uTorrent not shutting down

[myowneq]

Greetings,

I have uTorrent 1.7.5 running on Vista Premium. I've noticed that uTorrent does not want to shut down after it's been running for more than a few hours. Lately, it seems to be getting worse, but it could be my imagination or frustration. My shut down and restart times are much higher when uTorrent has been open. If I attempt to close it, it clears off the taskbar but the process continues to run. I can't kill it or end it. Everything else runs fine.

I've got a HiJack This log and a Procexp log. These log were taken after uTorrent ran for three hours, attempted to close the program, and it froze. At this point, I ran both programs.

Any ideas or suggestions?

Thanks,

Timothy

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:22:01 AM, on 10/24/2007

Platform: Windows Vista (WinNT 6.00.1904)

MSIE: Internet Explorer v7.00 (7.00.6000.16546)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe

C:\Program Files\SiteAdvisor\6172\SiteAdv.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Spybot\TeaTimer.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe

C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Winamp\winamp.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/g/startpage.html?Ch=Consumer&Br=GTW&Loc=ENG_US&Sys=PTB&M=NX860XL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gateway.com/g/startpage.html?Ch=Consumer&Br=GTW&Loc=ENG_US&Sys=PTB&M=NX860XL

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gateway.com/g/sidepanel.html?Ch=Consumer&Br=GTW&Loc=ENG_US&Sys=PTB&M=NX860XL

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\google\BAE.dll

O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe

O4 - HKLM\..\Run: [NapsterShell] C:\Program Files\Napster\napster.exe /systray

O4 - HKLM\..\Run: [bigFix] c:\program files\Bigfix\bigfix.exe /atstartup

O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6172\SiteAdv.exe

O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Media Codec Update Service] C:\Program Files\Essentials Codec Pack\update.exe -silent

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot\TeaTimer.exe

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Startup: Bluetooth.lnk = ?

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot\SDHelper.dll

O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe

O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe

O13 - Gopher Prefix:

O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://upload.mediamax.com/Upload/XUpload.ocx

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot\SDWinSec.exe

O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6172\SAService.exe

O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe

--

End of file - 8304 bytes

Process PID CPU Description Company Name

System Idle Process 0 91.32

Interrupts n/a 0.75 Hardware Interrupts

DPCs n/a 1.50 Deferred Procedure Calls

System 4 0.75

smss.exe 512 Windows Session Manager Microsoft Corporation

csrss.exe 580 Client Server Runtime Process Microsoft Corporation

wininit.exe 632 Windows Start-Up Application Microsoft Corporation

services.exe 676 0.75 Services and Controller app Microsoft Corporation

svchost.exe 888 Host Process for Windows Services Microsoft Corporation

ehmsas.exe 4060 Media Center Media Status Aggregator Service Microsoft Corporation

BTStackServer.exe 1048 Bluetooth Stack COM Server Broadcom Corporation.

NMIndexStoreSvr.exe 2208 Nero Home Nero AG

dllhost.exe 4612 COM Surrogate Microsoft Corporation

svchost.exe 944 Host Process for Windows Services Microsoft Corporation

svchost.exe 1088 Host Process for Windows Services Microsoft Corporation

audiodg.exe 1248 Windows Audio Device Graph Isolation Microsoft Corporation

svchost.exe 1136 Host Process for Windows Services Microsoft Corporation

dwm.exe 2044 2.25 Desktop Window Manager Microsoft Corporation

svchost.exe 1168 Host Process for Windows Services Microsoft Corporation

taskeng.exe 2036 Task Scheduler Engine Microsoft Corporation

taskeng.exe 2912 Task Scheduler Engine Microsoft Corporation

SLsvc.exe 1284 Microsoft Software Licensing Service Microsoft Corporation

svchost.exe 1324 Host Process for Windows Services Microsoft Corporation

svchost.exe 1504 Host Process for Windows Services Microsoft Corporation

vsmon.exe 1528 TrueVector Service Check Point Software Technologies LTD

ScanningProcess.exe 1840

ScanningProcess.exe 1516

spoolsv.exe 1992 Spooler SubSystem App Microsoft Corporation

svchost.exe 2028 Host Process for Windows Services Microsoft Corporation

AppleMobileDeviceService.exe 3060 Apple Mobile Device Service Apple, Inc.

svchost.exe 2416 Host Process for Windows Services Microsoft Corporation

IAANTmon.exe 3228 RAID Monitor Intel Corporation

svchost.exe 3436 Host Process for Windows Services Microsoft Corporation

SAService.exe 1404 SiteAdvisor McAfee, Inc.

stacsv.exe 3568 STacSV Module SigmaTel, Inc.

svchost.exe 3776 Host Process for Windows Services Microsoft Corporation

svchost.exe 3824 Host Process for Windows Services Microsoft Corporation

SearchIndexer.exe 2000 Microsoft Windows Search Indexer Microsoft Corporation

SearchProtocolHost.exe 1060 Microsoft Windows Search Protocol Host Microsoft Corporation

SearchFilterHost.exe 1412 Microsoft Windows Search Filter Host Microsoft Corporation

SDWinSec.exe 2336 Spybot-S&D Security Center integration Safer Networking Ltd.

NMIndexingService.exe 3448 Nero Home Nero AG

iPodService.exe 4012 iPodService Module Apple Inc.

lsass.exe 688 Local Security Authority Process Microsoft Corporation

lsm.exe 696 Local Session Manager Service Microsoft Corporation

csrss.exe 644 Client Server Runtime Process Microsoft Corporation

winlogon.exe 804 Windows Logon Application Microsoft Corporation

explorer.exe 532 0.75 Windows Explorer Microsoft Corporation

IAAnotif.exe 2352 Event Monitor User Notification Tool Intel Corporation

SynTPEnh.exe 2528 Synaptics TouchPad Enhancements Synaptics, Inc.

sm56hlpr.exe 2620 Application executable file Motorola Inc.

SiteAdv.exe 2644 SiteAdvisor McAfee, Inc.

zlclient.exe 2728 ZoneAlarm Client Check Point Software Technologies LTD

mantispm.exe 3656 Spam Filter

iTunesHelper.exe 3124 iTunesHelper Module Apple Inc.

NMBgMonitor.exe 3888 Nero Home Nero AG

ehtray.exe 3912 Media Center Tray Applet Microsoft Corporation

TeaTimer.exe 3924 0.75 System settings protector Safer Networking Limited

BTTray.exe 1456 Bluetooth Tray Application Broadcom Corporation.

BTTray.exe 2140 Bluetooth Tray Application Broadcom Corporation.

iexplore.exe 156 Internet Explorer Microsoft Corporation

uTorrent.exe 2668

OUTLOOK.EXE 3520 Microsoft Office Outlook Microsoft Corporation

iexplore.exe 6000 Internet Explorer Microsoft Corporation

procexp.exe 4300 1.50 Sysinternals Process Explorer Sysinternals

rundll32.exe 2520 Windows host process (Rundll32) Microsoft Corporation

wmplayer.exe 2156 Windows Media Player Microsoft Corporation

mfpmp.exe 1780 Media Foundation Protected Pipeline EXE Microsoft Corporation

winamp.exe 4972 Winamp Nullsoft

[Switeck]

My guess is Zone Alarm is causing the problems.

This stuff I don't recognize, but hopefully you do:

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [bigFix] c:\program files\Bigfix\bigfix.exe /atstartup

O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6172\SiteAdv.exe

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://upload.mediamax.com/Upload/XUpload.ocx

I am always wary of BHO's: (sometimes even for KNOWN ones!)

O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll

O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\google\BAE.dll

[cpc197c]

-SynTPEnh is Synaptics Touchpad drivers. He must be on a laptop

-rundll32.exe oobefldr.dll,ShowWelcomeCenter is what it says there, the welcome center. That can be deleted unless you like the welcome center for some strange reason

[myowneq]

I am on a laptop. It's a new Gateway and i haven't completely used some of the preinstalled stuff to see if I want to keep it or not.

Things I know for sure are BigFix. Welcome Center and Big Fix fall into that category of yet to explore.

Whats a BHO?

[Switeck]

Browser Helper Object. Basically a mini-program that runs "inside" your internet browser.

[myowneq]

Well, that explains something then. The Google BHO that redirects my browser when it can't locate something because ZA is legitimately blocking it. Can I just remove that one from the registry and delete the files?

As for the McAfee Site Advisor, same thing?

Thanks.

[Firon]

Sure, but I doubt anything besides Zone Alarm is causing problems.

[myowneq]

I can understand ZA may be the problem, but I'll change uTorrent before I change ZA. I'm not ready to throw the two year subscription I just bought two months ago. I understand BitTorrent is somewhat like uTorrent?

[Firon]

BT is identical. And seriously, ZA is just awful. Azureus has a wiki page detailing all sorts of problems with it, and if you look at ZA's own forums, there's tons of posts of people having trouble with just about every P2P app in existence.

Toss the subscription and get a better firewall.

[PacmanLopez]

Any recommended firewall?

[Legal Eagle]

I have exactly the same problem and am not using Zone Alarm. I am currently using Eset Secutity Suite. Any other suggestions would be appreciated.

[Firon]

Sygate, Outpost, and Comodo are all good choices.

[Legal Eagle]

Since the error occurs with both Zone Alarm and NOD32, it appears that the problem is probably not caused by the firewall. It seems to fall back on there being a problem with uTorrent 1.7.5

[DreadWingKnight]

Occurs with both, but not with neither.

This issue isn't caused by uT.