bellowingfunk Posted April 27, 2009 Report Share Posted April 27, 2009 I've been running utorrent on vista for about six months now without a problem until about a month ago, whenever i'm downloading only larger files, 1.5 gigs or so, vista will freeze and then i get the bsod. I hope i can get some help on thishijackthis:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 4:31:34 PM, on 4/27/2009Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18226)Boot mode: NormalRunning processes:C:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\RtHDVCpl.exeC:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeC:\Program Files\Dell Support Center\bin\sprtcmd.exeC:\Program Files\AVG\AVG8\avgtray.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Windows\System32\rundll32.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Windows\System32\mobsync.exeC:\Program Files\Internet Explorer\ieuser.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exeC:\PROGRA~1\AVG\AVG8\aAvgApi.exeC:\Windows\system32\Macromed\Flash\FlashUtil10b.exeC:\Users\brashley\Desktop\manpower stubs\utorrent.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\Windows\system32\SearchFilterHost.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by DellR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dllO2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dllO2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dllO2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLLO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dllO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dllO2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dllO3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dllO3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLLO3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenterO4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exeO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dllO13 - Gopher Prefix: O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cabO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dllO20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dllO23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exeO23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Windows\system32\AERTSrv.exeO23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeO23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exeO23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exeO23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exeO23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXEO23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Common Files\supportsoft\bin\ssrc.exeO23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exeO23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe--End of file - 8150 bytesProcess explorer:Process PID CPU Description Company NameSystem Idle Process 0 97.73 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 0.76 smss.exe 468 csrss.exe 560 wininit.exe 612 services.exe 680 svchost.exe 960 mobsync.exe 5816 Microsoft Sync Center Microsoft Corporation aAvgApi.exe 5424 AVG Security Toolbar broker AVG Technologies CZ, s.r.o. FlashUtil10b.exe 6136 Adobe Flash Player Helper 10.0 r22 Adobe Systems, Inc. nvvsvc.exe 1004 rundll32.exe 1512 svchost.exe 1032 svchost.exe 1076 svchost.exe 1176 audiodg.exe 1348 svchost.exe 1212 0.76 dwm.exe 2008 Desktop Window Manager Microsoft Corporation WUDFHost.exe 3020 svchost.exe 1228 taskeng.exe 1952 Task Scheduler Engine Microsoft Corporation taskeng.exe 5072 SLsvc.exe 1376 svchost.exe 1416 svchost.exe 1576 spoolsv.exe 1936 CCSVCHST.EXE 2000 svchost.exe 952 ACService.exe 3656 AERTSrv.exe 3784 AppleMobileDeviceService.exe 3792 avgwdsvc.exe 3832 avgrsx.exe 2104 avgnsx.exe 908 mDNSResponder.exe 3844 svchost.exe 4060 svchost.exe 2464 svchost.exe 2624 SearchIndexer.exe 2856 XAudio.exe 3032 avgemc.exe 3072 avgcsrvx.exe 3228 wmpnetwk.exe 1772 iPodService.exe 1964 AluSchedulerSvc.exe 4564 lsass.exe 708 lsm.exe 716 csrss.exe 624 winlogon.exe 692 explorer.exe 200 Windows Explorer Microsoft Corporation RtHDVCpl.exe 2032 HD Audio Control Panel Realtek Semiconductor sprtcmd.exe 1756 SupportSoft, Inc. avgtray.exe 2096 AVG Tray Monitor AVG Technologies CZ, s.r.o. iTunesHelper.exe 2220 iTunesHelper Module Apple Inc. rundll32.exe 2236 Windows host process (Rundll32) Microsoft Corporation GoogleToolbarNotifier.exe 2264 GoogleToolbarNotifier Google Inc. wmpnscfg.exe 2280 Windows Media Player Network Sharing Service Configuration Application Microsoft Corporation utorrent.exe 4704 µTorrent BitTorrent, Inc. procexp.exe 5776 0.76 Sysinternals Process Explorer Sysinternals - www.sysinternals.comCCSVCHST.EXE 1732 Symantec Service Framework Symantec Corporationieuser.exe 5236 Internet Explorer Microsoft Corporation GoogleToolbarUser.exe 5320 iexplore.exe 5260 Internet Explorer Microsoft CorporationMpCmdRun.exe 4552 notepad.exe 5628 Process: utorrent.exe Pid: 4704Name Description Company Name Versionwshtcpip.dll Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.0.6001.18000wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.0.6001.18000WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.0.6001.18000WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.0.6001.18000winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.0.6000.16386WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.0.6001.18000VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.0.6001.18000uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.6001.18000utorrent.exe µTorrent BitTorrent, Inc. 1.8.2.14458USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6001.18000USERENV.dll Userenv Microsoft Corporation 6.0.6001.18000USER32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.0.6001.18000SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.6001.18000shfolder.dll Shell Folder Service Microsoft Corporation 6.0.6000.16386SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.6001.18167Secur32.dll Security Support Provider Interface Microsoft Corporation 6.0.6001.18215SAMLIB.dll SAM Library DLL Microsoft Corporation 6.0.6001.18000rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.0.6001.18000RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.0.6001.18051rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.0.6000.16386PSAPI.DLL Process Status Helper Microsoft Corporation 6.0.6000.16386pnrpnsp.dll PNRP Name Space Provider Microsoft Corporation 6.0.6001.18000oleaut32.dll Microsoft Corporation 6.0.6001.18000ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.0.6001.18000NTMARTA.DLL Windows NT MARTA provider Microsoft Corporation 6.0.6001.18000ntdll.dll NT Layer DLL Microsoft Corporation 6.0.6001.18000NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.0.6001.18000NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.0.6001.18000napinsp.dll E-mail Naming Shim Provider Microsoft Corporation 6.0.6001.18000mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.0.6001.18000msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.6001.18000MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.0.6001.18000mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 1.0.6.2LPK.DLL Language Pack Microsoft Corporation 6.0.6001.18000locale.nls locale.nls kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.0.6001.18215Iphlpapi.dll IP Helper API Microsoft Corporation 6.0.6001.18000IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.0.6001.18000GDI32.dll GDI Client DLL Microsoft Corporation 6.0.6001.18159FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.0.6001.18000DnsApi.dll DNS Client API DLL Microsoft Corporation 6.0.6001.18000dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.0.6001.18000dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.0.6001.18000comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.6001.18000COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.6001.18000CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000avgrsstx.dll AVG Resident Shield Starter AVG Technologies CZ, s.r.o. 8.0.0.223ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.0.6001.18000 Link to comment Share on other sites More sharing options...
jewelisheaven Posted April 28, 2009 Report Share Posted April 28, 2009 That looks like a new Dell ... Are you using WLAN? If you could go into the Device Manager and find out what chipset you're using it may point something else out.The logfiles look clean here, no process injection :/ Which BSOD do you get? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.