Jump to content

Utorrent is slow and keeps freezing?


bastii

Recommended Posts

Hey i got some problem with my Utorrent.

Well this is the thing, It freezes alot when i try to open it up when i got it running in the background, when i'm trying to add a new torrent, when i'm trying to add trackers etc.

I got Windows XP SP3 and Panda Anti-virus.

The thing is, i got this new computer and i had Utorrent before with my old computer and did not have the same problem and this computer is a pretty new gaming computer so it shouldn't be problem with the hardware it probebly is a software on my computer or anything?

Would be most glad if anybody could help me out :)

Cheers // Sebastian

Link to comment
Share on other sites

Procexp:

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.5512

Amhooker.dll Amhooker A4Tech Co.,Ltd. 7.80.0000.0004

appHelp.dll Application Compatibility Client Library Microsoft Corporation 5.01.2600.5512

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0001

browseui.dll Bibliotek för gränssnittsläsare Microsoft Corporation 6.00.2900.5512

c_936.nls

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0700

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.5512

comdlg32.dll DLL-fil med vanliga dialogrutor Microsoft Corporation 6.00.2900.5512

COMRes.dll Microsoft Corporation 2001.12.4414.0700

credui.dll Användargränssnitt för referenshanteraren Microsoft Corporation 5.01.2600.5512

CRYPT32.dll 32-bitars kryptografi-API Microsoft Corporation 5.131.2600.5512

CSCDLL.dll Agent för frånkopplat nätverk Microsoft Corporation 5.01.2600.5512

cscui.dll Client Side Caching UI Microsoft Corporation 5.01.2600.5512

ctype.nls

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.01.2600.5625

dot3api.dll API-funktioner för automatisk konfiguration av 802.3 Microsoft Corporation 5.01.2600.5512

dot3dlg.dll Hjälpprogram för användargränssnittet för 802.3 Microsoft Corporation 5.01.2600.5512

eappcfg.dll EAP-peerkonfig Microsoft Corporation 5.01.2600.5512

eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.01.2600.5512

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.5698

hnetcfg.dll Hanteraren för konfiguration av hemnätverk Microsoft Corporation 5.01.2600.5512

icl_cfg.dll Internet Resident Configuration Panda Software International 7.07.0032.0502

Iphlpapi.dll API för IP Helper Microsoft Corporation 5.01.2600.5512

kernel32.dll Klient-DLL för Windows NT BASE API Microsoft Corporation 5.01.2600.5512

locale.nls

LVPrcInj.dll Camera Helper Library. Logitech Inc. 11.05.0000.1158

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.5512

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.01.2600.5512

MSCTF.dll DLL-fil för MSCTF-servern Microsoft Corporation 5.01.2600.5512

MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.02.3104.0000

MSVCP71.dll Microsoft® C++ Runtime Library Microsoft Corporation 7.10.3077.0000

MSVCR71.dll Microsoft® C Runtime Library Microsoft Corporation 7.10.3052.0004

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.5512

mswsock.dll Tjänstprovider för Microsoft Windows Sockets 2.0 Microsoft Corporation 5.01.2600.5625

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.5694

netshell.dll Användargränssnitt för nätverksanslutning Microsoft Corporation 5.01.2600.5512

ntdll.dll DLL-fil för NT Layer Microsoft Corporation 5.01.2600.5512

ole32.dll Microsoft OLE för Windows Microsoft Corporation 5.01.2600.5512

oleaut32.dll Microsoft Corporation 5.01.2600.5512

OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.01.2600.5512

pavipc.dll PavIpc Dynamic Link Library Panda Software International 8.00.0000.0000

pavlsp.dll Internet Resident Layered Service Provider Panda Software International 7.05.0021.0501

PAVSHOOK.DLL PavSHook Dynamic Link Library Panda Software International 8.00.0000.0000

PavTrc.dll Internet resident forwarding Panda Software International 7.07.0024.0503

PSAPI.DLL Process Status Helper Microsoft Corporation 5.01.2600.5512

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.5512

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.5512

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.5507

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.5512

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.5512

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.5512

SETUPAPI.dll API för installationsprogrammet för Windows Microsoft Corporation 5.01.2600.5512

SHELL32.dll DLL-fil för Windows-gränssnittet Microsoft Corporation 6.00.2900.5512

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.5512

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.5512

sortkey.nls

sorttbls.nls

systools.dll SYSTOOLS Panda Software 7.00.0002.0000

TpUtil.dll TpUtil Dynamic Link Library Panda Software International 8.00.0000.0000

unicode.nls

USER32.dll Klient-DLL-fil för Windows XP Microsoft Corporation 5.01.2600.5512

USERENV.dll Userenv Microsoft Corporation 5.01.2600.5512

uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0001.12639

uxtheme.dll Bibliotek för Microsoft UxTheme Microsoft Corporation 6.00.2900.5512

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.5512

WINSTA.dll Winstation Library Microsoft Corporation 5.01.2600.5512

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.5512

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.5512

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.5512

wship6.dll IPv6 Helper DLL Microsoft Corporation 5.01.2600.5512

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.5512

WSOCK32.dll 32-bitars DLL-fil för Windows Socket Microsoft Corporation 5.01.2600.5512

WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.01.2600.5512

xpsp2res.dll Service Pack 2-meddelanden Microsoft Corporation 5.01.2600.5512

Hijackthis:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:48:12, on 2008-12-15

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\pavsrv51.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\AVENGINE.EXE

C:\WINDOWS\system32\svchost.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\TPSrv.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program\Delade filer\LogiShrd\LVMVFM\LVPrcSrv.exe

C:\Program\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

C:\Program\Delade filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program\Bonjour\mDNSResponder.exe

C:\Program\Delade filer\LogiShrd\LVCOMSER\LVComSer.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PsCtrls.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PavFnSvr.exe

C:\Program\Delade filer\Panda Software\PavShld\pavprsrv.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\PnkBstrB.exe

c:\program\panda security\panda antivirus + firewall 2008\firewall\PSHOST.EXE

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PsImSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\APVXDWIN.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program\A4Tech\Mouse\Amoumain.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program\DAEMON Tools Pro\DTProAgent.exe

C:\WINDOWS\System32\svchost.exe

C:\Program\Winamp\winamp.exe

C:\Program\Panda Security\Panda Antivirus + Firewall 2008\WebProxy.exe

C:\Program\Mozilla Firefox\firefox.exe

C:\Program\uTorrent\uTorrent.exe

C:\Program\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program\Panda Security\Panda Antivirus + Firewall 2008\APVXDWIN.EXE" /s

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [WheelMouse] C:\Program\A4Tech\Mouse\Amoumain.exe

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program\DAEMON Tools Pro\DTProAgent.exe"

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJÄNST')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O9 - Extra button: InterCasino $$$ - {909AAEB6-C2CB-4AB5-A7BB-C33B72AB4BFB} - http://www.intercasino.com (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: InterCasino $$$ - {909AAEB6-C2CB-4AB5-A7BB-C33B72AB4BFB} - http://www.intercasino.com (file missing) (HKCU)

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1203500357078

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\DELADE~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program\Delade filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program\Delade filer\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: LVCOMSer - Logitech Inc. - C:\Program\Delade filer\LogiShrd\LVCOMSER\LVComSer.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program\Delade filer\LogiShrd\LVMVFM\LVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program\Delade filer\LogiShrd\SrvLnch\SrvLnch.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Panda Software Controller - Panda Software International - C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PsCtrls.exe

O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PavFnSvr.exe

O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program\Delade filer\Panda Software\PavShld\pavprsrv.exe

O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program\Panda Security\Panda Antivirus + Firewall 2008\pavsrv51.exe

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program\panda security\panda antivirus + firewall 2008\firewall\PSHOST.EXE

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program\Panda Security\Panda Antivirus + Firewall 2008\PsImSvc.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program\WinPcap\rpcapd.exe

O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Unknown owner - C:\Program\Spyware Terminator\sp_rsser.exe (file missing)

O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program\Panda Security\Panda Antivirus + Firewall 2008\TPSrv.exe

--

End of file - 7691 bytes

Link to comment
Share on other sites

Right.

Utorrent:

Process PID CPU Description Company Name

alg.exe 2836 Application Layer Gateway Service Microsoft Corporation

Amoumain.exe 2296 Amoumain A4Tech Co.,Ltd.

AppleMobileDeviceService.exe 1308 Apple Mobile Device Service Apple, Inc.

APVXDWIN.EXE 788 ApVxdWin Panda Software International

Avciman.exe 5680 6.06 Panda Interface Manager Application [Local and Mail Alerts] Panda Software International

AVENGINE.EXE 1888 Enhanced On-Access Anti-Malware Protection. Panda Software International

csrss.exe 1416 Client Server Runtime Process Microsoft Corporation

ctfmon.exe 2376 CTF Loader Microsoft Corporation

DPCs n/a 4.55 Deferred Procedure Calls

DTProAgent.exe 2360 DAEMON Tools Pro Tray Application DT Soft Ltd.

explorer.exe 2916 Utforskaren Microsoft Corporation

firefox.exe 5688 1.52 Firefox Mozilla Corporation

Interrupts n/a Hardware Interrupts

lsass.exe 1496 LSA Shell (Export Version) Microsoft Corporation

LVComSer.exe 984 Logitech Video COM Service Logitech Inc.

LVPrcSrv.exe 1388 Logitech LVPrcSrv Module. Logitech Inc.

mDNSResponder.exe 328 Bonjour Service Apple Computer, Inc.

nvsvc32.exe 948 NVIDIA Driver Helper Service, Version 178.13 NVIDIA Corporation

PavFnSvr.exe 344 Panda Function Service Panda Software International

PavPrSrv.exe 1304 Panda Process Protection Service Panda Software

PAVSRV51.EXE 1876 Enhanced On-Access Anti-Malware Service. Panda Software International

PhotoshopElementsFileAgent.exe 1032

PnkBstrA.exe 324

PnkBstrB.exe 292

procexp.exe 6560 1.52 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

PsCtrlS.exe 1460 Panda Software Controler Panda Software International

PSHost.exe 2068 Panda Host Service Panda Software International

psimreal.exe 8152 Panda Interface Manager Application [Reports and Net Alerts] Panda Software International

PsImSvc.exe 2312 Panda Interface Manager Service Panda Software International

rundll32.exe 2140 Kör en DLL-fil som ett program Microsoft Corporation

services.exe 1484 0.76 Tjänst- och styrenhetsprogram Microsoft Corporation

smss.exe 1328 Sessionshanteraren i Windows NT Microsoft Corporation

spoolsv.exe 1080 Spooler SubSystem App Microsoft Corporation

svchost.exe 1680 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1748 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 164 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 612 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1708 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 2816 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 3876 Generic Host Process for Win32 Services Microsoft Corporation

System 4

System Idle Process 0 81.06

TPSrv.exe 188 TPSrv Application Panda Software International

uTorrent.exe 4656 2.27 µTorrent BitTorrent, Inc.

WEBPROXY.EXE 2804 Internet resident proxy Panda Software International

winamp.exe 3872 2.27 Winamp Nullsoft

winlogon.exe 1440 Inloggningsprogram för Windows NT Microsoft Corporation

Process: uTorrent.exe Pid: 4656

Name Description Company Name Version

ACTIVEDS.dll DLL-fil för Active Directory Router Layer Microsoft Corporation 5.01.2600.5512

adsldpc.dll ADs LDAP-provider C DLL Microsoft Corporation 5.01.2600.5512

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.5512

Amhooker.dll Amhooker A4Tech Co.,Ltd. 7.80.0000.0004

appHelp.dll Application Compatibility Client Library Microsoft Corporation 5.01.2600.5512

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0001

browseui.dll Bibliotek för gränssnittsläsare Microsoft Corporation 6.00.2900.5512

c_936.nls

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0700

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.5512

comdlg32.dll DLL-fil med vanliga dialogrutor Microsoft Corporation 6.00.2900.5512

COMRes.dll Microsoft Corporation 2001.12.4414.0700

credui.dll Användargränssnitt för referenshanteraren Microsoft Corporation 5.01.2600.5512

CRYPT32.dll 32-bitars kryptografi-API Microsoft Corporation 5.131.2600.5512

CSCDLL.dll Agent för frånkopplat nätverk Microsoft Corporation 5.01.2600.5512

cscui.dll Client Side Caching UI Microsoft Corporation 5.01.2600.5512

ctype.nls

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.01.2600.5625

dot3api.dll API-funktioner för automatisk konfiguration av 802.3 Microsoft Corporation 5.01.2600.5512

dot3dlg.dll Hjälpprogram för användargränssnittet för 802.3 Microsoft Corporation 5.01.2600.5512

eappcfg.dll EAP-peerkonfig Microsoft Corporation 5.01.2600.5512

eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.01.2600.5512

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.5698

hnetcfg.dll Hanteraren för konfiguration av hemnätverk Microsoft Corporation 5.01.2600.5512

icl_cfg.dll Internet Resident Configuration Panda Software International 7.07.0032.0502

Iphlpapi.dll API för IP Helper Microsoft Corporation 5.01.2600.5512

kernel32.dll Klient-DLL för Windows NT BASE API Microsoft Corporation 5.01.2600.5512

locale.nls

LVPrcInj.dll Camera Helper Library. Logitech Inc. 11.05.0000.1158

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.5512

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.01.2600.5512

MSCTF.dll DLL-fil för MSCTF-servern Microsoft Corporation 5.01.2600.5512

MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.02.3104.0000

MSVCP71.dll Microsoft® C++ Runtime Library Microsoft Corporation 7.10.3077.0000

MSVCR71.dll Microsoft® C Runtime Library Microsoft Corporation 7.10.3052.0004

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.5512

mswsock.dll Tjänstprovider för Microsoft Windows Sockets 2.0 Microsoft Corporation 5.01.2600.5625

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.5694

netshell.dll Användargränssnitt för nätverksanslutning Microsoft Corporation 5.01.2600.5512

ntdll.dll DLL-fil för NT Layer Microsoft Corporation 5.01.2600.5512

ole32.dll Microsoft OLE för Windows Microsoft Corporation 5.01.2600.5512

oleaut32.dll Microsoft Corporation 5.01.2600.5512

OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.01.2600.5512

pavipc.dll PavIpc Dynamic Link Library Panda Software International 8.00.0000.0000

pavlsp.dll Internet Resident Layered Service Provider Panda Software International 7.05.0021.0501

PAVSHOOK.DLL PavSHook Dynamic Link Library Panda Software International 8.00.0000.0000

PavTrc.dll Internet resident forwarding Panda Software International 7.07.0024.0503

PSAPI.DLL Process Status Helper Microsoft Corporation 5.01.2600.5512

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.5512

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.5512

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.5507

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.5512

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.5512

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.5512

SETUPAPI.dll API för installationsprogrammet för Windows Microsoft Corporation 5.01.2600.5512

SHELL32.dll DLL-fil för Windows-gränssnittet Microsoft Corporation 6.00.2900.5512

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.5512

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.5512

sortkey.nls

sorttbls.nls

systools.dll SYSTOOLS Panda Software 7.00.0002.0000

TpUtil.dll TpUtil Dynamic Link Library Panda Software International 8.00.0000.0000

unicode.nls

USER32.dll Klient-DLL-fil för Windows XP Microsoft Corporation 5.01.2600.5512

USERENV.dll Userenv Microsoft Corporation 5.01.2600.5512

uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0001.12639

uxtheme.dll Bibliotek för Microsoft UxTheme Microsoft Corporation 6.00.2900.5512

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.5512

WINSTA.dll Winstation Library Microsoft Corporation 5.01.2600.5512

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.5512

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.5512

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.5512

wship6.dll IPv6 Helper DLL Microsoft Corporation 5.01.2600.5512

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.5512

WSOCK32.dll 32-bitars DLL-fil för Windows Socket Microsoft Corporation 5.01.2600.5512

WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.01.2600.5512

xpsp2res.dll Service Pack 2-meddelanden Microsoft Corporation 5.01.2600.5512

Anything that can help you out?

Link to comment
Share on other sites

Amhooker.dll Amhooker A4Tech Co.,Ltd. 7.80.0000.0004

LVPrcInj.dll Camera Helper Library. Logitech Inc. 11.05.0000.1158

pavipc.dll PavIpc Dynamic Link Library Panda Software International 8.00.0000.0000

pavlsp.dll Internet Resident Layered Service Provider Panda Software International 7.05.0021.0501

PAVSHOOK.DLL PavSHook Dynamic Link Library Panda Software International 8.00.0000.0000

PavTrc.dll Internet resident forwarding Panda Software International 7.07.0024.0503

systools.dll SYSTOOLS Panda Software 7.00.0002.0000

TpUtil.dll TpUtil Dynamic Link Library Panda Software International 8.00.0000.0000

All of these are potential culprits. amhooker is my first suspect though, followed by panda.

Link to comment
Share on other sites

Yes. In PE log, you have many processes about Panda injected in uT.

icl_cfg.dll Internet Resident Configuration Panda Software International 7.07.0032.0502

pavipc.dll PavIpc Dynamic Link Library Panda Software International 8.00.0000.0000

pavlsp.dll Internet Resident Layered Service Provider Panda Software International 7.05.0021.0501

PAVSHOOK.DLL PavSHook Dynamic Link Library Panda Software International 8.00.0000.0000

PavTrc.dll Internet resident forwarding Panda Software International 7.07.0024.0503

That doesn't sound like good...

Try to set/disable/unistall this module related about "Internet Resident".

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...