HJT Log - Generic Host Process for Win32 Services

[Xearoveg]

I am getting "Generic Host Process for Win32 Services" when I'm not behind my firewall. Then my sound card messes up, I still have sound but media sound like movies and such don't work. Also some network/internet issues arise.

My website was hit by some hackers and everyone who went there got the same thing. I don't think it could be anything other than a trojan/virus because of that.

My friends also have the same issue. Anyone who has their computer connected to the internet without being behind a firewall gets this message and loses sound card functionality and network/internet issues arise as well.

Logfile of HijackThis v1.99.1
Scan saved at 10:04:44 AM, on 6/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\RUNDLL32.EXE
E:\Program Files\Common Files\Logitech\LCD Manager\lcdmon.exe
E:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe
E:\Program Files\QuickTime\qttask.exe
E:\WINDOWS\CTHELPER.EXE
E:\WINDOWS\system32\CTXFIHLP.EXE
E:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe
E:\Program Files\TiVo\Desktop\TiVoNotify.exe
E:\Program Files\TiVo\Desktop\TiVoServer.exe
E:\Program Files\Logitech\SetPoint\SetPoint.exe
E:\Program Files\Xfire\xfire.exe
E:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDCountdown.exe
E:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDClock.exe
E:\WINDOWS\SYSTEM32\CTXFISPI.EXE
E:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDPOP3.exe
E:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDMedia.exe
E:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
E:\WINDOWS\System32\nvsvc32.exe
E:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe
E:\WINDOWS\System32\svchost.exe
C:\Program Files\Trillian\trillian.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
E:\Program Files\Winamp\Winamp.exe
E:\WINDOWS\system32\dwwin.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\Software\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.unitedwel33t.com/forums/
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Launch LCDMon] "E:\Program Files\Common Files\Logitech\LCD Manager\lcdmon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "E:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [TivoTransfer] "E:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe" /service /registry /auto:TivoTransfer
O4 - HKCU\..\Run: [TivoNotify] "E:\Program Files\TiVo\Desktop\TiVoNotify.exe" /service /registry /auto:TivoNotify
O4 - HKCU\..\Run: [TivoServer] "E:\Program Files\TiVo\Desktop\TiVoServer.exe" /service /registry /auto:TivoServer
O4 - Startup: Trillian.lnk = E:\Program Files\Trillian\trillian.exe
O4 - Startup: Xfire.lnk = E:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = E:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Shortcut to ventrilo_srv.lnk = E:\Program Files\VentSrv\ventrilo_srv.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - E:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - E:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - E:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: TiVo Beacon (TivoBeacon2) - Unknown owner - E:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe" /service (file missing)

 

[Osiris]

please go thru my guide to see if you having anything hiding in your system then post a new log