uTorrent 2.04 crash windows 7

[pruljnij]

After i updated uTorrent till 2.04 version my windows start to crash, i have an autostart option and when i've restart mashine windows crashes again, only can move mouse nor the system or progrrams can respond.After i login in safe mode turn off autostart option with msconfig utility and writing this post.

Forgot to put my config:

windows 7 ( X 64) build 7600

uTorrent version 2.04

[DreadWingKnight]

Hijackthis log and process explorer process list with the dll list for the utorrent.exe process please (process explorer list might be difficult).

[pruljnij]

Updated to latest beta 2.2 and the same thing, windows 7 crashes.

[pruljnij]

Hijack This Report

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:18:16, on 29.08.2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe

C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe

C:\Program Files (x86)\foobar2000\foobar2000.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [iME14 CHT Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHT /Log

O4 - HKLM\..\Run: [iME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log

O4 - HKLM\..\Run: [iME14 KOR Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /KOR /Log

O4 - HKLM\..\Run: [iME14 CHS Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHS /Log

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Create virtual drive for Denwer.lnk = C:\WebServers\denwer\Boot.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 7200 bytes

Process Explorer log

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 39.39 0 K 24 K

Interrupts n/a 1.54 0 K 0 K Hardware Interrupts

DPCs n/a 0.77 0 K 0 K Deferred Procedure Calls

System 4 112 K 1 400 K

smss.exe 288 472 K 884 K Диспетчер сеанса Windows Microsoft Corporation

csrss.exe 428 2 156 K 3 600 K Процесс исполнения клиент-сервер Microsoft Corporation

wininit.exe 476 1 460 K 3 596 K Автозагрузка приложений Windows Microsoft Corporation

services.exe 532 5 700 K 6 900 K Приложение служб и контроллеров Microsoft Corporation

svchost.exe 672 3 972 K 7 260 K Хост-процесс для служб Windows Microsoft Corporation

WmiPrvSE.exe 3924 2 732 K 6 256 K WMI Provider Host Microsoft Corporation

svchost.exe 748 4 040 K 6 756 K Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 808 19 700 K 16 108 K Хост-процесс для служб Windows Microsoft Corporation

audiodg.exe 928 5.41 27 236 K 18 320 K Изоляция графов аудиоустройств Windows Microsoft Corporation

svchost.exe 840 86 528 K 87 420 K Хост-процесс для служб Windows Microsoft Corporation

dwm.exe 1540 1.54 29 060 K 25 752 K Диспетчер окон рабочего стола Microsoft Corporation

svchost.exe 868 20 344 K 30 000 K Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 1004 5 940 K 9 764 K Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 396 27 516 K 31 416 K Хост-процесс для служб Windows Microsoft Corporation

AsLdrSrv.exe 1164 1 036 K 3 308 K ASLDR Service ASUS

HControl.exe 1776 5 964 K 5 396 K HControl ASUS

Atouch64.exe 1872 1 416 K 4 804 K Atouch64

ATKOSD.exe 1916 852 K 3 068 K ATKOSD ASUS

WDC.exe 1992 1 320 K 4 528 K WDC ASUS

spoolsv.exe 1232 6 664 K 8 088 K Диспетчер очереди печати Microsoft Corporation

svchost.exe 1268 12 048 K 10 900 K Хост-процесс для служб Windows Microsoft Corporation

taskhost.exe 1460 3 240 K 6 672 K Хост-процесс для задач Windows Microsoft Corporation

ekrn.exe 1500 51 800 K 33 356 K ESET Service ESET

IMEDICTUPDATE.EXE 1820 1 292 K 2 952 K Microsoft Office IME 2010 Microsoft Corporation

sqlservr.exe 1848 118 132 K 15 664 K SQL Server Windows NT - 64 Bit Microsoft Corporation

sqlwriter.exe 2200 1 896 K 4 896 K SQL Server VSS Writer - 64 Bit Microsoft Corporation

svchost.exe 2260 1 764 K 4 376 K Хост-процесс для служб Windows Microsoft Corporation

SearchIndexer.exe 2760 28 036 K 18 212 K Индексатор службы Microsoft Windows Search Microsoft Corporation

svchost.exe 3980 1 892 K 5 240 K Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 3084 78 236 K 29 992 K Хост-процесс для служб Windows Microsoft Corporation

msiexec.exe 1532 8 592 K 18 872 K Установщик Windows® Microsoft Corporation

svchost.exe 3676 1 784 K 5 300 K Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 3480 972 K 2 652 K Хост-процесс для служб Windows Microsoft Corporation

lsass.exe 540 4 600 K 8 188 K Local Security Authority Process Microsoft Corporation

lsm.exe 548 2 380 K 3 384 K Служба диспетчера локальных сеансов Microsoft Corporation

csrss.exe 496 3 212 K 8 184 K Процесс исполнения клиент-сервер Microsoft Corporation

winlogon.exe 264 2 900 K 4 992 K Программа входа в систему Windows Microsoft Corporation

explorer.exe 1576 50 068 K 62 396 K Проводник Microsoft Corporation

RAVCpl64.exe 1808 8 816 K 7 160 K Диспетчер Realtek HD Realtek Semiconductor

egui.exe 1864 7 116 K 10 128 K ESET GUI ESET

sidebar.exe 2036 48.65 58 856 K 48 908 K Гаджеты рабочего стола Windows Microsoft Corporation

DTShellHlp.exe 1692 0.77 2 584 K 7 000 K DAEMON Tools Shell Extensions Helper DT Soft Ltd

DTLite.exe 2044 3 464 K 7 460 K DAEMON Tools Lite DT Soft Ltd

foobar2000.exe 2700 34 336 K 14 408 K foobar2000 Application

firefox.exe 2980 56 756 K 79 140 K Firefox Mozilla Corporation

WinRAR.exe 4064 10 840 K 17 772 K WinRAR archiver Alexander Roshal

procexp.exe 2856 1 600 K 8 020 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

procexp64.exe 3624 2.32 19 520 K 37 264 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

HControlUser.exe 1988 856 K 2 944 K HControlUser ASUS

[Firon]

Try uninstalling ESET.

[siljaline]

I don't see anything in that log that points to an ESET issue. If the OP needs a manual uninstaller.

http://kb.eset.com/esetkb/index?page=content&id=SOLN2289

Thought I do see many O23 Service Items that are missing, I would suggest the OP go to a board that still supports HJT Logs and get help there.

Cheers,

Try uninstalling ESET.

[Knofbath]

It seems like Hijackthis isn't correctly reading the O23 files for x64 versions, if he actually were missing all those files he would have bigger problems. Mine shows up the same way.

Otherwise, nothing in that log jumps out at me as "wrong". I'm no expert though.

[pruljnij]

I solved the problem with uninstalling and installing a fresh version.I think the problem was with one download, the download state was invalid and when i press to reload hash state of download ,the problem shows up, its only was with 2.04 version older versions reload hash with no problems but 100 percent loaded processor.Maybe its versions problem maybe the file, but its solved with reinstall.Thanks for replying and not staying me 1 to 1 with the problem.

[siljaline]

I used to do HJT logs but have not done for some time, you do have some issues there with services as I already said - find a Forum *like* major geeks, they will be able to help you.

http://forums.majorgeeks.com/forumdisplay.php?f=35

Good luck !

It seems like Hijackthis isn't correctly reading the O23 files for x64 versions, if he actually were missing all those files he would have bigger problems. Mine shows up the same way.

Otherwise, nothing in that log jumps out at me as "wrong". I'm no expert though.