Erro

[rafa_ska_grello]

I don't speak english very well!

Forgive me for the errors of orthography!

I'm a brazilian guy...

Well ...the problem is that when i put the torrent ''Black_[PS2][PAL][MULTI5][TNTvillage.org]_[mininova]'' in the µTorrent, downs for 4 more or less minutes and the torrenty stop saying "Error: Acesso negado" and everything that was down is cleared(extinguished)...

What i should do??

Thantks for everything!

[jewelisheaven]

That denotes a problem with programs interfering with uT's ability to save your file for you.

Can you go through Ultima's How-To and paste the requested HiJackThis log please?

[rafa_ska_grello]

I don't understand very well this stretch "Can you go through Ultima's How-To and paste the requested HiJackThis log please?"....

But if this mean that you want see the HijackThis log i have it now....

Thank's for the patience" =)

LOG:

Logfile of HijackThis v1.99.1

Scan saved at 04:39:50, on 7/1/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16574)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\ASUS\Asus Probe\AsusProb.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\svchost.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exe

C:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\System32\svchost.exe

C:\Arquivos de programas\MSN Messenger\usnsvc.exe

C:\Arquivos de programas\Bonjour\mDNSResponder.exe

C:\Arquivos de programas\Internet Explorer\iexplore.exe

C:\Arquivos de programas\uTorrent\uTorrent.exe

C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE

C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WLLoginProxy.exe

C:\Arquivos de programas\Ferramentas\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Asus Probe\AsusProb.exe

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [DAEMON Tools] "C:\Arquivos de programas\DAEMON Tools\daemon.exe" -lang 1033

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\arquivos de programas\bonjour\mdnsnsp.dll

O11 - Options group: [iNTERNATIONAL] International*

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/PT-BR/a-UNO1/GAME_UNO1.cab

O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.readyforcrysis.com/sysreqlab2.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Arquivos de programas\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Arquivos de programas\Arquivos comuns\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: iPod Service - Apple Inc. - C:\Arquivos de programas\iPod\bin\iPodService.exe

O23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

[jewelisheaven]

Yes! That is exactly what I was asking Thank you.

I would see if you can get rid of your bonjour service or turn it off temporarily to see if that cures the problem. Also please make sure Nero BackItUp isn't trying to constantly access your download folder.

That's what I see for now. If you feel up to it following the HiJackThis there is a mention of Process Explorer, and it wouldn't hurt anything to post the DLL mode (Open procexp.exe, Ctrl-L to show the lower pane, Ctrl-D to switch to DLL mode, Ctrl-A to save the DLL list) txt file pere, just open it and copy paste below, similar to your HJT. Thank you for your patience as well.

[rafa_ska_grello]

Nothing of this "I would see if you can get rid of your bonjour service or turn it off temporarily to see if that cures the problem. Also please make sure Nero BackItUp isn't trying to constantly access your download folder." resolve.

I can't find the way to do this "If you feel up to it following the HiJackThis there is a mention of Process Explorer, and it wouldn't hurt anything to post the DLL mode (Open procexp.exe, Ctrl-L to show the lower pane, Ctrl-D to switch to DLL mode, Ctrl-A to save the DLL list)"!

Where i go to take this log...what program?

Tanks very much!

[jewelisheaven]

Ahh, k well the () is the steps to do after you download processexplorer.zip which you can find @ http://sysinternals.com (#1 in the top 10 downloads)

[rafa_ska_grello]

O yeas....

See if is done correct:

Process PID CPU Description Company Name

System Idle Process 0 98.46

Interrupts n/a Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4

smss.exe 644 Gerenciador de Sessão do Windows NT Microsoft Corporation

csrss.exe 720 Client Server Runtime Process Microsoft Corporation

winlogon.exe 744 Aplicativo de logon do Windows NT Microsoft Corporation

services.exe 788 1.54 Aplicativo de serviços e controle Microsoft Corporation

svchost.exe 952 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1012 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1104 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1148 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1328 Generic Host Process for Win32 Services Microsoft Corporation

aswUpdSv.exe 1620 avast! Antivirus updating service ALWIL Software

ashServ.exe 1668 avast! antivirus service ALWIL Software

spoolsv.exe 216 Spooler SubSystem App Microsoft Corporation

nvsvc32.exe 764 NVIDIA Driver Helper Service, Version 163.75 NVIDIA Corporation

PnkBstrA.exe 1052

svchost.exe 1100 Generic Host Process for Win32 Services Microsoft Corporation

ashMaiSv.exe 1752 avast! e-Mail Scanner Service ALWIL Software

ashWebSv.exe 1936 avast! Web Scanner ALWIL Software

alg.exe 2468 Application Layer Gateway Service Microsoft Corporation

svchost.exe 3180 Generic Host Process for Win32 Services Microsoft Corporation

usnsvc.exe 2916 Messenger Sharing USN Journal Reader Service Microsoft Corporation

lsass.exe 800 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1592 Windows Explorer Microsoft Corporation

SOUNDMAN.EXE 1828 Realtek Sound Manager Realtek Semiconductor Corp.

ashDisp.exe 1836 avast! service GUI component ALWIL Software

AsusProb.exe 1944

ctfmon.exe 260 CTF Loader Microsoft Corporation

iexplore.exe 2596 Internet Explorer Microsoft Corporation

uTorrent.exe 2724

iexplore.exe 1748 Internet Explorer Microsoft Corporation

procexp.exe 3616 Sysinternals Process Explorer Sysinternals

Tanks

[jewelisheaven]

Could you edit the post above... are you sure you highlighted utorrent.exe so it showed the DLLs loaded in the bottom pane? Thank you for your response.

[rafa_ska_grello]

O im sorry....i didn't know!

This is correct now??

Process PID CPU Description Company Name

System Idle Process 0 96.92

Interrupts n/a 1.54 Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4

smss.exe 644 Gerenciador de Sessão do Windows NT Microsoft Corporation

csrss.exe 720 Client Server Runtime Process Microsoft Corporation

winlogon.exe 744 Aplicativo de logon do Windows NT Microsoft Corporation

services.exe 788 1.54 Aplicativo de serviços e controle Microsoft Corporation

svchost.exe 952 Generic Host Process for Win32 Services Microsoft Corporation

WLLoginProxy.exe 3288 WLLoginProxy.exe Microsoft Corporation

svchost.exe 1012 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1104 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1148 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1328 Generic Host Process for Win32 Services Microsoft Corporation

aswUpdSv.exe 1620 avast! Antivirus updating service ALWIL Software

ashServ.exe 1668 avast! antivirus service ALWIL Software

spoolsv.exe 216 Spooler SubSystem App Microsoft Corporation

nvsvc32.exe 764 NVIDIA Driver Helper Service, Version 163.75 NVIDIA Corporation

PnkBstrA.exe 1052

svchost.exe 1100 Generic Host Process for Win32 Services Microsoft Corporation

ashMaiSv.exe 1752 avast! e-Mail Scanner Service ALWIL Software

ashWebSv.exe 1936 avast! Web Scanner ALWIL Software

alg.exe 2468 Application Layer Gateway Service Microsoft Corporation

svchost.exe 3180 Generic Host Process for Win32 Services Microsoft Corporation

usnsvc.exe 2916 Messenger Sharing USN Journal Reader Service Microsoft Corporation

lsass.exe 800 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1592 Windows Explorer Microsoft Corporation

SOUNDMAN.EXE 1828 Realtek Sound Manager Realtek Semiconductor Corp.

ashDisp.exe 1836 avast! service GUI component ALWIL Software

AsusProb.exe 1944

ctfmon.exe 260 CTF Loader Microsoft Corporation

iexplore.exe 2596 Internet Explorer Microsoft Corporation

uTorrent.exe 2724

iexplore.exe 1132 Internet Explorer Microsoft Corporation

procexp.exe 2348 Sysinternals Process Explorer Sysinternals

Process: uTorrent.exe Pid: 2724

Name Description Company Name Version

uTorrent.exe

unicode.nls

locale.nls

sortkey.nls

sorttbls.nls

ctype.nls

mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001

ntdll.dll DLL de nível do NT Microsoft Corporation 5.01.2600.2180

kernel32.dll DLL cliente da API BASE do Windows NT Microsoft Corporation 5.01.2600.3119

ADVAPI32.dll API de base do Windows 32 avançada Microsoft Corporation 5.01.2600.2180

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.3173

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.2180

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.2180

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.3159

USER32.dll DLL de Cliente API de usuário Windows XP Microsoft Corporation 5.01.2600.3099

SHLWAPI.dll Biblioteca de utilitário abreviado para Shell Microsoft Corporation 6.00.2900.3199

comdlg32.dll DLL de diálogos comuns Microsoft Corporation 6.00.2900.2180

SHELL32.dll DLL comum do Shell do Windows Microsoft Corporation 6.00.2900.3241

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180

WS2HELP.dll DLL de ajuda do Windows Socket 2.0 para Windows NT Microsoft Corporation 5.01.2600.2180

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.01.2600.2180

ole32.dll Microsoft OLE para Windows e Windows NT Microsoft Corporation 5.01.2600.2726

uxtheme.dll Biblioteca UxTheme Microsoft Microsoft Corporation 6.00.2900.2180

MSCTF.dll DLL de servidor MSCTF Microsoft Corporation 5.01.2600.2180

SETUPAPI.dll API de instalação do Windows Microsoft Corporation 5.01.2600.2180

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.01.2600.2180

oleaut32.dll Microsoft Corporation 5.01.2600.3139

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0308

COMRes.dll Microsoft Corporation 2001.12.4414.0258

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180

hnetcfg.dll Gerenciador de configurações de rede doméstica Microsoft Corporation 5.01.2600.2180

mswsock.dll Fornecedor de serviços do Microsoft Windows Sockets 2.0 Microsoft Corporation 5.01.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180

Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2912

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180

ACTIVEDS.dll DLL de camada de roteador ADs Microsoft Corporation 5.01.2600.2180

adsldpc.dll DLL C de provedor ADs LDAP Microsoft Corporation 5.01.2600.2180

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2976

WLDAP32.dll DLL da API LDAP Win32 Microsoft Corporation 5.01.2600.2180

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180

DNSAPI.dll DNS Client API DLL Microsoft Corporation 5.01.2600.2938

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.01.2600.2180

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2938

Tanks

[jewelisheaven]

Yup shows both the process tree and the DLLs. Unfortunately it shows what I suspected. Do you know where you installed (or didn't install) Apple's zero-configuration "bonjour" service / DNS files? Is there a way for you to uninstall or disable it from running?

It is not related to your file error message though. I am thinking it's possible an incorrectly configured Avast may be at fault: link to avast thread http://forum.utorrent.com/viewtopic.php?pid=260239#p260239

[rafa_ska_grello]

Men..i will sleep...here in the brazil is 7:30.....i am tired....

After we continue this breaks head!

See you later...tanks for evereything.....Gud buy!

[jewelisheaven]

You're quite welcome Good night.