Jump to content

Utorrent 2.0 Hangs on Windows 7 32 bit


YURETS

Recommended Posts

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17:42:49, on 23.03.2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskhost.exe

C:\Windows\SYSTEM32\DWRCST.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Microsoft Security Essentials\msseces.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe

C:\Program Files\QIP Infium\infium.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\The Bat!\thebat.exe

C:\Program Files\vSoft\Rapidshare Auto Downloader\RapidshareAutoDownloader.exe

C:\Program Files\wincmd\TOTALCMD.EXE

D:\Static\Monitoring\Hijack\HijackThis.exe

C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\PROGRA~1\FlashGet\jccatch.dll

O2 - BHO: DepositFiles.com BHO - {9DFE2FE9-CF99-4ADF-A28E-9B5ADB8DC74F} - C:\PROGRA~1\DEPOSI~1\DFMANA~1\DEPOSI~1.DLL

O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll

O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll

O3 - Toolbar: Deposit IE Toolbar - {6AA40521-14E7-4B1D-B1B4-98528C1388C9} - C:\PROGRA~1\DEPOSI~1\DFMANA~1\DEPOSI~1.DLL

O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [DameWare MRC Agent] C:\Windows\system32\DWRCST.exe

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: Закачать все при помощи FlashGet - C:\Program Files\FlashGet\jc_all.htm

O8 - Extra context menu item: Закачать при помощи FlashGet - C:\Program Files\FlashGet\jc_link.htm

O9 - Extra button: Справочные материалы - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Скачать все с помощью DF Manager - {D5AD327A-A089-4F04-89FD-4EA9812B3913} - C:\PROGRA~1\DEPOSI~1\DFMANA~1\DEPOSI~1.DLL

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O13 - Gopher Prefix:

O17 - HKLM\System\CCS\Services\Tcpip\..\{53B03228-567F-4A95-BA5F-FF69A2AA3E7D}: NameServer = 193.169.118.4

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: DameWare Mini Remote Control (DWMRCS) - DameWare Development LLC - C:\Windows\SYSTEM32\DWRCS.EXE

O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe

O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe

--

End of file - 4645 bytes

Link to comment
Share on other sites

Process PID CPU Description Company Name

System Idle Process 0 15.94

Interrupts n/a 2.90 Hardware Interrupts

DPCs n/a 2.90 Deferred Procedure Calls

System 4 1.45

smss.exe 224 Диспетчер сеанса Windows Microsoft Corporation

csrss.exe 380 Процесс исполнения клиент-сервер Microsoft Corporation

wininit.exe 436 Автозагрузка приложений Windows Microsoft Corporation

services.exe 492 Приложение служб и контроллеров Microsoft Corporation

svchost.exe 660 Хост-процесс для служб Windows Microsoft Corporation

dllhost.exe 336 COM Surrogate Microsoft Corporation

nvvsvc.exe 716 NVIDIA Driver Helper Service, Version 195.62 NVIDIA Corporation

nvvsvc.exe 1292 NVIDIA Driver Helper Service, Version 195.62 NVIDIA Corporation

svchost.exe 744 Хост-процесс для служб Windows Microsoft Corporation

MsMpEng.exe 792 AntiMalware Service Executable Microsoft Corporation

svchost.exe 928 Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 976 Хост-процесс для служб Windows Microsoft Corporation

WUDFHost.exe 2068 Windows Driver Foundation (WDF) - хост-процесс инфраструктуры драйверов пользовательского режима Microsoft Corporation

dwm.exe 2420 Диспетчер окон рабочего стола Microsoft Corporation

svchost.exe 1016 Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 1204 Хост-процесс для служб Windows Microsoft Corporation

svchost.exe 1344 Хост-процесс для служб Windows Microsoft Corporation

spoolsv.exe 1452 Диспетчер очереди печати Microsoft Corporation

svchost.exe 1488 Хост-процесс для служб Windows Microsoft Corporation

DWRCS.EXE 1652 DameWare Mini Remote Client Agent DameWare Development LLC

DWRCST.EXE 2364 DameWare Mini Remote Control User Interface DameWare Development

DWRCS.EXE 3216 5.80 DameWare Mini Remote Client Agent DameWare Development LLC

MDM.EXE 1704 Machine Debug Manager Microsoft Corporation

NMSAccessU.exe 1744

PDAgent.exe 1772 1.45 PDAgent Module Raxco Software, Inc.

PDAgentS1.exe 2388 PDAgentS1 Module Raxco Software, Inc.

svchost.exe 1816 Хост-процесс для служб Windows Microsoft Corporation

PDEngine.exe 356 PDEngine Module Raxco Software, Inc.

svchost.exe 1800 Хост-процесс для служб Windows Microsoft Corporation

taskhost.exe 2696 Хост-процесс для задач Windows Microsoft Corporation

SearchIndexer.exe 3008 Индексатор службы Microsoft Windows Search Microsoft Corporation

svchost.exe 2568 Хост-процесс для служб Windows Microsoft Corporation

wmpnetwk.exe 868 1.45 Служба общих сетевых ресурсов проигрывателя Windows Media Microsoft Corporation

TrustedInstaller.exe 2916 Установщик модулей Windows Microsoft Corporation

svchost.exe 3188 Хост-процесс для служб Windows Microsoft Corporation

lsass.exe 500 Local Security Authority Process Microsoft Corporation

lsm.exe 508 Служба диспетчера локальных сеансов Microsoft Corporation

csrss.exe 444 Процесс исполнения клиент-сервер Microsoft Corporation

conhost.exe 1248 Окно консоли узла Microsoft Corporation

winlogon.exe 536 Программа входа в систему Windows Microsoft Corporation

explorer.exe 2432 Проводник Microsoft Corporation

msseces.exe 2600 Microsoft Security Essentials User Interface Microsoft Corporation

RtHDVCpl.exe 2608 Диспетчер Realtek HD Realtek Semiconductor

uTorrent.exe 2624 µTorrent BitTorrent, Inc.

infium.exe 3472 QIP Infium QIP

KasperskyUpdater.exe 4052 Kaspersky Updater Kaspersky Lab

Updater.exe 3684 63.77 updater.EXE Kaspersky Lab

USDownloader.exe 1368 Universal Share Downloader Tiger grp (www.dimonius.ru)

TOTALCMD.EXE 620 Total Commander 32 bit Ghisler Software GmbH

procexp.exe 2772 4.35 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process: uTorrent.exe Pid: 2624

Name Description Company Name Version

{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000003.db

{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000025.db

{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db

actxprxy.dll ActiveX Interface Marshaling Library Microsoft Corporation 6.01.7600.16385

ADVAPI32.dll Расширенная библиотека API Windows 32 Microsoft Corporation 6.01.7600.16385

AUTHZ.dll Authorization Framework Microsoft Corporation 6.01.7600.16385

C_1252.NLS

CFGMGR32.dll Configuration Manager DLL Microsoft Corporation 6.01.7600.16385

CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.8530.16385

COMCTL32.dll Библиотека элементов управления взаимодействия с пользователем Microsoft Corporation 6.10.7600.16385

comctl32.dll.mui Библиотека элементов управления взаимодействия с пользователем Microsoft Corporation 6.10.7600.16385

comdlg32.dll Библиотека общих диалоговых окон Microsoft Corporation 6.01.7600.16385

CRYPT32.dll API32 криптографии Microsoft Corporation 6.01.7600.16385

CRYPTBASE.dll Base cryptographic API DLL Microsoft Corporation 6.01.7600.16385

CRYPTSP.dll Cryptographic Service Provider API Microsoft Corporation 6.01.7600.16385

cversions.2.db

cversions.2.db

cversions.2.db

DEVOBJ.dll Device Information Set DLL Microsoft Corporation 6.01.7600.16385

dhcpcsvc.DLL Служба DHCP-клиента Microsoft Corporation 6.01.7600.16385

dhcpcsvc6.DLL Клиент DHCPv6 Microsoft Corporation 6.01.7600.16385

DnsApi.dll Динамическая библиотека API DNS-клиента Microsoft Corporation 6.01.7600.16385

DUser.dll Windows DirectUser Engine Microsoft Corporation 6.01.7600.16385

duser.dll.mui Windows DirectUser Engine Microsoft Corporation 6.01.7600.16385

dwmapi.dll Интерфейс API диспетчера окон рабочего стола (Майкрософт) Microsoft Corporation 6.01.7600.16385

FirewallAPI.dll API брандмауэра Windows Microsoft Corporation 6.01.7600.16385

fwpuclnt.dll API пользовательского режима FWP/IPsec Microsoft Corporation 6.01.7600.16385

GDI32.dll GDI Client DLL Microsoft Corporation 6.01.7600.16385

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.00.7600.16385

IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.01.7600.16385

index.dat

index.dat

index.dat

Iphlpapi.dll IP Helper API Microsoft Corporation 6.01.7600.16385

kernel32.dll Библиотека клиента Windows NT BASE API Microsoft Corporation 6.01.7600.16481

KERNELBASE.dll Библиотека клиента Windows NT BASE API Microsoft Corporation 6.01.7600.16385

KernelBase.dll.mui Библиотека клиента Windows NT BASE API Microsoft Corporation 6.01.7600.16385

locale.nls

LPK.dll Language Pack Microsoft Corporation 6.01.7600.16385

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 6.01.7600.16415

MSCTF.dll Серверная библиотека MSCTF Microsoft Corporation 6.01.7600.16385

mssprxy.dll Microsoft Search Proxy Microsoft Corporation 7.00.7600.16385

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.7600.16385

mswsock.dll Расширение поставщика службы API Microsoft Windows Sockets 2.0 Microsoft Corporation 6.01.7600.16385

napinsp.dll Поставщик оболочки совместимости для имен электронной почты Microsoft Corporation 6.01.7600.16385

netprofm.dll Диспетчер списка сетей Microsoft Corporation 6.01.7600.16385

NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.01.7600.16385

Normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.01.7600.16385

npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.01.7600.16385

NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.01.7600.16385

ntdll.dll Системная библиотека NT Microsoft Corporation 6.01.7600.16385

ntmarta.dll Поставщик Windows NT MARTA Microsoft Corporation 6.01.7600.16385

ole32.dll Microsoft OLE для Windows Microsoft Corporation 6.01.7600.16385

oleaut32.dll Microsoft Corporation 6.01.7600.16385

peerdist.dll Клиентская библиотека BranchCache Microsoft Corporation 6.01.7600.16385

pnrpnsp.dll Поставщик пространства имен PNRP Microsoft Corporation 6.01.7600.16385

profapi.dll User Profile Basic API Microsoft Corporation 6.01.7600.16385

propsys.dll Система страниц свойств (Microsoft) Microsoft Corporation 7.00.7600.16385

psapi.dll Process Status Helper Microsoft Corporation 6.01.7600.16385

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.01.7600.16385

RASAPI32.dll Remote Access API Microsoft Corporation 6.01.7600.16385

rasman.dll Remote Access Connection Manager Microsoft Corporation 6.01.7600.16385

RPCRT4.dll Библиотека удаленного вызова процедур Microsoft Corporation 6.01.7600.16385

RpcRtRemote.dll Remote RPC Extension Microsoft Corporation 6.01.7600.16385

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.01.7600.16385

rtutils.dll Routing Utilities Microsoft Corporation 6.01.7600.16385

sechost.dll Host for SCM/SDDL/LSA Lookup APIs Microsoft Corporation 6.01.7600.16385

sensapi.dll SENS Connectivity API DLL Microsoft Corporation 6.01.7600.16385

SETUPAPI.dll Windows Setup API Microsoft Corporation 6.01.7600.16385

SHELL32.dll Общая библиотека оболочки Windows Microsoft Corporation 6.01.7600.16385

shfolder.dll Shell Folder Service Microsoft Corporation 6.01.7600.16385

SHLWAPI.dll Библиотека небольших программ оболочки Microsoft Corporation 6.01.7600.16385

SortDefault.nls

SspiCli.dll Security Support Provider Interface Microsoft Corporation 6.01.7600.16385

StaticCache.dat

urlmon.dll Расширения OLE32 для Win32 Microsoft Corporation 8.00.7600.16490

USER32.dll Многопользовательская библиотека клиента USER API Windows Microsoft Corporation 6.01.7600.16385

USERENV.dll Userenv Microsoft Corporation 6.01.7600.16385

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.7600.16385

uTorrent.exe µTorrent BitTorrent, Inc. 2.00.0000.18620

UxTheme.dll Библиотека тем UxTheme (Microsoft) Microsoft Corporation 6.01.7600.16385

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.01.7600.16385

wininet.dll Расширения Интернета для Win32 Microsoft Corporation 8.00.7600.16490

WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.01.7600.16385

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.01.7600.16385

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 6.01.7600.16385

WS2_32.dll 32-разрядная библиотека Windows Socket 2.0 Microsoft Corporation 6.01.7600.16385

wship6.dll Библиотека DLL помощника Winsock2 (TL/IPv6) Microsoft Corporation 6.01.7600.16385

wshtcpip.dll Библиотека DLL помощника службы Winsock2 (TL/IPv4) Microsoft Corporation 6.01.7600.16385

Link to comment
Share on other sites

  • 2 months later...

For me, uTorrent 2.02 hangs not only for 2 minutes but until restart.

When I close uTorrent, it stays in processes tree but I can't access to it and can't end the process manually. When I try to launch uTorrent again, I see this:

2jbnrjq.jpg

When I try to kill the process:

C:\Users\denis>taskkill /f /im utorrent.exe

SUCCESS: The process "uTorrent.exe" with PID 3164 has been terminated.

But it stays, I can do the taskkill comand many times, anyway utorrent.exe stays in processes tree.

Here are my logs:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:55:59, on 30.05.2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Windows\VM303_STI.EXE

C:\Windows\vmsnap3.exe

C:\Windows\Domino.exe

C:\Program Files\Psi\Psi.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\FlylinkDC++\FlylinkDC.exe

C:\Program Files\xchat\xchat.exe

C:\Program Files\foobar2000\foobar2000.exe

C:\Windows\explorer.exe

C:\Program Files\WinDjView\WinDjView.exe

C:\Program Files\Notepad++\notepad++.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\HiJack\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: 172.25.13.21 dcgate.org.ua soundwaves.org.ua

O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\PROGRA~1\FlashGet\jccatch.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll

O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll

O4 - HKLM\..\Run: [bigDog303] C:\Windows\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)

O4 - HKLM\..\Run: [VMSnap3] C:\Windows\VMSnap3.exe

O4 - HKLM\..\Run: [Domino] C:\Windows\Domino.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Create virtual drive for Denwer.lnk = C:\WebServers\denwer\Boot.exe

O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm

O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm

O9 - Extra button: Справочные материалы - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O9 - Extra button: ICQ Lite - {E59EB121-F339-4851-A3BA-FE49C35617C2} - ICQ.exe (file missing)

O9 - Extra 'Tools' menuitem: ICQ Lite - {E59EB121-F339-4851-A3BA-FE49C35617C2} - ICQ.exe (file missing)

O17 - HKLM\System\CCS\Services\Tcpip\..\{6d8ad256-b4b2-4aa5-ad72-a164dca8053b}: NameServer = 193.151.13.5 193.151.12.8

O17 - HKLM\System\CCS\Services\Tcpip\..\{AB150A5F-03BD-43A3-B0C4-B90C8957C430}: NameServer = 8.8.4.4,8.8.8.8

O17 - HKLM\System\CS1\Services\Tcpip\..\{6d8ad256-b4b2-4aa5-ad72-a164dca8053b}: NameServer = 193.151.13.5 193.151.12.8

O17 - HKLM\System\CS2\Services\Tcpip\..\{6D8AD256-B4B2-4AA5-AD72-A164DCA8053B}: NameServer = 193.151.13.5 193.151.12.8

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--

End of file - 4918 bytes

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 98.85 0 K 24 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 0 K 0 K Deferred Procedure Calls

System 4 48 K 504 K

smss.exe 264 260 K 652 K Windows Session Manager Microsoft Corporation

csrss.exe 352 1 416 K 2 876 K Client Server Runtime Process Microsoft Corporation

wininit.exe 412 916 K 2 876 K Windows Start-Up Application Microsoft Corporation

services.exe 464 3 940 K 5 196 K Services and Controller app Microsoft Corporation

svchost.exe 652 2 876 K 6 024 K Host Process for Windows Services Microsoft Corporation

explorer.exe 3980 22 948 K 39 500 K Windows Explorer Microsoft Corporation

nvvsvc.exe 716 744 K 2 680 K NVIDIA Driver Helper Service, Version 191.07 NVIDIA Corporation

nvvsvc.exe 1176 2 684 K 4 500 K NVIDIA Driver Helper Service, Version 191.07 NVIDIA Corporation

svchost.exe 756 2 648 K 4 936 K Host Process for Windows Services Microsoft Corporation

svchost.exe 808 13 924 K 11 144 K Host Process for Windows Services Microsoft Corporation

audiodg.exe 2944 15 044 K 13 756 K Windows Audio Device Graph Isolation Microsoft Corporation

svchost.exe 900 45 264 K 48 120 K Host Process for Windows Services Microsoft Corporation

dwm.exe 1616 0.77 44 588 K 49 408 K Desktop Window Manager Microsoft Corporation

svchost.exe 940 21 380 K 30 036 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1072 5 048 K 7 868 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1188 15 388 K 16 688 K Host Process for Windows Services Microsoft Corporation

spoolsv.exe 1352 4 348 K 5 720 K Spooler SubSystem App Microsoft Corporation

svchost.exe 1380 8 092 K 8 880 K Host Process for Windows Services Microsoft Corporation

taskhost.exe 1936 2 420 K 5 856 K Host Process for Windows Tasks Microsoft Corporation

SearchIndexer.exe 1988 37 504 K 21 240 K Microsoft Windows Search Indexer Microsoft Corporation

svchost.exe 2860 1 144 K 3 764 K Host Process for Windows Services Microsoft Corporation

svchost.exe 2952 60 320 K 33 828 K Host Process for Windows Services Microsoft Corporation

svchost.exe 1968 1 480 K 3 288 K Host Process for Windows Services Microsoft Corporation

TrustedInstaller.exe 1624 1 632 K 5 928 K Windows Modules Installer Microsoft Corporation

msiexec.exe 3624 6 444 K 14 080 K Windows® installer Microsoft Corporation

VSSVC.exe 3036 4 860 K 9 200 K Microsoft® Volume Shadow Copy Service Microsoft Corporation

svchost.exe 1556 1 316 K 4 036 K Host Process for Windows Services Microsoft Corporation

lsass.exe 488 3 120 K 7 056 K Local Security Authority Process Microsoft Corporation

lsm.exe 496 1 328 K 2 628 K Local Session Manager Service Microsoft Corporation

csrss.exe 424 5 716 K 9 496 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 624 1 700 K 3 676 K Windows Logon Application Microsoft Corporation

explorer.exe 1656 45 860 K 64 956 K Windows Explorer Microsoft Corporation

VM303_STI.EXE 404 15 604 K 19 128 K Vimicro Vimicro

vmsnap3.exe 672 1 184 K 3 584 K Vimicro Vimicro

Domino.exe 936 1 092 K 3 496 K

Psi.exe 1136 32 940 K 34 216 K

uTorrent.exe 3164 14 552 K 21 692 K µTorrent BitTorrent, Inc.

FlylinkDC.exe 3228 21 608 K 16 320 K FlylinkDC++ FlylinkDC++ Team

xchat.exe 3240 5 540 K 16 352 K

foobar2000.exe 3872 95 892 K 107 736 K foobar2000

WinDjView.exe 1512 25 432 K 36 104 K WinDjView Andrew Zhezherun

notepad++.exe 2352 21 492 K 35 784 K Notepad++ : a free (GNU) source code editor Don HO don.h@free.fr

firefox.exe 4060 120 820 K 153 212 K Firefox Mozilla Corporation

7zFM.exe 2704 4 364 K 12 600 K 7-Zip File Manager Igor Pavlov

procexp.exe 3116 0.77 13 728 K 32 536 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Link to comment
Share on other sites

  • 3 weeks later...

Since uT 2.0, I have been able to generate an intermittent freeze on Windows 2008 x32 & x64, 2008 R2 x64 and Windows 7 x64.

When the freeze occurs, the uTorrent GUI becomes unresponsive for about a minute and then returns to normal operation. In the bandwidth graph in uTorrent, no break is seen however in Windows Task Manager network traffic drops to zero for the duration of the hang.

The freeze appears to repeat at periodic intervals of fixed length. The Windows Task Manager Network tab shows a consistent pattern in a ratio of about 6:50 (frozen:functional, using the vertical ticks of the task manager graph).

In uTorrent, the bandwidth upload graph will spike upwards briefly (for a few seconds) after the program unfreezes, presumably due to an artifact in how the bandwidth upload limit is calculated.

Other programs are not frozen during this time and the system otherwise behaves normally.

So far, uT has always recovered and does not need to be killed.

Link to comment
Share on other sites

  • 2 weeks later...

I'm having the same hanging problem as others. Just installed Win 7 and don't want to do it again this year!

Here is my Hijack file and PE.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 5:45:49 PM, on 6/30/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files\Everything\Everything.exe

C:\Program Files\Microsoft Security Essentials\msseces.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\RocketDock\RocketDock.exe

C:\Windows\CmUCReye.exe

C:\Users\Administrator.LAST7\AppData\Local\TCB Networks\StrokeIt\Bin\strokeit.exe

C:\Users\Administrator.LAST7\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\Launchy\Launchy.exe

C:\Users\Administrator.LAST7\AppData\Roaming\mjusbsp\magicJack.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\PROGRA~1\AIMP2\AIMP2.exe

C:\Windows\explorer.exe

C:\Windows\system32\taskhost.exe

C:\Windows\explorer.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Administrator.LAST7\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [Cmiboot] C:\Windows\cmiboot.exe

O4 - HKLM\..\Run: [Everything] "C:\Program Files\Everything\Everything.exe" -startup

O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"

O4 - HKCU\..\Run: [cdloader] "C:\Users\Administrator.LAST7\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK

O4 - HKCU\..\Run: [strokeIt] C:\Users\Administrator.LAST7\AppData\Local\TCB Networks\StrokeIt\Bin\StrokeIt.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Administrator.LAST7\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe

O4 - Startup: setup.exe.lnk = Administrator.LAST7\AppData\Roaming\mjusbsp\in00000\setup.exe

O8 - Extra context menu item: Add to &Evernote - res://C:\Program Files\Evernote\Evernote3.5\enbar.dll/2000

O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files\Evernote\Evernote3.5\enbar.dll

O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files\Evernote\Evernote3.5\enbar.dll

O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Sandboxie Service (SbieSvc) - tzuk - C:\Program Files\Sandboxie\SbieSvc.exe

--

End of file - 4670 bytes

PE results

Process PID CPU Description Company Name

System Idle Process 0 85.06

Interrupts n/a 1.53 Hardware Interrupts

DPCs n/a 0.77 Deferred Procedure Calls

System 4

smss.exe 256 Windows Session Manager Microsoft Corporation

csrss.exe 416 Client Server Runtime Process Microsoft Corporation

wininit.exe 472 Windows Start-Up Application Microsoft Corporation

services.exe 524 Services and Controller app Microsoft Corporation

svchost.exe 728 Host Process for Windows Services Microsoft Corporation

AIMP2.exe 644 AIMP2 AIMP DevTeam

dllhost.exe 4088 COM Surrogate Microsoft Corporation

nvvsvc.exe 792 NVIDIA Driver Helper Service, Version 197.45 NVIDIA Corporation

nvvsvc.exe 1336 NVIDIA Driver Helper Service, Version 197.45 NVIDIA Corporation

svchost.exe 832 Host Process for Windows Services Microsoft Corporation

MsMpEng.exe 880 AntiMalware Service Executable Microsoft Corporation

svchost.exe 996 Host Process for Windows Services Microsoft Corporation

audiodg.exe 3508 3.07 Windows Audio Device Graph Isolation Microsoft Corporation

svchost.exe 1072 Host Process for Windows Services Microsoft Corporation

dwm.exe 664 3.07 Desktop Window Manager Microsoft Corporation

WUDFHost.exe 2196 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation

svchost.exe 1116 Host Process for Windows Services Microsoft Corporation

svchost.exe 1260 Host Process for Windows Services Microsoft Corporation

svchost.exe 1440 Host Process for Windows Services Microsoft Corporation

svchost.exe 1564 Host Process for Windows Services Microsoft Corporation

AppleMobileDeviceService.exe 1652 Apple Mobile Device Service Apple Inc.

mDNSResponder.exe 1696 Bonjour Service Apple Inc.

SbieSvc.exe 1772 Sandboxie Service tzuk

svchost.exe 1892 Host Process for Windows Services Microsoft Corporation

taskhost.exe 848 Host Process for Windows Tasks Microsoft Corporation

svchost.exe 2112 Host Process for Windows Services Microsoft Corporation

SearchIndexer.exe 2816 Microsoft Windows Search Indexer Microsoft Corporation

svchost.exe 4040 Host Process for Windows Services Microsoft Corporation

svchost.exe 1716 Host Process for Windows Services Microsoft Corporation

taskhost.exe 340 Host Process for Windows Tasks Microsoft Corporation

svchost.exe 3124 Host Process for Windows Services Microsoft Corporation

lsass.exe 552 Local Security Authority Process Microsoft Corporation

lsm.exe 560 Local Session Manager Service Microsoft Corporation

csrss.exe 504 Client Server Runtime Process Microsoft Corporation

winlogon.exe 628 Windows Logon Application Microsoft Corporation

explorer.exe 1328 Windows Explorer Microsoft Corporation

Everything.exe 2328 Everything

procexp.exe 720 6.90 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

msseces.exe 2364 Microsoft Security Essentials User Interface Microsoft Corporation

RtHDVCpl.exe 2388 Realtek HD Audio Manager Realtek Semiconductor

RocketDock.exe 2412

strokeit.exe 2476 StrokeIt

Dropbox.exe 2484 Dropbox

Launchy.exe 2504

uTorrent.exe 2528 µTorrent BitTorrent, Inc.

CmUCREye.exe 2444 CmCardMonitor MFC Application

magicJack.exe 928 0.77 magicJack USB Softphone magicJack L.P.

firefox.exe 1304 Firefox Mozilla Corporation

HijackThis.exe 3708 HijackThis Trend Micro Inc.

notepad.exe 1752 Notepad Microsoft Corporation

Thanks

Rick

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...