Utorrent 2.0.2 Using all ram after awile

[Tooget]

Sometimes its working fine and then at times it will just start eating ram up to 1gb, and yes it shows this in process list that utorrent is actually eating it, as soon as i end utorrent.exe and restart it everything seems ok, for a couple of hours and it repeats. I also get this message sometimes

"Some software installed on your computer prevents uTorrent from working properly. This is possibly caused by the following DLLs ' ' "

My Hijackthis log is Below!!!

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 9:35:45 AM, on 7/27/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Java\jre6\bin\jqs.exe

c:\apache\APACHE.EXE

C:\WINDOWS\system32\HPZipm12.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

c:\apache\APACHE.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\rdpclip.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\WINDOWS\system32\winlogon.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Documents and Settings\winsupport\My Documents\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O1 - Hosts: ::1 localhost

O1 - Hosts: 94.232.248.66 antivirsystem-pro.microsoft.com

O1 - Hosts: 94.232.248.66 antivir-system-pro.com

O1 - Hosts: 94.232.248.66 www.antivir-system-pro.com

O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKUS\S-1-5-21-1659004503-308236825-725345543-1003\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Ann B')

O4 - HKUS\S-1-5-21-1659004503-308236825-725345543-1003\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'Ann B')

O4 - HKUS\S-1-5-21-1659004503-308236825-725345543-1003\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'Ann B')

O4 - HKUS\S-1-5-21-1659004503-308236825-725345543-1005\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'jared bauer')

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: McAfee Application Installer Cleanup (0034601277405275) (0034601277405275mcinstcleanup) - Unknown owner - C:\DOCUME~1\ANNB~1\LOCALS~1\Temp\003460~1.EXE (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Google Update Service (gupdate1ca1886ae149830) (gupdate1ca1886ae149830) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: PHPGeekUtil - Unknown owner - c:\apache\APACHE.EXE

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

--

End of file - 7424 bytes

=========================================================

Here is my Process Explorer Log!!!

Process PID CPU Private Bytes Working Set Description Company Name

System Idle Process 0 80.81 0 K 28 K

Interrupts n/a 0 K 0 K Hardware Interrupts

DPCs n/a 9.09 0 K 0 K Deferred Procedure Calls

System 4 1.01 0 K 52 K

smss.exe 640 156 K 264 K Windows NT Session Manager Microsoft Corporation

csrss.exe 688 1,668 K 1,928 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 712 9,620 K 5,184 K Windows NT Logon Application Microsoft Corporation

services.exe 760 1.01 15,428 K 6,404 K Services and Controller app Microsoft Corporation

svchost.exe 932 4,204 K 2,936 K Generic Host Process for Win32 Services Microsoft Corporation

igfxsrvc.exe 4388 1,580 K 4,288 K igfxsrvc Module Intel Corporation

svchost.exe 1016 2,772 K 2,020 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1108 24,612 K 23,192 K Generic Host Process for Win32 Services Microsoft Corporation

wscntfy.exe 292 580 K 2,384 K Windows Security Center Notification App Microsoft Corporation

svchost.exe 1152 2,520 K 1,724 K Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1288 2,292 K 160 K Generic Host Process for Win32 Services Microsoft Corporation

spoolsv.exe 1452 3,968 K 2,236 K Spooler SubSystem App Microsoft Corporation

svchost.exe 2564 1,816 K 692 K Generic Host Process for Win32 Services Microsoft Corporation

AppleMobileDeviceService.exe 2596 2,548 K 2,152 K Apple Mobile Device Service Apple Inc.

mDNSResponder.exe 2616 1,908 K 1,344 K Bonjour Service Apple Inc.

jqs.exe 2824 2,216 K 1,788 K Java Quick Starter Service Sun Microsystems, Inc.

Apache.exe 2888 1,320 K 204 K

Apache.exe 3308 2,808 K 972 K

HPZipm12.exe 2912 544 K 444 K PML Driver HP

svchost.exe 3004 3,384 K 76 K Generic Host Process for Win32 Services Microsoft Corporation

WLIDSVC.EXE 3240 6,692 K 1,756 K Microsoft® Windows Live ID Service Microsoft Corporation

WLIDSVCM.EXE 2608 1,232 K 204 K Microsoft® Windows Live ID Service Monitor Microsoft Corporation

alg.exe 1648 1,704 K 204 K Application Layer Gateway Service Microsoft Corporation

iPodService.exe 2472 3,072 K 1,080 K iPodService Module Apple Inc.

lsass.exe 772 4,628 K 3,480 K LSA Shell (Export Version) Microsoft Corporation

logon.scr 1956 420 K 1,776 K Logon Screen Saver Microsoft Corporation

csrss.exe 1964 832 K 372 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 5540 4,032 K 3,324 K Windows NT Logon Application Microsoft Corporation

wscntfy.exe 3980 560 K 316 K Windows Security Center Notification App Microsoft Corporation

igfxsrvc.exe 4640 1,584 K 148 K igfxsrvc Module Intel Corporation

csrss.exe 6008 948 K 2,120 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 5724 4,212 K 4,128 K Windows NT Logon Application Microsoft Corporation

rdpclip.exe 6080 2,136 K 2,100 K RDP Clip Monitor Microsoft Corporation

wscntfy.exe 4188 604 K 344 K Windows Security Center Notification App Microsoft Corporation

csrss.exe 2540 1,084 K 2,920 K Client Server Runtime Process Microsoft Corporation

winlogon.exe 5024 5,180 K 3,148 K Windows NT Logon Application Microsoft Corporation

rdpclip.exe 5880 1,196 K 3,612 K RDP Clip Monitor Microsoft Corporation

wscntfy.exe 5440 568 K 2,352 K Windows Security Center Notification App Microsoft Corporation

explorer.exe 6064 13,028 K 4,532 K Windows Explorer Microsoft Corporation

hkcmd.exe 2416 1,520 K 424 K hkcmd Module Intel Corporation

igfxpers.exe 5428 1,288 K 412 K persistence Module Intel Corporation

issch.exe 4536 344 K 324 K InstallShield Update Service Scheduler InstallShield Software Corporation

PDVDServ.exe 1500 1,420 K 348 K PowerDVD RC Service Cyberlink Corp.

hpwuSchd2.exe 4784 616 K 484 K hpwuSchd Application Hewlett-Packard

jusched.exe 3940 1,220 K 144 K Java Update Scheduler Sun Microsystems, Inc.

ctfmon.exe 5992 888 K 520 K CTF Loader Microsoft Corporation

msmsgs.exe 4516 1,776 K 1,244 K Windows Messenger Microsoft Corporation

explorer.exe 3220 13,048 K 6,464 K Windows Explorer Microsoft Corporation

issch.exe 1464 276 K 288 K InstallShield Update Service Scheduler InstallShield Software Corporation

PDVDServ.exe 3928 1,476 K 380 K PowerDVD RC Service Cyberlink Corp.

hpwuSchd2.exe 4244 600 K 452 K hpwuSchd Application Hewlett-Packard

jusched.exe 1084 1,292 K 204 K Java Update Scheduler Sun Microsystems, Inc.

uTorrent.exe 2632 6.06 1,049,272 K 520,792 K µTorrent BitTorrent, Inc.

procexp.exe 192 1.01 12,000 K 15,412 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com

firefox.exe 5080 103,220 K 91,552 K Firefox Mozilla Corporation

plugin-container.exe 5596 19,036 K 1,468 K Plugin Container for Firefox Mozilla Corporation

explorer.exe 5140 12,544 K 17,456 K Windows Explorer Microsoft Corporation

PDVDServ.exe 596 1,476 K 4,228 K PowerDVD RC Service Cyberlink Corp.

hpwuSchd2.exe 6068 600 K 2,248 K hpwuSchd Application Hewlett-Packard

jusched.exe 972 1,312 K 3,688 K Java Update Scheduler Sun Microsystems, Inc.

issch.exe 3392 1.01 276 K 1,088 K InstallShield Update Service Scheduler InstallShield Software Corporation

explorer.exe 2808 13,556 K 19,392 K Windows Explorer Microsoft Corporation

hkcmd.exe 6096 1,520 K 4,476 K hkcmd Module Intel Corporation

igfxpers.exe 5956 1,292 K 4,108 K persistence Module Intel Corporation

issch.exe 260 344 K 1,328 K InstallShield Update Service Scheduler InstallShield Software Corporation

PDVDServ.exe 2952 1,420 K 4,144 K PowerDVD RC Service Cyberlink Corp.

hpwuSchd2.exe 4044 616 K 2,332 K hpwuSchd Application Hewlett-Packard

jusched.exe 572 1,216 K 3,376 K Java Update Scheduler Sun Microsystems, Inc.

ctfmon.exe 5492 916 K 3,588 K CTF Loader Microsoft Corporation

GoogleToolbarNotifier.exe 2840 3,456 K 1,700 K GoogleToolbarNotifier Google Inc.

msmsgs.exe 4868 1,768 K 2,228 K Windows Messenger Microsoft Corporation

Process: uTorrent.exe Pid: 2632

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.5512

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.5512

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.5755

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.2

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.700

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.5512

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.5512

COMRes.dll Microsoft Corporation 2001.12.4414.700

credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.5512

CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.5512

ctype.nls

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.5625

dot3api.dll 802.3 Autoconfiguration API Microsoft Corporation 5.1.2600.5512

dot3dlg.dll 802.3 UI Helper Microsoft Corporation 5.1.2600.5512

eappcfg.dll Eap Peer Config Microsoft Corporation 5.1.2600.5512

eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.1.2600.5512

GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.5698

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.5512

iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 8.0.6001.18923

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.5512

Iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.5512

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.5781

locale.nls

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 2.0.2.0

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.5512

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.1.2600.5875

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.1.2600.5512

MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.2.3104.0

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.5512

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.5625

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.5694

netshell.dll Network Connections Shell Microsoft Corporation 5.1.2600.5512

Normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.0.5441.0

ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.5755

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.5512

oleaut32.dll Microsoft Corporation 5.1.2600.5512

OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.1.2600.5512

PSAPI.DLL Process Status Helper Microsoft Corporation 5.1.2600.5512

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.5512

rdpsnd.dll Terminal Server MultiMedia Driver Microsoft Corporation 5.1.2600.5512

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.5795

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.5507

rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.5512

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.1.2600.5512

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.5834

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.1.2600.5512

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.5622

shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.5512

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.5912

sortkey.nls

sorttbls.nls

unicode.nls

urlmon.dll OLE32 Extensions for Win32 Microsoft Corporation 8.0.6001.18923

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.5512

USERENV.dll Userenv Microsoft Corporation 5.1.2600.5512

uTorrent.exe µTorrent BitTorrent, Inc. 2.0.2.19648

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.5512

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.5512

WININET.dll Internet Extensions for Win32 Microsoft Corporation 8.0.6001.18923

WINMM.dll MCI API DLL Microsoft Corporation 5.1.2600.5512

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.1.2600.5512

WINSTA.dll Winstation Library Microsoft Corporation 5.1.2600.5512

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.5512

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.5512

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.5512

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.5512

WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.1.2600.5512

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.5512

[Switeck]

I saw this much at least:

O1 - Hosts: 94.232.248.66 antivirsystem-pro.microsoft.com

O1 - Hosts: 94.232.248.66 antivir-system-pro.com

O1 - Hosts: 94.232.248.66 www.antivir-system-pro.com

Redirects like that usually screams "malware infested system!"

[paintball9]

You have a webserver running, Any chance that Apache is interfering with some procedures?

[Tooget]

ok thanks, ill try run super antispyware and uninstalled apache see if it helps.

[Tooget]

Uninstalled apache, and ran super antispyware which found some stuff.

Still the same damn issue ;\

[DreadWingKnight]

Is it actually the utorrent.exe process eating the ram?

[Andros0]

Just to chime in... I'm still searching the forum to see if this has been solved/explained anywhere...

I've been running into the same issue.

When uTorrent 2.0.2 first starts up, it's using 15,000-20,000K and it slowly climbs from there. When I come home from work it can easily be over 350,000K at which point I shut it down and restart it again.

Currently, after 30 minutes, it's up to 65,000K

[paintball9]

That definitely sounds like a memory leak, be it a slow one. Either of you, have you tried the new beta (2.0.3)?

[Andros0]

I have not tried the beta yet

BTW, just got home & w/program running for 12 1/2 hrs; memory usage is 350,528K

uTorrent for me is a "set it and forget it" program, I seed 24/7 and d/l a couple of times a week. I probably won't get the beta until it goes full release since I'm lazy & don't want to have to worry about any other bugs/issues (which there may be or otherwise it wouldn't be a beta, right?

Stopping & restarting the program resolves the issue and as annoying as it is, it does "solve" the problem.

[paintball9]

Well seeing as we don't know the cause of the problem trying out a new beta may fix it by accident. but we wont know until you try. It's true that a beta can have bugs but generally each one gets better as the bugs get found. 2.03 is actually getting to be pretty decent from what I've seen. And you can always go back to 2.02 if it doesn't help or if you find other problems.

In the mean time would you mind posting some logs (HJT and Process Explorer) Instructions at the bottom of this link. If you could run it while the ram usage is high it would help more and possibly show if something is interfering with normal operation.

http://forum.utorrent.com/viewtopic.php?pid=258238#p258238

[Andros0]

10.4

I've shut it down for now; tomorrow, after it's run for a few hours, I'll post the logs

Thank you in advance for trying to assist

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:32:28 PM, on 07/31/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe

C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe

C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe

C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

F:\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe

C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

F:\nHancer\nHancerService.exe

C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe

F:\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe

C:\WINDOWS\Explorer.EXE

F:\CA\CA Internet Security Suite\CA Personal Firewall\capfsem.exe

C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Windows Defender\MSASCui.exe

F:\AnalogX\CookieWall\cookie.exe

C:\Program Files\Lexmark 1200 Series\lxczbmon.exe

F:\BOINC\boinctray.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Logitech\SetPointP\SetPoint.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\WINDOWS\system32\RUNDLL32.EXE

F:\iTunes\iTunesHelper.exe

F:\CA\CA Internet Security Suite\cctray\cctray.exe

F:\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe

C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE

F:\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe

F:\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe

C:\Program Files\Microsoft Money Plus\MNYCoreFiles\mnybbsvc.exe

F:\CA\CA Internet Security Suite\CA Anti-Spyware\CAPPActiveProtection.exe

F:\SpeedFan\speedfan.exe

F:\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe

F:\Trillian\trillian.exe

F:\CA\CA Internet Security Suite\ccprovsp.exe

C:\Program Files\iPod\bin\iPodService.exe

F:\uTorrent\uTorrent.exe

C:\WINDOWS\system32\taskmgr.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

F:\Various\Process Explorer\procexp.exe

F:\Trend Micro\HijackThis\HiJackThis.exe

C:\WINDOWS\regedit.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://news.google.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [CookieWall] F:\AnalogX\CookieWall\cookie.exe

O4 - HKLM\..\Run: [boincmgr] "F:\BOINC\boincmgr.exe" /a /s

O4 - HKLM\..\Run: [boinctray] "F:\BOINC\boinctray.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "F:\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [cctray] "F:\CA\CA Internet Security Suite\cctray\cctray.exe"

O4 - HKLM\..\Run: [QOELOADER] "F:\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe"

O4 - HKLM\..\Run: [CAVRID] "F:\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe"

O4 - HKLM\..\Run: [cafwc] F:\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe -cl

O4 - HKLM\..\Run: [capfasem] F:\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe

O4 - HKLM\..\Run: [capfupgrade] F:\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe

O4 - HKCU\..\Run: [MoneyBackgoundBanking] "C:\Program Files\Microsoft Money Plus\MNYCoreFiles\mnybbsvc.exe"

O4 - HKCU\..\Run: [igndlm.exe] G:\IGN\Download Manager\DLM.exe /windowsstart /startifwork

O4 - Startup: SpeedFan.lnk = F:\SpeedFan\speedfan.exe

O4 - Startup: Trillian.lnk = F:\Trillian\trillian.exe

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {07246F83-6D48-4559-81EC-117CBAE54F1B} (Microsoft Office Live Workspace Upload Tool) - http://workspace.office.live.com/Misc/Microsoft.OfficeLive.Workspace.RichUpload.cab

O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/betapit/PCPitStop.CAB

O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop.com/internet/pcpConnCheck.cab

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1232951311218

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1232951383078

O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab

O16 - DPF: {9732FB42-C321-11D1-836F-00A0C993F125} (mhLabel Class) - http://www.pcpitstop.com/mhLbl.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553512000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - F:\Stardock\Fences\FencesMenu.dll

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: CaCCProvSP - Unknown owner - F:\CA\CA Internet Security Suite\ccprovsp.exe

O23 - Service: CAISafe - Computer Associates International, Inc. - F:\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: nHancer Support (nHancer) - KSE - Korndörfer Software Engineering - F:\nHancer\nHancerService.exe

O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

O23 - Service: PPCtlPriv - CA, Inc. - F:\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe

O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - F:\SiSoftware\SiSoftware Sandra Lite 2010\RpcAgentSrv.exe

O23 - Service: HIPS Event Manager (UmxAgent) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe

O23 - Service: HIPS Configuration Interpreter (UmxCfg) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe

O23 - Service: HIPS Firewall Helper (UmxFwHlp) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe

O23 - Service: HIPS Policy Manager (UmxPol) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe

O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe

O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - F:\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe

--

End of file - 14070 bytes

Process Explorer

Process PID CPU Private Bytes Working Set Description Company Name Start Time Virtual Size Peak Working Set

DPCs n/a 0 K 0 K Deferred Procedure Calls n/a 0 K 0 K

Interrupts n/a 0 K 0 K Hardware Interrupts n/a 0 K 0 K

System 4 0.74 0 K 244 K n/a 1,884 K 10,228 K

System Idle Process 0 45.96 0 K 28 K n/a 0 K 0 K

smss.exe 1476 172 K 420 K Windows NT Session Manager Microsoft Corporation 12:49:37 AM 07/31/2010 3,808 K 432 K

LEXBCES.EXE 604 684 K 2,160 K LexBce Service Lexmark International, Inc. 12:49:58 AM 07/31/2010 20,720 K 2,160 K

WLIDSVCM.EXE 2128 712 K 2,220 K Microsoft® Windows Live ID Service Monitor Microsoft Corporation 12:50:46 AM 07/31/2010 21,548 K 2,228 K

UpdateCenterService.exe 3388 872 K 3,104 K NVIDIA Update Center Service NVIDIA 12:50:35 AM 07/31/2010 25,448 K 3,104 K

UmxPol.exe 2868 1,012 K 3,416 K HIPS Policy Manager Service CA 12:50:04 AM 07/31/2010 27,580 K 3,424 K

QOELoader.exe 4060 1,096 K 2,948 K QOELoader Application CA 12:52:33 AM 07/31/2010 19,980 K 2,948 K

boinctray.exe 4044 1,128 K 2,896 K BOINC System Tray for Windows Space Sciences Laboratory 12:52:08 AM 07/31/2010 20,516 K 2,896 K

lxczbmon.exe 2828 1,144 K 3,204 K Lexmark 1200 Series Button Monitor Lexmark International, Inc. 12:52:05 AM 07/31/2010 20,980 K 3,456 K

MDM.EXE 2920 1,204 K 3,592 K Machine Debug Manager Microsoft Corporation 12:50:24 AM 07/31/2010 35,120 K 3,620 K

PPCtlPriv.exe 1400 1,248 K 3,840 K CA Anti-Spyware Elevation service CA, Inc. 12:52:58 AM 07/31/2010 35,800 K 3,980 K

lxczbmgr.exe 3780 1,268 K 3,400 K Lexmark 1200 Series Button Manager Lexmark International, Inc. 12:51:53 AM 07/31/2010 29,488 K 3,400 K

jusched.exe 2188 1,432 K 3,748 K Java Update Scheduler Sun Microsystems, Inc. 12:52:17 AM 07/31/2010 34,824 K 3,748 K

mnybbsvc.exe 3552 1,572 K 3,588 K Microsoft Money Background Banking Service Microsoft® Corporation 12:52:46 AM 07/31/2010 18,620 K 3,632 K

realsched.exe 1748 1,588 K 204 K RealNetworks Scheduler RealNetworks, Inc. 12:52:10 AM 07/31/2010 38,632 K 3,888 K

notepad.exe 1868 1,716 K 604 K Notepad Microsoft Corporation 12:41:37 PM 07/31/2010 33,008 K 4,440 K

cavrid.exe 1796 1,792 K 5,212 K CA Anti-Virus Realtime Infection Report CA, Inc. 12:52:36 AM 07/31/2010 39,828 K 5,212 K

csrss.exe 1776 1,912 K 5,084 K Client Server Runtime Process Microsoft Corporation 12:49:38 AM 07/31/2010 30,912 K 8,116 K

svchost.exe 4020 1,916 K 4,844 K Generic Host Process for Win32 Services Microsoft Corporation 12:50:14 AM 07/31/2010 43,308 K 4,864 K

LEXPPS.EXE 1432 1,940 K 4,328 K LEXPPS.EXE Lexmark International, Inc. 12:49:59 AM 07/31/2010 45,604 K 4,344 K

mDNSResponder.exe 2672 1,940 K 4,568 K Bonjour Service Apple Inc. 12:50:17 AM 07/31/2010 31,872 K 4,580 K

alg.exe 3648 1,960 K 4,324 K Application Layer Gateway Service Microsoft Corporation 12:51:23 AM 07/31/2010 34,648 K 4,332 K

cookie.exe 2228 2,340 K 5,092 K AnalogX CookieWall AnalogX, LLC 12:52:02 AM 07/31/2010 32,192 K 5,132 K

vetmsg.exe 2016 2,516 K 5,196 K CA Anti-Virus Realtime Messaging Service CA, Inc. 12:50:37 AM 07/31/2010 36,668 K 5,508 K

taskmgr.exe 4560 2,560 K 2,288 K Windows TaskManager Microsoft Corporation 11:37:58 AM 07/31/2010 42,284 K 6,728 K

capfsem.exe 3080 2,620 K 6,076 K CA Personal Firewall Application CA, Inc. 12:51:22 AM 07/31/2010 49,252 K 6,096 K

iPodService.exe 5232 2,684 K 4,496 K iPodService Module (32-bit) Apple Inc. 12:53:18 AM 07/31/2010 38,256 K 4,720 K

services.exe 1312 0.37 2,700 K 5,100 K Services and Controller app Microsoft Corporation 12:49:42 AM 07/31/2010 39,036 K 5,248 K

AppleMobileDeviceService.exe 2068 2,716 K 4,060 K Apple Mobile Device Service Apple Inc. 12:50:15 AM 07/31/2010 24,636 K 4,068 K

svchost.exe 1752 2,776 K 5,508 K Generic Host Process for Win32 Services Microsoft Corporation 12:49:54 AM 07/31/2010 43,316 K 5,664 K

lsass.exe 1368 2,816 K 1,236 K LSA Shell (Export Version) Microsoft Corporation 12:49:43 AM 07/31/2010 39,468 K 6,000 K

nTuneCmd.exe 1120 2,952 K 5,984 K NVIDIA nTune Command NVIDIA 12:50:51 AM 07/31/2010 37,704 K 5,996 K

jqs.exe 2332 3,116 K 2,304 K Java Quick Starter Service Sun Microsystems, Inc. 12:50:22 AM 07/31/2010 40,220 K 17,716 K

notepad.exe 5056 3,188 K 1,056 K Notepad Microsoft Corporation 12:32:33 PM 07/31/2010 42,384 K 9,040 K

svchost.exe 2840 3,372 K 5,932 K Generic Host Process for Win32 Services Microsoft Corporation 12:50:34 AM 07/31/2010 44,180 K 6,088 K

nvsvc32.exe 1048 3,516 K 5,228 K NVIDIA Driver Helper Service, Version 197.45 NVIDIA Corporation 12:49:44 AM 07/31/2010 39,796 K 6,696 K

spoolsv.exe 1536 3,600 K 5,556 K Spooler SubSystem App Microsoft Corporation 12:49:59 AM 07/31/2010 48,884 K 5,556 K

ccprovsp.exe 4156 3,872 K 6,232 K CCProvSP CA, Inc. 12:53:09 AM 07/31/2010 32,660 K 6,236 K

svchost.exe 1664 3,888 K 6,628 K Generic Host Process for Win32 Services Microsoft Corporation 12:49:50 AM 07/31/2010 73,744 K 6,700 K

UmxAgent.exe 3496 1.84 4,024 K 7,708 K HIPS Event Manager CA 12:50:06 AM 07/31/2010 41,052 K 7,852 K

svchost.exe 508 4,036 K 7,248 K Generic Host Process for Win32 Services Microsoft Corporation 12:49:51 AM 07/31/2010 49,524 K 7,280 K

rundll32.exe 4056 4,324 K 6,124 K Run a DLL as an App Microsoft Corporation 12:52:19 AM 07/31/2010 44,148 K 9,396 K

KHALMNPR.exe 3968 4,540 K 6,716 K Logitech KHAL Main Process Logitech, Inc. 12:52:35 AM 07/31/2010 61,984 K 6,716 K

UmxCfg.exe 1628 4,588 K 8,608 K HIPS Configuration Engine CA 12:50:01 AM 07/31/2010 54,832 K 8,632 K

UmxFwHlp.exe 2092 4,612 K 5,572 K HIPS Firewall Helper Service CA 12:50:02 AM 07/31/2010 54,664 K 5,592 K

SetPoint.exe 3408 4,776 K 11,408 K Logitech SetPoint Event Manager (UNICODE) Logitech, Inc. 12:52:12 AM 07/31/2010 55,620 K 12,776 K

svchost.exe 2044 5,096 K 7,792 K Generic Host Process for Win32 Services Microsoft Corporation 12:49:53 AM 07/31/2010 41,492 K 7,984 K

nTuneService.exe 3784 5,284 K 7,772 K NVIDIA Performance Service NVIDIA 12:50:30 AM 07/31/2010 43,888 K 7,788 K

WLIDSVC.EXE 2344 5,936 K 9,548 K Microsoft® Windows Live ID Service Microsoft Corporation 12:50:37 AM 07/31/2010 53,900 K 9,584 K

SeaPort.exe 2232 6,412 K 9,340 K Microsoft SeaPort Search Enhancement Broker Microsoft Corporation 12:50:32 AM 07/31/2010 52,356 K 9,348 K

MSASCui.exe 3692 6,976 K 9,656 K Windows Defender User Interface Microsoft Corporation 12:51:58 AM 07/31/2010 51,828 K 9,704 K

WindowsSearchIndexer.exe 4764 7,708 K 1,412 K Windows Desktop Search Microsoft Corporation 11:42:54 AM 07/31/2010 77,444 K 11,712 K

winlogon.exe 732 8,960 K 2,240 K Windows NT Logon Application Microsoft Corporation 12:49:41 AM 07/31/2010 70,720 K 18,068 K

speedfan.exe 2620 10,104 K 12,212 K Almico Software (www.almico.com) 12:52:56 AM 07/31/2010 75,120 K 12,212 K

nHancerService.exe 3340 10,332 K 7,324 K nHancerService KSE - Korndörfer Software Engineering 12:50:27 AM 07/31/2010 89,728 K 7,352 K

iTunesHelper.exe 3348 10,736 K 15,976 K iTunesHelper Apple Inc. 12:52:28 AM 07/31/2010 117,164 K 15,984 K

cctray.exe 1724 12,556 K 20,104 K CA Common Tray CA, Inc. 12:52:30 AM 07/31/2010 116,516 K 20,108 K

wlcomm.exe 4292 20,964 K 25,972 K Windows Live Communications Platform Microsoft Corporation 11:43:52 AM 07/31/2010 139,860 K 26,316 K

svchost.exe 1564 22,660 K 36,020 K Generic Host Process for Win32 Services Microsoft Corporation 12:49:52 AM 07/31/2010 301,480 K 337,416 K

RTHDCPL.exe 1172 23,412 K 25,180 K Realtek HD Audio Control Panel Realtek Semiconductor Corp. 12:51:56 AM 07/31/2010 78,644 K 25,180 K

isafe.exe 3236 29,520 K 32,024 K CA ISafe Service Computer Associates International, Inc. 12:50:18 AM 07/31/2010 60,140 K 32,256 K

ITMRTSVC.exe 1096 31,624 K 35,544 K eTrust PestPatrol Real-time service CA, Inc. 12:50:20 AM 07/31/2010 75,948 K 43,332 K

CAPPActiveProtection.exe 3088 34,380 K 39,920 K CAPPActiveProtection Application CA, Inc. 12:52:55 AM 07/31/2010 111,400 K 48,112 K

trillian.exe 4280 35,232 K 15,840 K Trillian Cerulean Studios 12:52:59 AM 07/31/2010 127,664 K 44,940 K

explorer.exe 2592 39,196 K 21,872 K Windows Explorer Microsoft Corporation 12:51:16 AM 07/31/2010 160,252 K 54,988 K

procexp.exe 4728 1.10 39,404 K 45,392 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com 11:45:41 AM 07/31/2010 195,796 K 107,528 K

capfasem.exe 1388 25.00 42,944 K 47,156 K CA Personal Firewall capfasem Module CA, Inc. 12:52:41 AM 07/31/2010 129,856 K 47,188 K

wlmail.exe 796 72,768 K 28,340 K Windows Live Mail Microsoft Corporation 11:41:04 AM 07/31/2010 337,340 K 162,220 K

MsMpEng.exe 1332 75,988 K 52,416 K Service Executable Microsoft Corporation 12:49:52 AM 07/31/2010 168,192 K 104,144 K

uTorrent.exe 4840 25.00 304,260 K 302,284 K µTorrent BitTorrent, Inc. 12:55:41 AM 07/31/2010 552,116 K 304,212 K

Process: uTorrent.exe Pid: 4840

Name Description Company Name Version WS Total

<Pagefile Backed> 8 K

<Pagefile Backed> 8 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 24 K

<Pagefile Backed> 4 K

<Pagefile Backed> 8 K

<Pagefile Backed> 0 K

<Pagefile Backed> 4 K

<Pagefile Backed> 44 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 4 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 16 K

<Pagefile Backed> 4 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 0 K

<Pagefile Backed> 4 K

<Pagefile Backed> 8 K

<Pagefile Backed> 0 K

<Pagefile Backed> 12 K

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.1.2600.5512 4 K

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.1.2600.5512 12 K

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.1.2600.5755 80 K

apphelp.dll Application Compatibility Client Library Microsoft Corporation 5.1.2600.5512 4 K

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.2 4 K

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.700 64 K

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.0.2900.5512 72 K

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.0.2900.5512 4 K

COMRes.dll Microsoft Corporation 2001.12.4414.700 4 K

credui.dll Credential Manager User Interface Microsoft Corporation 5.1.2600.5512 4 K

CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.5709 16 K

ctype.nls 0 K

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.1.2600.5625 40 K

dot3api.dll 802.3 Autoconfiguration API Microsoft Corporation 5.1.2600.5512 20 K

dot3dlg.dll 802.3 UI Helper Microsoft Corporation 5.1.2600.5512 4 K

eappcfg.dll Eap Peer Config Microsoft Corporation 5.1.2600.5512 4 K

eappprxy.dll Microsoft EAPHost Peer Client DLL Microsoft Corporation 5.1.2600.5512 4 K

GDI32.dll GDI Client DLL Microsoft Corporation 5.1.2600.5698 28 K

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.1.2600.5512 88 K

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.1.2600.5512 32 K

Iphlpapi.dll IP Helper API Microsoft Corporation 5.1.2600.5512 68 K

ISafeIf.dll CA ISafe Interface DLL Computer Associates International, Inc. 8.0.8.0 36 K

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.1.2600.5781 176 K

locale.nls 4 K

LPK.DLL Language Pack Microsoft Corporation 5.1.2600.5512 4 K

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 2.0.2.0 64 K

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.1.2600.5512 12 K

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.1.2600.5875 4 K

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.1.2600.5768 56 K

MSVCP60.dll Microsoft ® C++ Runtime Library Microsoft Corporation 6.2.3104.0 4 K

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.2600.5512 132 K

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.1.2600.5625 72 K

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.1.2600.5694 4 K

NETSHELL.dll Network Connections Shell Microsoft Corporation 5.1.2600.5512 52 K

ntdll.dll NT Layer DLL Microsoft Corporation 5.1.2600.5755 200 K

nvappfilter.dll NVIDIA IAM LSP NVIDIA 2.2.0.465 72 K

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.1.2600.5512 268 K

oleaut32.dll Microsoft Corporation 5.1.2600.5512 20 K

OneX.DLL IEEE 802.1X supplicant library Microsoft Corporation 5.1.2600.5512 20 K

psapi.dll Process Status Helper Microsoft Corporation 5.1.2600.5512 12 K

QOEHook.dll QOEHook Dynamic Link Library CA 5.1.18.0 48 K

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.1.2600.5512 12 K

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.1.2600.5795 180 K

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.1.2600.5507 52 K

rtutils.dll Routing Utilities Microsoft Corporation 5.1.2600.5512 4 K

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.1.2600.5512 4 K

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.1.2600.5834 12 K

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.1.2600.5512 12 K

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.0.2900.5622 44 K

shfolder.dll Shell Folder Service Microsoft Corporation 6.0.2900.5512 4 K

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.0.2900.5912 4 K

sortkey.nls 4 K

sorttbls.nls 0 K

UmxSbxExw.dll User mode executive module helper DLL CA 6.0.2.93 4 K

UmxSbxw.dll User mode executive module DLL CA 6.0.2.93 176 K

unicode.nls 0 K

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.1.2600.5512 84 K

USERENV.dll Userenv Microsoft Corporation 5.1.2600.5512 4 K

USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.420.2600.5512 4 K

uTorrent.exe µTorrent BitTorrent, Inc. 2.0.2.19648 444 K

uxtheme.dll Microsoft UxTheme Library Microsoft Corporation 6.0.2900.5512 48 K

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.1.2600.5512 12 K

VetRedir.dll CA ISafe LSP DLL Computer Associates International, Inc. 8.0.8.0 40 K

WINSTA.dll Winstation Library Microsoft Corporation 5.1.2600.5512 8 K

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.1.2600.5512 12 K

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.1.2600.5512 60 K

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.1.2600.5512 24 K

wship6.dll IPv6 Helper DLL Microsoft Corporation 5.1.2600.5512 16 K

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.1.2600.5512 16 K

WTSAPI32.dll Windows Terminal Server SDK APIs Microsoft Corporation 5.1.2600.5512 4 K

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.1.2600.5512 4 K

[Andros0]

Oh well,

Two weeks and no reply; c'est la vie

[DreadWingKnight]

nVidia network access manager.

uninstall it

[moogly]

Yep: nvappfilter.dll NVIDIA IAM LSP NVIDIA 2.2.0.465 72 K

That's the culprit.

[Andros0]

ty for the reply(s)

Easier said than done though...

Add/Remove program has proved useless; it's still there

Can't delete dll since it's "in use"

I'll google the issue and kill the dreaded NAM somehow

ty again