FoxyKnoxy Posted June 21, 2011 Report Posted June 21, 2011 Running the current stable version, I can start uTorrent but no window ever appears. However, the process is seen to be running in ProcessExplorer, which announces "no windows associated with this process".If I reinstall program it will run once, but never again. I'm baffled.
moogly Posted June 22, 2011 Report Posted June 22, 2011 Post Hijackthis and Process Explorer logs when µT is running.In PE, select utorrent.exe and enable DLL mode (ctrl+D).
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Thanks. I'm unfamiliar with Hijackthis, but will Google.
moogly Posted June 22, 2011 Report Posted June 22, 2011 You have a guide here: http://forum.utorrent.com/viewtopic.php?id=29748
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Thank you. Clearly I should have done more reading before I posted my question. Sorry.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Logfile of Trend Micro HijackThis v2.0.4Scan saved at 8:36:35 AM, on 6/22/2011Platform: Windows 7 SP1 (WinNT 6.00.3505)MSIE: Internet Explorer v9.00 (9.00.8112.16421)Boot mode: NormalRunning processes:C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\LENOVO\HOTKEY\MICMUTE.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files (x86)\NETGEAR ReadyNAS\Remote\bin\ReadyNASRemote.exeC:\Program Files (x86)\Allway Sync\Bin\syncappw.exeC:\Program Files (x86)\Secunia\PSI\psi_tray.exeC:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeC:\Program Files (x86)\MagicDisc\MagicDisc.exeC:\Windows\SysWOW64\rundll32.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files\iTunesHelper.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Users\PLD\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exeC:\Program Files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exeC:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXEC:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXEC:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exeC:\Program Files\OneUpIndustries\Bins\v0.9.8.186\Bins32on64.exeC:\Program Files (x86)\Secunia\PSI\sua.exeC:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exeC:\Program Files (x86)\Lenovo\System Update\SUService.exeC:\Program Files (x86)\Mozilla Firefox 4.0 RC\firefox.exeC:\Program Files\Lenovo\Communications Utility\TPKNRRES.exeC:\Program Files\Conexant\SAII\SmartAudio.exeC:\Program Files (x86)\Mozilla Firefox 4.0 RC\plugin-container.exeC:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exeC:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exeC:\Program Files (x86)\Internet Download Manager\IDMan.exeC:\Program Files (x86)\Internet Download Manager\IEMonitor.exeC:\Users\PLD\Local Settings\Apps\F.lux\flux.exeC:\Users\PLD\AppData\Local\Programs\Syncdocs\Syncdocs.exec:\users\pld\appdata\roaming\dropbox\bin\dropbox.exec:\program files (x86)\gmoteserver\gmoteserver.exeC:\Program Files (x86)\Java\jre6\bin\javaw.exeC:\Program Files (x86)\Intel\Services\IPT\jhi_service.exeC:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exeC:\Program Files\Lenovo\Communications Utility\CAMMUTE.exeC:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exeC:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exeC:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeC:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exeC:\Windows\SysWOW64\SAsrv.exeC:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exec:\program files (x86)\squeezebox\squeezetray.exeC:\PROGRA~2\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exeC:\PROGRA~2\SQUEEZ~1\server\SQUEEZ~3.EXEC:\PROGRAM FILES (X86)\PROCESS EXPLORER\PROCEXP.EXEC:\Program Files (x86)\uTorrent\uTorrent.exeC:\Program Files (x86)\Times Reader\Times Reader.exeC:\Program Files\TeraCopy\TeraCopy.exeC:\Program Files\TeraCopy\TeraCopy.exeC:\Program Files\TeraCopy\TeraCopy.exeC:\Program Files (x86)\MediaMonkey\MediaMonkey.exeC:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo.msn.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htmR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exeO2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dllO3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dllO4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitorO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunesHelper.exe"O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"O4 - HKCU\..\Run: [ReadyNAS Remote] C:\Program Files (x86)\NETGEAR ReadyNAS\Remote\bin\ReadyNASRemote.exeO4 - HKCU\..\Run: [Google Update] "C:\Users\PLD\AppData\Local\Google\Update\GoogleUpdate.exe" /cO4 - HKCU\..\Run: [Allway Sync] "C:\Program Files (x86)\Allway Sync\Bin\syncappw.exe" -mO4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-21-351362869-554506914-2508356787-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')O4 - HKUS\S-1-5-21-351362869-554506914-2508356787-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exeO4 - Startup: MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exeO4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXEO4 - Global Startup: Secunia PSI Tray.lnk = ?O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htmO8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htmO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.htmlO8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htmO9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htmO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO18 - Protocol: leaf - {3C4A8A13-029E-430D-B8C1-46E834D20B31} - mscoree.dll (file missing)O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLLO20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll C:\PROGRA~2\Google\GOOGLE~1\GO36F4~1.DLLO23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeO23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exeO23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exeO23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)O23 - Service: Lenovo Doze Mode Service (DozeSvc) - Lenovo. - C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXEO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exeO23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exeO23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exeO23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Intel® Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exeO23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exeO23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exeO23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exeO23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exeO23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXEO23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeO23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeO23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exeO23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exeO23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exeO23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)O23 - Service: SqueezeMySQL - Unknown owner - C:\PROGRA~2\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exeO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeO23 - Service: System Update (SUService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\System Update\SUService.exeO23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exeO23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exeO23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exeO23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)--End of file - 15814 bytes
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Process PID CPU Private Bytes Working Set Description Company NameAAWService.exe 6940 < 0.01 85,968 K 54,548 K Ad-Aware Service Application Lavasoft LimitedAAWTray.exe 7156 < 0.01 3,324 K 5,320 K Ad-Aware Tray Application Lavasoft LimitedAppleMobileDeviceService.exe 1416 < 0.01 2,420 K 7,228 K MobileDeviceService Apple Inc.audiodg.exe 5536 16,412 K 16,752 K Windows Audio Device Graph Isolation Microsoft CorporationBins.exe 2400 0.02 108,704 K 75,064 K Bins OneUp Industries LLCBins32on64.exe 2936 2,176 K 4,636 K BoostSpeed.exe 3152 0.29 16,504 K 7,440 K Boost Speed AuslogicsCamMute.exe 7092 1,480 K 1,744 K Camera Mute Control Service for ThinkPad Lenovo Group Limitedcfosspeed.exe 2984 0.51 9,344 K 7,352 K cFosSpeed Window cFos Software GmbHClock.exe 7352 0.14 117,044 K 104,360 K Clock widget for HTC Home 3 conhost.exe 1672 1,408 K 556 K Console Window Host Microsoft Corporationcsrss.exe 536 < 0.01 2,372 K 2,044 K Client Server Runtime Process Microsoft Corporationcsrss.exe 616 0.25 3,164 K 28,364 K Client Server Runtime Process Microsoft CorporationCxAudMsg64.exe 2180 6,448 K 848 K Conexant Audio Message Service Conexant Systems Inc.daemonu.exe 5688 < 0.01 2,804 K 3,764 K NVIDIA Settings Update Manager NVIDIA CorporationDropbox.exe 6308 < 0.01 59,108 K 34,032 K Dropbox Dropbox, Inc.dwm.exe 1828 1.39 89,904 K 69,016 K Desktop Window Manager Microsoft CorporationDZSVC64.EXE 3272 1,352 K 468 K Doze Mode Service Program Lenovo.EvernoteClipper.exe 2992 < 0.01 2,992 K 6,628 K Evernote Clipper Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041EvtEng.exe 6372 8,880 K 4,900 K Intel® PROSet/Wireless Event Log Service Intel® Corporationexplorer.exe 1172 0.31 74,288 K 86,004 K Windows Explorer Microsoft Corporationfirefox.exe 5696 1.63 1,139,504 K 1,181,356 K Firefox Mozilla Corporationflux.exe 5364 0.01 8,904 K 9,040 K fmapp.exe 3192 0.01 3,568 K 2,160 K FMAPP Application GmoteServer.exe 6892 1,480 K 3,184 K GoogleCrashHandler.exe 2600 4,172 K 4,684 K Google Installer Google Inc.GoogleDesktop.exe 2848 0.02 69,288 K 9,076 K Google Desktop GoogleGoogleDesktop.exe 6128 0.15 33,856 K 7,696 K Google Desktop GoogleGoogleToolbarNotifier.exe 2660 < 0.01 7,408 K 1,340 K GoogleToolbarNotifier Google Inc.hkcmd.exe 2608 3,568 K 2,452 K hkcmd Module Intel Corporationibmpmsvc.exe 932 1,564 K 572 K ThinkPad Power Management Service Lenovo.IDMan.exe 4152 < 0.01 11,972 K 21,312 K Internet Download Manager (IDM) Tonec Inc.IEMonitor.exe 5428 < 0.01 2,924 K 6,184 K Internet Download Manager agent for click monitoring in IE-based browsers Tonec Inc.igfxpers.exe 2576 5,492 K 3,668 K persistence Module Intel CorporationInterrupts n/a 6.45 0 K 0 K Hardware Interrupts and DPCs iPodService.exe 4272 < 0.01 3,812 K 2,420 K iPodService Module (64-bit) Apple Inc.iTunesHelper.exe 2220 < 0.01 6,556 K 12,884 K iTunesHelper Apple Inc.javaw.exe 6912 0.01 72,328 K 23,760 K Java Platform SE binary Sun Microsystems, Inc.jhi_service.exe 6772 1,260 K 1,588 K Intel IPT Host Interface Service Intel Corporationjusched.exe 2152 1,656 K 3,696 K Java Update Scheduler Sun Microsystems, Inc.lsass.exe 728 0.03 6,960 K 7,584 K Local Security Authority Process Microsoft Corporationlsm.exe 740 2,952 K 1,744 K Local Session Manager Service Microsoft CorporationMagicDisc.exe 3000 4,328 K 6,576 K MagicISO Virtual CD/DVD Manager MagicISO, Inc.MCPLaunch.exe 2788 1,604 K 2,660 K Message Center Plus Launcher MediaMonkey.exe 7856 0.09 58,868 K 64,648 K MediaMonkey - Audio Librar Ventis Media Incmicmute.exe 2308 6,056 K 3,240 K Microphone Mute Controll Service for ThinkPad Lenovo Group Limitedmsiexec.exe 7100 8,636 K 19,388 K Windows® installer Microsoft CorporationMsMpEng.exe 708 0.05 113,844 K 61,104 K Antimalware Service Executable Microsoft Corporationmysqld.exe 3052 < 0.01 20,104 K 7,156 K NisSrv.exe 3164 9,024 K 628 K Microsoft Network Inspection System Microsoft CorporationnvSCPAPISvr.exe 2264 2,504 K 2,792 K Stereo Vision Control Panel API Server NVIDIA Corporationnvvsvc.exe 972 2,980 K 1,908 K NVIDIA Driver Helper Service, Version 268.02 NVIDIA Corporationnvvsvc.exe 2432 < 0.01 9,544 K 3,444 K NVIDIA Driver Helper Service, Version 268.02 NVIDIA CorporationNvXDSync.exe 2420 7,640 K 3,380 K NVIDIA User Experience Driver Component NVIDIA CorporationONENOTEM.EXE 3032 3,752 K 1,884 K Microsoft OneNote Quick Launcher Microsoft Corporationpeerblock.exe 1388 0.07 22,072 K 9,616 K PeerBlock PeerBlock, LLCplugin-container.exe 5936 0.17 21,324 K 24,460 K Plugin Container for Firefox Mozilla CorporationPresentationFontCache.exe 1020 27,772 K 3,788 K PresentationFontCache.exe Microsoft Corporationprocexp.exe 6208 2,416 K 4,136 K Sysinternals Process Explorer Sysinternals - www.sysinternals.comPROCEXP64.exe 3396 0.77 35,704 K 53,940 K Sysinternals Process Explorer Sysinternals - www.sysinternals.compsi_tray.exe 2928 < 0.01 2,528 K 5,532 K Secunia PSI Tray Secuniapsia.exe 2364 0.07 12,504 K 13,108 K Secunia PSI Agent SecuniaPsiService_2.exe 5404 1,160 K 1,308 K PsiService PsiService Protexis Inc.ReadyNASRemote.exe 2744 0.73 49,892 K 49,536 K ReadyNas Remote NETGEARRegSrvc.exe 2740 2,568 K 924 K Intel® PROSet/Wireless Registry Service Intel® Corporationrundll32.exe 3068 1,280 K 2,972 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 3284 6,560 K 4,960 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 4300 1,952 K 828 K Windows host process (Rundll32) Microsoft CorporationSASrv.exe 4916 < 0.01 1,236 K 1,716 K SmartAudio Service Application Conexant Systems, Inc.SCHTASK.EXE 2244 3,688 K 5,572 K Power Manager Power Agenda Lenovo Group LimitedSearchIndexer.exe 4280 0.02 53,540 K 20,140 K Microsoft Windows Search Indexer Microsoft Corporationservices.exe 720 0.01 6,940 K 6,200 K Services and Controller app Microsoft CorporationSmartAudio.exe 5376 < 0.01 88,100 K 106,236 K SmartAudio Conexant Systems, Incsmss.exe 404 536 K 212 K Windows Session Manager Microsoft CorporationSoluto.exe 1928 0.81 51,968 K 14,988 K Soluto Anti-Frustration Software SolutoSolutoService.exe 2760 1.46 97,192 K 82,500 K Soluto Anti-Frustration Software Solutospd.exe 6248 0.19 6,644 K 4,524 K cFosSpeed Service cFos Software GmbHspoolsv.exe 1748 < 0.01 13,540 K 11,800 K Spooler SubSystem App Microsoft CorporationSQUEEZ~3.EXE 5368 116,088 K 47,848 K Squeezebox Server SlimDevices - A Logitech CompanySqueezeTray.exe 6668 < 0.01 16,976 K 11,788 K Squeezebox Server Tray Icon SlimDevices - A Logitech Companysua.exe 4780 1,404 K 1,980 K Secunia Update Agent SecuniaSUService.exe 5824 13,684 K 9,140 K ThinkVantage System Update Service Lenovo Group Limitedsvchost.exe 836 5,356 K 4,924 K Host Process for Windows Services Microsoft Corporationsvchost.exe 420 5,652 K 5,512 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1068 0.17 21,656 K 13,688 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1108 0.01 77,028 K 60,084 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1132 < 0.01 36,732 K 28,140 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1260 < 0.01 14,240 K 15,184 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1552 < 0.01 33,692 K 29,684 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1780 17,512 K 9,976 K Host Process for Windows Services Microsoft Corporationsvchost.exe 2316 < 0.01 8,996 K 2,020 K Host Process for Windows Services Microsoft Corporationsvchost.exe 3700 2,876 K 968 K Host Process for Windows Services Microsoft Corporationsvchost.exe 3912 < 0.01 10,128 K 20,116 K Host Process for Windows Services Microsoft Corporationsvchost.exe 3476 < 0.01 13,184 K 8,960 K Host Process for Windows Services Microsoft Corporationsyncappw.exe 2892 0.44 108,644 K 139,012 K Syncdocs.exe 2068 0.05 199,388 K 273,936 K SyncDocs Doc FreedomSystem 4 0.93 164 K 2,176 K System Idle Process 0 80.19 0 K 24 K taskeng.exe 3968 4,240 K 3,756 K Task Scheduler Engine Microsoft Corporationtaskhost.exe 2456 9,592 K 5,964 K Host Process for Windows Tasks Microsoft CorporationTeraCopy.exe 6804 0.12 41,296 K 26,504 K TeraCopy Code Sector Inc.TeraCopy.exe 3736 0.14 9,928 K 22,708 K TeraCopy Code Sector Inc.TeraCopy.exe 3928 0.14 10,084 K 41,044 K TeraCopy Code Sector Inc.Times Reader.exe 7888 0.18 127,656 K 184,144 K tphkload.exe 1976 8,836 K 2,968 K ThinkPad Message Client Loader Lenovo Group LimitedTPHKSVC.exe 2000 3,512 K 4,036 K On screen display Fn+Fx handler Lenovo Group LimitedTpKnrres.exe 4032 < 0.01 2,152 K 5,152 K Microphone volume control module Lenovo Group LimitedTPKNRSVC.exe 6176 1,120 K 2,672 K Microphone volume control service Lenovo Group Limitedtpnumlkd.exe 1620 3,268 K 1,316 K NumLock on screen display for ThinkPad Lenovo Group LimitedTPONSCR.exe 4340 2,700 K 5,776 K On screen display drawer Lenovo Group LimitedTpScrex.exe 4316 3,064 K 5,572 K ThinkPad UltraZoom Lenovo Group LimitedTpShocks.exe 3752 0.01 4,244 K 2,356 K ThinkVantage Active Protection System Lenovo.ULCDRSvr.exe 1796 784 K 556 K ULCDRSvr Ulead Systems, Inc.unsecapp.exe 3532 2,172 K 2,064 K Sink to receive asynchronous callbacks for WMI client application Microsoft Corporationunsecapp.exe 7016 2,120 K 1,792 K Sink to receive asynchronous callbacks for WMI client application Microsoft CorporationUpdateChecker.exe 3424 < 0.01 37,904 K 10,612 K FileHippo.com Update Checker FileHippo.comuTorrent.exe 1936 1.92 70,332 K 114,360 K µTorrent BitTorrent, Inc.wininit.exe 624 1,972 K 756 K Windows Start-Up Application Microsoft Corporationwinlogon.exe 680 3,704 K 2,576 K Windows Logon Application Microsoft Corporationwlanext.exe 1660 7,620 K 4,416 K Windows Wireless LAN 802.11 Extensibility Framework Microsoft CorporationWmiPrvSE.exe 4004 6,212 K 4,128 K WMI Provider Host Microsoft CorporationWmiPrvSE.exe 2224 4,056 K 5,892 K WMI Provider Host Microsoft Corporationwmpnetwk.exe 4160 < 0.01 20,880 K 14,420 K Windows Media Player Network Sharing Service Microsoft Corporationxplorer2_64.exe 1192 18,576 K 17,408 K xplorer² - explorer replacement ZabKat
DreadWingKnight Posted June 22, 2011 Report Posted June 22, 2011 C:\Windows\SysWOW64\nvinit.dllQuick google shows that this is hostile.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Thank you very much. I would never have known what to look for.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 It seems my nvinit.dll is not corrupt, and is the legitimate Nvidia file. However, that does not diminish my gratitude for your response. Kindly let me know if you should notice anything else. In the meantime I am doing some sequential AV scans with different products.
moogly Posted June 22, 2011 Report Posted June 22, 2011 Where is the DLL list in Process Explorer log? You need to select utorrent.exe and enable DLL mode (ctrl+D).
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 I'm sorry, I thought I did that. I don't really know how to interpret the results. I'll try again.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 davclnt.dll Web DAV Client DLL Microsoft Corporation 6.1.7601.17514davhlpr.dll DAV Helper DLL Microsoft Corporation 6.1.7600.16385devobj.dll Device Information Set DLL Microsoft Corporation 6.1.7600.16385devrtl.dll Device Management Run Time Library Microsoft Corporation 6.1.7600.16385dhcpcsvc.dll DHCP Client Service Microsoft Corporation 6.1.7600.16385dhcpcsvc6.dll DHCPv6 Client Microsoft Corporation 6.1.7600.16385dnsapi.dll DNS Client API DLL Microsoft Corporation 6.1.7601.17570drprov.dll Microsoft Remote Desktop Session Host Server Network Provider Microsoft Corporation 6.1.7600.16385dwmapi.dll Microsoft Desktop Window Manager API Microsoft Corporation 6.1.7600.16385FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.1.7600.16385FWPUCLNT.DLL FWP/IPsec User-Mode API Microsoft Corporation 6.1.7601.17514gdi32.dll GDI Client DLL Microsoft Corporation 6.1.7601.17514GdiPlus.dll Microsoft GDI+ Microsoft Corporation 6.1.7601.17514gpapi.dll Group Policy Client API Microsoft Corporation 6.1.7600.16385hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 6.1.7600.16385hnetcfg.dll.mui Home Networking Configuration Manager Microsoft Corporation 6.1.7600.16385idmmkb.dll Internet Download Manager module Tonec Inc. 6.5.12.1ieframe.dll Internet Browser Microsoft Corporation 9.0.8112.16430iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 9.0.8112.16430imm32.dll Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.1.7601.17514index.dat index.dat index.dat index.dat IPHLPAPI.DLL IP Helper API Microsoft Corporation 6.1.7601.17514kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7601.17514KernelBase.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7601.17514KernelBase.dll.mui Windows NT BASE API Client DLL Microsoft Corporation 6.1.7600.16385locale.nls lpk.dll Language Pack Microsoft Corporation 6.1.7600.16385mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 2.0.5.0mpr.dll Multiple Provider Router DLL Microsoft Corporation 6.1.7600.16385msasn1.dll ASN.1 Runtime APIs Microsoft Corporation 6.1.7601.17514msctf.dll MSCTF Server DLL Microsoft Corporation 6.1.7600.16385msctf.dll.mui MSCTF Server DLL Microsoft Corporation 6.1.7600.16385msi.dll Windows Installer Microsoft Corporation 5.0.7601.17514msimg32.dll GDIEXT Client DLL Microsoft Corporation 6.1.7600.16385msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.7600.16385mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.1.7601.17514msxml3.dll MSXML 3.0 SP11 Microsoft Corporation 8.110.7601.17514msxml3r.dll XML Resources Microsoft Corporation 8.110.7600.16385netshell.dll Network Connections Shell Microsoft Corporation 6.1.7601.17514netutils.dll Net Win32 API Helpers DLL Microsoft Corporation 6.1.7601.17514nlaapi.dll Network Location Awareness 2 Microsoft Corporation 6.1.7601.17514normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.1.7600.16385npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.1.7600.16385nsi.dll NSI User-mode interface DLL Microsoft Corporation 6.1.7600.16385ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7601.17514ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7601.17514ntlanman.dll Microsoft® Lan Manager Microsoft Corporation 6.1.7601.17514ntmarta.dll Windows NT MARTA provider Microsoft Corporation 6.1.7600.16385Nvd3d9wrap.dll NVIDIA Compatible NVIDIA d3d9wrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvdxgiwrap.dll NVIDIA Compatible NVIDIA dxgiwrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvinit.dll NVIDIA Compatible NVIDIA shim initialization dll, Version 268.02 NVIDIA Corporation 8.17.12.6802ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.1.7601.17514oleacc.dll Active Accessibility Core Component Microsoft Corporation 7.0.0.0oleaccrc.dll Active Accessibility Resource DLL Microsoft Corporation 7.0.0.0oleaut32.dll Microsoft Corporation 6.1.7601.17567profapi.dll User Profile Basic API Microsoft Corporation 6.1.7600.16385propsys.dll Microsoft Property System Microsoft Corporation 7.0.7601.17514psapi.dll Process Status Helper Microsoft Corporation 6.1.7600.16385rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.1.7600.16385rpcrt4.dll Remote Procedure Call Runtime Microsoft Corporation 6.1.7601.17514RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.1.7601.17514rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.1.7600.16385sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.1.7600.16385secur32.dll Security Support Provider Interface Microsoft Corporation 6.1.7601.17514setupapi.dll Windows Setup API Microsoft Corporation 6.1.7601.17514shdocvw.dll Shell Doc Object and Control Library Microsoft Corporation 6.1.7601.17514shell32.dll Windows Shell Common Dll Microsoft Corporation 6.1.7601.17514shfolder.dll Shell Folder Service Microsoft Corporation 6.1.7600.16385shlwapi.dll Shell Light-weight Utility Library Microsoft Corporation 6.1.7601.17514slc.dll Software Licensing Client Dll Microsoft Corporation 6.1.7600.16385SortDefault.nls ssdpapi.dll SSDP Client API DLL Microsoft Corporation 6.1.7600.16385sspicli.dll Security Support Provider Interface Microsoft Corporation 6.1.7601.17514StaticCache.dat sxs.dll Fusion 2.5 Microsoft Corporation 6.1.7601.17514TaskbarDockAppIntegration32.dll TaskbarDock AppIntegration 1.0.0.1upnp.dll UPnP Control Point API Microsoft Corporation 6.1.7601.17514urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 9.0.8112.16430user32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.1.7601.17514userenv.dll Userenv Microsoft Corporation 6.1.7601.17514usp10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7601.17561uTorrent.exe µTorrent BitTorrent, Inc. 2.2.1.25302uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.1.7600.16385version.dll Version Checking and File Installation Libraries Microsoft Corporation 6.1.7600.16385webio.dll Web Transfer Protocols API Microsoft Corporation 6.1.7601.17514winhttp.dll Windows HTTP Services Microsoft Corporation 6.1.7601.17514wininet.dll Internet Extensions for Win32 Microsoft Corporation 9.0.8112.16421winmm.dll MCI API DLL Microsoft Corporation 6.1.7601.17514winnsi.dll Network Store Information RPC interface Microsoft Corporation 6.1.7600.16385winsta.dll Winstation Library Microsoft Corporation 6.1.7601.17514wkscli.dll Workstation Service Client DLL Microsoft Corporation 6.1.7601.17514Wldap32.dll Win32 LDAP API DLL Microsoft Corporation 6.1.7601.17514wow64.dll Win32 Emulation on NT64 Microsoft Corporation 6.1.7601.17514wow64cpu.dll AMD64 Wow64 CPU Microsoft Corporation 6.1.7601.17514wow64win.dll Wow64 Console and Win32 API Logging Microsoft Corporation 6.1.7601.17514wpdshext.dll Portable Devices Shell Extension Microsoft Corporation 6.1.7601.17514ws2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.1.7601.17514wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.1.7600.16385WSHTCPIP.DLL Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.1.7600.16385
moogly Posted June 22, 2011 Report Posted June 22, 2011 Are you sure the log is complete? Be sure you copy/paste ALL the log stored in *.log or *.txt.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 I hope this is correct:Process PID CPU Private Bytes Working Set Description Company NameAAWService.exe 1624 < 0.01 82,136 K 104,320 K Ad-Aware Service Application Lavasoft LimitedAAWTray.exe 4832 5,308 K 31,688 K Ad-Aware Tray Application Lavasoft LimitedAppleMobileDeviceService.exe 1972 < 0.01 2,388 K 45,320 K MobileDeviceService Apple Inc.audiodg.exe 7296 16,444 K 16,756 K Windows Audio Device Graph Isolation Microsoft CorporationBins.exe 2644 0.02 99,164 K 94,660 K Bins OneUp Industries LLCBins32on64.exe 5344 4,144 K 28,896 K BoostSpeed.exe 4512 0.43 18,492 K 44,516 K Boost Speed AuslogicsCamMute.exe 6704 1,496 K 12,840 K Camera Mute Control Service for ThinkPad Lenovo Group Limitedcfosspeed.exe 5748 0.55 8,780 K 17,184 K cFosSpeed Window cFos Software GmbHClock.exe 6676 0.13 106,920 K 103,756 K Clock widget for HTC Home 3 conhost.exe 1640 1,404 K 3,224 K Console Window Host Microsoft Corporationcsrss.exe 544 < 0.01 2,440 K 4,616 K Client Server Runtime Process Microsoft Corporationcsrss.exe 628 0.25 3,544 K 36,104 K Client Server Runtime Process Microsoft CorporationCxAudMsg64.exe 2020 6,388 K 5,548 K Conexant Audio Message Service Conexant Systems Inc.daemonu.exe 5856 < 0.01 2,784 K 26,468 K NVIDIA Settings Update Manager NVIDIA CorporationDropbox.exe 7076 2.96 63,476 K 96,516 K Dropbox Dropbox, Inc.dwm.exe 2992 1.68 72,448 K 100,528 K Desktop Window Manager Microsoft CorporationDZSVC64.EXE 4064 1,348 K 2,912 K Doze Mode Service Program Lenovo.EvernoteClipper.exe 2324 < 0.01 4,952 K 40,564 K Evernote Clipper Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041EvtEng.exe 7068 8,808 K 16,344 K Intel® PROSet/Wireless Event Log Service Intel® Corporationexplorer.exe 3008 0.54 154,644 K 170,504 K Windows Explorer Microsoft Corporationfirefox.exe 7812 3.43 445,812 K 518,972 K Firefox Mozilla Corporationflux.exe 6384 0.01 10,356 K 46,324 K fmapp.exe 772 0.01 3,560 K 7,588 K FMAPP Application GmoteServer.exe 6456 1,480 K 24,340 K GoogleCrashHandler.exe 4272 6,172 K 35,532 K Google Installer Google Inc.GoogleDesktop.exe 3448 0.99 40,136 K 16,796 K Google Desktop GoogleGoogleDesktop.exe 3192 0.19 21,060 K 7,340 K Google Desktop GoogleGoogleToolbarNotifier.exe 2492 < 0.01 5,988 K 2,016 K GoogleToolbarNotifier Google Inc.hkcmd.exe 2888 3,716 K 9,092 K hkcmd Module Intel Corporationibmpmsvc.exe 892 1,556 K 3,324 K ThinkPad Power Management Service Lenovo.IDMan.exe 5840 12,640 K 54,824 K Internet Download Manager (IDM) Tonec Inc.IEMonitor.exe 6208 4,900 K 37,380 K Internet Download Manager agent for click monitoring in IE-based browsers Tonec Inc.igfxpers.exe 1200 5,400 K 12,872 K persistence Module Intel CorporationInterrupts n/a 4.45 0 K 0 K Hardware Interrupts and DPCs iPodService.exe 5128 0.02 3,588 K 8,056 K iPodService Module (64-bit) Apple Inc.iPodtoComputer.exe 2404 0.53 98,452 K 191,836 K iPodtoComputer Cucusoft, Inc.iTunesHelper.exe 4988 < 0.01 8,724 K 77,524 K iTunesHelper Apple Inc.javaw.exe 6480 0.01 74,020 K 108,920 K Java Platform SE binary Sun Microsystems, Inc.jhi_service.exe 6960 1,272 K 11,652 K Intel IPT Host Interface Service Intel Corporationjusched.exe 4880 1,716 K 28,420 K Java Update Scheduler Sun Microsystems, Inc.lsass.exe 680 0.03 5,664 K 13,160 K Local Security Authority Process Microsoft Corporationlsm.exe 688 3,032 K 4,608 K Local Session Manager Service Microsoft CorporationMagicDisc.exe 2448 6,344 K 36,512 K MagicISO Virtual CD/DVD Manager MagicISO, Inc.MCPLaunch.exe 6936 1,592 K 20,568 K Message Center Plus Launcher micmute.exe 1140 6,020 K 14,784 K Microphone Mute Controll Service for ThinkPad Lenovo Group Limitedmmc.exe 2464 < 0.01 50,040 K 15,260 K Microsoft Management Console Microsoft CorporationMsMpEng.exe 512 1.21 115,140 K 83,348 K Antimalware Service Executable Microsoft Corporationmysqld.exe 4700 < 0.01 19,372 K 17,608 K NisSrv.exe 2764 9,024 K 3,608 K Microsoft Network Inspection System Microsoft CorporationnvSCPAPISvr.exe 2144 2,636 K 13,976 K Stereo Vision Control Panel API Server NVIDIA Corporationnvvsvc.exe 932 2,984 K 7,708 K NVIDIA Driver Helper Service, Version 268.02 NVIDIA Corporationnvvsvc.exe 3416 < 0.01 9,740 K 16,876 K NVIDIA Driver Helper Service, Version 268.02 NVIDIA CorporationNvXDSync.exe 3404 7,732 K 17,088 K NVIDIA User Experience Driver Component NVIDIA CorporationONENOTEM.EXE 1568 3,764 K 5,500 K Microsoft OneNote Quick Launcher Microsoft Corporationpeerblock.exe 6948 0.03 24,344 K 22,840 K PeerBlock PeerBlock, LLCplugin-container.exe 4112 0.22 18,432 K 74,820 K Plugin Container for Firefox Mozilla CorporationPresentationFontCache.exe 972 31,552 K 27,212 K PresentationFontCache.exe Microsoft Corporationprocexp.exe 5924 2,420 K 31,700 K Sysinternals Process Explorer Sysinternals - www.sysinternals.comPROCEXP64.exe 5148 0.95 28,748 K 49,256 K Sysinternals Process Explorer Sysinternals - www.sysinternals.compsi_tray.exe 2320 < 0.01 4,608 K 32,740 K Secunia PSI Tray Secuniapsia.exe 1512 0.06 12,324 K 46,724 K Secunia PSI Agent SecuniaPsiService_2.exe 6988 1,176 K 9,464 K PsiService PsiService Protexis Inc.ReadyNASRemote.exe 3060 0.91 50,776 K 144,928 K ReadyNas Remote NETGEARRegSrvc.exe 7096 2,524 K 6,088 K Intel® PROSet/Wireless Registry Service Intel® Corporationrundll32.exe 2880 2,808 K 7,356 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 4020 1,952 K 4,244 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 4824 1,276 K 22,708 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 4852 0.01 6,244 K 14,516 K Windows host process (Rundll32) Microsoft Corporationrundll32.exe 5308 0.57 3,660 K 52,372 K Windows host process (Rundll32) Microsoft CorporationSASrv.exe 7004 1,252 K 12,572 K SmartAudio Service Application Conexant Systems, Inc.SCHTASK.EXE 5088 5,656 K 32,780 K Power Manager Power Agenda Lenovo Group LimitedSearchIndexer.exe 5904 0.02 45,148 K 45,828 K Microsoft Windows Search Indexer Microsoft Corporationservices.exe 664 0.01 7,200 K 10,772 K Services and Controller app Microsoft CorporationSmartAudio.exe 5968 85,700 K 192,868 K SmartAudio Conexant Systems, Incsmss.exe 408 572 K 1,212 K Windows Session Manager Microsoft CorporationSoluto.exe 2984 0.78 52,832 K 23,460 K Soluto Anti-Frustration Software SolutoSolutoService.exe 2084 0.21 92,512 K 84,384 K Soluto Anti-Frustration Software Solutospd.exe 2440 0.53 4,704 K 8,256 K cFosSpeed Service cFos Software GmbHspoolsv.exe 1756 < 0.01 12,092 K 20,604 K Spooler SubSystem App Microsoft CorporationSQUEEZ~3.EXE 4888 99,092 K 121,064 K Squeezebox Server SlimDevices - A Logitech CompanySqueezeTray.exe 6224 18,252 K 50,608 K Squeezebox Server Tray Icon SlimDevices - A Logitech Companysua.exe 5428 1,336 K 5,488 K Secunia Update Agent SecuniaSUService.exe 4980 13,728 K 63,184 K ThinkVantage System Update Service Lenovo Group Limitedsvchost.exe 804 0.06 5,164 K 10,376 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1008 0.10 5,584 K 9,480 K Host Process for Windows Services Microsoft Corporationsvchost.exe 508 0.09 21,724 K 25,440 K Host Process for Windows Services Microsoft Corporationsvchost.exe 560 0.04 73,708 K 84,132 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1132 < 0.01 41,332 K 57,704 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1248 0.01 11,416 K 18,524 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1520 0.19 16,772 K 19,104 K Host Process for Windows Services Microsoft Corporationsvchost.exe 1788 18,880 K 19,984 K Host Process for Windows Services Microsoft Corporationsvchost.exe 2176 < 0.01 8,968 K 9,072 K Host Process for Windows Services Microsoft Corporationsvchost.exe 2608 2,784 K 6,252 K Host Process for Windows Services Microsoft Corporationsvchost.exe 3116 0.07 9,408 K 53,756 K Host Process for Windows Services Microsoft Corporationsvchost.exe 3244 < 0.01 11,844 K 15,012 K Host Process for Windows Services Microsoft Corporationsyncappw.exe 2400 0.02 38,092 K 79,148 K Syncdocs.exe 6524 1.45 247,912 K 313,380 K SyncDocs Doc FreedomSystem 4 1.13 156 K 1,556 K System Idle Process 0 74.67 0 K 24 K taskeng.exe 3764 4,340 K 9,928 K Task Scheduler Engine Microsoft Corporationtaskhost.exe 3428 9,260 K 11,548 K Host Process for Windows Tasks Microsoft Corporationtphkload.exe 1904 8,780 K 10,208 K ThinkPad Message Client Loader Lenovo Group LimitedTPHKSVC.exe 1928 2,144 K 27,540 K On screen display Fn+Fx handler Lenovo Group LimitedTpKnrres.exe 5504 < 0.01 4,152 K 29,604 K Microphone volume control module Lenovo Group LimitedTPKNRSVC.exe 3176 1,124 K 20,356 K Microphone volume control service Lenovo Group Limitedtpnumlkd.exe 3884 3,280 K 6,836 K NumLock on screen display for ThinkPad Lenovo Group LimitedTPONSCR.exe 4044 4,520 K 30,260 K On screen display drawer Lenovo Group LimitedTpScrex.exe 4036 5,020 K 32,548 K ThinkPad UltraZoom Lenovo Group LimitedTpShocks.exe 2384 0.01 4,068 K 8,692 K ThinkVantage Active Protection System Lenovo.ULCDRSvr.exe 2124 792 K 3,732 K ULCDRSvr Ulead Systems, Inc.unsecapp.exe 3792 2,104 K 5,396 K Sink to receive asynchronous callbacks for WMI client application Microsoft Corporationunsecapp.exe 3992 2,056 K 5,452 K Sink to receive asynchronous callbacks for WMI client application Microsoft CorporationUpdateChecker.exe 6272 38,064 K 38,112 K FileHippo.com Update Checker FileHippo.comuTorrent.exe 4976 0.31 15,560 K 50,244 K µTorrent BitTorrent, Inc.vds.exe 6044 3,656 K 9,364 K Virtual Disk Service Microsoft Corporationwininit.exe 604 1,940 K 4,904 K Windows Start-Up Application Microsoft Corporationwinlogon.exe 1100 3,596 K 8,588 K Windows Logon Application Microsoft Corporationwlanext.exe 1632 7,508 K 15,240 K Windows Wireless LAN 802.11 Extensibility Framework Microsoft CorporationWmiPrvSE.exe 3636 6,032 K 11,868 K WMI Provider Host Microsoft CorporationWmiPrvSE.exe 4168 10,792 K 16,352 K WMI Provider Host Microsoft Corporationwmpnetwk.exe 4612 0.06 19,464 K 21,824 K Windows Media Player Network Sharing Service Microsoft CorporationWUDFHost.exe 1804 2,404 K 6,436 K Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporationxplorer2_64.exe 5280 10,772 K 22,312 K xplorer² - explorer replacement ZabKatxplorer2_64.exe 7056 12,528 K 25,068 K xplorer² - explorer replacement ZabKatProcess: uTorrent.exe Pid: 4976Name Description Company Name Version_etoured.dll {6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000012.db {DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000002.db advapi32.dll Advanced Windows 32 Base API Microsoft Corporation 6.1.7601.17514apisetschema.dll ApiSet Schema DLL Microsoft Corporation 6.1.7600.16385cfgmgr32.dll Configuration Manager DLL Microsoft Corporation 6.1.7601.17514clbcatq.dll COM+ Configuration Catalog Microsoft Corporation 2001.12.8530.16385comctl32.dll User Experience Controls Library Microsoft Corporation 6.10.7601.17514comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.1.7601.17514crypt32.dll Crypto API32 Microsoft Corporation 6.1.7601.17514cryptbase.dll Base cryptographic API DLL Microsoft Corporation 6.1.7600.16385cryptsp.dll Cryptographic Service Provider API Microsoft Corporation 6.1.7600.16385cversions.2.db cversions.2.db devobj.dll Device Information Set DLL Microsoft Corporation 6.1.7600.16385dhcpcsvc.dll DHCP Client Service Microsoft Corporation 6.1.7600.16385dhcpcsvc6.dll DHCPv6 Client Microsoft Corporation 6.1.7600.16385dnsapi.dll DNS Client API DLL Microsoft Corporation 6.1.7601.17570dwmapi.dll Microsoft Desktop Window Manager API Microsoft Corporation 6.1.7600.16385FirewallAPI.dll Windows Firewall API Microsoft Corporation 6.1.7600.16385gdi32.dll GDI Client DLL Microsoft Corporation 6.1.7601.17514iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 9.0.8112.16430imm32.dll Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.1.7601.17514IPHLPAPI.DLL IP Helper API Microsoft Corporation 6.1.7601.17514kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7601.17514KernelBase.dll Windows NT BASE API Client DLL Microsoft Corporation 6.1.7601.17514locale.nls lpk.dll Language Pack Microsoft Corporation 6.1.7600.16385msasn1.dll ASN.1 Runtime APIs Microsoft Corporation 6.1.7601.17514msctf.dll MSCTF Server DLL Microsoft Corporation 6.1.7600.16385msi.dll Windows Installer Microsoft Corporation 5.0.7601.17514msimg32.dll GDIEXT Client DLL Microsoft Corporation 6.1.7600.16385msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.7600.16385mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 6.1.7601.17514normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.1.7600.16385npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.1.7600.16385nsi.dll NSI User-mode interface DLL Microsoft Corporation 6.1.7600.16385ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7601.17514ntdll.dll NT Layer DLL Microsoft Corporation 6.1.7601.17514Nvd3d9wrap.dll NVIDIA Compatible NVIDIA d3d9wrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvdxgiwrap.dll NVIDIA Compatible NVIDIA dxgiwrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvinit.dll NVIDIA Compatible NVIDIA shim initialization dll, Version 268.02 NVIDIA Corporation 8.17.12.6802ole32.dll Microsoft OLE for Windows Microsoft Corporation 6.1.7601.17514oleaut32.dll Microsoft Corporation 6.1.7601.17567profapi.dll User Profile Basic API Microsoft Corporation 6.1.7600.16385propsys.dll Microsoft Property System Microsoft Corporation 7.0.7601.17514psapi.dll Process Status Helper Microsoft Corporation 6.1.7600.16385rpcrt4.dll Remote Procedure Call Runtime Microsoft Corporation 6.1.7601.17514RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.1.7601.17514rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.1.7600.16385sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.1.7600.16385setupapi.dll Windows Setup API Microsoft Corporation 6.1.7601.17514shell32.dll Windows Shell Common Dll Microsoft Corporation 6.1.7601.17514shfolder.dll Shell Folder Service Microsoft Corporation 6.1.7600.16385shlwapi.dll Shell Light-weight Utility Library Microsoft Corporation 6.1.7601.17514SortDefault.nls sspicli.dll Security Support Provider Interface Microsoft Corporation 6.1.7601.17514TaskbarDockAppIntegration32.dll TaskbarDock AppIntegration 1.0.0.1urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 9.0.8112.16430user32.dll Multi-User Windows USER API Client DLL Microsoft Corporation 6.1.7601.17514userenv.dll Userenv Microsoft Corporation 6.1.7601.17514usp10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7601.17561uTorrent.exe µTorrent BitTorrent, Inc. 2.2.1.25302uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.1.7600.16385version.dll Version Checking and File Installation Libraries Microsoft Corporation 6.1.7600.16385wininet.dll Internet Extensions for Win32 Microsoft Corporation 9.0.8112.16421winnsi.dll Network Store Information RPC interface Microsoft Corporation 6.1.7600.16385wow64.dll Win32 Emulation on NT64 Microsoft Corporation 6.1.7601.17514wow64cpu.dll AMD64 Wow64 CPU Microsoft Corporation 6.1.7601.17514wow64win.dll Wow64 Console and Win32 API Logging Microsoft Corporation 6.1.7601.17514ws2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.1.7601.17514wship6.dll Winsock2 Helper DLL (TL/IPv6) Microsoft Corporation 6.1.7600.16385WSHTCPIP.DLL Winsock2 Helper DLL (TL/IPv4) Microsoft Corporation 6.1.7600.16385
moogly Posted June 22, 2011 Report Posted June 22, 2011 _etoured.dll Nvd3d9wrap.dll NVIDIA Compatible NVIDIA d3d9wrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvdxgiwrap.dll NVIDIA Compatible NVIDIA dxgiwrap dll, Version 268.02 NVIDIA Corporation 8.17.12.6802nvinit.dll NVIDIA Compatible NVIDIA shim initialization dll, Version 268.02 NVIDIA Corporation 8.17.12.6802TaskbarDockAppIntegration32.dll TaskbarDock AppIntegration 1.0.0.1All these DLLs are injected into µT. Surely one of them is the culprit.
FoxyKnoxy Posted June 22, 2011 Author Report Posted June 22, 2011 Aha! So shall I kill each, one at a time and see if the window pops up? Or what do you suggest?
moogly Posted June 23, 2011 Report Posted June 23, 2011 No, you need to identify the original process (for Nvidia DLLs, I guess it's related to DirectX) and uninstall it temporarily and make a try. You can begin with TaskbarDock AppIntegration.
FoxyKnoxy Posted June 23, 2011 Author Report Posted June 23, 2011 Thanks very much for your expertise. I will let you know the results.
DLBeLL1984 Posted June 23, 2011 Report Posted June 23, 2011 I am having the same issue, will it be okay to post my results in here, or should I make a new thread?
Recommended Posts
Archived
This topic is now archived and is closed to further replies.