LYSSAS_MOMMY Posted October 21, 2008 Report Share Posted October 21, 2008 i quite honestly am very illiterate with this sort of thing. i had u torrent previously before my computer crashed and it was working fine. now everytime i try to d-l anything it tells me axcess is denied. i am simply d-ling things for my hubby who is away at ait for his entertainment.. what could be the problem.. is there a way i can set my options to a certain setting to fix this problem.. any and all help is appreciated.. HELPPP PLEASE.. IM LOST WITH OUT IToh... it also "starts" to down load then i get "torrent error" file:(whatever it is) access is denied... what am i doing wrong omg this makes me nuts!!! Link to comment Share on other sites More sharing options...
Ultima Posted October 21, 2008 Report Share Posted October 21, 2008 a) get HijackThis from trendsecure.com, run it, view the log, and post the contents here get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here Link to comment Share on other sites More sharing options...
LYSSAS_MOMMY Posted October 21, 2008 Author Report Share Posted October 21, 2008 ogfile of Trend Micro HijackThis v2.0.2Scan saved at 11:49:04 AM, on 10/21/2008Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16735)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\RTHDCPL.EXEC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ThreatFire\TFTray.exeC:\Program Files\Java\jre1.6.0_07\bin\jusched.exeC:\WINDOWS\system32\RUNDLL32.EXEC:\Program Files\HP\HP Software Update\HPWuSchd2.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\PeerGuardian2\pg2.exeC:\Program Files\Yahoo!\Messenger\YahooMessenger.exeC:\Program Files\Spybot - Search & Destroy\TeaTimer.exeC:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Windows Desktop Search\WindowsSearch.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\PAStiSvc.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\ThreatFire\TFService.exeC:\WINDOWS\system32\SearchIndexer.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\System32\wbem\wmiprvse.exeC:\WINDOWS\System32\alg.exeC:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\uTorrent\uTorrent.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXEO4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXEO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exeO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exeO4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quietO4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exeO4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exeO4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exeO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dllO9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dllO9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dllO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1224363458196O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exeO23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe--End of file - 7217 bytesProcess PID CPU Description Company NameSystem Idle Process 0 96.15 Interrupts n/a Hardware Interrupts DPCs n/a Deferred Procedure Calls System 4 smss.exe 608 Windows NT Session Manager Microsoft Corporation csrss.exe 668 Client Server Runtime Process Microsoft Corporation winlogon.exe 692 Windows NT Logon Application Microsoft Corporation services.exe 736 0.77 Services and Controller app Microsoft Corporation svchost.exe 916 Generic Host Process for Win32 Services Microsoft Corporation wmiprvse.exe 2988 WMI Microsoft Corporation svchost.exe 964 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1060 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1184 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 1232 Generic Host Process for Win32 Services Microsoft Corporation aswUpdSv.exe 1308 avast! Antivirus updating service ALWIL Software ashServ.exe 1444 avast! antivirus service ALWIL Software spoolsv.exe 320 Spooler SubSystem App Microsoft Corporation svchost.exe 548 Generic Host Process for Win32 Services Microsoft Corporation svchost.exe 600 Generic Host Process for Win32 Services Microsoft Corporation nvsvc32.exe 648 NVIDIA Driver Helper Service, Version 175.16 NVIDIA Corporation svchost.exe 1008 Generic Host Process for Win32 Services Microsoft Corporation PAStiSvc.exe 1284 svchost.exe 1532 Generic Host Process for Win32 Services Microsoft Corporation TFService.exe 1568 PC Tools ThreatFire Service PC Tools searchindexer.exe 2136 Microsoft Windows Search Indexer Microsoft Corporation ashMaiSv.exe 2584 avast! e-Mail Scanner Service ALWIL Software ashWebSv.exe 2636 avast! Web Scanner ALWIL Software alg.exe 3204 Application Layer Gateway Service Microsoft Corporation lsass.exe 748 LSA Shell (Export Version) Microsoft Corporationexplorer.exe 1616 Windows Explorer Microsoft Corporation RTHDCPL.EXE 1728 Realtek HD Audio Control Panel Realtek Semiconductor Corp. ashDisp.exe 1752 avast! service GUI component ALWIL Software TFTray.exe 1760 PC Tools ThreatFire Tray App PC Tools jusched.exe 1768 Java Platform SE binary Sun Microsystems, Inc. rundll32.exe 1836 Run a DLL as an App Microsoft Corporation hpwuSchd2.exe 1864 Hewlett-Packard Product Assistant Hewlett-Packard Co. ctfmon.exe 1880 CTF Loader Microsoft Corporation pg2.exe 1888 PeerGuardian 2 Methlabs YahooMessenger.exe 1924 Yahoo! Messenger Yahoo! Inc. TeaTimer.exe 1996 System settings protector Safer Networking Limited hpqtra08.exe 256 HP Digital Imaging Monitor Hewlett-Packard Co. hpqste08.exe 3020 HP CUE Status Root Hewlett-Packard Co. WindowsSearch.exe 332 Windows Search System Tray Microsoft Corporation firefox.exe 908 3.08 Firefox Mozilla Corporation procexp.exe 3084 Sysinternals Process Explorer Sysinternals - www.sysinternals.comuTorrent.exe 324 µTorrent BitTorrent, Inc. Link to comment Share on other sites More sharing options...
Ultima Posted October 21, 2008 Report Share Posted October 21, 2008 I don't see any real potential culprits besides Windows Search... can you disable that to see if the problem persists? Avast might also be locking files, but first test Windows Search. Link to comment Share on other sites More sharing options...
LYSSAS_MOMMY Posted October 21, 2008 Author Report Share Posted October 21, 2008 How Do I Do That? I Am Illiterate... Link to comment Share on other sites More sharing options...
thelittlefire Posted October 21, 2008 Report Share Posted October 21, 2008 Are you aware you have two AV installed? Avast and ThreatFire Link to comment Share on other sites More sharing options...
LYSSAS_MOMMY Posted October 21, 2008 Author Report Share Posted October 21, 2008 yes i know.. my friend is an it and installed them for me Link to comment Share on other sites More sharing options...
thelittlefire Posted October 21, 2008 Report Share Posted October 21, 2008 Could you re-create the Process Explorer logfile, this time be sure to select utorrent.exe and have DLL mode enabled (Ctrl-D)? You can just edit it above, you don't need to repost it below.I also am aware Yahoo Toolbar at least used to ALSO include/bundle AV components... that may be your problem. I too don't have any others idea right now. :/ Link to comment Share on other sites More sharing options...
LYSSAS_MOMMY Posted October 21, 2008 Author Report Share Posted October 21, 2008 i have no idea what that means at all... lol.. im so not good with this stuff.. i have nothing diff then what i had before.. i had the same av programs and it ran fine.. im stuck.. im getting us to it..lol Link to comment Share on other sites More sharing options...
moogly Posted October 21, 2008 Report Share Posted October 21, 2008 Run Process Explorer with Ctrl+D enabled & uT.exe selected. Link to comment Share on other sites More sharing options...
Sparta2310 Posted October 21, 2008 Report Share Posted October 21, 2008 I was getting the same message until I sorted out my bandwidth allocations in the options menu. It works fine now. It may not be your problem but give it a check just in case. Link to comment Share on other sites More sharing options...
LYSSAS_MOMMY Posted October 21, 2008 Author Report Share Posted October 21, 2008 again.. i dont know even how to do that.. when i click to run it it opens.. u torrent exe is at the bottom.. what do i do after that? Link to comment Share on other sites More sharing options...
moogly Posted October 22, 2008 Report Share Posted October 22, 2008 again.. i dont know even how to do that.. when i click to run it it opens.. u torrent exe is at the bottom.. what do i do after that?Just do it:get Process Explorer from sysinternals.com, run it, Ctrl+D (to show the lower DLL pane), select the µTorrent process from the list, Ctrl+S (and save the list somewhere you'll find easily -- like the Desktop), then post the contents of the saved process list in the .txt file here Link to comment Share on other sites More sharing options...
Ultima Posted October 22, 2008 Report Share Posted October 22, 2008 Are you aware you have two AV installed? Avast and ThreatFireIINM, ThreatFire augments traditional antivirus softwares (at least that's the impression I get from their website). From the looks of things, it's just another application behavioral firewall not unlike Prevx (supposedly protecting against zero-day threats and whatnot based on behaviorial heuristics). Link to comment Share on other sites More sharing options...
Firon Posted October 22, 2008 Report Share Posted October 22, 2008 ThreatFire also screws up torrenting by causing the user-mapped section error. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.