Jump to content

User interface slow, can't do anything to stop it


Drealm

Recommended Posts

Posted

Utorrent was working well, until recently the user interface have become slow.

For example, each time I put the cursor somewhere, it takes about 1 or 2 seconds to respond. Normally, when I pass the cursor over the "general - tracker - peers - pieces - files - speed - logger" tabs, they highlight (in orange) instantly. But now, it takes one second each. It's doing that everywhere in uTorrent.

And only in utorrent. Every other aspect of the computer is fine. I have Firefox running beside and it's normal but when I switch to utorrent, the screen takes 2 or 3 seconds to appear, sometimes even more. Even in the system tray, the utorrent icon is also affected when I click on it for options, it takes time. I can't say if my download/upload speed is affected, but I tend to think yes because it never really got very fast from the moment this problem began.

I have windows xp professional service pack 2. Everything was working well, and suddenly utorrent decided he wanted to have a slow user interface.

I tried everything I could: uninstalled utorrent, reinstalled it (deleting all settings). Even tried older versions 2.0.1 and 2.0.2. Nothing works.

I read on internet that my antivirus (avast) could slow it by monitoring it, so I disabled it completely and utorrent was not changing, it was still slow.

I even reinstalled windows recently, so it can't be because my computer is infected by too much virus or things like that, it's only been about 3 weeks I've done that so my computer is clean.

I don't know what to do, i'm completely clueless. I always try to solve problems by myself before coming here to complain, but I must admit defeat about this.

So help would be extremely appreciated.

Something else I noticed: when I installed older versions, when I realized it was not solving my problem, I updated the program to the last version. Normally, utorrent automatically restart with the update, but the two times I did it it just closed. I had to restart manually and the update was applied.

It also seems to be intermittent: sometimes it's less slow, and other times it's more.

Posted

I see nobody could help me.

I also tried using bittorrent instead of utorrent and the same thing happened. So I was thinking that my computer is having hard times running a p2p software. But I realized that the two are very similar and made by the same creators, so it may be the problem. I even disabled windows restore as it may slow the computer by monitoring; no results. I tried other things that I never tried before until I realized "hey, utorrent always worked well and I never had to do all these deep settings changing."

So out of desperation I tried BitComet who is a different program from the two above that I like less in it's presentation. I did not delete utorrent, but made Bitcomet my new default torrent program and transferred my downloads in bitcomet.

Guess what? I could not believe it: the program itself is responding normally (fast UI), and the speed changed from 200kb/s to 2800kb/s.

So after all this nonsense, it's not my computer that is having hard times running p2p software, it's utorrent/bittorent themselves.

So can anybody explain why the hell utorrent decided suddenly to become a pain in the ass?

Sorry, but until this problem is solved, I'm a new Bitcomet user.

It's weird considering I've been using utorrent for more than a year without any problems.

Posted

Ok I've done the two first as the third is about crash that is not the issue here:

HiJack this:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 08:49:52, on 2010-10-26

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

C:\Program Files\Alwil Software\Avast5\avastUI.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Analog Devices\SoundMAX\Smax4.exe

C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe

C:\Program Files\Fichiers communs\Nikon\Monitor\NkMonitor.exe

C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Netropa\Multimedia Keyboard\TrayMon.exe

C:\Program Files\Netropa\Onscreen Display\OSD.exe

C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\BitComet\BitComet.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\msiexec.exe

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.ca/

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray

O4 - HKLM\..\Run: [MULTIMEDIA KEYBOARD] C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Startup: Nikon Monitor.lnk = ?

O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O14 - IERESET.INF: START_PAGE_URL=http://www.google.ca/

O15 - Trusted Zone: *.ab.COM

O15 - Trusted Zone: *.allakhazam.com

O15 - Trusted Zone: *.asus.com

O15 - Trusted Zone: *.ati.com

O15 - Trusted Zone: *.atitech.com

O15 - Trusted Zone: *.bell.ca

O15 - Trusted Zone: *.BLIZZARD.com

O15 - Trusted Zone: *.cgi.ca

O15 - Trusted Zone: *.cgi.com

O15 - Trusted Zone: *.cinentreprise.com

O15 - Trusted Zone: *.desjardins.com

O15 - Trusted Zone: *.HOTMAIL.com

O15 - Trusted Zone: *.meteomedia.com

O15 - Trusted Zone: *.MSN.CA

O15 - Trusted Zone: *.nvidia.com

O15 - Trusted Zone: *.passport.COM

O15 - Trusted Zone: *.PASSPORT.NET

O15 - Trusted Zone: *.stas.biz

O15 - Trusted Zone: *.sympatico.ca

O15 - Trusted Zone: *.sympatico.com

O15 - Trusted Zone: *.thottbot.com

O15 - Trusted Zone: *.toshiba.com

O15 - Trusted Zone: *.videotron.ca

O15 - Trusted Zone: *.videotron.com

O15 - Trusted Zone: *.worldofwarcraft.com

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe

O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: lxcf_device - - C:\WINDOWS\system32\lxcfcoms.exe

O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe

O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe

O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe

O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe

O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--

End of file - 10286 bytes

ProcessExplorer:

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 46.09 0 K 28 K

Interrupts n/a 0.78 0 K 0 K Hardware Interrupts

DPCs n/a 2.34 0 K 0 K Deferred Procedure Calls

System 4 0 K 244 K

smss.exe 592 168 K 320 K Gestionnaire de session Windows NT Microsoft Corporation

csrss.exe 668 1 684 K 2 868 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 692 7 268 K 1 568 K Application d'ouverture de session Windows NT Microsoft Corporation

services.exe 736 0.78 30 296 K 30 684 K Applications Services et Contrôleur Microsoft Corporation

nvsvc32.exe 912 4 012 K 1 628 K NVIDIA Driver Helper Service, Version 260.61 NVIDIA Corporation

svchost.exe 956 3 052 K 3 036 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1008 17.19 5 356 K 4 196 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1108 19 792 K 15 104 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1200 2 024 K 2 200 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1312 5 024 K 5 980 K Generic Host Process for Win32 Services Microsoft Corporation

AvastSvc.exe 1444 20 964 K 35 804 K avast! Service AVAST Software

spoolsv.exe 308 3 332 K 1 800 K Spooler SubSystem App Microsoft Corporation

nhksrv.exe 1272 308 K 824 K

AppleMobileDeviceService.exe 1300 2 048 K 1 428 K Apple Mobile Device Service Apple Inc.

mDNSResponder.exe 1328 1 704 K 2 312 K Bonjour Service Apple Inc.

Apache.exe 1408 3 120 K 852 K Apache HTTP Server Apache Software Foundation

Apache.exe 2356 3 484 K 1 592 K Apache HTTP Server Apache Software Foundation

jqs.exe 1828 6 884 K 1 384 K Java Quick Starter Service Sun Microsystems, Inc.

nSvcLog.exe 2080 2 456 K 976 K nSvcLog NVIDIA Corporation

svchost.exe 2236 2 408 K 2 376 K Generic Host Process for Win32 Services Microsoft Corporation

wdfmgr.exe 2280 1 496 K 1 164 K Windows User Mode Driver Manager Microsoft Corporation

nSvcAppFlt.exe 2600 4.69 3 020 K 2 932 K app_filter Module

nSvcIp.exe 2640 3 532 K 3 488 K ActiveArmor Firewall IP Service NVIDIA Corporation

iPodService.exe 2896 2 380 K 2 684 K iPodService Module (32-bit) Apple Inc.

alg.exe 3532 1 428 K 1 400 K Application Layer Gateway Service Microsoft Corporation

svchost.exe 456 1 560 K 1 296 K Generic Host Process for Win32 Services Microsoft Corporation

msiexec.exe 2060 2 528 K 5 880 K Windows® installer Microsoft Corporation

lsass.exe 756 4 060 K 1 124 K LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1628 26 752 K 24 256 K Explorateur Windows Microsoft Corporation

jusched.exe 1692 668 K 856 K Java Update Scheduler Sun Microsystems, Inc.

AvastUI.exe 1784 5 676 K 5 556 K avast! Antivirus AVAST Software

smax4pnp.exe 1796 2 216 K 1 660 K SMax4PNP Analog Devices, Inc.

SMax4.exe 1804 616 K 1 216 K Audio Control Panel Analog Devices, Inc.

MMKeybd.exe 1820 2 472 K 4 324 K Smart Office Keyboard Netropa Corp.

Traymon.exe 528 688 K 1 660 K

osd.exe 536 1 664 K 1 200 K Netropa® Onscreen Display Netropa Corp.

iTunesHelper.exe 1844 8 884 K 2 520 K iTunesHelper Apple Inc.

hpwuSchd2.exe 1852 504 K 1 432 K Hewlett-Packard Product Assistant Hewlett-Packard Development Company, L.P.

rundll32.exe 1868 4 032 K 884 K Exécuter une DLL en tant qu'application Microsoft Corporation

AnyDVDtray.exe 1896 6 216 K 2 668 K AnyDVD Application SlySoft, Inc.

NkMonitor.exe 1980 1 652 K 1 756 K Monitor Nikon Corporation

firefox.exe 2852 70 360 K 84 020 K Firefox Mozilla Corporation

procexp.exe 3892 9 112 K 13 488 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

uTorrent.exe 336 27.34 52 924 K 57 068 K µTorrent BitTorrent, Inc.

hpqimzone.exe 284 19 780 K 2 124 K HP Photosmart Premier Hewlett-Packard Development Company, L.P.

BitComet.exe 3588 0.78 140 336 K 39 096 K BitComet - a BitTorrent Client www.BitComet.com

Here they are.

Posted

You will not believe it: another problem showed up.

I'm in the add/remove programs, and I see the Nvidia's forceware network access manager. So I click to remove it, and this window show up:

http://www.4shared.com/photo/14iT-FH5/Forceware_removal_problem.html

If I click NO, everything stop and I must terminate without changes.

If I click YES, the same window reload! It re-do exactly like when I click to remove it, in an infinite loop. So I end up being forced to click NO.

I tried to update it manually by searching on internet an "update" to this thing in the goal to uninstall it after it is "working properly because of the update", and the only one I found on the nvidia site (there may be some others, but it seemed hard to find) didn't worked.

So once again, I face a problem that seems extremely hard to solve. Two in a row.

If you can't help me, just tell me so, I will try harder again myself with Google.

Posted

After many try, I concluded that I could not remove Nvidia's forceware network access manager. Something is causing some conflicts, I just shouldn't have installed it in the first place, but hey, I did not know.

But I found how to disable it from starting: by running services.msc in windows, I could stop the 4 forceware applications that were starting automatically at the start of windows. So now they don't start, and you were right, utorrent is working well!

The culprit is: ForceWare Intelligent Application Manager (IAM)

I tried the four applications alone, and this one is doing the damage. But I disabled them all, to be sure.

Thanks for your intervention, you solved my problem.

  • 3 years later...
Posted

ok my problem appears on the outset to be identical to this. I have used Utorrent for years with no problem. My problem started around the time of the most recent upgrade. I am not terribly proficient with these things so please be patient with me. I created a dump file and will list it below. I will also install Hijack this and see if I can post results. I am hoping someone will be able to help.

DUMP FILE

Microsoft ® Windows Debugger Version 6.12.0002.633 AMD64

Copyright © Microsoft Corporation. All rights reserved.

Loading Dump File [C:\Users\Nicola\AppData\Local\Temp\uTorrent.DMP]

User Mini Dump File with Full Memory: Only application data is available

Symbol search path is: *** Invalid ***

****************************************************************************

* Symbol loading may be unreliable without a symbol search path. *

* Use .symfix to have the debugger choose a symbol path. *

* After setting your symbol path, use .reload to refresh symbol locations. *

****************************************************************************

Executable search path is:

Windows 7 Version 7601 (Service Pack 1) MP (4 procs) Free x64

Product: WinNt, suite: SingleUserTS Personal

Machine Name:

Debug session time: Tue Dec 10 22:20:27.000 2013 (UTC - 5:00)

System Uptime: 0 days 7:57:23.917

Process Uptime: 0 days 0:06:27.000

................................................................

.........WARNING: ntlanman overlaps mswsock

...........WARNING: dui70 overlaps duser

.WARNING: WindowsCodecs overlaps dui70

WARNING: WindowsCodecs overlaps duser

WARNING: WindowsCodecs overlaps comctl32

.WARNING: apphelp overlaps profapi

........WARNING: msls31 overlaps msimg32

...WARNING: secur32 overlaps IPHLPAPI

.WARNING: actxprxy overlaps srvcli

.........WARNING: linkinfo overlaps dhcpcsvc6

.WARNING: winmm overlaps explorerframe

.....WARNING: NetworkItemFactory overlaps api_ms_win_downlevel_advapi32_l2_1_0

...WARNING: SearchFolder overlaps PortableDeviceApi

...WARNING: msxml6 overlaps NetworkExplorer

...WARNING: WcnApi overlaps fdWCN

..WARNING: dfscli overlaps EhStorShell

...WARNING: samlib overlaps xmllite

*** ERROR: Symbol file could not be found. Defaulted to export symbols for ntdll.dll -

*** ERROR: Symbol file could not be found. Defaulted to export symbols for wow64cpu.dll -

wow64cpu!TurboDispatchJumpAddressEnd+0x6c0:

00000000`75782e09 c3 ret

Posted

this is the logfile from Hijack this

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 10:51:25 PM, on 10/12/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16736)

FIREFOX: 26.0 (en-GB)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe

C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe

C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe

C:\Program Files (x86)\USB Camera2\VM332_STI.EXE

C:\windows\SysWOW64\RunDll32.exe

C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Nicola\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll

O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE

O4 - HKLM\..\Run: [updateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"

O4 - HKLM\..\Run: [updatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"

O4 - HKCU\..\Run: [qBittorrent] "C:\Program Files (x86)\qBittorrent\qbittorrent.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 8737 bytes

Posted
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe

Known trouble causer .... get rid of it COMPLETELY.

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

Are you aware that Microsoft have discontinued the "Sidebar/Gadgets" platform and are recommending the removal of existing installs because of the security flaws in the system.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...