100% CPU when DL speed is high

[judas123]

I'm using Windows XP with sp2, µtorrent 1.7.7, KAV7 and Look'n'Stot firewall.

When speed is 2-3 Mb the CPU hits 100%. I tried to disable KAV or firewall, and both-> no change. My CPU is Athlon XP 1900+ if this could cause a problem.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:00:54, on 21.2.2008 ?.

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe

C:\Program Files\Soft4Ever\looknstop\looknstop.exe

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe

C:\Program Files\CCProxy\CCProxy.exe

C:\WINDOWS\FixCamera.exe

C:\WINDOWS\tsnp2std.exe

C:\WINDOWS\vsnp2std.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

C:\Program Files\uTorrent\utorrent.exe

C:\WINDOWS\system32\taskmgr.exe

C:\Documents and Settings\Lili\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.vista-inspirat.net/en/

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"

O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto

O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"

O4 - HKLM\..\Run: [CCProxy] C:\Program Files\CCProxy\CCProxy.exe

O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe

O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe

O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll

O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O17 - HKLM\System\CCS\Services\Tcpip\..\{0E3BF171-3A1A-4890-B751-6632FA2661A5}: NameServer = 78.90.72.1,213.240.241.252

O17 - HKLM\System\CS1\Services\Tcpip\..\{0E3BF171-3A1A-4890-B751-6632FA2661A5}: NameServer = 78.90.72.1,213.240.241.252

O17 - HKLM\System\CS2\Services\Tcpip\..\{0E3BF171-3A1A-4890-B751-6632FA2661A5}: NameServer = 78.90.72.1,213.240.241.252

O20 - Winlogon Notify: Antiwpa - C:\WINDOWS\SYSTEM32\antiwpa.dll

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

--

End of file - 6244 bytes

Process PID CPU Description Company Name

System Idle Process 0 65.15

Interrupts n/a 3.03 Hardware Interrupts

DPCs n/a 9.09 Deferred Procedure Calls

System 4

smss.exe 1136 Windows NT Session Manager Microsoft Corporation

csrss.exe 1436 Client Server Runtime Process Microsoft Corporation

winlogon.exe 1460 Windows NT Logon Application Microsoft Corporation

services.exe 1940 Services and Controller app Microsoft Corporation

svchost.exe 348 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 416 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 580 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 644 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 776 Generic Host Process for Win32 Services Microsoft Corporation

spoolsv.exe 1464 Spooler SubSystem App Microsoft Corporation

schedul2.exe 1708 Acronis Scheduler 2 Acronis

nvsvc32.exe 1780 NVIDIA Driver Helper Service, Version 93.71 NVIDIA Corporation

StarWindService.exe 1896 StarWind iSCSI Target (Alcohol Edition) Rocket Division Software

svchost.exe 1964 Generic Host Process for Win32 Services Microsoft Corporation

alg.exe 1760 Application Layer Gateway Service Microsoft Corporation

avp.exe 1644 Kaspersky Anti-Virus Kaspersky Lab

lsass.exe 1960 LSA Shell (Export Version) Microsoft Corporation

taskmgr.exe 3360 Windows TaskManager Microsoft Corporation

explorer.exe 1484 Windows Explorer Microsoft Corporation

NvMixerTray.exe 1408 NVIDIA nForce Mixer Tray Application NVIDIA Corporation

CCProxy.exe 1552 CCProxy Microsoft MFC Application

FixCamera.exe 1568 CameraFixer MFC Application

tsnp2std.exe 296 tsnp2std Microsoft

vsnp2std.exe 1580 CameraMonitor Application Sonix

ctfmon.exe 2240 CTF Loader Microsoft Corporation

Skype.exe 2332 Skype. The whole world can talk for free. Skype Technologies S.A.

RocketDock.exe 2656 3.03

firefox.exe 3732 Firefox Mozilla Corporation

utorrent.exe 1012 7.58

looknstop.exe 2536 Look 'n' Stop Personal Firewall

avp.exe 3320 Kaspersky Anti-Virus Kaspersky Lab

procexp.exe 3180 12.12 Sysinternals Process Explorer Sysinternals

Process: utorrent.exe Pid: 1012

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.2180

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.2180

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.2180

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

browseui.dll Shell Browser UI Library Microsoft Corporation 6.00.2900.2995

c_1251.nls

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0312

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.2180

COMRes.dll Microsoft Corporation 2001.12.4414.0258

ctype.nls

DNSAPI.dll DNS Client API DLL Microsoft Corporation 5.01.2600.2938

dnsq.dll DNSQ Kaspersky Lab 7.00.0000.0125

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.2952

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.2180

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.01.2600.2180

Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2912

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.2991

locale.nls

miscr3.dll Kaspersky Anti-Virus Ring 3 Hooker Helper Kaspersky Lab 7.00.0000.0125

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180

MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.01.2600.3085

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.01.2600.2180

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.3085

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.2180

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2976

ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.2180

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.2948

oleaut32.dll Microsoft Corporation 5.01.2600.2180

PSAPI.DLL Process Status Helper Microsoft Corporation 5.01.2600.2180

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2938

RocketDock.dll

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.3052

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.2938

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.3051

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.2995

sortkey.nls

sorttbls.nls

unicode.nls

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.2622

utorrent.exe

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.2845

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.01.2600.2180

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.2180

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180

[Firon]

Check your drive controllers. Are they set to PIO?

[judas123]

No, mode is DMA 5, but there is checked option let BIOS select transfer mode

[drbits]

Check the drive mode in

My Computer -> Properties -> Hardware -> Device Manager

-> Primary (or secondary) IDE Channel -> Advanced Settings (Current Transfer Mode).

Try turning your computer and starting it back up. Sometimes a DLL conflict will cause this kind of problem.

Try downloading to a different hard drive (physical, not partition) than your System, Boot, and Swap files (these are usually all C: ). This assumes you have a separate drive available (USB 2.0 or firewire drives are quite cheap now).

Make sure you are not downloading to compressed files (the torrent and data directories should be uncompressed and with no encryption). Make sure the drives are defragmented.

[DreadWingKnight]

Why is kapersky hooking into uTorrent's process?

miscr3.dll Kaspersky Anti-Virus Ring 3 Hooker Helper Kaspersky Lab 7.00.0000.0125

[judas123]

I don't know

And still no resolution of my problem. Any suggestions that may be helpful?