winxp freezes

[ddtwelve]

i have win xp and when using utorrent after a while 10-20mins utorrent stops downloaded and freeses up xp

any help

david

i have panda antivirus2007 as well as microsoft standard firewll

[Ultima]

a) get HijackThis from trendsecure.com, run it, view the log, and post the contents here

get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here

[ddtwelve]

ultima

heres the files

Logfile of Trend Micro HijackThis v2.0.0 (BETA)

Scan saved at 22:31:12, on 31/08/2008

Platform: Windows XP SP3 (WinNT 5.01.2600)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\SYSTEM32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe

C:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\WINDOWS\SYSTEM32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Panda Software\Panda Antivirus 2007\apvxdwin.exe

C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe

C:\Program Files\Saitek\Software\ProfilerU.exe

C:\Program Files\Saitek\Software\SaiMfd.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\Program Files\Microsoft IntelliType Pro\type32.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

c:\program files\panda software\panda antivirus 2007\WebProxy.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\DAEMON Tools\daemon.exe

C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE

C:\Program Files\Outlook Express\msimn.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

C:\Documents and Settings\Home\My Documents\downloads\HiJackThis_v2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe

O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup

O4 - HKLM\..\Run: [Profiler] C:\Program Files\Saitek\Software\ProfilerU.exe

O4 - HKLM\..\Run: [saiMfd] C:\Program Files\Saitek\Software\SaiMfd.exe

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O6 "USB001" /M "Stylus C84"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKCU\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /M "Stylus C84" /EF "HKCU"

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

O15 - Trusted Zone: http://www.adultwork.com

O15 - Trusted Zone: http://www.purep10.co.uk

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab

O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab

O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1009953994099

O16 - DPF: {BF6BBE9A-0656-4598-A0CD-32DAC03959B5} (Image Uploader 3.0 Control) - http://www.asda-photo.co.uk/wpp/asda/app/opcuploader.cab

O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://static.photobox.co.uk/sg/common/uploader_uni.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{750303E8-8002-442D-B9BC-B8B4922F982A}: NameServer = 212.139.132.8 212.139.132.9

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTSvcCDA.exe

O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--

End of file - 7509 bytes

Process PID CPU Description Company Name

System Idle Process 0 90.20

Interrupts n/a 0.98 Hardware Interrupts

DPCs n/a 1.96 Deferred Procedure Calls

System 4

smss.exe 428 Windows NT Session Manager Microsoft Corporation

csrss.exe 484 Client Server Runtime Process Microsoft Corporation

winlogon.exe 516 Windows NT Logon Application Microsoft Corporation

services.exe 560 0.98 Services and Controller app Microsoft Corporation

ati2evxx.exe 728 ATI External Event Utility EXE Module ATI Technologies Inc.

svchost.exe 740 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 808 Generic Host Process for Win32 Services Microsoft Corporation

PAVSRV51.EXE 860 On-Access Antivirus Scanner Service. Panda Software International

AVENGINE.EXE 876 Enhanced On-Access Antivirus Scanner Process. Panda Software International

ApVxdWin.exe 680 ApVxdWin Panda Software International

WebProxy.exe 2096 Internet resident proxy Panda Software International

svchost.exe 1028 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1100 Generic Host Process for Win32 Services Microsoft Corporation

spoolsv.exe 1212 Spooler SubSystem App Microsoft Corporation

PsImSvc.exe 1312 Panda Interface Manager Service Panda Software

svchost.exe 1344 Generic Host Process for Win32 Services Microsoft Corporation

ServiceLayer.exe 1624 ServiceLayer Module Nokia.

alg.exe 1648 Application Layer Gateway Service Microsoft Corporation

lsass.exe 572 LSA Shell (Export Version) Microsoft Corporation

ati2evxx.exe 2020 ATI External Event Utility EXE Module ATI Technologies Inc.

explorer.exe 396 Windows Explorer Microsoft Corporation

LaunchApplication.exe 1576 PC Suite Nokia

ProfilerU.exe 1568 Manual Configuration Saitek

SaiMfd.exe 1564 Saitek MFD File System Driver Saitek

dragdiag.exe 1512 SpeedTouch Statistics THOMSON Telecom Belgium

type32.exe 1488 Type32.exe Microsoft Corporation

msimn.exe 2536 Outlook Express Microsoft Corporation

jusched.exe 2092 Java Platform SE binary Sun Microsystems, Inc.

QTTask.exe 2124 QuickTime Task Apple Inc.

CLI.exe 2144 CLI Application (Command Line Interface) ATI Technologies Inc.

CLI.exe 3196 CLI Application (Command Line Interface) ATI Technologies Inc.

CLI.exe 3204 CLI Application (Command Line Interface) ATI Technologies Inc.

ctfmon.exe 2204 CTF Loader Microsoft Corporation

daemon.exe 2216 Virtual DAEMON Manager DT Soft Ltd.

E_S10IC2.EXE 2224 EPSON Status Monitor 3 SEIKO EPSON CORPORATION

iexplore.exe 2780 Internet Explorer Microsoft Corporation

utorrent.exe 3156 4.90 µTorrent BitTorrent, Inc.

procexp.exe 3376 0.98 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process: utorrent.exe Pid: 3156

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.5512

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.5512

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.5512

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0001

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0700

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.5512

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.5512

COMRes.dll Microsoft Corporation 2001.12.4414.0700

credui.dll Credential Manager User Interface Microsoft Corporation 5.01.2600.5512

CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.5512

ctype.nls

DNSAPI.dll DNS Client API DLL Microsoft Corporation 5.01.2600.5625

dot3api.dll 802.3 Autoconfiguration API Microsoft Corporation 5.01.2600.5512

dot3dlg.dll 802.3 UI Helper Microsoft Corporation 5.01.2600.5512

eappcfg.dll Eap Peer Config Microsoft Corporation 5.01.2600.5512

eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.01.2600.5512

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.5512

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.5512

icl_cfg.dll Internet Resident Configuration Panda Software International 6.02.0029.0512

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.01.2600.5512

Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.5512

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.5512

locale.nls

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.5512

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.01.2600.5512

MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.01.2600.5512

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.01.2600.5512

MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.02.3104.0000

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.5512

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.5625

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.5512

netshell.dll Network Connections Shell Microsoft Corporation 5.01.2600.5512

ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.5512

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.5512

oleaut32.dll Microsoft Corporation 5.01.2600.5512

OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.01.2600.5512

pavlsp.dll Internet Resident Layered Service Provider Panda Software International 6.09.0018.0059

PavTrc.dll Internet resident forwarding Panda Software International 5.12.0017.0520

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.5512

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.5512

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.5507

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.5512

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.5512

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.5512

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.5512

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.5512

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.5512

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.5512

sortkey.nls

sorttbls.nls

unicode.nls

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.5512

utorrent.exe µTorrent BitTorrent, Inc. 1.08.0000.11813

UxTheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.5512

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.5512

WINSTA.dll Winstation Library Microsoft Corporation 5.01.2600.5512

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.5512

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.5512

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.5512

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.5512

WSOCK32.dll Windows Socket 32-Bit DLL Microsoft Corporation 5.01.2600.5512

WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.01.2600.5512

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.01.2600.5512

[Firon]

Panda has been known to crash computers in the past.

[ddtwelve]

i have never had any probs with panda in utorrent 1.7

david

[thelittlefire]

What are your settings related to speed guide (Ctrl-G) and Ctrl-P > Advanced > net.max_halfopen ?

Would you mind temporarily uninstalling panda to remove it as a cause? It's the only thing I don't recognize as being essential to operation injected into the utorrent.exe process.