uTorrent is not responding

[silkyjoe9]

sherwinraavi

Looks like you have the same problem as me - Zone Alarm. I uninstalled it and installed Comodo instead. utorrent now works perfectly for me

Maybe try that 1st.

Cheers

[sh0ck_wave]

Hi, I'm having the same problem. As soon as utorrent strts dloading it pretty much freezes. While fooling around with TcpView i noticed tht it was when utorrent created tcp/ip connections and these connections entered the SYN_SENT state tht it froze . Manually closing these connections resumes utorrent only to be frozen again as soon as the next connection becomes SYN_SENT.

I am using utorrent 2.0 build 18488 on a windows XP sp2 OS

the required logs are

Hijack this log

---------------------------------

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 1:07:47 AM, on 3/29/2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe

C:\Program Files\Java\jre6\bin\jqs.exe

d:\program files\grasssoft\mouse recorder\MacroService.exe

d:\Program Files\Tunngle\TnglCtrl.exe

C:\WINDOWS\explorer.exe

d:\program files\grasssoft\mouse recorder\MacroServiceWnd.exe

C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe

C:\Program Files\Garena\Garena.exe

D:\Program Files\AvaFind\AvaFind.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\system32\cmd.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\shock\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

D:\Program Files\uTorrent\uTorrent.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sharewareisland.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.sharewareisland.com/quicksearch.aspx

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.sharewareisland.com/quicksearch.aspx

O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - d:\Program Files\Orbitdownloader\orbitcth.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - d:\Program Files\Orbitdownloader\GrabPro.dll

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM\..\Run: [AvaFind] "D:\Program Files\AvaFind\AvaFind.exe" /minimized

O4 - HKLM\..\Run: [AutoPowerOn] d:\Program Files\Auto Power-on\AutoPowerOn.exe

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [mspaint] "C:\WINDOWS\system32\Paint.exe" -autocheck

O4 - HKLM\..\Run: [Macro Manager] d:\Program Files\GrassSoft\Mouse Recorder\MacroManager.exe /q

O4 - HKLM\..\RunServices: [Nod32 Runtime] sysregi.exe

O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKLM\..\Policies\Explorer\Run: [Lsass Service] C:\Documents and Settings\shock\Application Data\Microsoft\Windows\lsass.exe

O4 - Startup: My_AutoWarkey_Script.lnk = D:\Program Files\Warkeys\AutoWarkey\AutoHotkey\AutoHotkey.exe

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: &Clean Traces - d:\Program Files\DAP\Privacy Package\dapcleanerie.htm

O8 - Extra context menu item: &D&ownload &with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm

O8 - Extra context menu item: &D&ownload all video with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm

O8 - Extra context menu item: &D&ownload all with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm

O8 - Extra context menu item: &Download by Orbit - res://d:\Program Files\Orbitdownloader\orbitmxt.dll/201

O8 - Extra context menu item: &Download with &DAP - D:\Program Files\DAP\dapextie.htm

O8 - Extra context menu item: &Grab video by Orbit - res://d:\Program Files\Orbitdownloader\orbitmxt.dll/204

O8 - Extra context menu item: Do&wnload selected by Orbit - res://d:\Program Files\Orbitdownloader\orbitmxt.dll/203

O8 - Extra context menu item: Down&load all by Orbit - res://d:\Program Files\Orbitdownloader\orbitmxt.dll/202

O8 - Extra context menu item: Download &all with DAP - D:\Program Files\DAP\dapextie2.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O17 - HKLM\System\CCS\Services\Tcpip\..\{2514579E-7EC9-4216-9793-5665FB096A81}: NameServer = 208.67.222.222 8.8.4.4

O17 - HKLM\System\CCS\Services\Tcpip\..\{8B4B7FFD-FF54-4978-84EF-93FDDDD6D3E9}: NameServer = 208.67.222.222,208.67.220.220

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Macro Expert - Grass Software - d:\program files\grasssoft\mouse recorder\MacroService.exe

O23 - Service: Auto Power-on & Shut-down Service (PCAutoPowerOnService) - Unknown owner - d:\Program Files\Auto Power-on\PCAutoPowerOnService.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: TunngleService - Tunngle.net GmbH - d:\Program Files\Tunngle\TnglCtrl.exe

--

End of file - 8655 bytes

Process explorer log with utorrent selected

------------------------------------------------------------------

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 98.48 0 K 28 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 0 K 56 K

smss.exe 872 168 K 72 K Windows NT Session Manager Microsoft Corporation

csrss.exe 936 1,580 K 2,324 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 960 7,552 K 864 K Windows NT Logon Application Microsoft Corporation

services.exe 1004 0.76 2,032 K 1,468 K Services and Controller app Microsoft Corporation

svchost.exe 1220 3,204 K 1,788 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1288 1,800 K 1,428 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1408 13,744 K 8,692 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1536 1,732 K 1,504 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1596 1,776 K 960 K Generic Host Process for Win32 Services Microsoft Corporation

aswUpdSv.exe 1672 424 K 72 K avast! Antivirus updating service ALWIL Software

ashServ.exe 1728 39,340 K 824 K avast! antivirus service ALWIL Software

spoolsv.exe 368 5,216 K 1,092 K Spooler SubSystem App Microsoft Corporation

svchost.exe 508 2,076 K 428 K Generic Host Process for Win32 Services Microsoft Corporation

btwdins.exe 528 1,780 K 1,056 K Bluetooth Support Server Broadcom Corporation.

SAgent2.exe 564 1,440 K 220 K EPSON Printer Status Agent SEIKO EPSON CORPORATION

jqs.exe 588 1,936 K 1,388 K Java Quick Starter Service Sun Microsystems, Inc.

MacroService.exe 680 3,788 K 1,988 K Macro Service Grass Software

MacroServiceWnd.exe 712 904 K 528 K Macro Service Desktop Wnd Grass Software

TnglCtrl.exe 1480 6,828 K 472 K Tunngle Service Tunngle.net GmbH

alg.exe 2500 1,084 K 152 K Application Layer Gateway Service Microsoft Corporation

lsass.exe 1016 3,740 K 1,424 K LSA Shell (Export Version) Microsoft Corporation

explorer.exe 4024 0.76 13,700 K 15,572 K Windows Explorer Microsoft Corporation

YahooMessenger.exe 3644 41,336 K 32,600 K Yahoo! Messenger Yahoo! Inc.

Garena.exe 2824 39,060 K 22,188 K Garena Garena Online PTE LTD

chrome.exe 3744 44,096 K 43,804 K Google Chrome Google Inc.

chrome.exe 3408 21,116 K 16,644 K Google Chrome Google Inc.

chrome.exe 2124 10,328 K 2,832 K Google Chrome Google Inc.

chrome.exe 1120 20,616 K 15,900 K Google Chrome Google Inc.

AvaFind.exe 724 11,536 K 12,960 K Ava Find Think Less Do More Services

procexp.exe 1692 23,740 K 30,724 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

uTorrent.exe 3796 3,996 K 7,308 K µTorrent BitTorrent, Inc.

notepad.exe 2604 976 K 2,996 K Notepad Microsoft Corporation

orbitdm.exe 3236 4,004 K 728 K Orbit Downloader Orbitdownloader.com

orbitnet.exe 2228 3,064 K 1,836 K P2P service of Orbit Downloader Orbitdownloader.com

Process: uTorrent.exe Pid: 3796

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.2180

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.2180

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.2180

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.0

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.258

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.2180

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.2180

COMRes.dll Microsoft Corporation 2001.12.4414.258

credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.2180

ctype.nls

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.2180

GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.2180

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.2180

Iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.2180

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.2180

locale.nls

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.0.3.1

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.2180

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.2180

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.2180

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.2180

netshell.dll Network Connections Shell Microsoft Corporation 5.1.2600.2180

ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.2180

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.2180

oleaut32.dll Microsoft Corporation 5.1.2600.2180

R000000000007.clb

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.2180

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.2180

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.2161

rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.2180

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.1.2600.2180

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.2180

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.1.2600.2180

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.2180

shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.2180

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.2180

sortkey.nls

sorttbls.nls

unicode.nls

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.2180

USERENV.dll Userenv Microsoft Corporation 5.1.2600.2180

uTorrent.exe µTorrent BitTorrent, Inc. 2.0.0.18488

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.2180

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.2180

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.2180

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.2180

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.2180

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.2180

Thanks in advance for any help!!

[moogly]

sherwinraavi, same remark, just remove ZA firewall, it's a buggy software.

http://forum.utorrent.com/viewtopic.php?pid=468918#p468918

[sherwinraavi]

@moogly, silkyjoe9 - yep that worked! thanks =)

[luiscay]

Hi guys im having the same problem

here is my logs

Hi jack logs

Logfile of Trend Micro HijackThis v2.0.3 (BETA)

Scan saved at 9:30:40 PM, on 3/29/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files\Sprint\Sprint SmartView\SprintSV.exe

C:\Program Files\Sprint\Sprint SmartView\RDVCHG.exe

C:\Program Files\Alwil Software\Avast4\ashDisp.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Sprint\Sprint SmartView\bmctl.exe

C:\Program Files\Sprint\Sprint SmartView\bmop.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe

C:\Windows\system32\wuauclt.exe

C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

C:\Windows\system32\notepad.exe

C:\Windows\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [sprint SmartView] "C:\Program Files\Sprint\Sprint SmartView\SprintSV.exe" -a

O4 - HKLM\..\Run: [RDVCHG] "C:\Program Files\Sprint\Sprint SmartView\RDVCHG.exe"

O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - Global Startup: VPN Client.lnk = ?

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: bmnet.dll

O10 - Unknown file in Winsock LSP: bmnet.dll

O10 - Unknown file in Winsock LSP: bmnet.dll

O13 - Gopher Prefix:

O16 - DPF: {4E8AEBE0-31A6-43B0-A429-748DB14A70A0} (SysEngW2k Control) - http://204.125.64.38/apps/common/includes/PC-CONFIG-CHECK.CAB

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{5C014808-6E9D-43CC-A828-A9CEDF8DCC21}: NameServer = 68.28.242.91 68.28.250.92

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Sprint Con App Svc (CASprint) - SmithMicro Inc. - C:\Program Files\Sprint\Sprint SmartView\ConAppsSvc.exe

O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe

O23 - Service: Sentinel HASP License Manager (hasplms) - SafeNet Inc. - C:\Windows\system32\hasplms.exe

O23 - Service: Sprint RcAppSvc (SprintRcAppSvc) - SmithMicro Inc. - C:\Program Files\Sprint\Sprint SmartView\RcAppSvc.exe

--

End of file - 5177 bytes

Process

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 92.14 0 K 24 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 0.71 76 K 14,816 K

smss.exe 264 260 K 584 K

csrss.exe 360 1,248 K 2,776 K

csrss.exe 412 5,512 K 9,360 K

wininit.exe 420 1,976 K 3,412 K

services.exe 516 5,220 K 6,024 K

svchost.exe 632 2,688 K 5,468 K Host Process for Windows Services Microsoft Corporation

FlashUtil10e.exe 3908 1,440 K 4,680 K Adobe Flash Player Helper 10.0 r45 Adobe Systems, Inc.

dllhost.exe 1744 1,132 K 3,896 K COM Surrogate Microsoft Corporation

svchost.exe 720 3,864 K 5,884 K Host Process for Windows Services Microsoft Corporation

svchost.exe 816 15,776 K 13,412 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 2264 15,120 K 13,836 K

svchost.exe 880 39,724 K 42,064 K Host Process for Windows Services Microsoft Corporation

dwm.exe 1448 0.71 45,432 K 53,016 K Desktop Window Manager Microsoft Corporation

svchost.exe 904 20,000 K 30,064 K Host Process for Windows Services Microsoft Corporation

wuauclt.exe 3140 1,372 K 4,972 K Windows Update Microsoft Corporation

svchost.exe 1056 7,960 K 12,336 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1164 15,708 K 18,452 K Host Process for Windows Services Microsoft Corporation

aswUpdSv.exe 1244 916 K 556 K avast! Antivirus updating service ALWIL Software

ashServ.exe 1272 41,728 K 21,340 K avast! antivirus service ALWIL Software

spoolsv.exe 1688 5,812 K 9,592 K Spooler SubSystem App Microsoft Corporation

svchost.exe 1728 10,228 K 9,236 K Host Process for Windows Services Microsoft Corporation

taskhost.exe 1760 2,032 K 4,192 K Host Process for Windows Tasks Microsoft Corporation

cvpnd.exe 1932 3,444 K 4,816 K Cisco Systems VPN Client Cisco Systems, Inc.

hasplms.exe 348 17,608 K 7,260 K Sentinel HASP License Manager Service SafeNet Inc.

RcAppSvc.exe 2200 1,032 K 3,072 K RcAppSvc, Service Helper SmithMicro Inc.

SearchIndexer.exe 2312 29,420 K 16,616 K Microsoft Windows Search Indexer Microsoft Corporation

ashWebSv.exe 2452 39,156 K 2,508 K avast! Web Scanner ALWIL Software

ashMaiSv.exe 2492 3,532 K 1,960 K avast! e-Mail Scanner Service ALWIL Software

svchost.exe 3388 59,676 K 25,728 K Host Process for Windows Services Microsoft Corporation

svchost.exe 3424 5,336 K 8,396 K Host Process for Windows Services Microsoft Corporation

wmpnetwk.exe 4000 3,144 K 2,484 K Windows Media Player Network Sharing Service Microsoft Corporation

msiexec.exe 2992 6,488 K 14,052 K Windows® installer Microsoft Corporation

VSSVC.exe 2548 5,168 K 9,164 K Microsoft® Volume Shadow Copy Service Microsoft Corporation

svchost.exe 2884 1,596 K 4,372 K Host Process for Windows Services Microsoft Corporation

lsass.exe 524 3,880 K 6,460 K Local Security Authority Process Microsoft Corporation

lsm.exe 532 1,332 K 2,544 K

winlogon.exe 476 1,664 K 3,624 K

explorer.exe 1460 41,448 K 67,652 K Windows Explorer Microsoft Corporation

SprintSV.exe 1976 14,812 K 20,764 K Sprint SmartView Sprint

bmctl.exe 4028 3,140 K 5,988 K Control Process Bytemobile, Inc.

bmop.exe 3792 2,620 K 4,728 K Optimization Proxy Bytemobile, Inc.

RDVCHG.exe 1988 1,916 K 5,276 K C-motech Run Time Device Change C-motech Co.,Ltd

ashDisp.exe 2012 2,224 K 1,888 K avast! service GUI component ALWIL Software

GrooveMonitor.exe 276 1,764 K 6,304 K GrooveMonitor Utility Microsoft Corporation

msnmsgr.exe 312 17,456 K 6,476 K Windows Live Messenger Microsoft Corporation

WinRAR.exe 3784 8,340 K 16,272 K WinRAR archiver Alexander Roshal

procexp.exe 2816 6.43 16,160 K 34,696 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

iexplore.exe 2136 14,684 K 30,644 K Internet Explorer Microsoft Corporation

iexplore.exe 1400 28,456 K 41,004 K Internet Explorer Microsoft Corporation

I will aprecciate your help thanks

[moogly]

@luiscay:

Another bmnet.dll (ByteMobile) case... This tool coming with Sprint card is really a crap.

2 solutions for you:

1/ Manual disabling: http://forum.utorrent.com/viewtopic.php?pid=453526#p453526 (easy one)

2/ Reinstall Sprint without ByteMobile: http://forum.utorrent.com/viewtopic.php?pid=465052#p465052

[luiscay]

@moogly, Thanks for your time and help Utorrent its up and running

[sweeneybros]

hi all, can you help me?

i've been having the utorrent not responding message for a couple of months now with version 2.0 and the previous one,

can i start by giving you the hijackthis results. thankyou to anyone who can help.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:08:35, on 16/04/2010

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18904)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\PeerBlock\peerblock.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\System32\hkcmd.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\utorent.exe

C:\Windows\Explorer.EXE

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\VSO\ConvertX\3\ConvertXtoDvd.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=73&bd=Presario&pf=desktop

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=73&bd=Presario&pf=desktop

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll

R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)

O1 - Hosts: ::1 localhost

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [FU_JFM] C:\Program Files\FinalUninstaller\JFM.exe

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKLM\..\Run: [Corel File Shell Monitor] c:\Program Files\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe

O4 - HKLM\..\Run: [standby] "c:\Program Files\Common Files\Corel\Standby\Standby.exe" -START

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKCU\..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe

O4 - HKCU\..\Run: [uTorrent] "C:\utorent.exe"

O4 - HKCU\..\Run: [DPService] C:\Program Files\HP\DVDPlay\DPService.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Corel Photo Downloader] "c:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O17 - HKLM\System\CCS\Services\Tcpip\..\{C086081E-6B9F-4606-9C9C-96DCF68EB989}: NameServer = 90.207.238.97,90.207.238.99

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: avgrsstx.dll

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe

O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

--

End of file - 7163 bytes.------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

JUST WANT TO ADD THIS ONE.

please let me know if you see anything out of place,missing or unnecesary. its all japanese to me.

--------------------------------------------------

Load/Run keys from C:\Windows\WIN.INI:

load=*INI section not found*

run=*INI section not found*

Load/Run keys from Registry:

HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\Windows: load=

HKCU\..\Windows NT\CurrentVersion\Windows: run=

HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=avgrsstx.dll

--------------------------------------------------

Shell & screensaver key from C:\Windows\SYSTEM.INI:

Shell=*INI section not found*

SCRNSAVE.EXE=*INI section not found*

drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=explorer.exe

SCRNSAVE.EXE=C:\Windows\system32\logon.scr

drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry value not found*

HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Enumerating Browser Helper Objects:

WormRadar.com IESiteBlocker.NavFilter - C:\Program Files\AVG\AVG8\avgssie.dll - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

(no name) - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll - {A3BC75A2-1F87-4686-AA43-5347D756017C}

(no name) - C:\Program Files\Java\jre6\bin\jp2ssv.dll - {DBC80044-A445-435b-BC74-9C25C1C588A9}

--------------------------------------------------

Enumerating Task Scheduler jobs:

AWC AutoSweep.job

AWC Startup.job

GoogleUpdateTaskMachineCore.job

GoogleUpdateTaskMachineUA.job

--------------------------------------------------

Enumerating Download Program Files:

[shockwave ActiveX Control]

InProcServer32 = C:\Windows\system32\Adobe\Director\SwDir.dll

CODEBASE = http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

--------------------------------------------------

Enumerating Winsock LSP files:

NameSpace #1: C:\Windows\system32\NLAapi.dll

NameSpace #2: C:\Windows\system32\napinsp.dll

NameSpace #3: C:\Windows\system32\pnrpnsp.dll

NameSpace #4: C:\Windows\system32\pnrpnsp.dll

--------------------------------------------------

Enumerating Windows NT logon/logoff scripts:

Windows NT checkdisk command:

BootExecute = autocheck autochk *

Windows NT 'Wininit.ini':

PendingFileRenameOperations: C:\Users\bcfc\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat||C:\Users\bcfc\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat||C:\Users\bcfc\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012010041520100416\index.dat

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

WebCheck: C:\Windows\System32\webcheck.dll

--------------------------------------------------

End of report, 7,408 bytes

Report generated in 0.062 seconds

Command line options:

/verbose - to add additional info on each section

/complete - to include empty sections and unsuspicious data

/full - to include several rarely-important sections

/force9x - to include Win9x-only startups even if running on WinNT

/forcent - to include WinNT-only startups even if running on Win9x

/forceall - to include all Win9x and WinNT startups, regardless of platform

/history - to list version history only.

[sweeneybros]

wow!! thanks for all your help.

[moogly]

sweeneybros, maybe if you add Process Explorer log when µT is running, that will help us.

Guide: http://forum.utorrent.com/viewtopic.php?id=29748

[TempestBlack]

Hello,

I've just intalled uTorrent to 2.0.2 and I open up program fine but when I begin a download the program seems to want to start download but then gets hung up with an hour glass and I have to end-task it to get out of it. Everything else including CPU usage remains normal on the computer. I just joined Your forums and read thru quite a bit of the questions and answers in close proximity to what I am dealing with. I am IT tech myself so any technical jargon you will shoot back at me will not fall on deaf ears. Please take note that when I run your application on a sister computer sitting right next to the one I am on currently that second computer has no issues and downloads just fine. Both computers connect to the same wireless router so the router cannot be the issue.

The Computer Specs with issue are as follows:

OS Name Microsoft Windows XP Professional

Version 5.1.2600 Service Pack 3 Build 2600

OS Manufacturer Microsoft Corporation

System Name USER-7EDC24FA87

System Manufacturer INTEL_

System Model D845PESV

System Type X86-based PC

Processor x86 Family 15 Model 2 Stepping 7 GenuineIntel ~2399 Mhz

BIOS Version/Date Intel Corp. SV84510A.86A.0017.P09.0304251748, 4/25/2003

SMBIOS Version 2.3

Windows Directory C:\WINDOWS

System Directory C:\WINDOWS\system32

Boot Device \Device\HarddiskVolume1

Locale United States

Hardware Abstraction Layer Version = "5.1.2600.5512 (xpsp.080413-2111)"

User Name USER-7EDC24FA87\User

Time Zone Pacific Daylight Time

Total Physical Memory 768.00 MB

Available Physical Memory 383.56 MB

Total Virtual Memory 2.00 GB

Available Virtual Memory 1.96 GB

Page File Space 2.96 GB

Page File C:\pagefile.sys

In addition I am running Avast 10.0 and have the entire utorrent folder excluded from firewall restriction. I also ran the hijack utility and the pulled data thru the process explorer utility so if you need that data let me know I am assuming you will be needing it for review.

I've tried to resolve this on my own but to no avail

Can someone please help me? Thank You

[Firon]

Are both machines using Avast?

[TempestBlack]

Yes both computers are using avast...but on the computer that is working ok..I did not have to make any exclusions in avast for it to work...so therefore avast is not the issue I believe...something is causing hangup on first computer

[tarek87]

i have the same problem with my utorrent 2.2

it freezes for 2 minutes and then it completes working

it happens almost every 15 minutes

i tried bittorrent 6.4 and bittorrent 7.2 and the same problem happens

then i read this thread and tried the all solutions but nothing helped me

please help me to get rid of this frustrating thing

i have Avira AntiVir Personal and it doesn't have any options for p2p

and those are the information about the processes

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 3:35:24 PM, on 12/3/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\A4Tech\Mouse\Amoumain.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Internet Download Manager\IEMonitor.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe

C:\Users\M.Tareqh Shaheen\Desktop\utorrent.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Download Manager\IDMan.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\M.Tareqh Shaheen\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 82.137.200.7:8080

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~1\IDM\QUICKF~1\PlugIns\IEHelp.dll

O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Close.bat

O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O17 - HKLM\System\CCS\Services\Tcpip\..\{83649DB0-263B-4D4E-8968-3B223ABCBD39}: NameServer = 8.8.8.8,8.8.4.4

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--

End of file - 6255 bytes

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 98.44 0 K 12 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 44 K 780 K

smss.exe 276 252 K 648 K

csrss.exe 480 1,228 K 2,892 K

conhost.exe 596 552 K 2,120 K

wininit.exe 552 936 K 3,312 K

services.exe 604 4,884 K 5,564 K

svchost.exe 792 2,848 K 6,128 K Host Process for Windows Services Microsoft Corporation

dllhost.exe 2308 6,156 K 4,500 K

wlcomm.exe 3648 15,284 K 23,836 K Windows Live Communications Platform Microsoft Corporation

FlashUtil10c.exe 2980 1,596 K 5,076 K Adobe Flash Player Helper 10.0 r32 Adobe Systems, Inc.

IDMan.exe 5744 6,272 K 15,572 K Internet Download Manager (IDM) Tonec Inc.

WmiPrvSE.exe 5572 1,936 K 4,916 K

svchost.exe 896 2,980 K 5,420 K Host Process for Windows Services Microsoft Corporation

Ati2evxx.exe 940 892 K 3,044 K ATI External Event Utility EXE Module ATI Technologies Inc.

Ati2evxx.exe 1752 1,748 K 5,032 K

svchost.exe 1008 16,340 K 13,420 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 3692 16,200 K 15,044 K

svchost.exe 1060 48,092 K 52,652 K Host Process for Windows Services Microsoft Corporation

dwm.exe 2588 0.78 58,072 K 61,124 K Desktop Window Manager Microsoft Corporation

svchost.exe 1104 16,724 K 25,040 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1240 5,712 K 7,640 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1416 11,228 K 10,744 K Host Process for Windows Services Microsoft Corporation

spoolsv.exe 1564 4,568 K 5,900 K Spooler SubSystem App Microsoft Corporation

sched.exe 1596 3,832 K 900 K Antivirus Scheduler Avira GmbH

svchost.exe 1616 11,768 K 13,340 K Host Process for Windows Services Microsoft Corporation

avguard.exe 1780 102,092 K 16,856 K Antivirus On-Access Service Avira GmbH

avshadow.exe 592 924 K 2,844 K

mdm.exe 1856 1,200 K 3,696 K Machine Debug Manager Microsoft Corporation

SeaPort.exe 1940 3,284 K 6,752 K Microsoft SeaPort Search Enhancement Broker Microsoft Corporation

svchost.exe 112 1,200 K 3,476 K Host Process for Windows Services Microsoft Corporation

wlcrasvc.exe 496 26,820 K 9,108 K Windows Live Mesh Remote Desktop Service Microsoft Corporation

WLIDSVC.EXE 912 4,668 K 9,776 K

WLIDSVCM.EXE 1932 620 K 2,036 K

XAudio.exe 1636 640 K 1,964 K Modem Audio Service Conexant Systems, Inc.

taskhost.exe 2580 6,932 K 7,276 K Host Process for Windows Tasks Microsoft Corporation

svchost.exe 3548 1,984 K 33,208 K Host Process for Windows Services Microsoft Corporation

svchost.exe 3784 1,660 K 4,116 K Host Process for Windows Services Microsoft Corporation

svchost.exe 2012 58,560 K 24,112 K Host Process for Windows Services Microsoft Corporation

SearchIndexer.exe 3288 35,148 K 16,708 K Microsoft Windows Search Indexer Microsoft Corporation

SearchFilterHost.exe 1872 1,048 K 3,520 K

SearchProtocolHost.exe 5512 1,712 K 5,612 K Microsoft Windows Search Protocol Host Microsoft Corporation

lsass.exe 620 4,156 K 8,496 K Local Security Authority Process Microsoft Corporation

lsm.exe 628 1,396 K 2,796 K

csrss.exe 564 9,028 K 13,100 K

winlogon.exe 704 1,828 K 4,236 K

explorer.exe 2616 47,284 K 72,784 K Windows Explorer Microsoft Corporation

RtHDVCpl.exe 2764 7,372 K 5,856 K Realtek HD Audio Manager Realtek Semiconductor

Amoumain.exe 2784 1,192 K 4,552 K Amoumain A4Tech Co.,Ltd.

avgnt.exe 2796 5,576 K 2,368 K Antivirus System Tray Tool Avira GmbH

msnmsgr.exe 2816 78,832 K 36,748 K Windows Live Messenger Microsoft Corporation

iexplore.exe 2380 19,684 K 41,016 K Internet Explorer Microsoft Corporation

iexplore.exe 1792 43,380 K 77,284 K Internet Explorer Microsoft Corporation

iexplore.exe 4320 32,108 K 47,316 K Internet Explorer Microsoft Corporation

sidebar.exe 1192 42,796 K 57,892 K Windows Desktop Gadgets Microsoft Corporation

utorrent.exe 5452 6,728 K 17,192 K µTorrent BitTorrent, Inc.

notepad.exe 4184 1,104 K 9,204 K Notepad Microsoft Corporation

IEMonitor.exe 2772 2,364 K 7,284 K Internet Download Manager agent for click monitoring in IE-based browsers Tonec Inc.

procexp.exe 4524 0.78 14,960 K 34,508 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 92.42 0 K 12 K

Interrupts n/a 0.76 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 44 K 780 K

smss.exe 276 252 K 648 K

csrss.exe 480 1,228 K 2,888 K

conhost.exe 596 552 K 2,120 K

wininit.exe 552 936 K 3,312 K

services.exe 604 5,024 K 5,628 K

svchost.exe 792 2,876 K 6,140 K Host Process for Windows Services Microsoft Corporation

dllhost.exe 2308 6,156 K 4,500 K

wlcomm.exe 3648 15,280 K 23,824 K Windows Live Communications Platform Microsoft Corporation

FlashUtil10c.exe 2980 1,612 K 5,084 K Adobe Flash Player Helper 10.0 r32 Adobe Systems, Inc.

IDMan.exe 5744 6,256 K 15,560 K Internet Download Manager (IDM) Tonec Inc.

svchost.exe 896 2,948 K 5,408 K Host Process for Windows Services Microsoft Corporation

Ati2evxx.exe 940 892 K 3,044 K ATI External Event Utility EXE Module ATI Technologies Inc.

Ati2evxx.exe 1752 1,748 K 5,032 K

svchost.exe 1008 16,508 K 13,552 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 3692 16,532 K 15,072 K

svchost.exe 1060 48,032 K 52,632 K Host Process for Windows Services Microsoft Corporation

dwm.exe 2588 4.55 58,072 K 57,908 K Desktop Window Manager Microsoft Corporation

svchost.exe 1104 16,716 K 25,012 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1240 5,768 K 7,576 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1416 11,316 K 10,820 K Host Process for Windows Services Microsoft Corporation

spoolsv.exe 1564 4,568 K 5,900 K Spooler SubSystem App Microsoft Corporation

sched.exe 1596 3,832 K 900 K Antivirus Scheduler Avira GmbH

svchost.exe 1616 11,824 K 13,368 K Host Process for Windows Services Microsoft Corporation

avguard.exe 1780 102,092 K 18,432 K Antivirus On-Access Service Avira GmbH

avshadow.exe 592 924 K 2,844 K

mdm.exe 1856 1,200 K 3,696 K Machine Debug Manager Microsoft Corporation

SeaPort.exe 1940 3,284 K 6,752 K Microsoft SeaPort Search Enhancement Broker Microsoft Corporation

svchost.exe 112 1,200 K 3,476 K Host Process for Windows Services Microsoft Corporation

wlcrasvc.exe 496 26,820 K 9,108 K Windows Live Mesh Remote Desktop Service Microsoft Corporation

WLIDSVC.EXE 912 4,688 K 9,788 K

WLIDSVCM.EXE 1932 620 K 2,036 K

XAudio.exe 1636 640 K 1,964 K Modem Audio Service Conexant Systems, Inc.

taskhost.exe 2580 7,316 K 7,500 K Host Process for Windows Tasks Microsoft Corporation

svchost.exe 3548 1,984 K 33,208 K Host Process for Windows Services Microsoft Corporation

svchost.exe 3784 1,660 K 4,116 K Host Process for Windows Services Microsoft Corporation

svchost.exe 2012 58,588 K 23,292 K Host Process for Windows Services Microsoft Corporation

SearchIndexer.exe 3288 35,736 K 18,748 K Microsoft Windows Search Indexer Microsoft Corporation

SearchProtocolHost.exe 4208 1,764 K 5,736 K Microsoft Windows Search Protocol Host Microsoft Corporation

SearchFilterHost.exe 4616 1,004 K 3,492 K

lsass.exe 620 4,224 K 8,512 K Local Security Authority Process Microsoft Corporation

lsm.exe 628 1,444 K 2,812 K

csrss.exe 564 9,028 K 13,112 K

winlogon.exe 704 1,828 K 4,236 K

explorer.exe 2616 47,132 K 72,660 K Windows Explorer Microsoft Corporation

RtHDVCpl.exe 2764 7,372 K 5,856 K Realtek HD Audio Manager Realtek Semiconductor

Amoumain.exe 2784 1,192 K 4,552 K Amoumain A4Tech Co.,Ltd.

avgnt.exe 2796 5,592 K 3,456 K Antivirus System Tray Tool Avira GmbH

msnmsgr.exe 2816 78,832 K 36,752 K Windows Live Messenger Microsoft Corporation

iexplore.exe 2380 19,672 K 40,568 K Internet Explorer Microsoft Corporation

iexplore.exe 1792 45,988 K 79,180 K Internet Explorer Microsoft Corporation

iexplore.exe 4320 29,496 K 44,824 K Internet Explorer Microsoft Corporation

sidebar.exe 1192 42,796 K 57,896 K Windows Desktop Gadgets Microsoft Corporation

utorrent.exe 5452 6,728 K 17,192 K µTorrent BitTorrent, Inc.

IEMonitor.exe 2772 2,364 K 7,284 K Internet Download Manager agent for click monitoring in IE-based browsers Tonec Inc.

procexp.exe 3240 2.27 16,484 K 35,676 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process: utorrent.exe Pid: 5452

Name Description Company Name Version

advapi32.dll Advanced Windows 32 Base API Microsoft Corporation 6.1.7600.16385

Amhooker.dll Amhooker A4Tech Co.,Ltd. 7.80.0.4

apisetschema.dll ApiSet Schema DLL Microsoft Corporation 6.1.7600.16385

atl.dll ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.0

C_1252.NLS

clbcatq.dll COM+ Configuration Catalog Microsoft Corporation 2001.12.8530.16385

comctl32.dll User Experience Controls Library Microsoft Corporation 6.10.7600.16661

comctl32.dll.mui User Experience Controls Library Microsoft Corporation 6.10.7600.16385

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.1.7600.16385

cryptbase.dll Base cryptographic API DLL Microsoft Corporation 6.1.7600.16385

cryptsp.dll Cryptographic Service Provider API Microsoft Corporation 6.1.7600.16385

dhcpcsvc.dll DHCP Client Service Microsoft Corporation 6.1.7600.16385

dhcpcsvc6.dll DHCPv6 Client Microsoft Corporation 6.1.7600.16385

dnsapi.dll DNS Client API DLL Microsoft Corporation 6.1.7600.16385

duser.dll Windows DirectUser Engine Microsoft Corporation 6.1.7600.16385

duser.dll.mui Windows DirectUser Engine Microsoft Corporation 6.1.7600.16385

dwmapi.dll Microsoft Desktop Window Manager API Microsoft Corporation 6.1.7600.16385

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.1.7600.16385

FWPUCLNT.DLL FWP/IPsec User-Mode API Microsoft Corporation 6.1.7600.16385

gdi32.dll GDI Client DLL Microsoft Corporation 6.1.7600.16385

gpapi.dll Group Policy Client API Microsoft Corporation 6.1.7600.16385

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.1.7600.16385

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 9.0.7930.16406

imm32.dll Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.1.7600.16385

IPHLPAPI.DLL IP Helper API Microsoft Corporation 6.1.7600.16385

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16481

KernelBase.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

KernelBase.dll.mui Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

locale.nls

lpk.dll Language Pack Microsoft Corporation 6.1.7600.16385

msctf.dll MSCTF Server DLL Microsoft Corporation 6.1.7600.16385

msi.dll Windows Installer Microsoft Corporation 5.0.7600.16385

msimg32.dll GDIEXT Client DLL Microsoft Corporation 6.1.7600.16385

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.7600.16385

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.1.7600.16385

normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.1.7600.16385

nsi.dll NSI User-mode interface DLL Microsoft Corporation 6.1.7600.16385

ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7600.16559

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.1.7600.16624

oleaut32.dll Microsoft Corporation 6.1.7600.16385

profapi.dll User Profile Basic API Microsoft Corporation 6.1.7600.16385

psapi.dll Process Status Helper Microsoft Corporation 6.1.7600.16385

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.1.7600.16385

rpcrt4.dll Remote Procedure Call Runtime Microsoft Corporation 6.1.7600.16385

RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.1.7600.16385

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.1.7600.16385

sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.1.7600.16385

shell32.dll Windows Shell Common Dll Microsoft Corporation 6.1.7600.16644

shfolder.dll Shell Folder Service Microsoft Corporation 6.1.7600.16385

shlwapi.dll Shell Light-weight Utility Library Microsoft Corporation 6.1.7600.16385

slc.dll Software Licensing Client Dll Microsoft Corporation 6.1.7600.16385

SortDefault.nls

ssdpapi.dll SSDP Client API DLL Microsoft Corporation 6.1.7600.16385

sspicli.dll Security Support Provider Interface Microsoft Corporation 6.1.7600.16385

StaticCache.dat

sxs.dll Fusion 2.5 Microsoft Corporation 6.1.7600.16385

upnp.dll UPnP Control Point API Microsoft Corporation 6.1.7600.16385

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 9.0.7930.16406

user32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.1.7600.16385

userenv.dll Userenv Microsoft Corporation 6.1.7600.16385

usp10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7600.16385

utorrent.exe µTorrent BitTorrent, Inc. 2.2.0.23235

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.1.7600.16385

version.dll Version Checking and File Installation Libraries Microsoft Corporation 6.1.7600.16385

webio.dll Web Transfer Protocols API Microsoft Corporation 6.1.7600.16385

winhttp.dll Windows HTTP Services Microsoft Corporation 6.1.7600.16385

wininet.dll Internet Extensions for Win32 Microsoft Corporation 9.0.7930.16406

winnsi.dll Network Store Information RPC interface Microsoft Corporation 6.1.7600.16385

WLIDNSP.DLL Microsoft® Windows Live ID Namespace Provider Microsoft Corp. 7.250.4225.0

ws2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.1.7600.16385

wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.1.7600.16385

WSHTCPIP.DLL Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.1.7600.16385

xmllite.dll Microsoft XmlLite Library Microsoft Corporation 1.3.1000.0

and thank you for your interest ...

[moogly]

Amhooker.dll Amhooker A4Tech Co.,Ltd. 7.80.0.4

What's that?

[tarek87]

it's the mouse driver

[moogly]

Can you try to remove it (temporarily)?

[tarek87]

OK .. i will try it tomorrow because i have to sleep now

and i will tell you what happned then

thank you .. thank you thak you .. very very very much for your respond

you are the best

[tarek87]

i stoped it and

i'm sorry to say that it didn't work

the problem still the same

[sktimur]

I have a problem with utorrent 2*. Each 30 minutes it sends the report, thus hangs up for some minutes (normally 2). In versions 2.0.* in reports there was a line, that the report is sent, but in version 2.2 of this line isn't present, but it all the same hangs up. I have this problem more than 4 months and I couldn't solve it

Intel q9450

ASUS p5q premium

8 gb ddr2

win server 2008 r2

Also I have raid5 on intel controller in motherboard and the majority of the information is stored on it.

On the server it is installed TMG

Logs:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:04:10, on 04.12.2010
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Download Master\dmaster.exe
C:\Program Files (x86)\Gene6 FTP Server\G6FTPTray.exe
C:\Program Files (x86)\uTorrent\utorrent.exe
C:\Program Files (x86)\HFS\hfs.exe
C:\Program Files (x86)\No-IP\DUC30.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Servers MP4\avp.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\SysWOW64\rserver30\FamItrfc.Exe
C:\Program Files (x86)\TeamViewer\Version5\TeamViewer.exe
C:\Program Files (x86)\Opera\opera.exe
E:\data\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://iesetup.dll/SoftAdmin.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = res://iesetup.dll/SoftAdmin.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IE 4.x-6.x BHO for Download Master - {9961627E-4059-41B4-8E0E-A7D6B3854ADF} - C:\PROGRA~2\DOWNLO~1\dmiehlp.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Servers MP4\avp.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [Download Master] C:\Program Files (x86)\Download Master\dmaster.exe -autorun
O4 - HKCU\..\Run: [G6FTP Server Tray Monitor] "C:\Program Files (x86)\Gene6 FTP Server\G6FTPTray.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - Startup: HFS.lnk = C:\Program Files (x86)\HFS\hfs.exe
O4 - Startup: No-IP DUC.lnk = C:\Program Files (x86)\No-IP\DUC30.exe
O4 - Global Startup: BulletProof FTP Server 2010.lnk = C:\Program Files (x86)\BulletProof FTP Server 2010\bpftpserver-2010.exe
O4 - Global Startup: Wireless Connection Manager.lnk = ?
O8 - Extra context menu item: Закачать ВСЕ при помощи Download Master - C:\Program Files (x86)\Download Master\dmieall.htm
O8 - Extra context menu item: Закачать при помощи Download Master - C:\Program Files (x86)\Download Master\dmie.htm
O8 - Extra context menu item: Передать на удаленную закачку DM - C:\Program Files (x86)\Download Master\remdown.htm
O9 - Extra button: Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files (x86)\Download Master\dmaster.exe
O9 - Extra 'Tools' menuitem: &Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files (x86)\Download Master\dmaster.exe
O15 - ESC Trusted Zone: http://*.utorrent.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{904628B0-E6E1-4129-8AC3-361E54456614}: NameServer = 192.168.0.2
O23 - Service: ISASTGCTRL (ADAM_ISASTGCTRL) - Unknown owner - C:\Windows\System32\dsamain.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Servers MP4\avp.exe
O23 - Service: @%systemroot%\system32\dns.exe,-49157 (DNS) - Unknown owner - C:\Windows\system32\dns.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Gene6 FTP Server (G6FTPServer) - Gene6 - C:\Program Files (x86)\Gene6 FTP Server\G6FTPSERVER.EXE
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O&O CleverCache - O&O Software GmbH - C:\Program Files\OO Software\CleverCache\ooccag.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%Systemroot%\system32\rqs.exe,-200 (rqs) - Unknown owner - C:\Windows\system32\rqs.exe (file missing)
O23 - Service: Radmin Server V3 (RServer3) - Famatech Corp. - C:\Windows\SysWOW64\rserver30\RServer3.exe
O23 - Service: @gpapi.dll,-114 (RSoPProv) - Unknown owner - C:\Windows\system32\RSoPProv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VirtualRouterService (Virtual Router) - Unknown owner - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\Windows\system32\inetsrv\wmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wsrm.exe,-103 (WSRM) - Unknown owner - C:\Windows\system32\wsrm.exe (file missing)

--
End of file - 7614 bytes

Process    Image Type    PID    CPU    Private Bytes    I/O Delta Read Bytes    Working Set    Description    Company Name
System Idle Process    64-bit    0    79.75    0 K        24 K        
 Interrupts    64-bit    n/a        0 K        0 K    Hardware Interrupts    
 DPCs    64-bit    n/a    2.81    0 K        0 K    Deferred Procedure Calls    
 System        4    0.70    108 K        304 K        
  smss.exe    64-bit    296        560 K        1 132 K    Диспетчер сеанса  Windows    Microsoft Corporation
csrss.exe    64-bit    412        2 272 K        4 436 K    Процесс исполнения клиент-сервер    Microsoft Corporation
csrss.exe    64-bit    484        13 656 K        12 192 K    Процесс исполнения клиент-сервер    Microsoft Corporation
wininit.exe    64-bit    492        1 916 K        4 728 K    Автозагрузка приложений Windows    Microsoft Corporation
 services.exe    64-bit    592        7 260 K        10 440 K    Приложение служб и контроллеров    Microsoft Corporation
  svchost.exe    64-bit    700        4 848 K        9 748 K    Хост-процесс для служб Windows    Microsoft Corporation
   iashost.exe    64-bit    3932        7 996 K        12 040 K    IAS Host    Microsoft Corporation
   WmiPrvSE.exe    64-bit    2328        4 356 K        7 500 K    WMI Provider Host    Microsoft Corporation
  svchost.exe    64-bit    780        4 688 K        8 428 K    Хост-процесс для служб Windows    Microsoft Corporation
  atiesrxx.exe    64-bit    864        1 700 K        4 360 K    AMD External Events Service Module    AMD
   atieclxx.exe    64-bit    1320        2 168 K        5 532 K    AMD External Events Client Module    AMD
  svchost.exe    64-bit    912        14 732 K        14 796 K    Хост-процесс для служб Windows    Microsoft Corporation
   audiodg.exe    64-bit    2164        15 852 K        15 520 K    Изоляция графов аудиоустройств Windows     Microsoft Corporation
  svchost.exe    64-bit    952        38 960 K        50 240 K    Хост-процесс для служб Windows    Microsoft Corporation
  svchost.exe    64-bit    988        6 992 K        12 172 K    Хост-процесс для служб Windows    Microsoft Corporation
  svchost.exe    64-bit    336        7 412 K        14 396 K    Хост-процесс для служб Windows    Microsoft Corporation
   dwm.exe    64-bit    1744        1 792 K        5 316 K    Диспетчер окон рабочего стола    Microsoft Corporation
  svchost.exe    64-bit    424    0.35    16 196 K    284 B    18 648 K    Хост-процесс для служб Windows    Microsoft Corporation
  svchost.exe    64-bit    716        7 848 K        13 928 K    Хост-процесс для служб Windows    Microsoft Corporation
  svchost.exe    64-bit    1188        10 104 K        12 980 K    Хост-процесс для служб Windows    Microsoft Corporation
  spoolsv.exe    64-bit    1328        7 388 K        12 200 K    Диспетчер очереди печати    Microsoft Corporation
  dsamain.exe    64-bit    1372        26 512 K        18 052 K    Active Directory Lightweight Directory Services    Microsoft Corporation
  taskhost.exe    64-bit    1544        8 408 K        9 060 K    Хост-процесс для задач Windows    Microsoft Corporation
  svchost.exe    64-bit    1444        3 928 K        8 376 K    Хост-процесс для служб Windows    Microsoft Corporation
  avp.exe    32-bit    1576        9 896 K        15 760 K    Kaspersky Anti-Virus    Kaspersky Lab
   avp.exe    32-bit    2520    0.70    16 148 K        35 220 K    Kaspersky Anti-Virus    Kaspersky Lab
  svchost.exe    64-bit    1028        19 700 K        21 632 K    Хост-процесс для служб Windows    Microsoft Corporation
  dns.exe    64-bit    1740        85 984 K        85 268 K    DNS-сервер (Domain Name System)    Microsoft Corporation
  G6FTPServer.exe    32-bit    1056        14 780 K        15 356 K    Gene6 File Transfer Protocol Server    Gene6
  inetinfo.exe    64-bit    2176        9 300 K        15 252 K    Internet Information Services    Microsoft Corporation
  isastg.exe    64-bit    2228        4 272 K        9 400 K    Storage Service    Microsoft (R) Corporation
  sqlservr.exe    64-bit    2368        172 576 K        88 864 K    SQL Server Windows NT - 64 Bit    Microsoft Corporation
  sqlservr.exe    64-bit    2764        165 016 K        50 080 K    SQL Server Windows NT - 64 Bit    Microsoft Corporation
  sqlservr.exe    64-bit    3000        344 740 K        261 356 K    SQL Server Windows NT - 64 Bit    Microsoft Corporation
  svchost.exe    64-bit    2592        1 148 K        2 752 K    Хост-процесс для служб Windows    Microsoft Corporation
  ReportingServicesService.exe    64-bit    2692        137 296 K        77 872 K    Reporting Services Service    Microsoft Corporation
  rserver3.exe    32-bit    3252    1.76    22 184 K        25 484 K    Radmin Server    Famatech Corp.
   FamItrfc.Exe    32-bit    3512        2 016 K        4 240 K    Radmin component    Famatech Corp.
    FamItrfc.Exe    32-bit    3620        4 672 K        7 808 K    Radmin component    Famatech Corp.
   FamItrf2.Exe    32-bit    3336    0.35    3 752 K        5 056 K    Radmin component    Famatech Corp.
  sqlwriter.exe    64-bit    3412        2 192 K        6 324 K    SQL Server VSS Writer - 64 Bit    Microsoft Corporation
  svchost.exe    64-bit    3488        2 596 K        5 336 K    Хост-процесс для служб Windows    Microsoft Corporation
  TeamViewer_Service.exe    32-bit    3640        4 744 K        11 580 K    TeamViewer Remote Control Application    TeamViewer GmbH
   TeamViewer.exe    32-bit    3140        11 940 K        18 240 K    TeamViewer Remote Control Application    TeamViewer GmbH
  svchost.exe    64-bit    3676        7 452 K        10 952 K    Хост-процесс для служб Windows    Microsoft Corporation
   w3wp.exe    64-bit    6008        60 536 K        48 584 K    IIS Worker Process    Microsoft Corporation
  wsrm.exe    64-bit    3712        10 852 K        15 700 K    Диспетчер системных ресурсов    Microsoft Corporation
  IAStorDataMgrSvc.exe    32-bit    3744        21 140 K        19 604 K    IAStorDataSvc    Intel Corporation
  mspadmin.exe    64-bit    1512        19 264 K        32 588 K    Control Service    Microsoft (R) Corporation
  wspsrv.exe    64-bit    4936    2.46    515 068 K        253 540 K    Microsoft Firewall Service    Microsoft (R) Corporation
  IsaManagedCtrl.exe    64-bit    4976        47 408 K        31 544 K    Microsoft Isa Managed Ctrl service    Microsoft (R) Corporation
  W3Prefch.exe    64-bit    5052        4 380 K        9 500 K    Microsoft Web Proxy Cache Pre-fetch Service    Microsoft (R) Corporation
  PresentationFontCache.exe    64-bit    4668        31 684 K        26 004 K    PresentationFontCache.exe    Microsoft Corporation
  svchost.exe    64-bit    4112        2 772 K        7 016 K    Хост-процесс для служб Windows    Microsoft Corporation
  sppsvc.exe    64-bit    4788        2 888 K        8 708 K    Служба платформы защиты программного обеспечения Майкрософт    Microsoft Corporation
  svchost.exe    64-bit    4372        1 952 K        5 400 K    Хост-процесс для служб Windows    Microsoft Corporation
  msdtc.exe    64-bit    5208        3 732 K        7 664 K    Служба координатора распределенных транзакций (Microsoft)    Microsoft Corporation
 lsass.exe    64-bit    600        7 492 K        14 568 K    Local Security Authority Process    Microsoft Corporation
 lsm.exe    64-bit    608        3 084 K        6 040 K    Служба диспетчера локальных сеансов    Microsoft Corporation
winlogon.exe    64-bit    540        2 112 K        5 416 K    Программа входа в систему Windows    Microsoft Corporation
explorer.exe    64-bit    1760    0.35    48 256 K        60 656 K    Проводник    Microsoft Corporation
 dmaster.exe    32-bit    1952        13 028 K        20 528 K    Download Master    WestByte
 G6FTPTray.exe    32-bit    1976        1 656 K        2 388 K    Gene6 FTP Server Tray Monitor    Gene6
 utorrent.exe    32-bit    1984    0.70    1 404 524 K    16.6  MB    1 410 116 K    µTorrent    BitTorrent, Inc.
 hfs.exe    32-bit    1040        9 204 K        13 552 K        rejetto
 DUC30.exe    32-bit    1152        3 364 K        8 536 K        
 opera.exe    32-bit    5184        109 008 K        108 432 K    Opera Internet Browser    Opera Software
 procexp64.exe    64-bit    5936    5.97    23 600 K    33.5  KB    39 072 K    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com
avp.exe    32-bit    1720        6 412 K        5 896 K    Kaspersky Anti-Virus    Kaspersky Lab
IAStorIcon.exe    32-bit    1648        47 596 K        45 560 K    IAStorIcon    Intel Corporation
perfmon.exe    64-bit    5724    4.57    21 932 K        31 952 K    Монитор ресурсов и производительности    Microsoft Corporation

Process: utorrent.exe Pid: 1984

Name    Description    Company Name    Version
C_1252.NLS            
locale.nls            
SortDefault.nls            
StaticCache.dat            
utorrent.exe    µTorrent    BitTorrent, Inc.    2.2.0.23235
apisetschema.dll    ApiSet Schema DLL    Microsoft Corporation    6.1.7600.16385
duser.dll.mui    Windows DirectUser Engine    Microsoft Corporation    6.1.7600.16385
comctl32.dll.mui    Библиотека элементов управления взаимодействия с пользователем    Microsoft Corporation    6.10.7600.16385
KernelBase.dll.mui    Библиотека клиента Windows NT BASE API    Microsoft Corporation    6.1.7600.16385
msctf.dll.mui    Серверная библиотека MSCTF    Microsoft Corporation    6.1.7600.16385
imageres.dll    Windows Image Resource    Microsoft Corporation    6.1.7600.16385
npmproxy.dll    Network List Manager Proxy    Microsoft Corporation    6.1.7600.16385
EhStorShell.dll    Библиотека DLL расширения оболочки Windows Enhanced Storage    Microsoft Corporation    6.1.7600.16385
ntshrui.dll    Расширения оболочки, обеспечивающие доступ к ресурсам    Microsoft Corporation    6.1.7600.16385
duser.dll    Windows DirectUser Engine    Microsoft Corporation    6.1.7600.16385
slc.dll    Software Licensing Client DLL    Microsoft Corporation    6.1.7600.16385
cscapi.dll    Offline Files Win32 API    Microsoft Corporation    6.1.7600.16385
dwmapi.dll    Интерфейс API диспетчера окон рабочего стола (Майкрософт)    Microsoft Corporation    6.1.7600.16385
propsys.dll    Система страниц свойств (Microsoft)    Microsoft Corporation    7.0.7600.16385
srvcli.dll    Server Service Client DLL    Microsoft Corporation    6.1.7600.16385
winrnr.dll    LDAP RnR Provider DLL    Microsoft Corporation    6.1.7600.16385
RpcRtRemote.dll    Remote RPC Extension    Microsoft Corporation    6.1.7600.16385
nlaapi.dll    Network Location Awareness 2    Microsoft Corporation    6.1.7600.16385
FirewallAPI.dll    API брандмауэра Windows    Microsoft Corporation    6.1.7600.16385
WSHTCPIP.DLL    Библиотека DLL помощника службы Winsock2 (TL/IPv4)    Microsoft Corporation    6.1.7600.16385
dnsapi.dll    Динамическая библиотека API DNS-клиента    Microsoft Corporation    6.1.7600.16385
mswsock.dll    Расширение поставщика службы API Microsoft Windows Sockets 2.0    Microsoft Corporation    6.1.7600.16385
apphelp.dll    Клиентская библиотека совместимости приложений    Microsoft Corporation    6.1.7600.16385
FWPUCLNT.DLL    API пользовательского режима FWP/IPsec    Microsoft Corporation    6.1.7600.16385
WindowsCodecs.dll    Microsoft Windows Codecs Library    Microsoft Corporation    6.1.7600.16385
dhcpcsvc6.dll    Клиент DHCPv6    Microsoft Corporation    6.1.7600.16385
dhcpcsvc.dll    Служба DHCP-клиента    Microsoft Corporation    6.1.7600.16385
msi.dll    Windows Installer    Microsoft Corporation    5.0.7600.16385
winnsi.dll    Network Store Information RPC interface    Microsoft Corporation    6.1.7600.16385
IPHLPAPI.DLL    IP Helper API    Microsoft Corporation    6.1.7600.16385
userenv.dll    Userenv    Microsoft Corporation    6.1.7600.16385
rsaenh.dll    Microsoft Enhanced Cryptographic Provider    Microsoft Corporation    6.1.7600.16385
uxtheme.dll    Библиотека тем UxTheme (Microsoft)    Microsoft Corporation    6.1.7600.16385
shfolder.dll    Shell Folder Service    Microsoft Corporation    6.1.7600.16385
profapi.dll    User Profile Basic API    Microsoft Corporation    6.1.7600.16385
cryptsp.dll    Cryptographic Service Provider API    Microsoft Corporation    6.1.7600.16385
wship6.dll    Библиотека DLL помощника Winsock2 (TL/IPv6)    Microsoft Corporation    6.1.7600.16385
rasadhlp.dll    Remote Access AutoDial Helper    Microsoft Corporation    6.1.7600.16385
NapiNSP.dll    Поставщик оболочки совместимости для имен электронной почты    Microsoft Corporation    6.1.7600.16385
msimg32.dll    GDIEXT Client DLL    Microsoft Corporation    6.1.7600.16385
version.dll    Version Checking and File Installation Libraries    Microsoft Corporation    6.1.7600.16385
comctl32.dll    Библиотека элементов управления взаимодействия с пользователем    Microsoft Corporation    6.10.7600.16661
wow64cpu.dll    AMD64 Wow64 CPU     Microsoft Corporation    6.1.7600.16385
wow64win.dll    Wow64 Console and Win32 API Logging    Microsoft Corporation    6.1.7600.16385
wow64.dll    Win32 Emulation on NT64    Microsoft Corporation    6.1.7600.16491
cryptbase.dll    Base cryptographic API DLL    Microsoft Corporation    6.1.7600.16385
sspicli.dll    Security Support Provider Interface    Microsoft Corporation    6.1.7600.16484
comdlg32.dll    Библиотека общих диалоговых окон    Microsoft Corporation    6.1.7600.16385
msctf.dll    Серверная библиотека MSCTF    Microsoft Corporation    6.1.7600.16385
clbcatq.dll    COM+ Configuration Catalog    Microsoft Corporation    2001.12.8530.16385
setupapi.dll    Windows Setup API    Microsoft Corporation    6.1.7600.16385
user32.dll    Многопользовательская библиотека клиента USER API Windows    Microsoft Corporation    6.1.7600.16384
nsi.dll    NSI User-mode interface DLL    Microsoft Corporation    6.1.7600.16385
crypt32.dll    API32 криптографии    Microsoft Corporation    6.1.7600.16385
ws2_32.dll    32-разрядная библиотека Windows Socket 2.0    Microsoft Corporation    6.1.7600.16385
usp10.dll    Uniscribe Unicode script processor    Microsoft Corporation    1.626.7600.16385
devobj.dll    Device Information Set DLL    Microsoft Corporation    6.1.7600.16385
rpcrt4.dll    Библиотека удаленного вызова процедур    Microsoft Corporation    6.1.7600.16385
imm32.dll    Multi-User Windows IMM32 API Client DLL    Microsoft Corporation    6.1.7600.16385
msasn1.dll    ASN.1 Runtime APIs    Microsoft Corporation    6.1.7600.16415
advapi32.dll    Расширенная библиотека API Windows 32    Microsoft Corporation    6.1.7600.16385
urlmon.dll    Расширения OLE32 для Win32    Microsoft Corporation    8.0.7600.16671
gdi32.dll    GDI Client DLL    Microsoft Corporation    6.1.7600.16385
psapi.dll    Process Status Helper    Microsoft Corporation    6.1.7600.16385
oleaut32.dll        Microsoft Corporation    6.1.7600.16385
ole32.dll    Microsoft OLE для  Windows    Microsoft Corporation    6.1.7600.16624
shell32.dll    Общая библиотека оболочки Windows    Microsoft Corporation    6.1.7600.16644
sechost.dll    Host for SCM/SDDL/LSA Lookup APIs    Microsoft Corporation    6.1.7600.16385
cfgmgr32.dll    Configuration Manager DLL    Microsoft Corporation    6.1.7600.16385
kernel32.dll    Библиотека клиента Windows NT BASE API    Microsoft Corporation    6.1.7600.16385
shlwapi.dll    Библиотека небольших программ оболочки    Microsoft Corporation    6.1.7600.16385
iertutil.dll    Run time utility for Internet Explorer    Microsoft Corporation    8.0.7600.16671
msvcrt.dll    Windows NT CRT DLL    Microsoft Corporation    7.0.7600.16385
KernelBase.dll    Библиотека клиента Windows NT BASE API    Microsoft Corporation    6.1.7600.16385
ntdll.dll    Системная библиотека NT    Microsoft Corporation    6.1.7600.16385
lpk.dll    Language Pack    Microsoft Corporation    6.1.7600.16385
ntdll.dll    Системная библиотека NT    Microsoft Corporation    6.1.7600.16385

[Switeck]

One of these maybe to blame?:

avp.exe 32-bit 2520 0.70 16 148 K 35 220 K Kaspersky Anti-Virus Kaspersky Lab

G6FTPServer.exe 32-bit 1056 14 780 K 15 356 K Gene6 File Transfer Protocol Server Gene6

ReportingServicesService.exe 64-bit 2692 137 296 K 77 872 K Reporting Services Service Microsoft Corporation

rserver3.exe 32-bit 3252 1.76 22 184 K 25 484 K Radmin Server Famatech Corp.

FamItrfc.Exe 32-bit 3512 2 016 K 4 240 K Radmin component Famatech Corp.

FamItrfc.Exe 32-bit 3620 4 672 K 7 808 K Radmin component Famatech Corp.

FamItrf2.Exe 32-bit 3336 0.35 3 752 K 5 056 K Radmin component Famatech Corp.

dmaster.exe 32-bit 1952 13 028 K 20 528 K Download Master WestByte

G6FTPTray.exe 32-bit 1976 1 656 K 2 388 K Gene6 FTP Server Tray Monitor Gene6

hfs.exe 32-bit 1040 9 204 K 13 552 K rejetto

DUC30.exe 32-bit 1152 3 364 K 8 536 K

[Kalashnikov]

Hello I'm having the same issue. I'm running Win 7 and I think UT 2.2 ,however, I can not confirm since it won't open. Here is the HiJack this log. All I want to do is to keep UT from starting on start up. Not being able to end a program realy chaps my butt.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 8:24:05 PM, on 12/16/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16700)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe

C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe

C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

C:\Windows\PLFSetI.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\uTorrent\uTorrent.exe

C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe

C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe

C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files (x86)\Spyware Doctor\pctsTray.exe

C:\Program Files\Acer\Acer Updater\UpdaterService.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe

C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_7535&r=27361209l926l0318z125t4871t946

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_7535&r=27361209l926l0318z125t4871t946

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_7535&r=27361209l926l0318z125t4871t946

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"

O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"

O4 - HKLM\..\Run: [Acer Assist Launcher] C:\Program Files (x86)\Acer\Acer Assist\launcher.exe

O4 - HKLM\..\Run: [iSTray] "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files (x86)\ieSpell\iespell.dll/SPELLOPTION.HTM

O8 - Extra context menu item: Check &Spelling - res://C:\Program Files (x86)\ieSpell\iespell.dll/SPELLCHECK.HTM

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files (x86)\ieSpell\Merriam Webster.HTM

O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files (x86)\ieSpell\wikipedia.HTM

O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll

O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll

O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files (x86)\ieSpell\iespell.dll

O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files (x86)\ieSpell\iespell.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe

O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 14389 bytes

Any help will be awesome!!! Thank you for your consideration!!

[demonicpagan]

Hey ya'll! I'm new to these forums, but not a new user of uT. As of today, been having some issues with the software freezing up upon startup and am unable to kill the process. Here are my logs for you.

HiJackThis:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:58:38 AM, on 12/17/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16700)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\ccSvcHst.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

C:\Users\Demonicpagan\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Program Files (x86)\Trillian\trillian.exe

C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\SysWOW64\RunDll32.exe

C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe

C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe

C:\PROGRAM FILES (X86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\uTorrent\uTorrent.exe

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\IPSBHO.DLL

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\npwinext.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\coIEPlg.dll

O4 - HKLM\..\Run: [bing Bar] "C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe"

O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\Demonicpagan\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Trillian.lnk = C:\Program Files (x86)\Trillian\trillian.exe

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O17 - HKLM\System\CCS\Services\Tcpip\..\{DB065545-C549-433A-B3B9-F72894910598}: NameServer = 8.8.8.8,8.8.4.4

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: CinemaNow Service - CinemaNow, Inc. - C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe

O23 - Service: CyberLink Product - 2010/09/16 00:51:28 (CLKMSVC10_C6F09094) - CyberLink - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\HDDVD\NavFilter\kmsvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\ccSvcHst.exe

O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 15833 bytes

Process Explorer:

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 97.03 0 K 24 K

Interrupts n/a 0.75 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 112 K 892 K

smss.exe 340 536 K 1,200 K Windows Session Manager Microsoft Corporation

csrss.exe 468 2,392 K 4,444 K Client Server Runtime Process Microsoft Corporation

conhost.exe 1552 1,064 K 2,680 K Console Window Host Microsoft Corporation

wininit.exe 556 1,728 K 4,452 K Windows Start-Up Application Microsoft Corporation

services.exe 620 6,744 K 10,432 K Services and Controller app Microsoft Corporation

svchost.exe 792 5,108 K 9,940 K Host Process for Windows Services Microsoft Corporation

unsecapp.exe 2100 1,792 K 4,988 K Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation

WmiPrvSE.exe 2228 6,040 K 11,320 K WMI Provider Host Microsoft Corporation

WmiPrvSE.exe 2368 8,416 K 12,024 K WMI Provider Host Microsoft Corporation

unsecapp.exe 4792 2,116 K 5,872 K Sink to receive asynchronous callbacks for WMI client application Microsoft Corporation

svchost.exe 872 5,484 K 9,168 K Host Process for Windows Services Microsoft Corporation

atiesrxx.exe 936 1,756 K 4,328 K AMD External Events Service Module AMD

atieclxx.exe 1216 2,500 K 6,156 K AMD External Events Client Module AMD

svchost.exe 996 27,984 K 24,444 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 3036 16,356 K 16,596 K Windows Audio Device Graph Isolation Microsoft Corporation

svchost.exe 124 132,304 K 140,680 K Host Process for Windows Services Microsoft Corporation

WUDFHost.exe 1352 2,028 K 6,088 K Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation

wlanext.exe 1544 9,312 K 18,580 K Windows Wireless LAN 802.11 Extensibility Framework Microsoft Corporation

dwm.exe 3532 2,004 K 5,456 K Desktop Window Manager Microsoft Corporation

stacsv64.exe 460 12,484 K 8,352 K IDT PC Audio IDT, Inc.

svchost.exe 480 31,684 K 48,692 K Host Process for Windows Services Microsoft Corporation

taskeng.exe 4044 2,500 K 6,392 K Task Scheduler Engine Microsoft Corporation

Core Temp.exe 3604 3,360 K 1,748 K CPU temperature and system information utility

YCMMirage.exe 5788 1,752 K 576 K YouCam Mirage CyberLink

svchost.exe 1152 10,316 K 17,172 K Host Process for Windows Services Microsoft Corporation

hpservice.exe 1280 1,916 K 4,732 K HpService Hewlett-Packard Company

svchost.exe 1456 16,908 K 18,868 K Host Process for Windows Services Microsoft Corporation

spoolsv.exe 1608 7,572 K 12,716 K Spooler SubSystem App Microsoft Corporation

svchost.exe 1676 12,592 K 13,920 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1764 7,640 K 18,924 K Host Process for Windows Services Microsoft Corporation

AESTSr64.exe 1796 1,296 K 2,884 K Andrea filters APO access service (64-bit) Andrea Electronics Corporation

AppleMobileDeviceService.exe 1828 3,632 K 10,024 K MobileDeviceService Apple Inc.

mDNSResponder.exe 1876 2,244 K 5,808 K Bonjour Service Apple Inc.

btwdins.exe 1904 2,616 K 5,984 K Bluetooth Support Server Broadcom Corporation.

CinemaNowSvc.exe 1936 6,656 K 5,936 K CinemaNow Service Application CinemaNow, Inc.

HPDrvMntSvc.exe 2028 1,072 K 3,512 K HP Quick Synchronization Service Hewlett-Packard Company

HPWMISVC.exe 1200 1,912 K 6,080 K HPWMISVC Application

ccSvcHst.exe 1716 24,236 K 19,016 K Symantec Service Framework Symantec Corporation

ccSvcHst.exe 3960 10,060 K 10,240 K Symantec Service Framework Symantec Corporation

NOBuAgent.exe 1236 2,572 K 5,664 K Norton Online Backup Service Symantec Corporation

RegSrvc.exe 2116 2,268 K 5,732 K Intel® PROSet/Wireless Registry Service Intel® Corporation

SeaPort.exe 2144 4,604 K 9,744 K Microsoft SeaPort Search Enhancement Broker Microsoft Corporation

svchost.exe 2196 3,892 K 7,344 K Host Process for Windows Services Microsoft Corporation

WLIDSVC.EXE 2268 8,052 K 15,328 K Microsoft® Windows Live ID Service Microsoft Corp.

WLIDSVCM.EXE 2504 1,540 K 3,504 K Microsoft® Windows Live ID Service Monitor Microsoft Corp.

EvtEng.exe 2324 10,644 K 17,880 K Intel® PROSet/Wireless Event Log Service Intel® Corporation

alg.exe 3200 1,680 K 5,012 K Application Layer Gateway Service Microsoft Corporation

svchost.exe 3368 2,660 K 5,932 K Host Process for Windows Services Microsoft Corporation

taskhost.exe 3900 3,536 K 7,308 K Host Process for Windows Tasks Microsoft Corporation

hpqWmiEx.exe 4932 1,984 K 6,172 K hpqwmiex Module Hewlett-Packard Company

SearchIndexer.exe 4752 39,452 K 28,148 K Microsoft Windows Search Indexer Microsoft Corporation

wmpnetwk.exe 5148 13,192 K 11,976 K Windows Media Player Network Sharing Service Microsoft Corporation

iPodService.exe 5384 3,240 K 7,288 K iPodService Module (64-bit) Apple Inc.

HPHC_Service.exe 4252 32,980 K 16,596 K HP Support Assistant Hewlett-Packard Company

HPWA_Service.exe 4988 49,304 K 36,100 K HPPA_Service Hewlett-Packard Company

LMS.exe 1956 2,340 K 4,600 K Local Manageability Service Intel Corporation

UNS.exe 6364 5,104 K 10,088 K User Notification Service Intel Corporation

lsass.exe 636 5,892 K 12,884 K Local Security Authority Process Microsoft Corporation

lsm.exe 644 3,000 K 4,568 K Local Session Manager Service Microsoft Corporation

csrss.exe 576 15,160 K 13,064 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 716 3,048 K 7,332 K Windows Logon Application Microsoft Corporation

explorer.exe 2976 43,888 K 59,180 K Windows Explorer Microsoft Corporation

SynTPEnh.exe 4040 0.37 9,048 K 13,788 K Synaptics TouchPad Enhancements Synaptics Incorporated

SynTPHelper.exe 3040 1,568 K 3,528 K Synaptics Pointing Device Helper Synaptics Incorporated

iFrmewrk.exe 4064 12,304 K 23,556 K Intel® PROSet/Wireless Framework Intel® Corporation

SmartMenu.exe 268 7,340 K 14,432 K SmartMenu

itype.exe 4116 7,612 K 17,124 K IType.exe Microsoft Corporation

dpupdchk.exe 4384 2,028 K 4,704 K dpupdchk.exe Microsoft Corporation

sttray64.exe 4168 7,632 K 15,432 K IDT PC Audio IDT, Inc.

igfxpers.exe 4220 2,616 K 6,992 K persistence Module Intel Corporation

LWEMon.exe 4260 4,408 K 9,268 K Logitech WingMan Event Monitor Logitech Inc.

HPAdvisorDock.exe 4340 14,780 K 24,884 K HP Advisor Dock

HPAdvisor.exe 7100 38,000 K 4,052 K HP Advisor Hewlett-Packard

DTLite.exe 4448 3,680 K 11,312 K DAEMON Tools Lite DT Soft Ltd

Skype.exe 4520 135,036 K 125,704 K Skype Skype Technologies S.A.

skypePM.exe 5716 12,748 K 21,360 K Skype Extras Manager Skype Technologies

sidebar.exe 4584 1.12 79,160 K 72,976 K Windows Desktop Gadgets Microsoft Corporation

BTTray.exe 4644 6,380 K 10,780 K Bluetooth Tray Application Broadcom Corporation.

rundll32.exe 4160 1,452 K 4,676 K Windows host process (Rundll32) Microsoft Corporation

trillian.exe 4668 47,692 K 31,828 K Trillian Cerulean Studios

firefox.exe 4132 216,044 K 249,828 K Firefox Mozilla Corporation

plugin-container.exe 1300 15,036 K 19,620 K Plugin Container for Firefox Mozilla Corporation

uTorrent.exe 6924 5,340 K 11,912 K µTorrent BitTorrent, Inc.

procexp.exe 4980 2,168 K 5,788 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

procexp64.exe 6204 1.12 32,716 K 48,868 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

GoogleCrashHandler.exe 4492 1,756 K 1,128 K Google Installer Google Inc.

mswinext.exe 4832 36,084 K 59,572 K Bing Bar Microsoft Corp.

HPMSGSVC.exe 4912 2,468 K 7,436 K Hewlett-Packard Company

iTunesHelper.exe 5072 6,176 K 13,484 K iTunesHelper Apple Inc.

jusched.exe 5092 1,272 K 4,332 K Java Update Scheduler Sun Microsystems, Inc.

MOM.exe 2400 39,564 K 6,320 K Catalyst Control Center: Monitoring program Advanced Micro Devices Inc.

CCC.exe 760 61,900 K 9,400 K Catalyst Control Centre: Host application ATI Technologies Inc.

HPWA_Main.exe 6460 59,496 K 53,172 K HP Wireless Assistant Hewlett-Packard Company

hpCaslNotification.exe 6704 31,736 K 9,088 K hpCaslNotification Hewlett-Packard Development Company L.P.

notepad.exe 2888 1,580 K 6,504 K Notepad Microsoft Corporation

PDapp.exe 5952 60,108 K 6,044 K Adobe Application Manager Adobe Systems Incorporated

Adobe Application Manager (Updater).exe 4856 4,908 K 1,532 K Adobe Application Manager (Update Installer Sub System) Adobe Systems Incorporated

Process: uTorrent.exe Pid: 6924

Name Description Company Name Version

advapi32.dll Advanced Windows 32 Base API Microsoft Corporation 6.1.7600.16385

apisetschema.dll ApiSet Schema DLL Microsoft Corporation 6.1.7600.16385

BtMmHook.dll Multimedia Keys Hook DLL Broadcom Corporation. 6.3.0.5600

clbcatq.dll COM+ Configuration Catalog Microsoft Corporation 2001.12.8530.16385

comctl32.dll User Experience Controls Library Microsoft Corporation 6.10.7600.16661

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.1.7600.16385

crypt32.dll Crypto API32 Microsoft Corporation 6.1.7600.16385

cryptbase.dll Base cryptographic API DLL Microsoft Corporation 6.1.7600.16385

cryptsp.dll Cryptographic Service Provider API Microsoft Corporation 6.1.7600.16385

dhcpcsvc.dll DHCP Client Service Microsoft Corporation 6.1.7600.16385

dhcpcsvc6.dll DHCPv6 Client Microsoft Corporation 6.1.7600.16385

dnsapi.dll DNS Client API DLL Microsoft Corporation 6.1.7600.16385

dwmapi.dll Microsoft Desktop Window Manager API Microsoft Corporation 6.1.7600.16385

FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.1.7600.16385

FWPUCLNT.DLL FWP/IPsec User-Mode API Microsoft Corporation 6.1.7600.16385

gdi32.dll GDI Client DLL Microsoft Corporation 6.1.7600.16385

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.0.7600.16700

imm32.dll Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.1.7600.16385

IPHLPAPI.DLL IP Helper API Microsoft Corporation 6.1.7600.16385

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

KernelBase.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385

locale.nls

lpk.dll Language Pack Microsoft Corporation 6.1.7600.16385

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 2.0.4.0

msasn1.dll ASN.1 Runtime APIs Microsoft Corporation 6.1.7600.16415

msctf.dll MSCTF Server DLL Microsoft Corporation 6.1.7600.16385

msctf.dll.mui MSCTF Server DLL Microsoft Corporation 6.1.7600.16385

msi.dll Windows Installer Microsoft Corporation 5.0.7600.16385

msimg32.dll GDIEXT Client DLL Microsoft Corporation 6.1.7600.16385

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.7600.16385

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.1.7600.16385

npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.1.7600.16385

nsi.dll NSI User-mode interface DLL Microsoft Corporation 6.1.7600.16385

ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7600.16559

ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7600.16559

ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.1.7600.16624

oleaut32.dll Microsoft Corporation 6.1.7600.16567

profapi.dll User Profile Basic API Microsoft Corporation 6.1.7600.16385

psapi.dll Process Status Helper Microsoft Corporation 6.1.7600.16385

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.1.7600.16385

rpcrt4.dll Remote Procedure Call Runtime Microsoft Corporation 6.1.7600.16385

RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.1.7600.16385

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.1.7600.16385

sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.1.7600.16385

shell32.dll Windows Shell Common Dll Microsoft Corporation 6.1.7600.16644

shfolder.dll Shell Folder Service Microsoft Corporation 6.1.7600.16385

shlwapi.dll Shell Light-weight Utility Library Microsoft Corporation 6.1.7600.16385

SortDefault.nls

sspicli.dll Security Support Provider Interface Microsoft Corporation 6.1.7600.16484

StaticCache.dat

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 8.0.7600.16700

user32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.1.7600.16385

userenv.dll Userenv Microsoft Corporation 6.1.7600.16385

usp10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7600.16385

uTorrent.exe µTorrent BitTorrent, Inc. 2.2.0.23235

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.1.7600.16385

version.dll Version Checking and File Installation Libraries Microsoft Corporation 6.1.7600.16385

winnsi.dll Network Store Information RPC interface Microsoft Corporation 6.1.7600.16385

WLIDNSP.DLL Microsoft® Windows Live ID Namespace Provider Microsoft Corp. 7.250.4225.0

wow64.dll Win32 Emulation on NT64 Microsoft Corporation 6.1.7600.16491

wow64cpu.dll AMD64 Wow64 CPU Microsoft Corporation 6.1.7600.16385

wow64win.dll Wow64 Console and Win32 API Logging Microsoft Corporation 6.1.7600.16385

ws2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.1.7600.16385

wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.1.7600.16385

WSHTCPIP.DLL Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.1.7600.16385

This is all I have to provide, no dmp file. Thanks for the assistance!

[taint]

Having the same problem ever since update to the newest build. Program doesn not start and stays in background taking up alot of memory, until I end the process manually with ctrl + alt + del.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 3:40:31 PM, on 12/18/2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\SOUNDMAN.EXE

C:\Program Files\Java\jre6\bin\jqs.exe

D:\Programs\Portable\FirefoxPortable\FirefoxPortable.exe

D:\Programs\Portable\FirefoxPortable\App\firefox\firefox.exe

D:\Programs\Portable\FirefoxPortable\App\firefox\plugin-container.exe

C:\Program Files\Internet Download Manager\IDMan.exe

D:\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll

O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm

O9 - Extra button: (no name) - AutorunsDisabled - (no file)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll

O9 - Extra button: (no name) - {35402C01-1777-4159-9ABA-3480BA70D901} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O9 - Extra 'Tools' menuitem: Omea Add-on Options… - {35402C01-1777-4159-9ABA-3480BA70D901} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O9 - Extra button: Subscribe to Feed - {35402C01-1777-4159-9ABA-3480BA70D903} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O9 - Extra button: Clip and Edit - {35402C01-1777-4159-9ABA-3480BA70D905} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O9 - Extra button: Clip and Save - {35402C01-1777-4159-9ABA-3480BA70D907} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O9 - Extra button: Annotate - {35402C01-1777-4159-9ABA-3480BA70D909} - C:\Program Files\JetBrains\Omea Reader\IexploreOmeaW.dll (HKCU)

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Acunetix WVS Scheduler v6 (AcuWVSSchedulerv6) - Acunetix Ltd. - C:\Program Files\Acunetix\Web Vulnerability Scanner 6\WVSScheduler.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Basics Service - Seagate Technology LLC - C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DirMngr - Unknown owner - C:\Program Files\GNU\GnuPG\dirmngr.exe

O23 - Service: eBoostr Service (EBOOSTRSVC) - eBoostr.com - C:\Program Files\eBoostr\EBstrSvc.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: Sandboxie Service (SbieSvc) - tzuk - C:\Program Files\Sandboxie\SbieSvc.exe

--

End of file - 5130 bytes

process explorer log:

Process PID CPU Description Company Name

System Idle Process 0 18.18

Interrupts n/a Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4 9.09

smss.exe 540 Windows NT Session Manager Microsoft Corporation

csrss.exe 584 1.52 Client Server Runtime Process Microsoft Corporation

winlogon.exe 608 Windows NT Logon Application Microsoft Corporation

services.exe 652 Services and Controller app Microsoft Corporation

svchost.exe 812 Generic Host Process for Win32 Services Microsoft Corporation

wmiprvse.exe 1408 WMI Microsoft Corporation

svchost.exe 884 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 992 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1012 Generic Host Process for Win32 Services Microsoft Corporation

SyncServicesBasics.exe 1112 Sync Windows Services Seagate Technology LLC

svchost.exe 1888 Generic Host Process for Win32 Services Microsoft Corporation

jqs.exe 1896 Java Quick Starter Service Sun Microsystems, Inc.

lsass.exe 664 1.52 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1704 1.52 Windows Explorer Microsoft Corporation

soundman.exe 1816 Realtek Sound Manager Realtek Semiconductor Corp.

uTorrent.exe 1420 1.52 µTorrent BitTorrent, Inc.

WinRAR.exe 216 WinRAR archiver Alexander Roshal

procexp.exe 1616 66.67 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process: uTorrent.exe Pid: 1420

Name Description Company Name Version

activeds.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.2180

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.2180

advapi32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.3520

atl.dll ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.2

c_936.nls

cabinet.dll Microsoft® Cabinet File API Microsoft Corporation 5.1.2600.2180

clbcatq.dll Microsoft Corporation 2001.12.4414.308

comctl32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.2982

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.2180

comres.dll Microsoft Corporation 2001.12.4414.258

credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.2180

crypt32.dll Crypto API32 Microsoft Corporation 5.131.2600.2180

cryptnet.dll Crypto Network Related API Microsoft Corporation 5.131.2600.2180

ctype.nls

dnsapi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.3394

dssenh.dll Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider Microsoft Corporation 5.1.2600.2133

gdi32.dll GDI Client DLL Microsoft Corporation 5.1.2600.3466

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.2180

imagehlp.dll Windows NT Image Helper Microsoft Corporation 5.1.2600.2180

imm32.dll Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.2180

index.dat

index.dat

index.dat

index.dat

iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.2912

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.3541

locale.nls

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 2.0.4.0

mprapi.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.2180

msasn1.dll ASN.1 Runtime APIs Microsoft Corporation 5.1.2600.3624

MSCTFIME.IME Microsoft Text Frame Work Service IME Microsoft Corporation 5.1.2600.2180

msi.dll Windows Installer Microsoft Corporation 3.1.4000.4039

msimg32.dll GDIEXT Client DLL Microsoft Corporation 5.1.2600.2180

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.2180

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.3394

msxml3.dll MSXML 3.0 SP10 Microsoft Corporation 8.100.1050.0

msxml3r.dll XML Resources Microsoft Corporation 8.20.8730.1

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.3462

netshell.dll Network Connections Shell Microsoft Corporation 5.1.2600.2180

ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.3520

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.2726

oleaut32.dll Microsoft Corporation 5.1.2600.3266

psapi.dll Process Status Helper Microsoft Corporation 5.1.2600.2180

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.2938

rasapi32.dll Remote Access API Microsoft Corporation 5.1.2600.2180

rasman.dll Remote Access Connection Manager Microsoft Corporation 5.1.2600.2180

rpcrt4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.3555

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.2161

rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.2180

samlib.dll SAM Library DLL Microsoft Corporation 5.1.2600.2180

schannel.dll TLS / SSL Security Provider Microsoft Corporation 5.1.2600.3592

secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.3592

sensapi.dll SENS Connectivity API DLL Microsoft Corporation 5.1.2600.2180

setupapi.dll Windows Setup API Microsoft Corporation 5.1.2600.2180

shell32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.3453

shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.2180

shlwapi.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.3698

sortkey.nls

sorttbls.nls

ssdpapi.dll SSDP Client API DLL Microsoft Corporation 5.1.2600.2180

sxs.dll Fusion 2.5 Microsoft Corporation 5.1.2600.3019

tapi32.dll Microsoft® Windows Telephony API Client DLL Microsoft Corporation 5.1.2600.2180

unicode.nls

upnp.dll Universal Plug and Play API Microsoft Corporation 5.1.2600.2180

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 6.0.2900.3698

user32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.3099

userenv.dll Userenv Microsoft Corporation 5.1.2600.2180

uTorrent.exe µTorrent BitTorrent, Inc. 2.2.0.23774

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.2180

version.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.2180

winhttp.dll Windows HTTP Services Microsoft Corporation 5.1.2600.3619

wininet.dll Internet Extensions for Win32 Microsoft Corporation 6.0.2900.3698

winmm.dll MCI API DLL Microsoft Corporation 5.1.2600.2180

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.1.2600.2180

wintrust.dll Microsoft Trust Verification APIs Microsoft Corporation 5.131.2600.3661

wldap32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.2180

ws2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.2180

ws2help.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.2180

wsock32.dll Windows Socket 32-Bit DLL Microsoft Corporation 5.1.2600.2180

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.2180

[sktimur]

One of these maybe to blame?

I tried to kill each process and µtorrent still hangs up. Maybe, µtorrent can't control many connections. In statistic µtorrent shows me that connections are approximately 500-650. I have about 600 torrents and 100 are always active.