arips Posted March 8, 2008 Report Share Posted March 8, 2008 Hi.. pls help... It downloads for like 5 secs, then replies with an Error:Access denied..Logfile of Trend Micro HijackThis v2.0.2Scan saved at 5:49:42 PM, on 8/3/2008Platform: Windows Vista (WinNT 6.00.1904)MSIE: Internet Explorer v7.00 (7.00.6000.16386)Boot mode: NormalRunning processes:C:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Program Files\ASUS\ASUS Live Update\ALU.exeC:\Windows\Explorer.EXEC:\Program Files\Nero\Nero 7\InCD\InCD.exeC:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exeC:\Program Files\Common Files\Symantec Shared\ccApp.exeC:\Windows\System32\rundll32.exeC:\Program Files\Motorola\SMSERIAL\sm56hlpr.exeC:\Program Files\ASUS\ATK Media\DMedia.exeC:\Windows\RtHDVCpl.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Windows\ASScrPro.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Windows\System32\rundll32.exeC:\Program Files\Infineon\Security Platform Software\PSDrt.exeC:\Program Files\Infineon\Security Platform Software\SpTna.exeC:\Program Files\Internet Explorer\ieuser.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\uTorrent\uTorrent.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sg.asus.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dllO3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exeO4 - HKLM\..\Run: [inCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exeO4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStartO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exeO4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXEO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exeO4 - HKLM\..\Run: [iFXSPMGT] C:\Windows\system32\ifxspmgt.exe /NotifyLogonO4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exeO4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exeO4 - HKLM\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALuNotify.exeO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenterO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exeO4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exeO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO13 - Gopher Prefix: O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabO23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exeO23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exeO23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exeO23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeO23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exeO23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exeO23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exeO23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exeO23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\Windows\system32\ifxspmgt.exeO23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\Windows\system32\ifxtcs.exeO23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exeO23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXEO23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exeO23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - C:\Windows\system32\IfxPsdSv.exeO23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exeO23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exeO23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exeO23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe--End of file - 7756 bytesPls help... I have tried disabling in task manager the NMindexingService but it still gives the Access denied after downloading a few seconds. Port forwarding is ok. I have a green tick... Link to comment Share on other sites More sharing options...
jewelisheaven Posted March 8, 2008 Report Share Posted March 8, 2008 Turn off or make exceptions in indexers... This may include those Infineon processes, Dmedia from ATK, and Symantec's resident scanner.Turn off indexing / spidering for the Ctrl-P - Downloads folder... or turn off the programs temporarily if you don't have a DIFFERENT completed folder. Does this happen for ALL files including Open Office from the Setup guide? or only media files or exes or compressed files?? Link to comment Share on other sites More sharing options...
arips Posted March 8, 2008 Author Report Share Posted March 8, 2008 Hi, sorry I dont quite understand... how do I turn off indexing in the downloads folder? I have rightclicked> andavnced and unticked indexing.. but still doesnt work.I have a different completed folder.Where can i see the setup guide? Link to comment Share on other sites More sharing options...
jewelisheaven Posted March 8, 2008 Report Share Posted March 8, 2008 The first setup guide many people use is setup_guide.php and is @ Guides page below link #3. I don't know how one turns off the index behaviour for each program, but the general idea is to have it NOT be looking at your download folder.. your completed folder is fine because uT no longer needs write access. But if you cannot make an exception for the folder, you need to try turning it off temporarily to see at what point uT no longer gets access denied. You didn't answer.. what types of files are access denied?? the EXE from http://xrl.us/OOoP2P or how about http://www.slackware.com/torrents/ ... It's usually easier to try to understand what's interfering if you notice files which DON'T suffer the http://xrl.us/AccessDenied error. Link to comment Share on other sites More sharing options...
arips Posted March 9, 2008 Author Report Share Posted March 9, 2008 Hi! thanks for replying.. It seems to happen for any file.The error just states "Error: Access is denied" There is no mention of file being used or anything like that. This is my new laptop that I've purchased recently with Windows Vista Home Premium. I noticed that everytime I created a new downloads folder in C:, Windows prompts me to confirm and click continue to proceed. Could this be causing the error? Is there a way to turn it off? Link to comment Share on other sites More sharing options...
jewelisheaven Posted March 9, 2008 Report Share Posted March 9, 2008 Sounds like permissions issue then. Are you saving in c:\ or C:\Users or c:\Program Files? Link to comment Share on other sites More sharing options...
arips Posted March 9, 2008 Author Report Share Posted March 9, 2008 I created a Downloads folder and a Completed folder inc:\program files\utorrentie c:\program files\utorrent\downloadsandc:\program files\utorrent\completed and mapped them in utorrents correctly.Could it be this User Access Control festure in Windows Vista that is causing the problem? Then perhaps I should try turning it off... Link to comment Share on other sites More sharing options...
jewelisheaven Posted March 9, 2008 Report Share Posted March 9, 2008 Vista does not allow you to access Program Files :/ Try making your download and completed folder in your \Users directory instead.... or run uT with elevated privileges, or turn off the UAC like you thought (I'm not sure what UAC has to do with this though sorry). Link to comment Share on other sites More sharing options...
arips Posted March 9, 2008 Author Report Share Posted March 9, 2008 just tried downloading the open office exe , also has the Error Access denied error.Update: just disabled UAC, reboot and downloading seems to be working!But what are the bad effects of disabling UAC?Thanks jewels but wwhat do u mean by uT? Is there anyway i can configure UAC without disabling it?Thanks again.. Link to comment Share on other sites More sharing options...
jewelisheaven Posted March 9, 2008 Report Share Posted March 9, 2008 uT is short for uTorrent Well disabling UAC means you don't have to deal with all those privilege dialogs anymore. I don't know about bad effects... if you run programs you don't know where they came from or regularly use unpatched IE browser I can imagine it won't save you from running mal/ad/bad-ware by default anymore. I don't know if UAC is the problem per-se since you were using the protected %PROGRAMFILES% folder. If you saved OUTSIDE of there was there still the access denied? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.