Axcess Denied

[LYSSAS_MOMMY]

i quite honestly am very illiterate with this sort of thing. i had u torrent previously before my computer crashed and it was working fine. now everytime i try to d-l anything it tells me axcess is denied. i am simply d-ling things for my hubby who is away at ait for his entertainment.. what could be the problem.. is there a way i can set my options to a certain setting to fix this problem.. any and all help is appreciated.. HELPPP PLEASE.. IM LOST WITH OUT IT

oh... it also "starts" to down load then i get "torrent error" file:(whatever it is) access is denied... what am i doing wrong omg this makes me nuts!!!

[Ultima]

a) get HijackThis from trendsecure.com, run it, view the log, and post the contents here

get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here

[LYSSAS_MOMMY]

ogfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:49:04 AM, on 10/21/2008

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\ThreatFire\TFTray.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\PeerGuardian2\pg2.exe

C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\PAStiSvc.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\ThreatFire\TFService.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\System32\wbem\wmiprvse.exe

C:\WINDOWS\System32\alg.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe

O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll

O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1224363458196

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe

--

End of file - 7217 bytes

Process PID CPU Description Company Name

System Idle Process 0 96.15

Interrupts n/a Hardware Interrupts

DPCs n/a Deferred Procedure Calls

System 4

smss.exe 608 Windows NT Session Manager Microsoft Corporation

csrss.exe 668 Client Server Runtime Process Microsoft Corporation

winlogon.exe 692 Windows NT Logon Application Microsoft Corporation

services.exe 736 0.77 Services and Controller app Microsoft Corporation

svchost.exe 916 Generic Host Process for Win32 Services Microsoft Corporation

wmiprvse.exe 2988 WMI Microsoft Corporation

svchost.exe 964 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1060 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1184 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 1232 Generic Host Process for Win32 Services Microsoft Corporation

aswUpdSv.exe 1308 avast! Antivirus updating service ALWIL Software

ashServ.exe 1444 avast! antivirus service ALWIL Software

spoolsv.exe 320 Spooler SubSystem App Microsoft Corporation

svchost.exe 548 Generic Host Process for Win32 Services Microsoft Corporation

svchost.exe 600 Generic Host Process for Win32 Services Microsoft Corporation

nvsvc32.exe 648 NVIDIA Driver Helper Service, Version 175.16 NVIDIA Corporation

svchost.exe 1008 Generic Host Process for Win32 Services Microsoft Corporation

PAStiSvc.exe 1284

svchost.exe 1532 Generic Host Process for Win32 Services Microsoft Corporation

TFService.exe 1568 PC Tools ThreatFire Service PC Tools

searchindexer.exe 2136 Microsoft Windows Search Indexer Microsoft Corporation

ashMaiSv.exe 2584 avast! e-Mail Scanner Service ALWIL Software

ashWebSv.exe 2636 avast! Web Scanner ALWIL Software

alg.exe 3204 Application Layer Gateway Service Microsoft Corporation

lsass.exe 748 LSA Shell (Export Version) Microsoft Corporation

explorer.exe 1616 Windows Explorer Microsoft Corporation

RTHDCPL.EXE 1728 Realtek HD Audio Control Panel Realtek Semiconductor Corp.

ashDisp.exe 1752 avast! service GUI component ALWIL Software

TFTray.exe 1760 PC Tools ThreatFire Tray App PC Tools

jusched.exe 1768 Java Platform SE binary Sun Microsystems, Inc.

rundll32.exe 1836 Run a DLL as an App Microsoft Corporation

hpwuSchd2.exe 1864 Hewlett-Packard Product Assistant Hewlett-Packard Co.

ctfmon.exe 1880 CTF Loader Microsoft Corporation

pg2.exe 1888 PeerGuardian 2 Methlabs

YahooMessenger.exe 1924 Yahoo! Messenger Yahoo! Inc.

TeaTimer.exe 1996 System settings protector Safer Networking Limited

hpqtra08.exe 256 HP Digital Imaging Monitor Hewlett-Packard Co.

hpqste08.exe 3020 HP CUE Status Root Hewlett-Packard Co.

WindowsSearch.exe 332 Windows Search System Tray Microsoft Corporation

firefox.exe 908 3.08 Firefox Mozilla Corporation

procexp.exe 3084 Sysinternals Process Explorer Sysinternals - www.sysinternals.com

uTorrent.exe 324 µTorrent BitTorrent, Inc.

[Ultima]

I don't see any real potential culprits besides Windows Search... can you disable that to see if the problem persists? Avast might also be locking files, but first test Windows Search.

[LYSSAS_MOMMY]

How Do I Do That? I Am Illiterate...

[thelittlefire]

Are you aware you have two AV installed? Avast and ThreatFire

[LYSSAS_MOMMY]

yes i know.. my friend is an it and installed them for me

[thelittlefire]

Could you re-create the Process Explorer logfile, this time be sure to select utorrent.exe and have DLL mode enabled (Ctrl-D)? You can just edit it above, you don't need to repost it below.

I also am aware Yahoo Toolbar at least used to ALSO include/bundle AV components... that may be your problem. I too don't have any others idea right now. :/

[LYSSAS_MOMMY]

i have no idea what that means at all... lol.. im so not good with this stuff.. i have nothing diff then what i had before.. i had the same av programs and it ran fine.. im stuck.. im getting us to it..lol

[moogly]

Run Process Explorer with Ctrl+D enabled & uT.exe selected.

[Sparta2310]

I was getting the same message until I sorted out my bandwidth allocations in the options menu. It works fine now. It may not be your problem but give it a check just in case.

[LYSSAS_MOMMY]

again.. i dont know even how to do that.. when i click to run it it opens.. u torrent exe is at the bottom.. what do i do after that?

[moogly]

again.. i dont know even how to do that.. when i click to run it it opens.. u torrent exe is at the bottom.. what do i do after that?

Just do it:

get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here

[Ultima]

Are you aware you have two AV installed? Avast and ThreatFire

IINM, ThreatFire augments traditional antivirus softwares (at least that's the impression I get from their website). From the looks of things, it's just another application behavioral firewall not unlike Prevx (supposedly protecting against zero-day threats and whatnot based on behaviorial heuristics).

[Firon]

ThreatFire also screws up torrenting by causing the user-mapped section error.