Bill Posted June 1, 2009 Report Posted June 1, 2009 After I updated to the latest BETA utorrent is now very unstable.I am running Vista x86 with all the latest updatesHere are all the logs and crash dumpshttp://www.mediafire.com/?sharekey=6bd0a21a7e3a60564c17ca8801618ef7e04e75f6e8ebb871
moogly Posted June 1, 2009 Report Posted June 1, 2009 Paste into your thread the logs, it's easy to read. Process Explorer log is NOT complete when uT is running. You have to select utorrent.exe and enable DLL mode (ctrl+d).Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:14:04 PM, on 6/1/2009Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18226)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\AVG\AVG8\avgtray.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\Pidgin\pidgin.exeC:\Program Files\FirefoxPreloader\FirefoxPreloader.exeC:\Windows\system32\taskeng.exeC:\Windows\System32\mobsync.exeC:\Program Files\Mozilla Firefox 3.5 Beta 4\firefox.exeC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Windows\system32\wbem\unsecapp.exeC:\Windows\System32\notepad.exeC:\Windows\Explorer.exeC:\Users\PRIVATE\Desktop\HiJackThis\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F3 - REG:win.ini: load= F3 - REG:win.ini: run= O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dllO2 - BHO: PDF-XChange Viewer IE-Plugin - {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} - C:\Program Files\Tracker Software\PDF-XChange Viewer\pdf-viewer\PDFXCviewIEPlugin.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dllO4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exeO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [Pidgin] C:\Program Files\Pidgin\pidgin.exeO4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')O4 - Global Startup: Firefox Preloader.lnk = C:\Program Files\FirefoxPreloader\FirefoxPreloader.exeO9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.htmlO9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.htmlO9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.htmlO9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.htmlO9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.htmlO9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.htmlO13 - Gopher Prefix: O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cabO20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dllO23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exeO23 - Service: a-squared Free Service (a2free) - Unknown owner - C:\USERS\CHANGED FOR PRICVACY REASONS\DESKTOP\A2USB\a2service.exe (file missing)O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exeO23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exeO23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\Windows\SYSTEM32\crypserv.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exeO23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe--End of file - 4810 bytesProcess PID CPU Description Company NameSystem Idle Process 0 100.00 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 404 Windows Session Manager Microsoft Corporationcsrss.exe 480 Client Server Runtime Process Microsoft Corporationwininit.exe 540 Windows Start-Up Application Microsoft Corporation services.exe 588 Services and Controller app Microsoft Corporation svchost.exe 804 Host Process for Windows Services Microsoft Corporation mobsync.exe 3396 Microsoft Sync Center Microsoft Corporation unsecapp.exe 2660 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation WmiPrvSE.exe 2520 WMI Provider Host Microsoft Corporation nvvsvc.exe 852 NVIDIA Driver Helper Service, Version 180.84 NVIDIA Corporation rundll32.exe 1388 Windows host process (Rundll32) Microsoft Corporation svchost.exe 884 Host Process for Windows Services Microsoft Corporation svchost.exe 916 Host Process for Windows Services Microsoft Corporation svchost.exe 1000 Host Process for Windows Services Microsoft Corporation audiodg.exe 1172 Windows Audio Device Graph Isolation Microsoft Corporation svchost.exe 1076 Host Process for Windows Services Microsoft Corporation WUDFHost.exe 2352 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation dwm.exe 2792 Desktop Window Manager Microsoft Corporation svchost.exe 1088 Host Process for Windows Services Microsoft Corporation taskeng.exe 468 Task Scheduler Engine Microsoft Corporation taskeng.exe 3304 Task Scheduler Engine Microsoft Corporation svchost.exe 1200 Host Process for Windows Services Microsoft Corporation SLsvc.exe 1224 Microsoft Software Licensing Service Microsoft Corporation svchost.exe 1276 Host Process for Windows Services Microsoft Corporation svchost.exe 1452 Host Process for Windows Services Microsoft Corporation spoolsv.exe 1640 Spooler SubSystem App Microsoft Corporation svchost.exe 1664 Host Process for Windows Services Microsoft Corporation a2service.exe 1920 a-squared Service Emsi Software GmbH avgwdsvc.exe 1944 AVG Watchdog Service AVG Technologies CZ, s.r.o. avgrsx.exe 772 AVG Resident Shield Service AVG Technologies CZ, s.r.o. Crypserv.exe 1972 CrypKey License Service CrypKey (Canada) Ltd. NMSAccessU.exe 2032 svchost.exe 376 Host Process for Windows Services Microsoft Corporation svchost.exe 396 Host Process for Windows Services Microsoft Corporation TomTomHOMEService.exe 1160 Windows Service for TomTom HOME TomTom svchost.exe 1468 Host Process for Windows Services Microsoft Corporation SearchIndexer.exe 1772 Microsoft Windows Search Indexer Microsoft Corporation avgemc.exe 1940 AVG E-Mail Scanner AVG Technologies CZ, s.r.o. avgcsrvx.exe 2444 AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. SDWinSec.exe 2136 Spybot-S&D Security Center integration Safer Networking Ltd. wmpnetwk.exe 3736 Windows Media Player Network Sharing Service Microsoft Corporation lsass.exe 620 Local Security Authority Process Microsoft Corporation lsm.exe 628 Local Session Manager Service Microsoft Corporationcsrss.exe 548 Client Server Runtime Process Microsoft Corporationwinlogon.exe 636 Windows Logon Application Microsoft Corporationexplorer.exe 2820 Windows Explorer Microsoft Corporation avgtray.exe 2980 AVG Tray Monitor AVG Technologies CZ, s.r.o. sidebar.exe 3012 Windows Sidebar Microsoft Corporation pidgin.exe 3032 Pidgin The Pidgin developer community FirefoxPreloader.exe 3052 Loads some parts of Firefox into memory before it is used to improve startup speed. 6XGate Incorporated firefox.exe 3612 Firefox Mozilla Corporation wmpnscfg.exe 3668 Windows Media Player Network Sharing Service Configuration Application Microsoft Corporation notepad.exe 3144 Notepad Microsoft Corporation explorer.exe 1256 Windows Explorer Microsoft Corporation procexp.exe 2968 Sysinternals Process Explorer Sysinternals - www.sysinternals.com
Bill Posted June 1, 2009 Author Report Posted June 1, 2009 Ok, I think this is what you are after.Process PID CPU Description Company NameSystem Idle Process 0 73.85 Interrupts n/a Hardware Interrupts DPCs n/a 1.54 Deferred Procedure Calls System 4 4.62 smss.exe 404 Windows Session Manager Microsoft Corporationcsrss.exe 480 Client Server Runtime Process Microsoft Corporationwininit.exe 540 Windows Start-Up Application Microsoft Corporation services.exe 588 Services and Controller app Microsoft Corporation svchost.exe 804 Host Process for Windows Services Microsoft Corporation mobsync.exe 3396 Microsoft Sync Center Microsoft Corporation unsecapp.exe 2660 Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation WmiPrvSE.exe 2520 WMI Provider Host Microsoft Corporation nvvsvc.exe 852 NVIDIA Driver Helper Service, Version 180.84 NVIDIA Corporation rundll32.exe 1388 Windows host process (Rundll32) Microsoft Corporation svchost.exe 884 Host Process for Windows Services Microsoft Corporation svchost.exe 916 Host Process for Windows Services Microsoft Corporation svchost.exe 1000 Host Process for Windows Services Microsoft Corporation audiodg.exe 1172 Windows Audio Device Graph Isolation Microsoft Corporation svchost.exe 1076 Host Process for Windows Services Microsoft Corporation WUDFHost.exe 2352 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation dwm.exe 2792 6.15 Desktop Window Manager Microsoft Corporation svchost.exe 1088 Host Process for Windows Services Microsoft Corporation taskeng.exe 468 Task Scheduler Engine Microsoft Corporation taskeng.exe 3304 Task Scheduler Engine Microsoft Corporation svchost.exe 1200 Host Process for Windows Services Microsoft Corporation SLsvc.exe 1224 Microsoft Software Licensing Service Microsoft Corporation svchost.exe 1276 Host Process for Windows Services Microsoft Corporation svchost.exe 1452 Host Process for Windows Services Microsoft Corporation spoolsv.exe 1640 Spooler SubSystem App Microsoft Corporation svchost.exe 1664 Host Process for Windows Services Microsoft Corporation a2service.exe 1920 a-squared Service Emsi Software GmbH avgwdsvc.exe 1944 AVG Watchdog Service AVG Technologies CZ, s.r.o. avgrsx.exe 772 AVG Resident Shield Service AVG Technologies CZ, s.r.o. Crypserv.exe 1972 CrypKey License Service CrypKey (Canada) Ltd. NMSAccessU.exe 2032 svchost.exe 376 Host Process for Windows Services Microsoft Corporation svchost.exe 396 Host Process for Windows Services Microsoft Corporation TomTomHOMEService.exe 1160 Windows Service for TomTom HOME TomTom svchost.exe 1468 Host Process for Windows Services Microsoft Corporation SearchIndexer.exe 1772 Microsoft Windows Search Indexer Microsoft Corporation avgemc.exe 1940 AVG E-Mail Scanner AVG Technologies CZ, s.r.o. avgcsrvx.exe 2444 AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. SDWinSec.exe 2136 Spybot-S&D Security Center integration Safer Networking Ltd. wmpnetwk.exe 3736 Windows Media Player Network Sharing Service Microsoft Corporation lsass.exe 620 Local Security Authority Process Microsoft Corporation lsm.exe 628 Local Session Manager Service Microsoft Corporationcsrss.exe 548 Client Server Runtime Process Microsoft Corporationwinlogon.exe 636 Windows Logon Application Microsoft Corporationexplorer.exe 2820 Windows Explorer Microsoft Corporation avgtray.exe 2980 AVG Tray Monitor AVG Technologies CZ, s.r.o. sidebar.exe 3012 Windows Sidebar Microsoft Corporation pidgin.exe 3032 Pidgin The Pidgin developer community wmpnscfg.exe 3668 Windows Media Player Network Sharing Service Configuration Application Microsoft Corporation uTorrent.exe 736 9.23 µTorrent BitTorrent, Inc. firefox.exe 2340 Firefox Mozilla Corporation explorer.exe 3448 Windows Explorer Microsoft Corporation procexp.exe 2548 4.62 Sysinternals Process Explorer Sysinternals - www.sysinternals.comProcess: uTorrent.exe Pid: 736Name Description Company Name VersionADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 6.0.6001.18000CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.10.6001.18000comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.6001.18000dhcpcsvc.DLL DHCP Client Service Microsoft Corporation 6.0.6001.18000dhcpcsvc6.DLL DHCPv6 Client Microsoft Corporation 6.0.6001.18000DnsApi.dll DNS Client API DLL Microsoft Corporation 6.0.6001.18000FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.0.6001.18000GDI32.dll GDI Client DLL Microsoft Corporation 6.0.6001.18159ICMP.DLL ICMP DLL Microsoft Corporation 6.0.6000.16386IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.0.6001.18000Iphlpapi.dll IP Helper API Microsoft Corporation 6.0.6001.18000kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.0.6001.18215locale.nls locale.nls LPK.DLL Language Pack Microsoft Corporation 6.0.6001.18000MSCTF.dll MSCTF Server DLL Microsoft Corporation 6.0.6001.18000msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.6001.18000mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.0.6001.18000napinsp.dll E-mail Naming Shim Provider Microsoft Corporation 6.0.6001.18000NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.0.6001.18000npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.0.6000.16386NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.0.6001.18000ntdll.dll NT Layer DLL Microsoft Corporation 6.0.6001.18000ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.0.6001.18000oleaut32.dll Microsoft Corporation 6.0.6001.18000pnrpnsp.dll PNRP Name Space Provider Microsoft Corporation 6.0.6001.18000PSAPI.DLL Process Status Helper Microsoft Corporation 6.0.6000.16386rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.0.6000.16386RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 6.0.6001.18051rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.0.6001.18000Secur32.dll Security Support Provider Interface Microsoft Corporation 6.0.6001.18215SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.6001.18167shfolder.dll Shell Folder Service Microsoft Corporation 6.0.6000.16386SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.6001.18000USER32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.0.6001.18000USERENV.dll Userenv Microsoft Corporation 6.0.6001.18000USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6001.18000uTorrent.exe µTorrent BitTorrent, Inc. 1.8.3.15562uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.6001.18000VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.0.6001.18000WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.0.6001.18000winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.0.6000.16386WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.0.6001.18000WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.0.6001.18000wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.0.6001.18000wshtcpip.dll Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.0.6001.18000
Recommended Posts
Archived
This topic is now archived and is closed to further replies.