Agaden Posted November 1, 2008 Report Posted November 1, 2008 So here is my problem: When i start utorrent it works fine for like, 5 seconds or something, then it goes to not responding, when i want to use new torrents i have to shut utorrent down, and download the "torrent starter file", if i try to start a torrent while utorrent is running, i get the error message "It seems like Utorrent is already running, but not responding. Please close all utorrent processes and try again." Utorrent still download and upload stuff while its "not responding", but you cant pause stuff or changin utorrent settings. Also it doesnt seem to be checking files, so downloads you started earlier wont download again because utorrent cant check the files.Had almost the same problems with older versions of utorrent, but then it just froze a little now and then, now its completely dead. Anyone have any idea of how to fix this, and if not, how can you change the version of utorrent do an older one, and still keep your torrents?Thanks in advance!//Agaden
moogly Posted November 1, 2008 Report Posted November 1, 2008 OS version / Firewall etc...Post HJT & PE logs:http://forum.utorrent.com/viewtopic.php?id=29748(dont forget to select yutorrent.exe with DLL mode in PE)
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Ok, hopefully this is what you asked for :-)Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:39:19, on 2008-11-01Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Panda Security\Panda Antivirus 2008\pavsrv51.exeC:\Program Files\Panda Security\Panda Antivirus 2008\AVENGINE.EXEC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Lavasoft\Ad-Aware\aawservice.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrls.exeC:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exeC:\WINDOWS\system32\PnkBstrA.exeC:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXEC:\Program Files\Java\jre1.6.0_03\bin\jusched.exeC:\WINDOWS\RTHDCPL.EXEC:\WINDOWS\system32\PuXpMan2.exeC:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exeC:\Program Files\Panda Security\Panda Antivirus 2008\WebProxy.exeC:\Program Files\MSN Messenger\usnsvc.exeC:\Program Files\MSN Messenger\msnmsgr.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\uTorrent\uTorrent.exeC:\Program Files\Panda Security\Panda Antivirus 2008\psimreal.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: D - {EBE14624-797C-3D9C-A7F1-7F8F44384710} - C:\WINDOWS\system32\xwr98577.dllO3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dllO4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exeO4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\JMRaidSetup.exe bootO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE" /sO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [mspwr] C:\WINDOWS\system32\PuXpMan2.exeO4 - HKLM\..\Run: [bredbandscenter] "C:\Program Files\Glocalnet\Bredbandscenter\Launcher.exe" /winstartO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXEO4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.11\RivaTuner.exe" /SO4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunO4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -schedulerO4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dllO16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cabO16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.fujidirekt.se/aurigma2/ImageUploader4.cabO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO21 - SSODL: shutilweb - {08AA84D9-CBF4-F2DD-3E1A-01F02C470590} - C:\Program Files\dhahmac\shutilweb.dll (file missing)O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exeO23 - Service: BredbandscenterDownloader - Glocalnet AB - C:\Program Files\Glocalnet\Bredbandscenter\BredbandscenterUpdater.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrls.exeO23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exeO23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\pavsrv51.exeO23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exeO23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exeO23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exeO23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe--
moogly Posted November 1, 2008 Report Posted November 1, 2008 Dont forget Process Explorer's log too (point #2 in the link I gave).Edit your post and paste the log inside.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Process PID CPU Description Company NameSystem Idle Process 0 98.44 Interrupts n/a Hardware Interrupts DPCs n/a 1.56 Deferred Procedure Calls System 4 smss.exe 764 Windows NT Session Manager Microsoft Corporation csrss.exe 836 Client Server Runtime Process Microsoft Corporation winlogon.exe 868 Windows NT Logon Application Microsoft Corporation services.exe 912 Services and Controller app Microsoft Corporation ati2evxx.exe 1116 ATI External Event Utility EXE Module ATI Technologies Inc. svchost.exe 1136 Generic Host Process for Win32 Services Microsoft Corporation IEXPLORE.EXE 3664 Internet Explorer Microsoft Corporation IEXPLORE.EXE 2844 Internet Explorer Microsoft Corporation svchost.exe 1204 Generic Host Process for Win32 Services Microsoft Corporation PAVSRV51.EXE 1308 Enhanced On-Access Anti-Malware Service. Panda Software International AVENGINE.EXE 1324 Enhanced On-Access Anti-Malware Protection. Panda Software International svchost.exe 1476 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1552 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1732 Generic Host Process for Win32 Services Microsoft Corporation aawservice.exe 1896 Ad-Aware Service Lavasoft spoolsv.exe 1980 Spooler SubSystem App Microsoft Corporation PsCtrlS.exe 564 Panda Software Controler Panda Software International PavPrSrv.exe 604 Panda Process Protection Service Panda Software PnkBstrA.exe 652 PsImSvc.exe 660 Panda Interface Manager Service Panda Software International alg.exe 1688 Application Layer Gateway Service Microsoft Corporation usnsvc.exe 1768 Messenger Sharing USN Journal Reader Service Microsoft Corporation lsass.exe 924 LSA Shell (Export Version) Microsoft Corporation ati2evxx.exe 1720 ATI External Event Utility EXE Module ATI Technologies Inc.explorer.exe 1152 Windows Explorer Microsoft Corporation ApVxdWin.exe 2208 ApVxdWin Panda Software International WebProxy.exe 3260 Internet resident proxy Panda Security International jusched.exe 2352 Java Platform SE binary Sun Microsystems, Inc. RTHDCPL.exe 2372 Realtek HD Audio Control Panel Realtek Semiconductor Corp. puxpman2.exe 2428 Ashampoo PowerUp XP Platinum 2 ashampoo GmbH & Co. KG ISUSPM.exe 2500 Macrovision Software Manager Macrovision Corporation msnmsgr.exe 3320 Messenger Microsoft Corporation uTorrent.exe 3056 µTorrent BitTorrent, Inc. procexp.exe 1600 Sysinternals Process Explorer Sysinternals - www.sysinternals.comMOM.exe 2508 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. CCC.exe 2788 Catalyst Control Centre: Host application ATI Technologies Inc.Thanks for caring btw :-)
moogly Posted November 1, 2008 Report Posted November 1, 2008 You need to select uTorrent.exe and enable DLL mode (ctrl+d) in PE.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Select how? just click it in the list of procceses and press ctrl D or dubble click it first and get the properties thing and do it there? cant find it
Ultima Posted November 1, 2008 Report Posted November 1, 2008 See utorrent.exe in Process Explorer? Click it, then press Ctrl+D and Ctrl+S.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Oh :-) thanksgot this...Process PID CPU Description Company NameSystem Idle Process 0 97.69 Interrupts n/a Hardware Interrupts DPCs n/a 1.54 Deferred Procedure Calls System 4 smss.exe 764 Windows NT Session Manager Microsoft Corporation csrss.exe 836 Client Server Runtime Process Microsoft Corporation winlogon.exe 868 Windows NT Logon Application Microsoft Corporation services.exe 912 Services and Controller app Microsoft Corporation ati2evxx.exe 1116 ATI External Event Utility EXE Module ATI Technologies Inc. svchost.exe 1136 Generic Host Process for Win32 Services Microsoft Corporation IEXPLORE.EXE 3900 Internet Explorer Microsoft Corporation svchost.exe 1204 Generic Host Process for Win32 Services Microsoft Corporation PAVSRV51.EXE 1308 Enhanced On-Access Anti-Malware Service. Panda Software International AVENGINE.EXE 1324 Enhanced On-Access Anti-Malware Protection. Panda Software International svchost.exe 1476 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1552 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1732 Generic Host Process for Win32 Services Microsoft Corporation aawservice.exe 1896 Ad-Aware Service Lavasoft spoolsv.exe 1980 Spooler SubSystem App Microsoft Corporation PsCtrlS.exe 564 Panda Software Controler Panda Software International PavPrSrv.exe 604 Panda Process Protection Service Panda Software PnkBstrA.exe 652 PsImSvc.exe 660 Panda Interface Manager Service Panda Software International alg.exe 1688 Application Layer Gateway Service Microsoft Corporation usnsvc.exe 1768 Messenger Sharing USN Journal Reader Service Microsoft Corporation lsass.exe 924 LSA Shell (Export Version) Microsoft Corporation ati2evxx.exe 1720 ATI External Event Utility EXE Module ATI Technologies Inc.explorer.exe 1152 Windows Explorer Microsoft Corporation ApVxdWin.exe 2208 ApVxdWin Panda Software International WebProxy.exe 3260 Internet resident proxy Panda Security International jusched.exe 2352 Java Platform SE binary Sun Microsystems, Inc. RTHDCPL.exe 2372 Realtek HD Audio Control Panel Realtek Semiconductor Corp. puxpman2.exe 2428 Ashampoo PowerUp XP Platinum 2 ashampoo GmbH & Co. KG ISUSPM.exe 2500 Macrovision Software Manager Macrovision Corporation msnmsgr.exe 3320 Messenger Microsoft Corporation uTorrent.exe 2436 µTorrent BitTorrent, Inc. vlc.exe 3520 VLC media player the VideoLAN Team procexp.exe 1848 0.77 Sysinternals Process Explorer Sysinternals - www.sysinternals.comMOM.exe 2508 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. CCC.exe 2788 Catalyst Control Centre: Host application ATI Technologies Inc.Process: uTorrent.exe Pid: 2436Name Description Company Name VersionAcGenral.DLL Windows Compatibility DLL Microsoft Corporation 5.01.2600.2180ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.2180adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.2180ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.2180ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0258COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2180comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.2180COMRes.dll Microsoft Corporation 2001.12.4414.0258ctype.nls DnsApi.dll DNS Client API DLL Microsoft Corporation 5.01.2600.2180GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.2180hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.2180icl_cfg.dll Internet Resident Configuration Panda Software International 7.09.0033.0503Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2180kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.2180locale.nls MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180MSACM32.dll Microsoft ACM Audio Filter Microsoft Corporation 5.01.2600.2180msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.2180mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.2180netapi32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2180ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.2180ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.2180OLEAUT32.dll Microsoft Corporation 5.01.2600.2180pavlsp.dll Internet Resident Layered Service Provider Panda Software International 7.09.0022.0502PavTrc.dll Internet resident forwarding Panda Security International 7.12.0026.0509psapi.dll Process Status Helper Microsoft Corporation 5.01.2600.2180R00000000000b.clb rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2180RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.2180rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.2161rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.2180SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.2180SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.2180shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.2180ShimEng.dll Shim Engine DLL Microsoft Corporation 5.01.2600.2180SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.2180sortkey.nls sorttbls.nls unicode.nls USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.2180USERENV.dll Userenv Microsoft Corporation 5.01.2600.2180uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0001.12639UxTheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.2180VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180WINMM.dll MCI API DLL Microsoft Corporation 5.01.2600.2180WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.2180WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.2180wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180WSOCK32.dll Windows Socket 32-Bit DLL Microsoft Corporation 5.01.2600.2180
moogly Posted November 1, 2008 Report Posted November 1, 2008 Freezing can be due to bad or old drivers or misconfigured Firewall.Anyway you have only Panda AV so I imagine it's not the problem, I think.Do you use XP FW ?
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Well yeah, guess it aint needed that much though
moogly Posted November 1, 2008 Report Posted November 1, 2008 Do you have more one session on your partition with Admin session and User sessions ?Because I got the same msg error when I use uT with admin rights and I try to open .torrents from web with my browser in user rights.
Firon Posted November 1, 2008 Report Posted November 1, 2008 It's likely to be Panda. You can try adding ut to all the exceptions it offers in the various functions, but you may have to resort to uninstalling.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Oh yeah, seems to be panda, when i turned it off it started working, though cant find any place where i can change the exeptions list with panda, gah... Thanks for the help
moogly Posted November 1, 2008 Report Posted November 1, 2008 Go on Panda website/forums and ask your question or read their FAQ. I'm sure they have online tutorial to configure exceptions.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Apparently there is no way to get panda to stop interfering with Utorrent, so guess its time to get a new antivirus program.thanks for all your time
Ultima Posted November 1, 2008 Report Posted November 1, 2008 Avira AntiVir has a free antivirus that performs superbly when it comes to detection.Comodo Firewall is a competent freeware firewall.
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Will check them out, thanks again! <3
Agaden Posted November 1, 2008 Author Report Posted November 1, 2008 Downloaded and installed Avira Antivir now, and it works fine :-). When i had panda antivirus and had utorrent running, internet got much slower and even close to unusable, but now with this one i can have utorrent running and downloading at 1mb/s ish, and no lagg when playing online games, huge difference.Again i want to say thanks to everyone that have tried to help and/or helped with the problem, its much appreciated!Problem solved.
Fireheathen Posted September 8, 2009 Report Posted September 8, 2009 Hey. I'm new to the boards, but hope I'm in the right place. I've been having the same problem for a while now. I'm using Avira and SUPERAntiSpyware, but same issue. Any help would be greatly appreciated. Below are the hijackthis and process explorer logs.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:07:15 AM, on 08/09/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir Desktop\sched.exeC:\Acer\Empowering Technology\ePerformance\MemCheck.exeC:\Program Files\Avira\AntiVir Desktop\avguard.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeC:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\RTHDCPL.EXEC:\Acer\Empowering Technology\ePower\ePower_DMC.exeC:\Acer\Empowering Technology\eDataSecurity\eDSloader.exeC:\WINDOWS\AGRSMMSG.exeC:\WINDOWS\system32\LVCOMSX.EXEC:\Program Files\Avira\AntiVir Desktop\avgnt.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeC:\WINDOWS\System32\wbem\unsecapp.exeC:\DOCUME~1\Mike\LOCALS~1\Temp\RtkBtMnt.exeC:\Program Files\Windows Live\Messenger\msnmsgr.exeC:\Program Files\Windows Live\Contacts\wlcomm.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dllO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dllO2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dllO3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dllO3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dllO3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dllO4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exeO4 - HKLM\..\Run: [boot] C:\Acer\Empowering Technology\ePower\Boot.exeO4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 1O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exeO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXEO4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /minO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeO4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.htmlO8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.htmlO8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.htmlO8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.htmlO8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.htmlO8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.htmlO8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.htmlO8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.htmlO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dllO9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLLO9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htmO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dllO16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cabO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cabO16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader2.cabO16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cabO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cabO16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cabO20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dllO20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exeO23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeO23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exeO23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exeO23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exeO23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exeO23 - Service: RAKN - Sysinternals - www.sysinternals.com - C:\DOCUME~1\Mike\LOCALS~1\Temp\RAKN.exe--End of file - 10330 bytesProcess PID CPU Description Company NameSystem Idle Process 0 95.45 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 760 Windows NT Session Manager Microsoft Corporation csrss.exe 808 Client Server Runtime Process Microsoft Corporation winlogon.exe 832 Windows NT Logon Application Microsoft Corporation services.exe 876 1.52 Services and Controller app Microsoft Corporation svchost.exe 1056 Generic Host Process for Win32 Services Microsoft Corporation wmiprvse.exe 3416 WMI Microsoft Corporation unsecapp.exe 3044 WMI Microsoft Corporation wmiprvse.exe 3560 WMI Microsoft Corporation wlcomm.exe 3828 Windows Live Communications Platform Microsoft Corporation svchost.exe 1140 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1188 Generic Host Process for Win32 Services Microsoft Corporation SynTPEnh.exe 2568 Synaptics TouchPad Enhancements Synaptics, Inc. svchost.exe 1232 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1452 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1528 Generic Host Process for Win32 Services Microsoft Corporation spoolsv.exe 1784 Spooler SubSystem App Microsoft Corporation sched.exe 1832 Antivirus Scheduler Avira GmbH svchost.exe 1904 Generic Host Process for Win32 Services Microsoft Corporation MemCheck.exe 512 Acer Inc. avguard.exe 604 1.52 Antivirus On-Access Service Avira GmbH mDNSResponder.exe 628 Bonjour Service Apple Computer, Inc. btwdins.exe 704 Bluetooth Support Server Broadcom Corporation. SeaPort.exe 1004 Microsoft SeaPort Search Enhancement Broker Microsoft Corporation svchost.exe 1488 Generic Host Process for Win32 Services Microsoft Corporation alg.exe 640 Application Layer Gateway Service Microsoft Corporation lsass.exe 888 LSA Shell (Export Version) Microsoft Corporationexplorer.exe 3784 Windows Explorer Microsoft Corporation RTHDCPL.exe 2724 Realtek HD Audio Control Panel Realtek Semiconductor Corp. RtkBtMnt.exe 3960 Realtek HD Audio Data Rerouter Realtek Semiconductor Corp. ePower_DMC.exe 2776 Acer ePower Management DMC eDSloader.exe 2196 eDSloader HiTRUST AGRSMMSG.exe 2812 SoftModem Messaging Applet Agere Systems LVCOMSX.EXE 1572 LVCom Server Logitech Inc. avgnt.exe 2892 Antivirus System Tray Tool Avira GmbH ctfmon.exe 3000 CTF Loader Microsoft Corporation SUPERANTISPYWARE.EXE 3080 SUPERAntiSpyware Application SUPERAntiSpyware.com msnmsgr.exe 2496 Windows Live Messenger Microsoft Corporation firefox.exe 3424 Firefox Mozilla Corporation uTorrent.exe 2624 µTorrent BitTorrent, Inc. WINZIP32.EXE 2152 WinZip Executable WinZip Computing, Inc. procexp.exe 3408 1.52 Sysinternals Process Explorer Sysinternals - www.sysinternals.comnotepad.exe 3796 Notepad Microsoft CorporationProcess: uTorrent.exe Pid: 2624Name Description Company Name VersionACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.5512adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.5512ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.5755ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.2CLBCATQ.DLL Microsoft Corporation 2001.12.4414.700COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.5512comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.5512COMRes.dll Microsoft Corporation 2001.12.4414.700credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.5512CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.5512CryptoAPI.dll CryptoAPI HiTRUST 2.2.0.11ctype.nls DnsApi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.5625dot3api.dll 802.3 Autoconfiguration API Microsoft Corporation 5.1.2600.5512dot3dlg.dll 802.3 UI Helper Microsoft Corporation 5.1.2600.5512eappcfg.dll Eap Peer Config Microsoft Corporation 5.1.2600.5512eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.1.2600.5512GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.5698hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.5512iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.0.6001.18806IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.5512Iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.5512kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.5781locale.nls mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.0.3.1MFC42.DLL MFCDLL Shared Library - Retail Version Microsoft Corporation 6.2.4131.0MFC71ENU.DLL MFC Language Specific Resources Microsoft Corporation 7.10.3077.0MFC71U.DLL MFCDLL Shared Library - Retail Version Microsoft Corporation 7.10.3077.0MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.5512MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.1.2600.5512MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.1.2600.5512msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.1.2600.5768MSNCHATHOOK.DLL MSNChatHook DLL HiTRUST 2.2.0.9MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.2.3104.0MSVCP71.dll Microsoft® C++ Runtime Library Microsoft Corporation 7.10.3077.0MSVCR71.dll Microsoft® C Runtime Library Microsoft Corporation 7.10.3052.4msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.5512mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.5625netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.5694netshell.dll Network Connections Shell Microsoft Corporation 5.1.2600.5512Normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.0.5441.0ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.5755ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.5512OLEACC.dll Active Accessibility Core Component Microsoft Corporation 4.2.5406.0oleaccrc.dll Active Accessibility Resource DLL Microsoft Corporation 4.2.5406.0oleaut32.dll Microsoft Corporation 5.1.2600.5512OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.1.2600.5512rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.5512RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.5795rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.5507rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.5512SAMLIB.dll SAM Library DLL Microsoft Corporation 5.1.2600.5512Secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.5753SETUPAPI.dll Windows Setup API Microsoft Corporation 5.1.2600.5512SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.5622shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.5512SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.5512sortkey.nls sorttbls.nls sysenv.dll SysEnv HiTRUST 2.2.0.44SysHook.dll SysHook DLL 0.9.7.3unicode.nls urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 8.0.6001.18806USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.5512USERENV.dll Userenv Microsoft Corporation 5.1.2600.5512uTorrent.exe µTorrent BitTorrent, Inc. 1.8.3.15772uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.5512VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.5512wininet.dll Internet Extensions for Win32 Microsoft Corporation 8.0.6001.18806WINMM.dll MCI API DLL Microsoft Corporation 5.1.2600.5512WINSPOOL.DRV Windows Spooler Driver Microsoft Corporation 5.1.2600.5512WINSTA.dll Winstation Library Microsoft Corporation 5.1.2600.5512WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.5512WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.5512WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.5512wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.5512WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.1.2600.5512xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.5512
DreadWingKnight Posted September 8, 2009 Report Posted September 8, 2009 Try with superantispyware uninstalled.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.