unable to generate Crash dump

TheJaws · August 31, 2008

i got Utorrent 1.8 and everything was fine

with the new update its crashing everytime when i want to start it

the popup says : Utorrent has crashed Unable to generate crash dump

how do i fix this problem

let me know as soon as possible

Ultima · August 31, 2008

a) get HijackThis from trendsecure.com, run it, view the log, and post the contents here

get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here

TheJaws · August 31, 2008

HJT

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:38:10, on 31-8-2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Program Files\DU Meter\DUMeter.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Windows\PixArt\PAC207\Monitor.exe

C:\Windows\System32\mmrtkrnl.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Program Files\RALINK\Common\RaUI.exe

C:\Program Files\Xfire\xfire.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Users\Niels\Desktop\procexp.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Users\Niels\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL

O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [skytel] Skytel.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [setc] C:\Program Files\MySecurityCenter\Programs\setc.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe

O4 - HKLM\..\Run: [Realtime Audio Engine] "mmrtkrnl.exe" /i

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [steam] "c:\program files\steam\steam.exe" -silent

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe

O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe

O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O13 - Gopher Prefix:

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: DXDRYESZI - Unknown owner - C:\Users\Niels\AppData\Local\Temp\DXDRYESZI.exe (file missing)

O23 - Service: FLHCHJ - Unknown owner - C:\Users\Niels\AppData\Local\Temp\FLHCHJ.exe (file missing)

O23 - Service: MySecurityCenter License Service - Unknown owner - C:\Program Files\MySecurityCenter\Programs\service.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

O23 - Service: ZXCMMGRG - Unknown owner - C:\Users\Niels\AppData\Local\Temp\ZXCMMGRG.exe (file missing)

--

End of file - 6610 bytes

PE

Process PID CPU Description Company Name

System Idle Process 0 54.25

Interrupts n/a Hardware Interrupts

DPCs n/a 0.76 Deferred Procedure Calls

System 4 3.06

smss.exe 448

csrss.exe 516

wininit.exe 572

services.exe 624 0.76

svchost.exe 884

ehmsas.exe 2748 Media Center Media Status Aggregator Service Microsoft Corporation

WmiPrvSE.exe 3648

unsecapp.exe 2792 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation

svchost.exe 948

svchost.exe 984

Ati2evxx.exe 1076

Ati2evxx.exe 1396

svchost.exe 1096

audiodg.exe 1240

svchost.exe 1132 16.05

dwm.exe 1912 1.53 Desktopfenster-Manager Microsoft Corporation

svchost.exe 1144

taskeng.exe 216 Aufgabenplanungsmodul Microsoft Corporation

taskeng.exe 5612

SLsvc.exe 1304

svchost.exe 1344

svchost.exe 1532

spoolsv.exe 1788

svchost.exe 1836

avgwdsvc.exe 1552

avgrsx.exe 288

Service.exe 2128

NBService.exe 2192

IoctlSvc.exe 2320

PnkBstrA.exe 2360

svchost.exe 2380

RichVideo.exe 2436

svchost.exe 2472

svchost.exe 2588

SearchIndexer.exe 2620

SearchProtocolHost.exe 2260

SearchFilterHost.exe 5040

ehsched.exe 1260

ehrecvr.exe 1368

wmpnetwk.exe 3140

usnsvc.exe 6084

TuneUpDefragService.exe 1984

lsass.exe 664

lsm.exe 672

csrss.exe 584 0.76

winlogon.exe 720

explorer.exe 1992 Windows-Explorer Microsoft Corporation

MSASCui.exe 2848 Windows Defender User Interface Microsoft Corporation

RtHDVCpl.exe 2996 HD Audio Control Panel Realtek Semiconductor

PDVDServ.exe 3096 PowerDVD RC Service Cyberlink Corp.

jusched.exe 3324 Java Platform SE binary Sun Microsystems, Inc.

DUMeter.exe 3344 DU Meter Hagel Technologies Ltd

avgtray.exe 3380 AVG Tray Monitor AVG Technologies CZ, s.r.o.

Monitor.exe 3400 Registry Monitor PixArt Imaging Incorporation

mmrtkrnl.exe 3420 RealTime Audio Engine AlcaTech

sidebar.exe 3436 0.76 Windows-Sidebar Microsoft Corporation

sidebar.exe 1028 1.53 Windows-Sidebar Microsoft Corporation

ehtray.exe 3456 Media Center Tray Applet Microsoft Corporation

daemon.exe 3968 DAEMON Tools main application DT Soft Ltd

RaUI.exe 4044 Ralink Wireless Utility Ralink Technology, Corp.

xfire.exe 4084 Xfire Xfire Inc.

firefox.exe 1112 Firefox Mozilla Corporation

wlmail.exe 5216 Windows Live Mail Microsoft Corporation

procexp.exe 5164 4.58 Sysinternals Process Explorer Sysinternals

uTorrent.exe 3668 16.81 µTorrent BitTorrent, Inc.

MOM.exe 3924 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc.

CCC.exe 908 Catalyst Control Centre: Host application ATI Technologies Inc.

thelittlefire · September 1, 2008

You are/were infected with mal/ad/crap-ware.

O23 - Service: DXDRYESZI - Unknown owner - C:\Users\Niels\AppData\Local\Temp\DXDRYESZI.exe (file missing)
O23 - Service: FLHCHJ - Unknown owner - C:\Users\Niels\AppData\Local\Temp\FLHCHJ.exe (file missing)

Edit or repost PE logfile with Ctrl-D and uTorrent.exe selected please

Be sure you're running the MOST up to date drivers for RALink chipsets. Which one do you have?

Wolfwood101 · September 5, 2008

Im having the exact same problem =( so heres the HJT and PE

BTW this is a brand new computer

::EDIT:: Um i think i fixed the problem. I had both the NVidia Firewall and NOD32 so yeah shoulda read the sticky first so sorry for bringing up an old Topic, Yall have been most Helpful! many thanks =)

for anyone else whom have this problem check this thread out: http://forum.utorrent.com/viewtopic.php?id=30250

p2puser · September 5, 2008

This is the same error I have experienced over a dozen times. I have attempted the solutions in the 'Having crashes? Read here' sticky to no avail.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 4:54:32 PM, on 9/5/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v8.00 (8.00.6001.18241)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Ideazon\ZEngine\Zboard.exe

C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe

C:\Users\Main User.BlueWhale\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

O4 - HKLM\..\Run: [Zboard] C:\Program Files (x86)\Ideazon\ZEngine\Zboard.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL

O4 - HKLM\..\Run: [EVGAPrecision] "C:\Program Files (x86)\EVGA Precision\EVGAPrecisionWrapper.exe" /s

O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"

O4 - HKCU\..\Run: [NVIDIA nTune] C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe resetprofile

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll

O13 - Gopher Prefix:

O15 - Trusted Zone: *.line6.net

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1.0\r3hook.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe

O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe

O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 8637 bytes

----------------------------------------------------------------------------------------------

Process PID CPU Description Company Name

System Idle Process 0 83.71

Interrupts n/a 0.39 Hardware Interrupts

DPCs n/a 0.39 Deferred Procedure Calls

System 4 0.39

smss.exe 476

csrss.exe 580

wininit.exe 620

services.exe 676

svchost.exe 868

WmiPrvSE.exe 2256

unsecapp.exe 3368 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation

nvvsvc.exe 912

rundll32.exe 1544

svchost.exe 972

svchost.exe 284

svchost.exe 328

audiodg.exe 668

svchost.exe 484 1.16

dwm.exe 1224 Desktop Window Manager Microsoft Corporation

svchost.exe 536

taskeng.exe 1112 Task Scheduler Engine Microsoft Corporation

GoogleUpdate.exe 1552 Google Installer Google Inc.

taskeng.exe 2284

CTAudSvc.exe 876

svchost.exe 412

SLsvc.exe 1056

svchost.exe 1132

svchost.exe 1232

spoolsv.exe 1500

svchost.exe 1560

AppleMobileDeviceService.exe 2400

avp.exe 2444

mDNSResponder.exe 2468

svchost.exe 2516

svchost.exe 2532

nTuneService.exe 2548

svchost.exe 2764

svchost.exe 2780

svchost.exe 2800

UpdateCenterService.exe 2840

svchost.exe 2916

SearchIndexer.exe 2936

nSvcAppFlt.exe 2976

nSvcIp.exe 3020

wmpnetwk.exe 3692

infocard.exe 3868

lsass.exe 696

lsm.exe 712

csrss.exe 640

winlogon.exe 936

explorer.exe 2068 Windows Explorer Microsoft Corporation

MSASCui.exe 1396 Windows Defender User Interface Microsoft Corporation

nvraidservice.exe 2756 NVIDIA RAID Service English language NVIDIA Corporation

rundll32.exe 3004 Windows host process (Rundll32) Microsoft Corporation

SetPoint.exe 3116 Logitech SetPoint Event Manager (UNICODE) Logitech, Inc.

SetPoint32.exe 2308

KHALMNPR.exe 3344 Logitech KHAL Main Process Logitech, Inc.

wmpnscfg.exe 3656 Windows Media Player Network Sharing Service Configuration Application Microsoft Corporation

procexp64.exe 4384 0.39 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

uTorrent.exe 4568 13.50 µTorrent BitTorrent, Inc.

Zboard.exe 3196 Ideazon Z Engine Ideazon, Inc.

Process: uTorrent.exe Pid: 4568

Name Description Company Name Version

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.00.6001.18000

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.6001.18000

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.6001.18000

dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.00.6001.18000

dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.00.6001.18000

DNSAPI.dll DNS Client API DLL Microsoft Corporation 6.00.6001.18000

dnsq.dll DNSQ Kaspersky Lab 7.00.0001.0325

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.00.6001.18000

GameHook.dll Logitech Gaming Hook (UNICODE) Logitech, Inc. 4.60.0122.0000

GDI32.dll GDI Client DLL Microsoft Corporation 6.00.6001.18023

GPAPI.dll Group Policy Client API Microsoft Corporation 6.00.6001.18000

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.00.6001.18000

hnetcfg.dll.mui Home Networking Configuration Manager Microsoft Corporation 6.00.6000.16386

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.00.6001.18241

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.00.6001.18000

Iphlpapi.dll IP Helper API Microsoft Corporation 6.00.6001.18000

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.00.6001.18000

kernel32.dll.mui Windows NT BASE API Client DLL Microsoft Corporation 6.00.6001.18000

lgscroll.dll Logitech Scroll Enabler (UNICODE) Logitech, Inc. 4.60.0122.0000

locale.nls

LPK.DLL Language Pack Microsoft Corporation 6.00.6001.18000

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 1.00.0004.0012

MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.00.6001.18000

msi.dll Windows Installer Microsoft Corporation 4.00.6001.18000

msiltcfg.dll Windows Installer Configuration API Stub Microsoft Corporation 4.00.6000.16386

MSVCR80.dll Microsoft® C Runtime Library Microsoft Corporation 8.00.50727.1434

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.6001.18000

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.00.6001.18000

msxml3.dll MSXML 3.0 SP10 Microsoft Corporation 8.100.1043.0000

msxml3r.dll XML Resources Microsoft Corporation 8.20.8730.0001

msxml3r.dll.mui XML Resources Microsoft Corporation 8.20.8730.0001

napinsp.dll E-mail Naming Shim Provider Microsoft Corporation 6.00.6001.18000

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 6.00.6001.18000

netshell.dll Network Connections Shell Microsoft Corporation 6.00.6001.18000

NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.00.6001.18000

npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.00.6000.16386

NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.00.6001.18000

ntdll.dll NT Layer DLL Microsoft Corporation 6.00.6001.18000

NTMARTA.DLL Windows NT MARTA provider Microsoft Corporation 6.00.6001.18000

nvLsp.dll NVIDIA IAM LSP NVIDIA 2.02.0000.6781

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.00.6001.18000

oleaut32.dll Microsoft Corporation 6.00.6001.18000

pnrpnsp.dll PNRP Name Space Provider Microsoft Corporation 6.00.6001.18000

PSAPI.DLL Process Status Helper Microsoft Corporation 6.00.6000.16386

r3hook.dll Kaspersky Anti-Virus Ring 3 Hooker Kaspersky Lab 7.00.0001.0325

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.00.6000.16386

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.00.6001.18051

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.00.6001.18000

SAMLIB.dll SAM Library DLL Microsoft Corporation 6.00.6001.18000

Secur32.dll Security Support Provider Interface Microsoft Corporation 6.00.6001.18000

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.6001.18062

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.6000.16386

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.6001.18000

slc.dll Software Licensing Client Dll Microsoft Corporation 6.00.6001.18000

SSDPAPI.dll SSDP Client API DLL Microsoft Corporation 6.00.6000.16386

SXS.DLL Fusion 2.5 Microsoft Corporation 6.00.6001.18000

upnp.dll UPnP Control Point API Microsoft Corporation 6.00.6001.18000

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 8.00.6001.18241

USER32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.00.6001.18000

USERENV.dll Userenv Microsoft Corporation 6.00.6001.18000

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6001.18000

uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0000.11813

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.6001.18000

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.00.6001.18000

WINHTTP.dll Windows HTTP Services Microsoft Corporation 6.00.6001.18000

WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.00.6001.18000

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.00.6000.16386

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.00.6001.18000

wow64.dll Win32 Emulation on NT64 Microsoft Corporation 6.00.6001.18000

wow64cpu.dll AMD64 Wow64 CPU Microsoft Corporation 6.00.6001.18000

wow64win.dll Wow64 Console and Win32 API Logging Microsoft Corporation 6.00.6001.18000

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.00.6001.18000

wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.00.6001.18000

wshtcpip.dll Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.00.6001.18000

Switeck · September 5, 2008

NVidia's software firewall is wrecking your computer:

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll

nvLsp.dll NVIDIA IAM LSP NVIDIA 2.02.0000.6781

You need to uninstall it, it is insanely buggy.

p2puser · September 5, 2008

oh, and one more thing; the problem signature under 'view problem details' reads:

Problem signature:

Problem Event Name: APPCRASH

Application Name: uTorrent.exe

Application Version: 1.8.0.11813

Application Timestamp: 48a2610d

Fault Module Name: nvLsp.dll

Fault Module Version: 2.2.0.6781

Fault Module Timestamp: 481061c8

Exception Code: c0000005

Exception Offset: 00005ec4

OS Version: 6.0.6001.2.1.0.256.1

Locale ID: 1033

Additional Information 1: fd00

Additional Information 2: ea6f5fe8924aaa756324d57f87834160

Additional Information 3: fd00

Additional Information 4: ea6f5fe8924aaa756324d57f87834160

Additional information 5: eatgritsbecauseitspeanutbutterjellytime

Read our privacy statement:

Switeck · September 5, 2008

I'm pretty much repeating myself here...but this is Nvidia's HORRIBLY BUGGY firewall:

Fault Module Name: nvLsp.dll

p2puser · September 5, 2008

This may be an uber dunce cap question to ask, but; how do I go about killing nvLsp.dll? delete it from the registry? uninstall a specific program, such as nvidia forceware network access manager?

Update: I finally GOT it. Nuked NAM. should be good to go now.

I had no clue about this nvidia software, and its impact on the OS. After reading up on it, it appears this troubled piece of code conflicts with various other prgrams as well. i hope my system is more stable now that it is gone.

thanks

fatmanpete · September 6, 2008

Hi, I am also having problems with Uttorent repeatedly crashing. I am using a Fujitsu Siemens Amilo laptop with a 2 gig processcor and 3 gig ram. I have listed Hijackthis and Process explorer. I have tried turning various virus programs off, but can't seem to find what is causing the problem. May be you can look at these and see if you can find a few pointers. Many thanks. Pete

Problem Event Name: APPCRASH

Application Name: uTorrent.exe

Application Version: 1.8.0.11813

Application Timestamp: 48a2610d

Fault Module Name: StackHash_5555

Fault Module Version: 0.0.0.0

Fault Module Timestamp: 00000000

Exception Code: c0000005

Exception Offset: 00000000

OS Version: 6.0.6001.2.1.0.768.3

Locale ID: 2057

Additional Information 1: 5555

Additional Information 2: 680cedea28644abd74b87d78c84773ed

Additional Information 3: 19cc

Additional Information 4: 8746afecadd138bf293d7c1ddac12be9

-----------------------------------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:36:42, on 06/09/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

Running processes:

C:\Windows\System32\smss.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\winlogon.exe

C:\Windows\system32\svchost.exe

C:\Program Files\Norman\Npm\Bin\Elogsvc.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe

C:\Program Files\Norman\Npm\Bin\Zanda.exe

C:\Program Files\Norman\npm\bin\nvoy.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe

C:\Windows\system32\svchost.exe

C:\Program Files\DU Meter\DUMeterSvc.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

C:\Windows\system32\svchost.exe

C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Norman\Npm\bin\NVCSCHED.EXE

C:\Program Files\Norman\Npm\bin\NJEEVES.EXE

C:\Program Files\Norman\npc\bin\npcsvc32.exe

C:\Program Files\Launch Manager\HotkeyApp.exe

C:\Program Files\Synaptics\SynTP\SynTPStart.exe

C:\Program Files\Picasa2\PicasaMediaDetector.exe

C:\Program Files\Norman\Npm\Bin\Zlh.exe

C:\Program Files\Google\GoogleEula\EULALauncher.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\Norman\npc\bin\nuaa.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Program Files\Norman\nse\bin\NSESVC.EXE

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Launch Manager\WisLMSvc.exe

C:\Program Files\DU Meter\DUMeter.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files\Norman\Nvc\bin\nvcoas.exe

C:\Program Files\Norman\Nvc\Bin\Nip.exe

C:\Program Files\Norman\Nvc\Bin\cclaw.exe

C:\Program Files\Internet Explorer\IEUser.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Windows\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://news.bbc.co.uk/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"

O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe

O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe

O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe

O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe

O4 - HKLM\..\Run: [Norman ZANDA] "C:\Program Files\Norman\Npm\Bin\ZLH.EXE" /LOAD /SPLASH

O4 - HKLM\..\Run: [NPCTray] C:\Program Files\Norman\npc\bin\npc_tray.exe /LOAD

O4 - HKLM\..\Run: [toolbar_eula_launcher] c:\Program Files\Google\GoogleEula\EULALauncher.exe

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"

O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [recinfo] c:\recinfo\recinfo.exe

O4 - HKCU\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe 20080904

O4 - HKCU\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll

O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll

O13 - Gopher Prefix:

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll

O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe

O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C:\Program Files\DU Meter\DUMeterSvc.exe

O23 - Service: Norman eLogger service 6 (eLoggerSvc6) - Norman ASA - C:\Program Files\Norman\Npm\Bin\Elogsvc.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: Norman NJeeves - Norman ASA - C:\Program Files\Norman\Npm\bin\NJEEVES.EXE

O23 - Service: Norman ZANDA - Norman ASA - C:\Program Files\Norman\Npm\Bin\Zanda.exe

O23 - Service: Norman Parental Control (NPC) - Norman ASA - C:\Program Files\Norman\npc\bin\npcsvc32.exe

O23 - Service: Norman Scanner Engine Service (nsesvc) - Norman ASA - C:\Program Files\Norman\nse\bin\NSESVC.EXE

O23 - Service: Norman User Activity Agent (NUAA) - Norman ASA - C:\Program Files\Norman\npc\bin\nuaa.exe

O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Program Files\Norman\Nvc\bin\nvcoas.exe

O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman ASA - C:\Program Files\Norman\Npm\bin\NVCSCHED.EXE

O23 - Service: Norman's Very Own supplY of resources (NVOY) - Norman ASA - C:\Program Files\Norman\npm\bin\nvoy.exe

O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe

--

End of file - 10782 bytes

--------------------------------------------------------------------------------

Process PID CPU Description Company Name

System Idle Process 0 58.52

Interrupts n/a Hardware Interrupts

DPCs n/a 2.31 Deferred Procedure Calls

System 4 3.85

smss.exe 472

csrss.exe 604

wininit.exe 648

services.exe 692

svchost.exe 900

igfxsrvc.exe 3524 igfxsrvc Module Intel Corporation

WmiPrvSE.exe 1364

ieuser.exe 1456 Internet Explorer Microsoft Corporation

iexplore.exe 4336 0.77 Internet Explorer Microsoft Corporation

FlashUtil9f.exe 4084 Adobe Flash Player Helper 9.0 r124 Adobe Systems, Inc.

elogsvc.exe 944

svchost.exe 980

svchost.exe 1032

svchost.exe 1120

audiodg.exe 1228

svchost.exe 1156 1.54

dwm.exe 1716 3.08 Desktop Window Manager Microsoft Corporation

WUDFHost.exe 3064

svchost.exe 1168

taskeng.exe 1968 Task Scheduler Engine Microsoft Corporation

taskeng.exe 2004

taskeng.exe 1320

SLsvc.exe 1264

svchost.exe 1300

Zanda.exe 1512

nvoy.exe 1544

spoolsv.exe 1920

svchost.exe 1944

avp.exe 576

svchost.exe 640

DUMeterSvc.exe 1764

NBService.exe 2052

svchost.exe 2152

svchost.exe 2172

TestHandler.exe 2360

svchost.exe 2412

SearchIndexer.exe 2444

SearchProtocolHost.exe 2436

SearchFilterHost.exe 5876

nvcsched.exe 2956

Njeeves.exe 2992

npcsvc32.exe 3024

nuaa.exe 3532

Nsesvc.exe 3692

WisLMSvc.exe 4068

Nvcoas.exe 3776

lsass.exe 708

lsm.exe 716

csrss.exe 660 0.77

winlogon.exe 756

explorer.exe 1808 Windows Explorer Microsoft Corporation

MSASCui.exe 2676 Windows Defender User Interface Microsoft Corporation

RtHDVCpl.exe 2756 HD Audio Control Panel Realtek Semiconductor

HotkeyApp.exe 3284 HotkeyApp Wistron

SynTPStart.exe 3340 Synaptics Pointing Device starter Synaptics, Inc.

SynTPEnh.exe 3992

PicasaMediaDetector.exe 3376 Picasa Google Inc.

Zlh.exe 3392 Norman ZLH Norman ASA

Nip.exe 1852 NVC Internet Protection Norman ASA

EULALauncher.exe 3424

igfxtray.exe 3436 igfxTray Module Intel Corporation

hkcmd.exe 3448 hkcmd Module Intel Corporation

igfxpers.exe 3472 persistence Module Intel Corporation

GrooveMonitor.exe 3484 GrooveMonitor Utility Microsoft Corporation

winampa.exe 3540

avp.exe 3568 Kaspersky Anti-Virus Kaspersky Lab

jusched.exe 3592 Java Platform SE binary Sun Microsystems, Inc.

sidebar.exe 3816 Windows Sidebar Microsoft Corporation

sidebar.exe 2188 Windows Sidebar Microsoft Corporation

DUMeter.exe 1644 DU Meter Monitor Hagel Technologies Ltd

uTorrent.exe 4460 28.49 µTorrent BitTorrent, Inc.

procexp.exe 4192 0.77 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

CClaw.exe 3320 CClaw Norman ASA

DreadWingKnight · September 6, 2008

O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll
O10 - Unknown file in Winsock LSP: c:\program files\norman\npc\bin\nlf.dll

TOO

MUCH

FUCKING

NORMAN

fatmanpete · September 6, 2008

Thanks DreadWingKnight, uninstalled Norman and all seems to be ok now.

Cheers for the help

Pete

Switeck · September 7, 2008

I don't even use Norman...and I'm already getting sick of it to.

amonserrano · September 7, 2008

Could you, please have a look at these logs guys as i have the same issue? recently updated CA security pack and tried uninstall the firewall first and the whole crap... utorrent is not working...CA antivirus reinstalled... thanks.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17:46:04, on 07/09/2008

Platform: Windows Vista (WinNT 6.00.1904)

MSIE: Internet Explorer v7.00 (7.00.6000.16711)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe

C:\Windows\WindowsMobile\wmdc.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Windows\System32\ico.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe

C:\Program Files\Dell Support Center\bin\sprtcmd.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe

C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\cavrid.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Windows Mail\WindowsMailGadget.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Windows\System32\mobsync.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\system32\mdmcls32.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\Windows Mail\WinMail.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe

O4 - HKLM\..\Run: [bluetooth HCI Monitor] RunDll32 HCIMNTR.DLL,RunCheckHCIMode

O4 - HKLM\..\Run: [sigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe

O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [PMX Daemon] ICO.EXE

O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup

O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\Intel Media Server\tools\IntelDHFMSetLoginStatus.exe"

O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"

O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe"

O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-21-2665467624-1513486098-180235875-1002\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR')

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll

O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O13 - Gopher Prefix:

O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL

O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: CaCCProvSP - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe

O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe

O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe

O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe

O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe

O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe

O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2008 32-bit 32-bit (mi-raysat_3dsMax2008_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2008\mentalray\satellite\raysat_3dsMax2008_32server.exe

O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe

O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe

O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe

O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe

O23 - Service: WinSock Svchost Manager (WinSvchostManager) - Unknown owner - C:\Windows\System32\svcprs32.exe

--

End of file - 12536 bytes

-------------------------------------------------------

-----------------------------------------------------------------------

Process PID CPU Description Company Name

System Idle Process 0 94.63

Interrupts n/a 0.38 Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4 0.38

smss.exe 688

csrss.exe 1120

wininit.exe 1520

csrss.exe 1528

winlogon.exe 1992

explorer.exe 1132 0.77 Windows Explorer Microsoft Corporation

MSASCui.exe 6040 Windows Defender User Interface Microsoft Corporation

sttray.exe 5200 Sigmatel Audio system tray application SigmaTel, Inc.

wmdc.exe 5684 Windows Mobile Device Center Microsoft Corporation

jusched.exe 6100 Java Platform SE binary Sun Microsystems, Inc.

ico.exe 4376 Mouse Suite 98 Daemon Primax Electronics Ltd.

IAAnotif.exe 4764 Event Monitor User Notification Tool Intel Corporation

IntelHCTAgent.exe 5252 Network monitor for Intel® Hub Connect Technology Intel Corporation

sprtcmd.exe 5932 SupportSoft, Inc.

iTunesHelper.exe 5616 iTunesHelper Module Apple Inc.

rundll32.exe 3652 Windows host process (Rundll32) Microsoft Corporation

cctray.exe 4560 CA Common Tray CA, Inc.

cavrid.exe 5164 CA Anti-Virus Realtime Infection Report CA, Inc.

msnmsgr.exe 4164 Windows Live Messenger Microsoft Corporation

ehtray.exe 4424 Media Center Tray Applet Microsoft Corporation

sidebar.exe 5812 Windows Sidebar Microsoft Corporation

sidebar.exe 9124 Windows Sidebar Microsoft Corporation

daemon.exe 4284 DAEMON Tools main application DT Soft Ltd

GoogleToolbarNotifier.exe 5104 GoogleToolbarNotifier Google Inc.

wmpnscfg.exe 4336 Windows Media Player Network Sharing Service Configuration Application Microsoft Corporation

BTTray.exe 4500 Bluetooth Tray Application Broadcom Corporation.

procexp.exe 5756 6.52 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

uTorrent.exe 8520 µTorrent BitTorrent, Inc.

firefox.exe 7984 Firefox Mozilla Corporation

HijackThis.exe 9608

MpCmdRun.exe 4348

Process: uTorrent.exe Pid: 8520

Name Description Company Name Version

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.00.6000.16386

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

btmmhook.dll Multimedia Keys Hook DLL Broadcom Corporation. 6.00.0001.4300

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6930.16386

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.6000.16386

comctl32.dll.mui User Experience Controls Library Microsoft Corporation 6.10.6000.16386

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.6000.16386

DBGHELP.DLL Windows Image Helper Microsoft Corporation 6.00.6000.16386

dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.00.6000.16512

dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.00.6000.16512

DNSAPI.dll DNS Client API DLL Microsoft Corporation 6.00.6000.16615

DUser.dll Windows DirectUser Engine Microsoft Corporation 6.00.6000.16386

duser.dll.mui Windows DirectUser Engine Microsoft Corporation 6.00.6000.16386

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.00.6000.16501

GDI32.dll GDI Client DLL Microsoft Corporation 6.00.6000.16643

GPAPI.dll Group Policy Client API Microsoft Corporation 6.00.6000.16386

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.00.6000.16386

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 7.00.6000.16386

imageres.dll Windows Image Resource Microsoft Corporation 6.00.6000.16386

imageres.dll.mui Windows Image Resource Microsoft Corporation 6.00.6000.16386

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.00.6000.16386

Iphlpapi.dll IP Helper API Microsoft Corporation 6.00.6000.16386

ISafeIf.dll CA ISafe Interface DLL Computer Associates International, Inc. 8.00.0009.0000

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.00.6000.20608

kernel32.dll.mui Windows NT BASE API Client DLL Microsoft Corporation 6.00.6000.16386

locale.nls

LPK.DLL Language Pack Microsoft Corporation 6.00.6000.16386

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 1.00.0004.0012

MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.00.6000.16386

msctf.dll.mui MSCTF Server DLL Microsoft Corporation 6.00.6000.16386

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.6000.16386

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.00.6000.16386

msxml3.dll MSXML 3.0 SP9 Microsoft Corporation 8.90.1101.0000

msxml3r.dll XML Resources Microsoft Corporation 8.20.8730.0001

napinsp.dll E-mail Naming Shim Provider Microsoft Corporation 6.00.6000.16386

netshell.dll Network Connections Shell Microsoft Corporation 6.00.6000.16386

NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.00.6000.16386

npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.00.6000.16386

NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.00.6000.16386

ntdll.dll NT Layer DLL Microsoft Corporation 6.00.6000.16386

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.00.6000.16386

oleaut32.dll Microsoft Corporation 6.00.6000.16609

pnrpnsp.dll PNRP Name Space Provider Microsoft Corporation 6.00.6000.16386

PSAPI.DLL Process Status Helper Microsoft Corporation 6.00.6000.16386

R000000000009.clb

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.00.6000.16386

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.00.6000.16525

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.00.6000.16386

Secur32.dll Security Support Provider Interface Microsoft Corporation 6.00.6000.16386

SETUPAPI.dll Windows Setup API Microsoft Corporation 6.00.6000.20734

setupapi.dll.mui Windows Setup API Microsoft Corporation 6.00.6000.20734

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.6000.16680

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.6000.16386

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.6000.16386

slc.dll Software Licensing Client Dll Microsoft Corporation 6.00.6000.16509

SSDPAPI.dll SSDP Client API DLL Microsoft Corporation 6.00.6000.16386

SXS.DLL Fusion 2.5 Microsoft Corporation 6.00.6000.16386

upnp.dll UPnP Control Point API Microsoft Corporation 6.00.6000.16386

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 7.00.6000.16711

USER32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.00.6000.16438

USERENV.dll Userenv Microsoft Corporation 6.00.6000.16386

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6000.16386

uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0000.11813

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.6000.16386

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.00.6000.16386

VetRedir.dll CA ISafe LSP DLL Computer Associates International, Inc. 8.00.0009.0000

WINHTTP.dll Windows HTTP Services Microsoft Corporation 6.00.6000.16386

WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.00.6000.16386

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.00.6000.16386

winsflt.dll winsflt.dll 5.00.0053.0000

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.00.6000.16386

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.00.6000.16386

wshbth.dll Windows Sockets Helper DLL Microsoft Corporation 6.00.6000.16386

wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.00.6000.16386

wshtcpip.dll Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.00.6000.16386

Ultima · September 8, 2008

VetRedir.dll CA ISafe LSP DLL Computer Associates International, Inc. 8.00.0009.0000

winsflt.dll winsflt.dll 5.00.0053.0000

Internet filter that's most likely causing you grief, as all other internet filters do when they (needlessly) attempt to hook onto an application such as µTorrent, which generates so many connections that they simply can't keep up. P2P doesn't need monitoring of that sort, so hooking onto the process is a waste of time/resources (and cause for trouble).

amonserrano · September 8, 2008

thanks... I managed to solve the problem.. Parental Control caused it which was indicated as uninstalled. Finally I could really get rid of it.

police_48 · December 27, 2008

Same crash problem with torrent. Please, help!

HJT

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 10:53:52 AM, on 27/12/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\ASUS\AASP\1.00.46\aaCenter.exe

C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll

O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.20\RivaTunerWrapper.exe" /S

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll

O13 - Gopher Prefix:

O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_srl.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe

O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Unknown owner - C:\Program Files\Nero\Nero 7\InCD\NBHRegInCDSrv.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\RpcAgentSrv.exe

--

End of file - 7040 bytes

- - - - - - - - - - - - - - - - - - - - - - -

PE

Process PID CPU Description Company Name

System Idle Process 0 99.23

Interrupts n/a Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4

smss.exe 524

csrss.exe 596

wininit.exe 648

services.exe 700

svchost.exe 976

WmiPrvSE.exe 3876

dllhost.exe 4900 COM Surrogate Microsoft Corporation

nvvsvc.exe 1020

rundll32.exe 1812

svchost.exe 1048

svchost.exe 1156

audiodg.exe 1288

svchost.exe 1184

dwm.exe 552 0.77 Desktop Window Manager Microsoft Corporation

svchost.exe 1196

taskeng.exe 392 Task Scheduler Engine Microsoft Corporation

taskeng.exe 1488

aaCenter.exe 2120

taskeng.exe 3112

SLsvc.exe 1320

svchost.exe 1344

svchost.exe 1492

spoolsv.exe 1744

svchost.exe 1796

avgwdsvc.exe 1984

avgam.exe 3556

avgrsx.exe 3664

avgnsx.exe 3616

mDNSResponder.exe 2044

GoogleUpdaterService.exe 2132

svchost.exe 2232

InCDsrv.exe 2424

LVComSer.exe 2472

LVComSer.exe 2552 Logitech Video COM Service Logitech Inc.

LVPrcSrv.exe 2508

svchost.exe 2716

svchost.exe 2776

svchost.exe 2836

SearchIndexer.exe 2868

nSvcAppFlt.exe 2988

nSvcIp.exe 3220

lsass.exe 712

lsm.exe 720

csrss.exe 660

winlogon.exe 840

explorer.exe 1172 Windows Explorer Microsoft Corporation

RtHDVCpl.exe 3864 HD Audio Control Panel Realtek Semiconductor

avgtray.exe 3984 AVG Tray Monitor AVG Technologies CZ, s.r.o.

rundll32.exe 4024 Windows host process (Rundll32) Microsoft Corporation

sidebar.exe 4092 Windows Sidebar Microsoft Corporation

sidebar.exe 3048 Windows Sidebar Microsoft Corporation

firefox.exe 868 Firefox Mozilla Corporation

uTorrent.exe 3332 µTorrent BitTorrent, Inc.

procexp.exe 4492 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

HijackThis.exe 5196

Process: uTorrent.exe Pid: 3332

Name Description Company Name Version

actxprxy.dll ActiveX Interface Marshaling Library Microsoft Corporation 6.00.6001.18000

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.00.6001.18000

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

avgrsstx.dll AVG Resident Shield Starter AVG Technologies CZ, s.r.o. 8.00.0000.0134

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.6001.18000

comctl32.dll.mui User Experience Controls Library Microsoft Corporation 6.10.6001.18000

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.6001.18000

dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.00.6001.18000

dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.00.6001.18000

DnsApi.dll DNS Client API DLL Microsoft Corporation 6.00.6001.18000

DUser.dll Windows DirectUser Engine Microsoft Corporation 6.00.6001.18000

duser.dll.mui Windows DirectUser Engine Microsoft Corporation 6.00.6000.16386

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.00.6001.18000

GDI32.dll GDI Client DLL Microsoft Corporation 6.00.6001.18159

GPAPI.dll Group Policy Client API Microsoft Corporation 6.00.6001.18000

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.00.6001.18000

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 7.00.6001.18157

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.00.6001.18000

Iphlpapi.dll IP Helper API Microsoft Corporation 6.00.6001.18000

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.00.6001.18000

locale.nls

LPK.DLL Language Pack Microsoft Corporation 6.00.6001.18000

LVPrcInj01.dll Camera Helper Library. Logitech Inc. 11.80.1048.0000

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.00.6001.18000

mssprxy.dll Microsoft Search Proxy Microsoft Corporation 7.00.6001.16503

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.6001.18000

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.00.6001.18000

msxml3.dll MSXML 3.0 SP10 Microsoft Corporation 8.100.1048.0000