uTorrent 1.7.7 crash on Vista

[ktjunge]

Hey,

I run uTorrent 1.7.7 on Vista Ultimate.

The prog start and run, but after 5-6 min it crash.

Error Msg: uTorrent has crashed. Unable to generate crash dump.

Then it shut down.

Can someone help me?

Regards

ktjunge

[jewelisheaven]

For starts please go through http://forum.utorrent.com/viewtopic.php?id=15992 to the bottom where it explains how to make logfiles for HiJackThis and Process Explorer. Copy-paste them into this thread

[ktjunge]

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 23:36:28, on 05.05.2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Canal Digital Sikkerhetspakken\Common\FSM32.EXE

C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe

C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe

C:\Program Files\D-Link\D-Link Wireless N DWA-140\AirNCFG.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\Program Files\Canal Digital Sikkerhetspakken\FSGUI\fsguidll.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Brother\ControlCenter3\brccMCtl.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe

C:\Program Files\DAEMON Tools Pro\DTProAgent.exe

C:\Program Files\Brother\Brmfcmon\BrMfimon.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Windows\system32\conime.exe

C:\Program Files\Internet Explorer\IEUser.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

C:\Program Files\Azureus\Azureus.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.vg.no/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Canal Digital Sikkerhetspakken\Common\FSM32.EXE" /splash

O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Canal Digital Sikkerhetspakken\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe

O4 - HKLM\..\Run: [D-Link D-Link Wireless N DWA-140] C:\Program Files\D-Link\D-Link Wireless N DWA-140\AirNCFG.exe

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" -autorun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKAL TJENESTE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKAL TJENESTE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETTVERKSTJENESTE')

O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O13 - Gopher Prefix:

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD39/JSCDL/jre/6u5-b15/jinstall-6u5-windows-i586-jc.cab?AuthParam=1209525942_5f06f2dda10e210128ecd2dbccf2f060&GroupName=JSC&BHost=javadl.sun.com&FilePath=/ESD39/JSCDL/jre/6u5-b15/jinstall-6u5-windows-i586-jc.cab&File=jinstall-6u5-windows-i586-jc.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = woods.local

O17 - HKLM\Software\..\Telephony: DomainName = woods.local

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = woods.local

O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Canal Digital Sikkerhetspakken\Anti-Virus\fsgk32st.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Canal Digital Sikkerhetspakken\FSAUA\program\fsaua.exe

O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Canal Digital Sikkerhetspakken\FWES\Program\fsdfwd.exe

O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Canal Digital Sikkerhetspakken\Common\FSMA32.EXE

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe

--

End of file - 9564 bytes

Process PID CPU Description Company Name

System Idle Process 0 78.91

Interrupts n/a Hardware Interrupts

DPCs n/a 2.32 Deferred Procedure Calls

System 4 0.77

smss.exe 524

csrss.exe 592

wininit.exe 648

services.exe 692

svchost.exe 892

WLLoginProxy.exe 8244 WLLoginProxy.exe Microsoft Corporation

svchost.exe 956

svchost.exe 1020

svchost.exe 1100

audiodg.exe 1252

svchost.exe 1168 1.55

WUDFHost.exe 2388

dwm.exe 3272 Desktop Window Manager Microsoft Corporation

svchost.exe 1196

taskeng.exe 3092

taskeng.exe 3200 Oppgaveplanleggingsmotor Microsoft Corporation

svchost.exe 1284

SLsvc.exe 1332

svchost.exe 1380

svchost.exe 1536

spoolsv.exe 1800

svchost.exe 1840

mDNSResponder.exe 424

fsgk32st.exe 560

fsgk32.exe 1420

fssm32.exe 2736

FSMA32.EXE 584

FSMB32.EXE 1680

FCH32.EXE 2432

fsqh.exe 2556

FAMEH32.EXE 2576

fsav32.exe 3868

mdm.exe 1524

NBService.exe 1604

IoctlSvc.exe 556

svchost.exe 2068

svchost.exe 2176

svchost.exe 2212

SearchIndexer.exe 2232

fsaua.exe 2724

fsdfwd.exe 2876

NMIndexingService.exe 3084

FNPLicensingService.exe 5000

usnsvc.exe 5780

lsass.exe 708

lsm.exe 716

csrss.exe 660

winlogon.exe 864

fsus.exe 3108

explorer.exe 3332 Windows Utforsker Microsoft Corporation

MSASCui.exe 3448 Windows Defender User Interface Microsoft Corporation

FSM32.EXE 3464 F-Secure Settings and Statistics F-Secure Corporation

fsguidll.exe 3500 F-Secure GUI component F-Secure Corporation

Acrotray.exe 3484 AcroTray Adobe Systems Inc.

BrMfcWnd.exe 3492 Brother Status Monitor MFC Application Brother Industries, Ltd.

BrMfimon.exe 220 Status Monitor (Network) Brother Industries, Ltd.

WZCSLDR2.exe 3512 ANIWZCS2 launcher for Windows. Wireless Service

AirNCFG.exe 3520 D-Link Wireless LAN Monitor D-Link

jusched.exe 3612 Java Platform SE binary Sun Microsystems, Inc.

sidebar.exe 3056 Windows Sidepanel Microsoft Corporation

msnmsgr.exe 2024 Windows Live Messenger Microsoft Corporation

NMIndexStoreSvr.exe 4088 Nero Home Nero AG

DTProAgent.exe 2100 DAEMON Tools Pro Tray Application DT Soft Ltd.

HijackThis.exe 876 HijackThis Trend Micro Inc.

uTorrent.exe 12416 15.47

explorer.exe 2468 Windows Utforsker Microsoft Corporation

procexp.exe 9632 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

BrccMCtl.exe 1140 Control Center 3 Main Program Brother Industries, Ltd.

conime.exe 8784

ieuser.exe 9616 Internet Explorer Microsoft Corporation

iexplore.exe 3684 Internet Explorer Microsoft Corporation

Process: uTorrent.exe Pid: 12416

Name Description Company Name Version

ADVAPI32.dll Avansert Windows 32 Base-API Microsoft Corporation 6.00.6001.18000

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000

COMCTL32.dll Bibliotek for brukerkontroller Microsoft Corporation 6.10.6001.18000

comctl32.dll.mui Bibliotek for brukerkontroller Microsoft Corporation 6.10.6000.16386

comdlg32.dll DLL for felles dialogbokser Microsoft Corporation 6.00.6001.18000

dhcpcsvc.DLL Tjenesten DHCP Client Microsoft Corporation 6.00.6001.18000

dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.00.6001.18000

DNSAPI.dll DNS-klient API DLL Microsoft Corporation 6.00.6001.18000

DUser.dll Internet Explorer UI Engine Microsoft Corporation 6.00.6001.18000

FirewallAPI.dll Windows-brannmur-API Microsoft Corporation 6.00.6001.18000

fsgkiapi.dll fsgkiapi F-Secure Corp. 6.60.12296.14989

FSLSP.DLL F-Secure Protocol Scanner LSP F-Secure Corporation 2.00.0240.0000

fsscoepl.dll Microsoft Outlook Express® Spam Control Addin F-Secure Corporation 1.02.6950.0000

GDI32.dll GDI Client DLL Microsoft Corporation 6.00.6001.18023

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.00.6001.18000

Iphlpapi.dll IP Helper API Microsoft Corporation 6.00.6001.18000

kernel32.dll DLL-fil for Windows NT BASE API-klient Microsoft Corporation 6.00.6001.18000

locale.nls

locale.nls

LPK.DLL Language Pack Microsoft Corporation 6.00.6001.18000

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

MSCTF.dll MSCTF-server-DLL Microsoft Corporation 6.00.6001.18000

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.6001.18000

mswsock.dll Microsoft Windows Sockets 2.0-tjenesteprogram Microsoft Corporation 6.00.6001.18000

napinsp.dll Mellomlagstjeneste for e-postnavngiving Microsoft Corporation 6.00.6001.18000

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 6.00.6001.18000

NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.00.6001.18000

NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.00.6001.18000

ntdll.dll NT nivå-dll Microsoft Corporation 6.00.6001.18000

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.00.6001.18000

OLEAUT32.dll Microsoft Corporation 6.00.6001.18000

pnrpnsp.dll PNRP-navneområdeleverandør Microsoft Corporation 6.00.6001.18000

PROPSYS.dll Microsoft Property System Microsoft Corporation 6.00.6001.18000

PSAPI.DLL Process Status Helper Microsoft Corporation 6.00.6000.16386

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.00.6000.16386

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.00.6001.18000

Secur32.dll Security Support Provider Interface Microsoft Corporation 6.00.6001.18000

SETUPAPI.dll Installasjons-API for Windows Microsoft Corporation 6.00.6001.18000

SHELL32.dll Felles DLL-fil for Windows-skall Microsoft Corporation 6.00.6001.18000

SHLWAPI.dll Lavnivåbibliotek for grensesnitt Microsoft Corporation 6.00.6001.18000

USER32.dll Windows USER API klient-DLL for flere brukere Microsoft Corporation 6.00.6001.18000

USERENV.dll Userenv Microsoft Corporation 6.00.6001.18000

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6001.18000

uTorrent.exe

uxtheme.dll Microsoft UxTema-bibliotek Microsoft Corporation 6.00.6001.18000

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.00.6001.18000

WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.00.6001.18000

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.00.6000.16386

WLDAP32.dll DLL-fil for Win32 LDAP-API Microsoft Corporation 6.00.6001.18000

WS2_32.dll Windows Socket 2.0 32-biters DLL Microsoft Corporation 6.00.6001.18000

wshtcpip.dll Winsock2-hjelpe-DLL (TL/IPv4) Microsoft Corporation 6.00.6001.18000

[jewelisheaven]

Could you include the process list for uTorrent.exe too please?

So it looks like you only use F-Secure security suite yes? I'm thinking it's the Dlink wireless configurator you're also running. Could you try running uT without that up?

[ktjunge]

Okey.

I shut down F-secure and now i try utorrent.

I use D-link router Dir-655

process list ? how do i get it?

New at this :-)

Look like its working now. I think uTorrent dont like F-secure.

[jewelisheaven]

I see you found out how to make the P.E. log

fsgkiapi.dll fsgkiapi F-Secure Corp. 6.60.12296.14989

FSLSP.DLL F-Secure Protocol Scanner LSP F-Secure Corporation 2.00.0240.0000

fsscoepl.dll Microsoft Outlook Express® Spam Control Addin F-Secure Corporation 1.02.6950.0000

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

Since that was taken with F-Secure running, I'd start there to see if you can turn on ALL-BUT those parts of Fsecure to find the problem I'd start with that OE mail scanner.

[ktjunge]

Okey, its working now !!!

F-secure was the bad boy.

Thanks for the help :-)

Regards

ktjunge