|
O.P. RE: WLM sends out messages and files as soon as I sign on
Here is the the list with messenger shut down:
Process PID CPU Description Company Name Command Line
System Idle Process 0 96.15
Interrupts n/a Hardware Interrupts
DPCs n/a Deferred Procedure Calls
System 4
smss.exe 804 Windows NT Session Manager Microsoft Corporation \SystemRoot\System32\smss.exe
csrss.exe 864 Client Server Runtime Process Microsoft Corporation C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
winlogon.exe 888 Windows NT Logon Application Microsoft Corporation winlogon.exe
services.exe 932 0.77 Services and Controller app Microsoft Corporation C:\WINDOWS\system32\services.exe
svchost.exe 1096 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k DcomLaunch
WLLoginProxy.exe 3952 WLLoginProxy.exe Microsoft Corporation "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe" -Embedding
svchost.exe 1152 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k rpcss
svchost.exe 1192 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe 1232 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe 1292 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe 1488 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k LocalService
spoolsv.exe 1796 Spooler SubSystem App Microsoft Corporation C:\WINDOWS\system32\spoolsv.exe
guard.exe 1916 AVG Anti-Spyware guard GRISOFT s.r.o. "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe"
DefWatch.exe 1932 Virus Definition Daemon Symantec Corporation "C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe"
NBService.exe 408 Nero BackItUp Nero AG "C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe"
Rtvscan.exe 440 Symantec AntiVirus Symantec Corporation "C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe"
nvsvc32.exe 464 NVIDIA Driver Helper Service, Version 84.21 NVIDIA Corporation C:\WINDOWS\system32\nvsvc32.exe
RichVideo.exe 492 RichVideo Module "C:\Program Files\CyberLink\Shared files\RichVideo.exe"
svchost.exe 536 0.77 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k imgsvc
alg.exe 2348 Application Layer Gateway Service Microsoft Corporation C:\WINDOWS\System32\alg.exe
svchost.exe 4056 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k HTTPFilter
usnsvc.exe 2248 Messenger Sharing USN Journal Reader Service Microsoft Corporation "C:\Program Files\Windows Live\Messenger\usnsvc.exe"
lsass.exe 944 LSA Shell (Export Version) Microsoft Corporation C:\WINDOWS\system32\lsass.exe
explorer.exe 268 Windows Explorer Microsoft Corporation C:\WINDOWS\Explorer.EXE
smax4pnp.exe 1220 SMax4PNP Analog Devices, Inc. "C:\Program Files\Analog Devices\Core\smax4pnp.exe"
SMax4.exe 1364 Audio Control Panel Analog Devices, Inc. "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
rundll32.exe 1416 Run a DLL as an App Microsoft Corporation "C:\WINDOWS\system32\RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
realsched.exe 1420 RealNetworks Scheduler RealNetworks, Inc. "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
jusched.exe 1472 Java(TM) Platform SE binary Sun Microsystems, Inc. "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
E_S4I2K1.EXE 1276 EPSON Status Monitor 3 SEIKO EPSON CORPORATION "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2K1.EXE" /P24 "EPSON Stylus Photo RX500" /O6 "USB001" /M "Stylus Photo RX500"
itype.exe 1524 IType.exe Microsoft Corporation "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
ipoint.exe 1568 IPoint.exe Microsoft Corporation "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
GrooveMonitor.exe 1708 GrooveMonitor Utility Microsoft Corporation "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
VPTray.exe 1712 Symantec AntiVirus Symantec Corporation "C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe"
PDVDServ.exe 1504 PowerDVD RC Service Cyberlink Corp. "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
SearchProtection.exe 988 Yahoo! Application Yahoo! Inc. "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
E_S4I2K1.EXE 1824 EPSON Status Monitor 3 SEIKO EPSON CORPORATION "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2K1.EXE" /P44 "Auto EPSON Stylus Photo RX500 on PAULMARYANN" /O21 "\\PAULMARYANN\Printer" /M "Stylus Photo RX500"
avgas.exe 2328 0.77 AVG Anti-Spyware GRISOFT s.r.o. "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
ctfmon.exe 2384 CTF Loader Microsoft Corporation "C:\WINDOWS\system32\ctfmon.exe"
msmsgs.exe 2524 Windows Messenger Microsoft Corporation "C:\Program Files\Messenger\msmsgs.exe" /background
mirc32.exe 300 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
mirc32.exe 1076 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
mirc32.exe 1440 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
IEXPLORE.EXE 2864 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2104 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2948 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2180 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
procexp.exe 2276 Sysinternals Process Explorer Sysinternals "C:\Program Files\ProcessExplorer\procexp.exe"
javaw.exe 2228 1.54 Java(TM) Platform SE binary Sun Microsystems, Inc. "C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe" -Xmx512m -ms4m -Xminf0.10 -Xmaxf0.25 -Djava.net.preferIPv4Stack=true -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog -Djava.library.path=.\lib -jar lib\MP3Rocket.jar
Here is the list from the 2nd file after messenger was logged into:
Process PID CPU Description Company Name Command Line
System Idle Process 0 93.85
Interrupts n/a Hardware Interrupts
DPCs n/a 0.77 Deferred Procedure Calls
System 4
smss.exe 804 Windows NT Session Manager Microsoft Corporation \SystemRoot\System32\smss.exe
csrss.exe 864 Client Server Runtime Process Microsoft Corporation C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
winlogon.exe 888 Windows NT Logon Application Microsoft Corporation winlogon.exe
services.exe 932 0.77 Services and Controller app Microsoft Corporation C:\WINDOWS\system32\services.exe
svchost.exe 1096 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k DcomLaunch
WLLoginProxy.exe 3952 WLLoginProxy.exe Microsoft Corporation "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe" -Embedding
svchost.exe 1152 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k rpcss
svchost.exe 1192 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe 1232 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe 1292 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe 1488 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k LocalService
spoolsv.exe 1796 Spooler SubSystem App Microsoft Corporation C:\WINDOWS\system32\spoolsv.exe
guard.exe 1916 AVG Anti-Spyware guard GRISOFT s.r.o. "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe"
DefWatch.exe 1932 Virus Definition Daemon Symantec Corporation "C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe"
NBService.exe 408 Nero BackItUp Nero AG "C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe"
Rtvscan.exe 440 Symantec AntiVirus Symantec Corporation "C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe"
nvsvc32.exe 464 NVIDIA Driver Helper Service, Version 84.21 NVIDIA Corporation C:\WINDOWS\system32\nvsvc32.exe
RichVideo.exe 492 RichVideo Module "C:\Program Files\CyberLink\Shared files\RichVideo.exe"
svchost.exe 536 0.77 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k imgsvc
alg.exe 2348 Application Layer Gateway Service Microsoft Corporation C:\WINDOWS\System32\alg.exe
svchost.exe 4056 Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k HTTPFilter
usnsvc.exe 2248 Messenger Sharing USN Journal Reader Service Microsoft Corporation "C:\Program Files\Windows Live\Messenger\usnsvc.exe"
lsass.exe 944 LSA Shell (Export Version) Microsoft Corporation C:\WINDOWS\system32\lsass.exe
explorer.exe 268 Windows Explorer Microsoft Corporation C:\WINDOWS\Explorer.EXE
smax4pnp.exe 1220 SMax4PNP Analog Devices, Inc. "C:\Program Files\Analog Devices\Core\smax4pnp.exe"
SMax4.exe 1364 Audio Control Panel Analog Devices, Inc. "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
rundll32.exe 1416 Run a DLL as an App Microsoft Corporation "C:\WINDOWS\system32\RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
realsched.exe 1420 RealNetworks Scheduler RealNetworks, Inc. "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
jusched.exe 1472 Java(TM) Platform SE binary Sun Microsystems, Inc. "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
E_S4I2K1.EXE 1276 EPSON Status Monitor 3 SEIKO EPSON CORPORATION "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2K1.EXE" /P24 "EPSON Stylus Photo RX500" /O6 "USB001" /M "Stylus Photo RX500"
itype.exe 1524 IType.exe Microsoft Corporation "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
ipoint.exe 1568 IPoint.exe Microsoft Corporation "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
GrooveMonitor.exe 1708 GrooveMonitor Utility Microsoft Corporation "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
VPTray.exe 1712 Symantec AntiVirus Symantec Corporation "C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe"
PDVDServ.exe 1504 PowerDVD RC Service Cyberlink Corp. "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
SearchProtection.exe 988 Yahoo! Application Yahoo! Inc. "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
E_S4I2K1.EXE 1824 EPSON Status Monitor 3 SEIKO EPSON CORPORATION "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2K1.EXE" /P44 "Auto EPSON Stylus Photo RX500 on ADMIN" /O21 "\\PAULMARYANN\Printer" /M "Stylus Photo RX500"
avgas.exe 2328 0.77 AVG Anti-Spyware GRISOFT s.r.o. "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
ctfmon.exe 2384 CTF Loader Microsoft Corporation "C:\WINDOWS\system32\ctfmon.exe"
msmsgs.exe 2524 Windows Messenger Microsoft Corporation "C:\Program Files\Messenger\msmsgs.exe" /background
mirc32.exe 300 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
mirc32.exe 1076 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
mirc32.exe 1440 mIRC mIRC Co. Ltd. "C:\Program Files\mIRC\mirc32.exe"
IEXPLORE.EXE 2864 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2104 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2948 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
IEXPLORE.EXE 2180 Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
procexp.exe 2276 0.77 Sysinternals Process Explorer Sysinternals "C:\Program Files\ProcessExplorer\procexp.exe"
msnmsgr.exe 3724 Windows Live Messenger Microsoft Corporation
javaw.exe 2228 2.31 Java(TM) Platform SE binary Sun Microsystems, Inc. "C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe" -Xmx512m -ms4m -Xminf0.10 -Xmaxf0.25 -Djava.net.preferIPv4Stack=true -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.NoOpLog -Djava.library.path=.\lib -jar lib\MP3Rocket.jar
This post was edited on 02-23-2008 at 08:55 AM by deffman.
| 
/ 
