sl - Intel - c:\dmi\win32\bin\Win32sl.exe

jupiter2
Apr 5 2007, 09:03 PM
QUOTE(Ai_Tak @ Apr 5 2007, 06:33 AM) *
Please post both the Ad-Aware SE log and the hijackthis log.


And here is the adware scan. I have deleted everyting that adware pulled out.

Jim


Ad-Aware SE Build 1.06r1
Logfile Created on:Thursday, April 05, 2007 12:22:05 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R164 02.04.2007
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):11 total references
Tracking Cookie(TAC index:3):4 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


4-5-2007 12:22:05 PM - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Documents and Settings\jamesk\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-105258611-434180631-1947087254-1003\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 148
ThreadCreationTime : 4-5-2007 7:18:13 PM
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ProcessID : 172
ThreadCreationTime : 4-5-2007 7:18:51 PM
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ProcessID : 168
ThreadCreationTime : 4-5-2007 7:18:52 PM
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINNT\system32\
ProcessID : 220
ThreadCreationTime : 4-5-2007 7:18:53 PM
BasePriority : Normal
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ProcessID : 232
ThreadCreationTime : 4-5-2007 7:18:53 PM
BasePriority : Normal
FileVersion : 5.00.2195.6695
ProductVersion : 5.00.2195.6695
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Executable and Server DLL (Export Version)
InternalName : lsasrv.dll and lsass.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : lsasrv.dll and lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ProcessID : 412
ThreadCreationTime : 4-5-2007 7:18:55 PM
BasePriority : Normal
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : svchost.exe

#:7 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ProcessID : 436
ThreadCreationTime : 4-5-2007 7:18:57 PM
BasePriority : Normal
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : spoolss.exe

#:8 [aclient.exe]
FilePath : C:\COMPAQ\ACLIENT\
ProcessID : 464
ThreadCreationTime : 4-5-2007 7:18:57 PM
BasePriority : Normal
FileVersion : 4.1.171
ProductVersion : 4.1.171
ProductName : Altiris Client Agent for Windows
CompanyName : Altiris, Inc.
FileDescription : aclient
InternalName : Altiris Client Agent for Windows
LegalCopyright : Copyright © 1996-2000 Altiris, Inc.
OriginalFilename : aclient.exe

#:9 [syssvcnt.exe]
FilePath : c:\Program Files\Cox\Applications\App\
ProcessID : 480
ThreadCreationTime : 4-5-2007 7:18:57 PM
BasePriority : Normal
FileVersion : 3.0.1.5
ProductVersion : 3.0.1.0
ProductName : Authentium ESP
CompanyName : Authentium, Inc.
FileDescription : ESP NT System Service Launcher
InternalName : SysSvcNt
LegalCopyright : Copyright © Authentium, Inc., 2002-2006. All rights reserved.
OriginalFilename : SysSvcNt.exe

#:10 [cpqalert.exe]
FilePath : C:\WINNT\System32\
ProcessID : 536
ThreadCreationTime : 4-5-2007 7:19:01 PM
BasePriority : Normal
FileVersion : 4.37
ProductVersion : 4.37
ProductName : Compaq Management Agents
CompanyName : Compaq Computer Corporation
FileDescription : Compaq Local Alert Service
InternalName : CPQALERT
LegalCopyright : Copyright © 1995, 1999
OriginalFilename : CPQALERT.EXE

#:11 [cpqdfwag.exe]
FilePath : C:\WINNT\CPQDIAG\
ProcessID : 544
ThreadCreationTime : 4-5-2007 7:19:03 PM
BasePriority : Normal
FileVersion : 1.50
ProductVersion : 1.50
ProductName : Compaq Remote Diagnostics Enabling Agent
CompanyName : Compaq Computer Corporation
FileDescription : Compaq Diagnostics Application
InternalName : CPQDFWAG
LegalCopyright : Copyright © 1999, 2000
OriginalFilename : CPQDFWAG.EXE

#:12 [webdmi.exe]
FilePath : C:\Program Files\COMPAQ\CpqWebDMI\
ProcessID : 556
ThreadCreationTime : 4-5-2007 7:19:03 PM
BasePriority : Normal
FileVersion : 4.37
ProductVersion : 4.37
ProductName : Compaq Management Agents
CompanyName : Compaq Computer Corporation
FileDescription : Compaq DMI Web Management Service
InternalName : CPQWBDMI
LegalCopyright : Copyright © 1997, 1999
OriginalFilename : CPQWBDMI.EXE

#:13 [dvpapi.exe]
FilePath : c:\Program Files\Common Files\Command Software\
ProcessID : 632
ThreadCreationTime : 4-5-2007 7:19:05 PM
BasePriority : Normal


#:14 [svchost.exe]
FilePath : C:\WINNT\System32\
ProcessID : 644
ThreadCreationTime : 4-5-2007 7:19:05 PM
BasePriority : Normal
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : svchost.exe

#:15 [nvsvc32.exe]
FilePath : C:\WINNT\system32\
ProcessID : 692
ThreadCreationTime : 4-5-2007 7:19:06 PM
BasePriority : Normal
FileVersion : 6.14.10.4523
ProductVersion : 6.14.10.4523
ProductName : NVIDIA Driver Helper Service, Version 45.23
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 45.23
InternalName : NVSVC
LegalCopyright : © NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe

#:16 [pppoeservice.exe]
FilePath : C:\PROGRA~1\EFFICI~1\ENTERN~1\app\
ProcessID : 752
ThreadCreationTime : 4-5-2007 7:19:06 PM
BasePriority : Normal


#:17 [regsvc.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1044
ThreadCreationTime : 4-5-2007 7:19:12 PM
BasePriority : Normal
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : REGSVC.EXE

#:18 [mstask.exe]
FilePath : C:\WINNT\system32\
ProcessID : 260
ThreadCreationTime : 4-5-2007 7:19:12 PM
BasePriority : Normal
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
ProductName : Microsoft® Windows® Task Scheduler
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
LegalCopyright : Copyright © Microsoft Corp. 1997
OriginalFilename : mstask.exe

#:19 [win32sl.exe]
FilePath : c:\dmi\win32\bin\
ProcessID : 1144
ThreadCreationTime : 4-5-2007 7:19:14 PM
BasePriority : Normal
FileVersion : 2, 0, 0, 54
ProductVersion : 2, 0, 0, 54
ProductName : DMI 2.0 SDK
CompanyName : Intel
FileDescription : WIN32SL
InternalName : WIN32SL
LegalCopyright : Copyright © 1996-1997 Intel Corporation
OriginalFilename : WIN32SL.exe

#:20 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ProcessID : 1164
ThreadCreationTime : 4-5-2007 7:19:15 PM
BasePriority : Normal
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
ProductName : Windows Management Instrumentation
CompanyName : Microsoft Corporation
FileDescription : Windows Management Instrumentation
InternalName : WINMGMT
LegalCopyright : Copyright © Microsoft Corp. 1995-1999

#:21 [svchost.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1196
ThreadCreationTime : 4-5-2007 7:19:15 PM
BasePriority : Normal
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : svchost.exe

#:22 [cpqdmi.exe]
FilePath : C:\WINNT\System32\
ProcessID : 1272
ThreadCreationTime : 4-5-2007 7:19:23 PM
BasePriority : Normal
FileVersion : 4.37
ProductVersion : 4.37
ProductName : Compaq Management Agents
CompanyName : Compaq Computer Corporation
FileDescription : Compaq DMI Service Extension
InternalName : CPQDMI
LegalCopyright : Copyright © 1998, 1999
OriginalFilename : CPQDMI.EXE

#:23 [explorer.exe]
FilePath : C:\WINNT\
ProcessID : 1364
ThreadCreationTime : 4-5-2007 7:19:48 PM
BasePriority : Normal
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
ProductName : Microsoft® Windows ® 2000 Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : Copyright © Microsoft Corp. 1981-1999
OriginalFilename : EXPLORER.EXE

#:24 [promon.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1500
ThreadCreationTime : 4-5-2007 7:19:57 PM
BasePriority : Normal
FileVersion : 1.11
ProductVersion : 3.09
ProductName : Intel® PROMonitor
CompanyName : Intel Corporation
FileDescription : Intel® PROSet Tray Icon
InternalName : Intel® PROMonitor
LegalCopyright : Copyright © 1998-2000 Intel Corporation. All Rights Reserved.
OriginalFilename : PROMon.exe
Comments : Configures and tests Intel® PRO family of adapters.

#:25 [mmkeybd.exe]
FilePath : C:\Program Files\Compaq\Easy Access Keyboard\
ProcessID : 1564
ThreadCreationTime : 4-5-2007 7:20:01 PM
BasePriority : Normal
FileVersion : 1.51
ProductVersion : 1.51
ProductName : Easy Access Keyboard
CompanyName : Netropa Corp.
FileDescription : Easy Access Keyboard
InternalName : MMKeybd
LegalCopyright : Copyright ? 1995-2000 Netropa Corp.
OriginalFilename : MMKeybd.EXE

#:26 [em_exec.exe]
FilePath : C:\PROGRA~1\MOUSEW~1\SYSTEM\
ProcessID : 1576
ThreadCreationTime : 4-5-2007 7:20:01 PM
BasePriority : Normal
FileVersion : 9.01.78
ProductVersion : 9.01
ProductName : MouseWare
CompanyName : Logitech Inc.
FileDescription : Control Center
InternalName : EM_EXEC
LegalCopyright : Copyright © Logitech Inc. 1987-2000.
LegalTrademarks : Logitech® and MouseWare® are registered trademarks of Logitech Inc.
OriginalFilename : EM_EXEC.CPP
Comments : Created by the MouseWare Team

#:27 [chkadmin.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1584
ThreadCreationTime : 4-5-2007 7:20:01 PM
BasePriority : Normal
FileVersion : 4.37
ProductVersion : 4.37
ProductName : Compaq Management Agents
CompanyName : Compaq Computer Corporation
FileDescription : User run process
InternalName : CHKADMIN
LegalCopyright : Copyright © 1998, 1999
OriginalFilename : CHKADMIN.EXE

#:28 [start.exe]
FilePath : C:\Program Files\Cox\Applications\app\
ProcessID : 1588
ThreadCreationTime : 4-5-2007 7:20:03 PM
BasePriority : Normal
FileVersion : 3.0.0.2
ProductVersion : 3.0.0.1
ProductName : Authentium ESP 3
CompanyName : Authentium, Inc.
FileDescription : Security Application Launcher
InternalName : Start
LegalCopyright : © Authentium, Inc., 2006. All rights reserved.
LegalTrademarks : Intellectual property of Authentium, Inc.
OriginalFilename : Start.exe

#:29 [googletoolbarnotifier.exe]
FilePath : C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\
ProcessID : 1624
ThreadCreationTime : 4-5-2007 7:20:04 PM
BasePriority : Normal
FileVersion : 1, 2, 1128, 5462
ProductVersion : 1, 2, 1128, 5462
ProductName : GoogleToolbarNotifier
CompanyName : Google Inc.
FileDescription : GoogleToolbarNotifier
LegalCopyright : Copyright © 2005-2006
OriginalFilename : GoogleToolbarNotifier.exe

#:30 [mediactr.exe]
FilePath : C:\Program Files\Compaq\Easy Access Keyboard\
ProcessID : 1636
ThreadCreationTime : 4-5-2007 7:20:09 PM
BasePriority : Normal


#:31 [wfrmailer.exe]
FilePath : C:\Program Files\Cox\Applications\app\
ProcessID : 1652
ThreadCreationTime : 4-5-2007 7:20:09 PM
BasePriority : Below Normal
FileVersion : 3.00.0001
ProductVersion : 3.00.0001
ProductName : WFRMailer
CompanyName : Authentium, Inc.
InternalName : WFRMailer
LegalCopyright : © Authentium, Inc., 2006. All rights reserved.
LegalTrademarks : Intellectual property of Authentium, Inc.
OriginalFilename : WFRMailer.exe
Comments : Intellectual property of Authentium, Inc.

#:32 [mmusbkb2.exe]
FilePath : C:\Program Files\Compaq\Easy Access Keyboard\
ProcessID : 1688
ThreadCreationTime : 4-5-2007 7:20:16 PM
BasePriority : Normal
FileVersion : 1.6
ProductVersion : 1.6
ProductName : USB Multimedia Keyboard Driver 2
CompanyName : Netropa Corporation
FileDescription : USB Multimedia Keyboard Driver 2
InternalName : mmusbkb2
LegalCopyright : Copyright © 1998-1999 Netropa Corporation
OriginalFilename : mmusbkb2.exe

#:33 [console.exe]
FilePath : C:\Program Files\Cox\Applications\app\
ProcessID : 328
ThreadCreationTime : 4-5-2007 7:20:35 PM
BasePriority : Normal
FileVersion : 3.00.0004
ProductVersion : 3.00.0004
ProductName : Authentium ESP Version 3
CompanyName : Authentium, Inc.
FileDescription : Authentium ESP 3
InternalName : console
LegalCopyright : © Authentium, Inc., 2007. All rights reserved.
LegalTrademarks : Intellectual property of Authentium, Inc.
OriginalFilename : console.exe
Comments : Intellectual property of Authentium, Inc.

#:34 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 288
ThreadCreationTime : 4-5-2007 7:21:16 PM
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

#:35 [wuauclt.exe]
FilePath : C:\WINNT\system32\
ProcessID : 1668
ThreadCreationTime : 4-5-2007 7:21:37 PM
BasePriority : Normal
FileVersion : 5.8.0.2469 built by: lab01_n(wmbla)
ProductVersion : 5.8.0.2469
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Automatic Updates
InternalName : wuauclt.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : wuauclt.exe

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 11


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 11


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 11


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jamesk@atdmt[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:jamesk@atdmt.com/
Expires : 4-2-2012 5:00:00 PM
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jamesk@doubleclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:jamesk@doubleclick.net/
Expires : 4-4-2007 9:47:12 PM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jamesk@coxhsi.112.2o7[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:jamesk@coxhsi.112.2o7.net/
Expires : 4-2-2012 7:37:50 PM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jamesk@indextools[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:jamesk@indextools.com/
Expires : 4-3-2008 12:24:42 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 4
Objects found so far: 15



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Scanning Hosts file......
Hosts file location:"C:\WINNT\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 15




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15

12:31:20 PM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:09:15.547
Objects scanned:66907
Objects identified:4
Objects ignored:0
New critical objects:4


jupiter2
Apr 8 2007, 01:34 AM
No more issue with this topic. I ditched my old computer with win2000 and picked up a refurbished box with XP Professional. I also ditched the COX security software, that seemed to be slowing things down a great deal.

Thanks for any effort that was put into this and I hope I haven't wasted anyones time.

Jim
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2010 Invision Power Services, Inc.