K
kuwestiyonmark
NOTE: The version I'm currently having problems with is Vista Home Premium SP1
After updating to sp1, I did notice some improvement in the memory usage of
vista, with my 1G of memory, it normally ate up 60-66%. After installing sp1,
it slimmed down to 51-59%. These values are of course without any frontground
programs running.
But after a while a notice suddenly popped up from my firewall (I'm using
Comodo Firewall Pro) saying that svchost.exe is asking permission to edit the
registry, and part of the values it was modifying said Firewall.Override,
another one said AntiSpyware.Override, and another said AntiVirus.Override.
The attempts seem dubious so I had them all blocked, and spent the whole day
scanning the computer with all I have, even going so far as boot-time scans
and bootable antivirus CDs.
They all turned up negative, so as a final measure I ran the security file
checker from the command prompt using sfc/scannow. After scanning it said it
found problems but was not able to fix everything, and I rebooted to Normal
Mode to check out any problems. Then my firewall suddenly alerted me that it
was "learning", svchost.exe was now proceeding with changing the values I
mentioned before. I've had a bad experience with malware disguising itself as
svchost.exe before so I checked out the svchost.exe in question. It seemed
legitimate to me. proper version, proper location, and proper signatures.
After that little incident everything is normal except that now my computer
uses up at least 73% of RAM without any programs running. I haven't installed
anything since updating to sp1 so I've ruled out background programs as the
cause. Also I checked task manager and I didn't see any new processes
running, except that now I'm seeing a svchost.exe that's using up 40+MB of
RAM. I've determined that it's the one managing the settings for the Aero
Visual Scheme because everytime I terminate the process my scheme reverts to
the Vista Basic Scheme. But what's intriguing is that before the incident
I've never seen a svchost.exe like this one, and rather it's dwm.exe that's
managing my visual settings. What's odd now is that even with the svchost.exe
seemingly managing my visual settings, there's still the process dwm.exe
gobbling up 30+MB of ram. The two processes(dwm.exe and svchost.exe) are the
top two RAM gobblers according to task manager.
Is there an existing fix for this problem out there? I'd hate to do a fresh
reinstall of my system again, I no longer have the time to do so.
After updating to sp1, I did notice some improvement in the memory usage of
vista, with my 1G of memory, it normally ate up 60-66%. After installing sp1,
it slimmed down to 51-59%. These values are of course without any frontground
programs running.
But after a while a notice suddenly popped up from my firewall (I'm using
Comodo Firewall Pro) saying that svchost.exe is asking permission to edit the
registry, and part of the values it was modifying said Firewall.Override,
another one said AntiSpyware.Override, and another said AntiVirus.Override.
The attempts seem dubious so I had them all blocked, and spent the whole day
scanning the computer with all I have, even going so far as boot-time scans
and bootable antivirus CDs.
They all turned up negative, so as a final measure I ran the security file
checker from the command prompt using sfc/scannow. After scanning it said it
found problems but was not able to fix everything, and I rebooted to Normal
Mode to check out any problems. Then my firewall suddenly alerted me that it
was "learning", svchost.exe was now proceeding with changing the values I
mentioned before. I've had a bad experience with malware disguising itself as
svchost.exe before so I checked out the svchost.exe in question. It seemed
legitimate to me. proper version, proper location, and proper signatures.
After that little incident everything is normal except that now my computer
uses up at least 73% of RAM without any programs running. I haven't installed
anything since updating to sp1 so I've ruled out background programs as the
cause. Also I checked task manager and I didn't see any new processes
running, except that now I'm seeing a svchost.exe that's using up 40+MB of
RAM. I've determined that it's the one managing the settings for the Aero
Visual Scheme because everytime I terminate the process my scheme reverts to
the Vista Basic Scheme. But what's intriguing is that before the incident
I've never seen a svchost.exe like this one, and rather it's dwm.exe that's
managing my visual settings. What's odd now is that even with the svchost.exe
seemingly managing my visual settings, there's still the process dwm.exe
gobbling up 30+MB of ram. The two processes(dwm.exe and svchost.exe) are the
top two RAM gobblers according to task manager.
Is there an existing fix for this problem out there? I'd hate to do a fresh
reinstall of my system again, I no longer have the time to do so.