rafa_ska_grello Posted January 7, 2008 Report Share Posted January 7, 2008 I don't speak english very well!Forgive me for the errors of orthography!I'm a brazilian guy...Well ...the problem is that when i put the torrent ''Black_[PS2][PAL][MULTI5][TNTvillage.org]_[mininova]'' in the µTorrent, downs for 4 more or less minutes and the torrenty stop saying "Error: Acesso negado" and everything that was down is cleared(extinguished)...What i should do??Thantks for everything! Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 That denotes a problem with programs interfering with uT's ability to save your file for you.Can you go through Ultima's How-To and paste the requested HiJackThis log please? Link to comment Share on other sites More sharing options...
rafa_ska_grello Posted January 7, 2008 Author Report Share Posted January 7, 2008 I don't understand very well this stretch "Can you go through Ultima's How-To and paste the requested HiJackThis log please?"....But if this mean that you want see the HijackThis log i have it now....Thank's for the patience" =)LOG:Logfile of HijackThis v1.99.1Scan saved at 04:39:50, on 7/1/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16574)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exeC:\Arquivos de programas\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\SOUNDMAN.EXEC:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ASUS\Asus Probe\AsusProb.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\ctfmon.exeC:\Arquivos de programas\MSN Messenger\MsnMsgr.ExeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\PnkBstrA.exeC:\WINDOWS\system32\svchost.exeC:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exeC:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\System32\svchost.exeC:\Arquivos de programas\MSN Messenger\usnsvc.exeC:\Arquivos de programas\Bonjour\mDNSResponder.exeC:\Arquivos de programas\Internet Explorer\iexplore.exeC:\Arquivos de programas\uTorrent\uTorrent.exeC:\Arquivos de programas\Internet Explorer\IEXPLORE.EXEC:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WLLoginProxy.exeC:\Arquivos de programas\Ferramentas\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.aspR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orkut.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [avast!] C:\ARQUIV~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Asus Probe\AsusProb.exeO4 - HKLM\..\Run: [NeroFilterCheck] C:\Arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exeO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -kO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [MsnMsgr] "C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - HKCU\..\Run: [DAEMON Tools] "C:\Arquivos de programas\DAEMON Tools\daemon.exe" -lang 1033O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exeO10 - Unknown file in Winsock LSP: c:\arquivos de programas\bonjour\mdnsnsp.dllO11 - Options group: [iNTERNATIONAL] International*O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.aspO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cabO16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cabO16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/PT-BR/a-UNO1/GAME_UNO1.cabO16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.readyforcrysis.com/sysreqlab2.cabO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cabO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Arquivos de programas\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Arquivos de programas\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Arquivos de programas\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Arquivos de programas\Bonjour\mDNSResponder.exeO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Arquivos de programas\Arquivos comuns\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeO23 - Service: iPod Service - Apple Inc. - C:\Arquivos de programas\iPod\bin\iPodService.exeO23 - Service: NBService - Nero AG - C:\Arquivos de programas\Nero\Nero 7\Nero BackItUp\NBService.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 Yes! That is exactly what I was asking Thank you.I would see if you can get rid of your bonjour service or turn it off temporarily to see if that cures the problem. Also please make sure Nero BackItUp isn't trying to constantly access your download folder.That's what I see for now. If you feel up to it following the HiJackThis there is a mention of Process Explorer, and it wouldn't hurt anything to post the DLL mode (Open procexp.exe, Ctrl-L to show the lower pane, Ctrl-D to switch to DLL mode, Ctrl-A to save the DLL list) txt file pere, just open it and copy paste below, similar to your HJT. Thank you for your patience as well. Link to comment Share on other sites More sharing options...
rafa_ska_grello Posted January 7, 2008 Author Report Share Posted January 7, 2008 Nothing of this "I would see if you can get rid of your bonjour service or turn it off temporarily to see if that cures the problem. Also please make sure Nero BackItUp isn't trying to constantly access your download folder." resolve.I can't find the way to do this "If you feel up to it following the HiJackThis there is a mention of Process Explorer, and it wouldn't hurt anything to post the DLL mode (Open procexp.exe, Ctrl-L to show the lower pane, Ctrl-D to switch to DLL mode, Ctrl-A to save the DLL list)"!Where i go to take this log...what program?Tanks very much! Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 Ahh, k well the () is the steps to do after you download processexplorer.zip which you can find @ http://sysinternals.com (#1 in the top 10 downloads) Link to comment Share on other sites More sharing options...
rafa_ska_grello Posted January 7, 2008 Author Report Share Posted January 7, 2008 O yeas....See if is done correct:Process PID CPU Description Company NameSystem Idle Process 0 98.46 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 644 Gerenciador de Sessão do Windows NT Microsoft Corporation csrss.exe 720 Client Server Runtime Process Microsoft Corporation winlogon.exe 744 Aplicativo de logon do Windows NT Microsoft Corporation services.exe 788 1.54 Aplicativo de serviços e controle Microsoft Corporation svchost.exe 952 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1012 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1104 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1148 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1328 Generic Host Process for Win32 Services Microsoft Corporation aswUpdSv.exe 1620 avast! Antivirus updating service ALWIL Software ashServ.exe 1668 avast! antivirus service ALWIL Software spoolsv.exe 216 Spooler SubSystem App Microsoft Corporation nvsvc32.exe 764 NVIDIA Driver Helper Service, Version 163.75 NVIDIA Corporation PnkBstrA.exe 1052 svchost.exe 1100 Generic Host Process for Win32 Services Microsoft Corporation ashMaiSv.exe 1752 avast! e-Mail Scanner Service ALWIL Software ashWebSv.exe 1936 avast! Web Scanner ALWIL Software alg.exe 2468 Application Layer Gateway Service Microsoft Corporation svchost.exe 3180 Generic Host Process for Win32 Services Microsoft Corporation usnsvc.exe 2916 Messenger Sharing USN Journal Reader Service Microsoft Corporation lsass.exe 800 LSA Shell (Export Version) Microsoft Corporationexplorer.exe 1592 Windows Explorer Microsoft Corporation SOUNDMAN.EXE 1828 Realtek Sound Manager Realtek Semiconductor Corp. ashDisp.exe 1836 avast! service GUI component ALWIL Software AsusProb.exe 1944 ctfmon.exe 260 CTF Loader Microsoft Corporation iexplore.exe 2596 Internet Explorer Microsoft Corporation uTorrent.exe 2724 iexplore.exe 1748 Internet Explorer Microsoft Corporation procexp.exe 3616 Sysinternals Process Explorer SysinternalsTanks Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 Could you edit the post above... are you sure you highlighted utorrent.exe so it showed the DLLs loaded in the bottom pane? Thank you for your response. Link to comment Share on other sites More sharing options...
rafa_ska_grello Posted January 7, 2008 Author Report Share Posted January 7, 2008 O im sorry....i didn't know!This is correct now??Process PID CPU Description Company NameSystem Idle Process 0 96.92 Interrupts n/a 1.54 Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 644 Gerenciador de Sessão do Windows NT Microsoft Corporation csrss.exe 720 Client Server Runtime Process Microsoft Corporation winlogon.exe 744 Aplicativo de logon do Windows NT Microsoft Corporation services.exe 788 1.54 Aplicativo de serviços e controle Microsoft Corporation svchost.exe 952 Generic Host Process for Win32 Services Microsoft Corporation WLLoginProxy.exe 3288 WLLoginProxy.exe Microsoft Corporation svchost.exe 1012 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1104 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1148 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1328 Generic Host Process for Win32 Services Microsoft Corporation aswUpdSv.exe 1620 avast! Antivirus updating service ALWIL Software ashServ.exe 1668 avast! antivirus service ALWIL Software spoolsv.exe 216 Spooler SubSystem App Microsoft Corporation nvsvc32.exe 764 NVIDIA Driver Helper Service, Version 163.75 NVIDIA Corporation PnkBstrA.exe 1052 svchost.exe 1100 Generic Host Process for Win32 Services Microsoft Corporation ashMaiSv.exe 1752 avast! e-Mail Scanner Service ALWIL Software ashWebSv.exe 1936 avast! Web Scanner ALWIL Software alg.exe 2468 Application Layer Gateway Service Microsoft Corporation svchost.exe 3180 Generic Host Process for Win32 Services Microsoft Corporation usnsvc.exe 2916 Messenger Sharing USN Journal Reader Service Microsoft Corporation lsass.exe 800 LSA Shell (Export Version) Microsoft Corporationexplorer.exe 1592 Windows Explorer Microsoft Corporation SOUNDMAN.EXE 1828 Realtek Sound Manager Realtek Semiconductor Corp. ashDisp.exe 1836 avast! service GUI component ALWIL Software AsusProb.exe 1944 ctfmon.exe 260 CTF Loader Microsoft Corporation iexplore.exe 2596 Internet Explorer Microsoft Corporation uTorrent.exe 2724 iexplore.exe 1132 Internet Explorer Microsoft Corporation procexp.exe 2348 Sysinternals Process Explorer SysinternalsProcess: uTorrent.exe Pid: 2724Name Description Company Name VersionuTorrent.exe unicode.nls locale.nls sortkey.nls sorttbls.nls ctype.nls mdnsNSP.dll Bonjour Namespace Provider Apple Computer, Inc. 1.00.0003.0001ntdll.dll DLL de nível do NT Microsoft Corporation 5.01.2600.2180kernel32.dll DLL cliente da API BASE do Windows NT Microsoft Corporation 5.01.2600.3119ADVAPI32.dll API de base do Windows 32 avançada Microsoft Corporation 5.01.2600.2180RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.3173Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.2180COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.2180GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.3159USER32.dll DLL de Cliente API de usuário Windows XP Microsoft Corporation 5.01.2600.3099SHLWAPI.dll Biblioteca de utilitário abreviado para Shell Microsoft Corporation 6.00.2900.3199comdlg32.dll DLL de diálogos comuns Microsoft Corporation 6.00.2900.2180SHELL32.dll DLL comum do Shell do Windows Microsoft Corporation 6.00.2900.3241WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180WS2HELP.dll DLL de ajuda do Windows Socket 2.0 para Windows NT Microsoft Corporation 5.01.2600.2180IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.01.2600.2180ole32.dll Microsoft OLE para Windows e Windows NT Microsoft Corporation 5.01.2600.2726uxtheme.dll Biblioteca UxTheme Microsoft Microsoft Corporation 6.00.2900.2180MSCTF.dll DLL de servidor MSCTF Microsoft Corporation 5.01.2600.2180SETUPAPI.dll API de instalação do Windows Microsoft Corporation 5.01.2600.2180msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.01.2600.2180oleaut32.dll Microsoft Corporation 5.01.2600.3139CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0308COMRes.dll Microsoft Corporation 2001.12.4414.0258VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180hnetcfg.dll Gerenciador de configurações de rede doméstica Microsoft Corporation 5.01.2600.2180mswsock.dll Fornecedor de serviços do Microsoft Windows Sockets 2.0 Microsoft Corporation 5.01.2600.2180wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2912MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180ACTIVEDS.dll DLL de camada de roteador ADs Microsoft Corporation 5.01.2600.2180adsldpc.dll DLL C de provedor ADs LDAP Microsoft Corporation 5.01.2600.2180NETAPI32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2976WLDAP32.dll DLL da API LDAP Win32 Microsoft Corporation 5.01.2600.2180ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180DNSAPI.dll DNS Client API DLL Microsoft Corporation 5.01.2600.2938winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.01.2600.2180rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2938Tanks Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 Yup shows both the process tree and the DLLs. Unfortunately it shows what I suspected. Do you know where you installed (or didn't install) Apple's zero-configuration "bonjour" service / DNS files? Is there a way for you to uninstall or disable it from running?It is not related to your file error message though. I am thinking it's possible an incorrectly configured Avast may be at fault: link to avast thread http://forum.utorrent.com/viewtopic.php?pid=260239#p260239 Link to comment Share on other sites More sharing options...
rafa_ska_grello Posted January 7, 2008 Author Report Share Posted January 7, 2008 Men..i will sleep...here in the brazil is 7:30.....i am tired....After we continue this breaks head!See you later...tanks for evereything.....Gud buy! Link to comment Share on other sites More sharing options...
jewelisheaven Posted January 7, 2008 Report Share Posted January 7, 2008 You're quite welcome Good night. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.