Jump to content

Red Exclamation mark.. Not connectable


wookielover2792

Recommended Posts

Posted

Ok.. So here is my problem.

Recently my UTorrent will not connect correctly. On the bottom there is a red circle with an exclamation point. The error says, "A Firewall/Router is limiting your network traffic. You need to open up a port so others can connect to you."

Ok.. So, I don't have a router, so that can't be my problem. My windows firewall has utorrent added as an exception.. like it always has been. I never had a problem with it before.

MY ISP is Verizon Wireless Broadband....

Does anyone have any possible solutions?

Thank You :)

Posted

If you didn't change anything in your network setup lately, then it's probably something on your computer. Install anything new? Anything auto-upddate? What anti-virus, firewall, and/or Internet security software are you using?

Posted

I did have to re-install my VZaccess Manager (ISP) few days ago. There were also alot of windows updates downloaded and installed within the past couple of days.

I was also thinking that it may be something on my computer. I have tried running my AVG, CCleaner, and Rogue Remover today thinking that it might help... to no avail.

I wonder if somehow verizon is blocking utorrent now???

Posted

I haven't heard anything bad about VZ in regards to filesharing yet. It's most likely something on your computer (I suspect the VZ crap), so please do the following:

a) get HijackThis from trendsecure.com, run it, view the log, and post the contents here

B) get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here

Posted

ok.. Here is the info from hijack this. The info from process explorer will follow below this info.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 2:29:39 AM, on 7/12/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Spyware Doctor\pctsAuxs.exe

C:\Program Files\Spyware Doctor\pctsSvc.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\WINDOWS\BisonCam\BisonTrayIcon.exe

C:\Program Files\Spyware Doctor\pctsTray.exe

C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Stardock\ObjectDock\ObjectDock.exe

C:\WINDOWS\system32\slserv.exe

C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

C:\WINDOWS\System32\alg.exe

C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

C:\PROGRA~1\AVG\AVG8\avgrsx.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe

C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\progra~1\mozill~1\firefox.exe

C:\Documents and Settings\Heather\My Documents\My Downloads\HiJackThis.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {348FE907-249E-4C65-A838-F34A193FE1D1} - (no file)

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [bisonTrayIcon] C:\WINDOWS\BisonCam\BisonTrayIcon.exe

O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"

O4 - HKLM\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet

O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')

O4 - S-1-5-18 Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (User 'SYSTEM')

O4 - S-1-5-18 Startup: VZAccess Manager.lnk = C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe (User 'SYSTEM')

O4 - .DEFAULT Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (User 'Default user')

O4 - .DEFAULT Startup: VZAccess Manager.lnk = C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe (User 'Default user')

O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe

O4 - Startup: VZAccess Manager.lnk = C:\Program Files\Verizon Wireless\VZAccess Manager\VZAccess Manager.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1154135106109

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1154135099140

O17 - HKLM\System\CCS\Services\Tcpip\..\{AF2E71A4-6AE0-4EB4-880E-4DAF75957F37}: NameServer = 66.174.95.44 69.78.96.14

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: wbsys.dll,avgrsstx.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe

O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe

O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--

End of file - 8839 bytes

___________________________________

Process explorer below....

Process PID CPU Description Company Name

System Idle Process 0 89.23

Interrupts n/a 1.54 Hardware Interrupts

DPCs n/a 1.54 Deferred Procedure Calls

System 4

smss.exe 456 Windows NT Session Manager Microsoft Corporation

csrss.exe 520 1.54 Client Server Runtime Process Microsoft Corporation

winlogon.exe 544 Windows NT Logon Application Microsoft Corporation

services.exe 588 1.54 Services and Controller app Microsoft Corporation

svchost.exe 748 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 824 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 864 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 908 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1048 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1120 Generic Host Process for Win32 Services Microsoft Corporation

spoolsv.exe 1192 Spooler SubSystem App Microsoft Corporation

AppleMobileDeviceService.exe 1368 Apple Mobile Device Service Apple, Inc.

AluSchedulerSvc.exe 1388 Automatic LiveUpdate Scheduler Service Symantec Corporation

mDNSResponder.exe 1420 Bonjour Service Apple Inc.

btwdins.exe 1436 Bluetooth Support Server Broadcom Corporation.

PIFSvc.exe 1536 LiveUpdate Notice Service Symantec Corporation

nvsvc32.exe 1568 NVIDIA Driver Helper Service, Version 84.74 NVIDIA Corporation

pctsAuxs.exe 1616 PC Tools Auxiliary Service PC Tools

pctsSvc.exe 1656 PC Tools Security Service PC Tools

slserv.exe 484 Smart Link

SMAgent.exe 500 SoundMAX service agent component Analog Devices, Inc.

svchost.exe 720 Generic Host Process for Win32 Services Microsoft Corporation

symlcsvc.exe 768 Symantec Core Component Symantec Corporation

alg.exe 2548 Application Layer Gateway Service Microsoft Corporation

avgwdsvc.exe 1292 AVG Watchdog Service AVG Technologies CZ, s.r.o.

avgrsx.exe 3716 AVG Resident Shield Service AVG Technologies CZ, s.r.o.

lsass.exe 600 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1828 Windows Explorer Microsoft Corporation

PIFSvc.exe 2044 LiveUpdate Notice Service Symantec Corporation

jusched.exe 180 Java Platform SE binary Sun Microsystems, Inc.

BisonTrayIcon.exe 212

pctsTray.exe 224 PC Tools Tray Application PC Tools

ISUSPM.exe 240 InstallShield Update Service Update Manager Macrovision Corporation

ctfmon.exe 252 CTF Loader Microsoft Corporation

ObjectDock.exe 248 ObjectDock Stardock

VZAccess Manager.exe 3656 VZAccess Manager Smith Micro Software, Inc.

uTorrent.exe 4080 1.54

firefox.exe 4000 3.08 Firefox Mozilla Corporation

HiJackThis.exe 2844 HijackThis Trend Micro Inc.

notepad.exe 3120 Notepad Microsoft Corporation

procexp.exe 1116 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

avgtray.exe 3272 AVG Tray Monitor AVG Technologies CZ, s.r.o.

Ymsgr_tray.exe 3240 Yahoo! Messenger Tray Yahoo! Inc.

Process: uTorrent.exe Pid: 4080

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.2180

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.2180

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.2180

apphelp.dll Application Compatibility Client Library Microsoft Corporation 5.01.2600.2180

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0308

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.2180

COMRes.dll Microsoft Corporation 2001.12.4414.0258

ctype.nls

DNSAPI.dll DNS Client API DLL Microsoft Corporation 5.01.2600.3394

DockShellHook.dll

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.3316

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.2180

IMM32.DLL Windows XP IMM32 API Client DLL Microsoft Corporation 5.01.2600.2180

Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2912

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.3119

klg.dat Spyware Doctor Component PC Tools 5.05.0001.0000

locale.nls

mdnsNSP.dll Bonjour Namespace Provider Apple Inc. 1.00.0004.0012

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180

MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.01.2600.3319

msctfime.ime Microsoft Text Frame Work Service IME Microsoft Corporation 5.01.2600.2180

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.2180

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.3394

NETAPI32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2976

ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.2180

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.2726

oleaut32.dll Microsoft Corporation 5.01.2600.3266

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2938

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.3173

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.2180

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.3241

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.2995

sortkey.nls

sorttbls.nls

unicode.nls

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.3099

uTorrent.exe

UxTheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.2180

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180

wbhelp.dll WindowBlinds Helper DLL Stardock.Net, Inc 4.00.0000.0001

wbsys.dll WindowBlinds Stardock.Net, Inc 4.00.0000.0000

winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 5.01.2600.2180

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.2180

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180

Posted

ok, I have checked in UTorrent for the net.max_halfopen. It is already set at 8. :(

I haven't had any problems previously with spyware doctor. It is just recently within the past couple of days that Utorrent took a turn for the worse.

Posted

A program may not cause problems immediately, a firewall from Kaspersky recently blocked Internet access for Firefox on a friends computer, this was after having it installed since last year.

  • 4 months later...
Posted

found this topic, after I create a separate one, and it looks like, there is actually some technical advice given here. Here the link from a separatep post, which describes the issue, very similar to this one:

http://forum.utorrent.com/viewtopic.php?pid=377704#p377704

Did not install anything when this problem suddenly occured.

Here are the logs from hijack and process explorer:

Logfile of HijackThis v1.99.1

Scan saved at 11:46:34 PM, on 11/27/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe

C:\WINDOWS\System32\CTsvcCDA.exe

C:\Program Files\Symantec AntiVirus\DefWatch.exe

C:\WINDOWS\System32\inetsrv\inetinfo.exe

C:\Program Files\lotus\notes\ntmulti.exe

C:\Program Files\CyberLink\Shared Files\RichVideo.exe

C:\Program Files\Symantec AntiVirus\SavRoam.exe

C:\Program Files\Symantec AntiVirus\Rtvscan.exe

C:\WINDOWS\System32\MsPMSPSv.exe

C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Creative\ShareDLL\CtNotify.exe

C:\PROGRA~1\SYMANT~1\VPTray.exe

C:\WINDOWS\system32\RunDll32.exe

C:\Program Files\Common Files\Symantec Shared\ccApp.exe

C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

C:\Program Files\Creative\ShareDLL\MediaDet.exe

C:\Program Files\Cyberlink\Shared Files\brs.exe

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Citrix\ICA Client\pnagent.exe

C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Internet Explorer\iexplore.exe

G:\Applications\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/

O1 - Hosts: 195.82.147.147 pornolab.net static.pornolab.net bt.pornolab.net

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - G:\Applications\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll

O2 - BHO: ConnectionServices module - {6D7B211A-88EA-490c-BAB9-3600D8D7C503} - C:\Program Files\ConnectionServices\ConnectionServices.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)

O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe

O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run

O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe

O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg.EXE

O4 - HKLM\..\Run: [AudCtrl] RunDll32 AudCtrl.dll,RCMonitor

O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

O4 - HKLM\..\Run: [bDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O4 - Global Startup: Program Neighborhood Agent.lnk = C:\Program Files\Citrix\ICA Client\pnagent.exe

O8 - Extra context menu item: &D&ownload &with BitComet - res://G:\Applications\Program Files\BitComet\BitComet.exe/AddLink.htm

O8 - Extra context menu item: &D&ownload all video with BitComet - res://G:\Applications\Program Files\BitComet\BitComet.exe/AddVideo.htm

O8 - Extra context menu item: &D&ownload all with BitComet - res://G:\Applications\Program Files\BitComet\BitComet.exe/AddAllLink.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - G:\Applications\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1164767703842

O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15026/CTPID.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{AC9A1738-5330-4D7B-B81B-E331FE46E20A}: NameServer = 71.242.0.12,71.250.0.12

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe

O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe

O23 - Service: Gene6 FTP Server (G6FTPServer) - Unknown owner - g:\Program Files\Gene6 FTP Server\G6FTPSERVER.EXE (file missing)

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)

O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe

O23 - Service: SessionLauncher - Unknown owner - C:\DOCUME~1\Looser\LOCALS~1\Temp\DX9\SessionLauncher.exe (file missing)

O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe

O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe

O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe

----------------------------------------------------------------------------------------------------------------

Process PID CPU Description Company Name

System Idle Process 0 95.15

Interrupts n/a Hardware Interrupts

DPCs n/a 0.97 Deferred Procedure Calls

System 4

smss.exe 944 Windows NT Session Manager Microsoft Corporation

csrss.exe 1056 Client Server Runtime Process Microsoft Corporation

winlogon.exe 1080 Windows NT Logon Application Microsoft Corporation

services.exe 1124 0.97 Services and Controller app Microsoft Corporation

svchost.exe 1316 Generic Host Process for Win32 Services Microsoft Corporation

MEDIADET.EXE 2304 Disc Detector Creative Technology Ltd.

svchost.exe 1364 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1664 Generic Host Process for Win32 Services Microsoft Corporation

wscntfy.exe 1548 Windows Security Center Notification App Microsoft Corporation

svchost.exe 1716 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1876 Generic Host Process for Win32 Services Microsoft Corporation

spoolsv.exe 380 Spooler SubSystem App Microsoft Corporation

ccSetMgr.exe 340 Symantec Settings Manager Service Symantec Corporation

CTSVCCDA.EXE 456 Creative Service for CDROM Access Creative Technology Ltd

DefWatch.exe 472 Virus Definition Daemon Symantec Corporation

inetinfo.exe 1924 Internet Information Services Microsoft Corporation

ntmulti.exe 608 IBM Lotus Notes/Domino IBM Corp

RichVideo.exe 636 RichVideo Module

SavRoam.exe 660 SAVRoam symantec

Rtvscan.exe 1028 Symantec AntiVirus Symantec Corporation

MsPMSPSv.exe 1216 WMDM PMSP Service Microsoft Corporation

ccEvtMgr.exe 1428 Symantec Event Manager Service Symantec Corporation

alg.exe 1060 Application Layer Gateway Service Microsoft Corporation

svchost.exe 3896 Generic Host Process for Win32 Services Microsoft Corporation

lsass.exe 1136 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1048 Windows Explorer Microsoft Corporation

CTNOTIFY.EXE 2068 Disc Detector Creative Technology Ltd.

VPTray.exe 2084 Symantec AntiVirus Symantec Corporation

rundll32.exe 2140 Run a DLL as an App Microsoft Corporation

ccApp.exe 2148 Symantec User Session Symantec Corporation

jusched.exe 2188 Java Platform SE binary Sun Microsystems, Inc.

jucheck.exe 2720 Java Update Checker Sun Microsystems, Inc.

brs.exe 2464 brs cyberlink

PDVDServ.exe 2532 PowerDVD RC Service Cyberlink Corp.

realsched.exe 2588 RealNetworks Scheduler RealNetworks, Inc.

ctfmon.exe 2608 CTF Loader Microsoft Corporation

pnagent.exe 2756 Citrix ICA Client PNAgent (Win32) Citrix Systems, Inc.

uTorrent.exe 2892 1.94 µTorrent BitTorrent, Inc.

iexplore.exe 1344 Internet Explorer Microsoft Corporation

procexp[1].exe 3716 0.97 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

Process: uTorrent.exe Pid: 2892

Name Description Company Name Version

ACTIVEDS.dll ADs Router Layer DLL Microsoft Corporation 5.01.2600.2180

adsldpc.dll ADs LDAP Provider C DLL Microsoft Corporation 5.01.2600.2180

ADVAPI32.dll Advanced Windows 32 Base API Microsoft Corporation 5.01.2600.2180

appHelp.dll Application Compatibility Client Library Microsoft Corporation 5.01.2600.2180

ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.05.2284.0000

browseui.dll Shell Browser UI Library Microsoft Corporation 6.00.2900.3354

CLBCATQ.DLL Microsoft Corporation 2001.12.4414.0308

COMCTL32.dll User Experience Controls Library Microsoft Corporation 6.00.2900.2982

comdlg32.dll Common Dialogs DLL Microsoft Corporation 6.00.2900.2180

COMRes.dll Microsoft Corporation 2001.12.4414.0258

credui.dll Credential Manager User Interface Microsoft Corporation 5.01.2600.2180

CRYPT32.dll Crypto API32 Microsoft Corporation 5.131.2600.2180

CRYPTUI.dll Microsoft Trust UI Provider Microsoft Corporation 5.131.2600.2180

CSCDLL.dll Offline Network Agent Microsoft Corporation 5.01.2600.2180

cscui.dll Client Side Caching UI Microsoft Corporation 5.01.2600.2180

ctype.nls

DnsApi.dll DNS Client API DLL Microsoft Corporation 5.01.2600.3316

GDI32.dll GDI Client DLL Microsoft Corporation 5.01.2600.3316

hnetcfg.dll Home Networking Configuration Manager Microsoft Corporation 5.01.2600.2180

IMAGEHLP.dll Windows NT Image Helper Microsoft Corporation 5.01.2600.2180

Iphlpapi.dll IP Helper API Microsoft Corporation 5.01.2600.2912

kernel32.dll Windows NT BASE API Client DLL Microsoft Corporation 5.01.2600.3119

locale.nls

mkunicode.dll

mmfinfo.dll

MPRAPI.dll Windows NT MP Router Administration DLL Microsoft Corporation 5.01.2600.2180

MSASN1.dll ASN.1 Runtime APIs Microsoft Corporation 5.01.2600.2180

MSCTF.dll MSCTF Server DLL Microsoft Corporation 5.01.2600.2180

msi.dll Windows Installer Microsoft Corporation 3.01.4000.4039

msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.00.2600.2180

mswsock.dll Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation 5.01.2600.2180

netapi32.dll Net Win32 API DLL Microsoft Corporation 5.01.2600.2976

netshell.dll Network Connections Shell Microsoft Corporation 5.01.2600.2180

ntdll.dll NT Layer DLL Microsoft Corporation 5.01.2600.2180

ntshrui.dll Shell extensions for sharing Microsoft Corporation 5.01.2600.2180

ole32.dll Microsoft OLE for Windows Microsoft Corporation 5.01.2600.2726

oleaut32.dll Microsoft Corporation 5.01.2600.3266

psapi.dll Process Status Helper Microsoft Corporation 5.01.2600.2180

rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 5.01.2600.2938

RPCRT4.dll Remote Procedure Call Runtime Microsoft Corporation 5.01.2600.3173

rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 5.01.2600.2161

rtutils.dll Routing Utilities Microsoft Corporation 5.01.2600.2180

SAMLIB.dll SAM Library DLL Microsoft Corporation 5.01.2600.2180

Secur32.dll Security Support Provider Interface Microsoft Corporation 5.01.2600.2180

SETUPAPI.dll Windows Setup API Microsoft Corporation 5.01.2600.2180

shdocvw.dll Shell Doc Object and Control Library Microsoft Corporation 6.00.2900.3354

SHELL32.dll Windows Shell Common Dll Microsoft Corporation 6.00.2900.3241

shfolder.dll Shell Folder Service Microsoft Corporation 6.00.2900.2180

SHLWAPI.dll Shell Light-weight Utility Library Microsoft Corporation 6.00.2900.3354

sortkey.nls

sorttbls.nls

SXS.DLL Fusion 2.5 Microsoft Corporation 5.01.2600.3019

unicode.nls

USER32.dll Windows XP USER API Client DLL Microsoft Corporation 5.01.2600.3099

USERENV.dll Userenv Microsoft Corporation 5.01.2600.2180

uTorrent.exe µTorrent BitTorrent, Inc. 1.08.0001.12639

UxTheme.dll Microsoft UxTheme Library Microsoft Corporation 6.00.2900.2180

VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 5.01.2600.2180

WININET.dll Internet Extensions for Win32 Microsoft Corporation 6.00.2900.3354

WINTRUST.dll Microsoft Trust Verification APIs Microsoft Corporation 5.131.2600.2180

WLDAP32.dll Win32 LDAP API DLL Microsoft Corporation 5.01.2600.2180

WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 5.01.2600.2180

WS2HELP.dll Windows Socket 2.0 Helper for Windows NT Microsoft Corporation 5.01.2600.2180

wshtcpip.dll Windows Sockets Helper DLL Microsoft Corporation 5.01.2600.2180

xpsp2res.dll Service Pack 2 Messages Microsoft Corporation 5.01.2600.2180

Posted

mkunicode.dll ----- this is installed by KLite codec pack

mmfinfo.dll ----- haali media splitter (matroska).

This has nothing to do with this.

What did you base your reply on? or just to say something?

Posted

Well, the KLite Codec Pack is just fluff, overkill... NOONE needs all those files. FFDShow is good enough for anything modern, and anyone who knows where to get media encoded in ancient formats, can get their respective decoder which works better than ffdshow. Or use a media player with them built in.

As to the problem at hand... you check through all your Symantec processes? Or updating/changing the port in your forwarding rule... it could be your ISP interfering. Also a heads up you hae broken service entries, for your FTP server and your Roxio Media software (most commonly EZ CD Creator).

Posted

yes, I am aware of the good codec management practice. On my HTPC I dont have any of that. I prefer KMplayer, it handles most of the different codecs out there. This older machine is strictly for downloading, so there is bunch of stuff that I dont care for.

Can you be more specific on "checking" symantec processes? what do you I need to check and how?

I did change the port several times. At this point, the red circle changed to orange triangle. I am able to download and upload. Not sure if to the full extent.

Looking on the net, I do not see any info where Verizon is doing any port blocking (except for 80) or throttling (Comcast)....

Also, dont care too much about those broken entries.

Any other suggestions?

update:

got this from http://www.dyndns.com/support/tools/openport.html .... maybe this will help:

An attempted connection to 70.XX.xX.XXX:46288 was refused. This typically indicates that there are no services available on that port, but that it is NOT being blocked by a firewall or your ISP.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...