• Content Count

  • Joined

  • Last visited

About Bree26

  • Rank
    Full Member
  1. Thanks but I finally got it after I switched to safe mode. One really nagging problem I'm having, though, is that no one's Buddy Icons and wallpapers are showing up, excpet mine. When my son is on his user account in XP, and using AIM, he can't see his own Buddy Icon or those of the people he's IM-ing. But I can see his on my user account when he sends me an IM. I don't understand it at all. Mine works absolutely fine but my son's and daughter's do not. Any ideas on this one?
  2. we installed a new hard drive and I am in the process of trying to transfer my old files onto the new hard drive. The "old" hard drive is still there, called "F:", and I'm able to access everyone's documents and settings folders except my own. I get the message "access denied" and that the folder is not accessible. My account was password protected in Windows XP in the original drive, so I don't know if that makes a difference. I've read several posts with instructions to right-click the folder I want to take ownership of and go to the security tab, but none of those instructions work for me because there is no "security" tab when I go to Properties in the folder and therefore I have no way of changing ownership the way Microsoft instructs me. Nothing in the instructions matches anything that shows up on any of the tabs. So I'm at a total loss as to what to do to get my stuff back, and not really happy at this point. Please help!
  3. Thanks for the reply. Between my husband and I, we figured it out, and it's working fine now.
  4. We had tons of computer problems because of malware, etc. and we installed a new hard drive. As I'm in the process of getting "old" settings, etc. on the computer, I noticed that my scrollbar is acting odd only when I'm online (Firefox or AOL). When I scroll down, the pages sort of ripple or wave; it's not a smooth scrolling appearance. I noticed when I checked the mouse properties (we are using a Logitech MX500 Optical Mouse) that the recognize mouse shows only as being a HID-compliant mouse; it doesn't specifically note it as being the Logitech. We don't have an installation CD. Any ideas where I should be looking to fix this?
  5. I was advised to re-post in this forum by a moderator on the PC Support forum...and I have to say I'm a little unhappy with the complete lack of response. I posted back in May and only got partial assistance on that issue in the end because whomever was helping me disappeared due to unknown circumstances. So someone else stepped in but it didn't really address the problem I've been having with a slow computer and the inability to log off from one user to another, the Explorer error messages, etc. So when my situation seemed to cross over to a general PC/Windows problem, I posted there and that person seems to think I still have an infection of some kind and some corruption in the system. That's why I'm here; not to be a pest, not to be paranoid, but because someone from this website with more knowledge and experience on a comp than me suggested it. I guess I'll go elsewhere for help.
  6. Posted a question on PC Support forum because I was having trouble downloading Windows Updates. I got that solved but I may still have some trouble: Ran Kaspersky (Housecall wouldn't cooperate) but when I try to copy and paste it's *huge*, even though it found 4 viruses and 70 infected objects (none of which it deemed suspicious). I have the log if it's needed. New HJT log: Logfile of HijackThis v1.99.1 Scan saved at 4:07:24 PM, on 7/14/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe C:\Program Files\Spyware Doctor\sdhelp.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Lexmark 5200 series\lxbtbmon.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Dell Support\DSAgnt.exe C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe c:\program files\common files\aol\1125164243\ee\aolsoftware.exe C:\Program Files\AIM\aim.exe C:\WINDOWS\explorer.exe C:\PROGRA~1\SPYWAR~2\swdoctor.exe C:\Program Files\Grisoft\AVG Free\avgcc.exe C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe" O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected] O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [spyware Doctor] C:\PROGRA~1\SPYWAR~2\swdoctor.exe /Q O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) -,0,0, O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe Any help is appreciated!
  7. Tried to run Kaspersky and it seems to get hung up on one particular fle: Dell\Media\ONDRVMED.ZIP after scanning only 117 files. It ran for 6 minutes alone on that and didn't do anything beyond that. I ran it in IE, as i requested, which would no cooperate for the Housecall scan. Kaspersky did say it found an infected object, nearly right off the bat: and it rewrites HKLM\Software\Microsoft\DownloadManager. Which could possibly explain my difficulties the past two days? The Housecall scan is verrrry sloooooow; telling me it will take 2 1/4 hrs., which is a world record for scanning my computer. We'll see what it has to say.
  8. No, I'm running Spyware Doctor, which seems to be pretty good so far.
  9. I fixed the BITS problem and installed all new Windows updates. The fix was to go into Documents and Settings\All Users\Application Data\Microsoft\Network, where there are two folders, Connections and Downloader. I cut and pasted the Downloader folder onto the desktop, went back into Services to BITS, clicked "started" and it worked. I owe the fix to a lady on a Microsoft forum, who had gotten the same error message I did (the only other one I'd come across in my internet search the past two days). As far as any infections, I've run SpyBot and nothing popped up on that. I'm not sure what to do on that point now.
  10. I'll contact Dell support and hopefully get this resolved for once and for all. Thank you.
  11. I will gladly do that if it means getting rid of this daily nuisance. I guess my question was if I needed to be sure I was clear of every and anything before I reinstall Windows XP. And, also, since we have a floppy drive, will reinstallation be less tricky (for lack of a better word)?
  12. OK...our anti-spyware program (Spyware Doctor) found this during it's morning scan: Backdoor.Redghost HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System##DisableRegistryTools This was not on yesterday's scan. And, we did purchase a floppy drive with the system. We also have AVG Free Edition running, which has been clear of viruses for about a week now. Should I post another HJT log on the malware forum before I continue trying to repair my registry, etc.? This is getting worse instead of better, at this point. It has been a ballooning problem since May.
  13. It's a Dell Dimension 8400 running Windows XP SP2. Yeah, I know it was a real mess and I was nearly finished with diagnosing it...ran Rootkit Revealer as a last step and then never received a response to that log so I had no idea what any big problem might be. I figured some things in the system were messed up just by the way it has been running, even though scans show nothing malicious. I've also noticed failure audits here and there: Event ID 680, User:NT AUTHORITY\SYSTEM, Logon Attempt by: MICROSOFT-AUTHENTICATION-PACKAGE-V1-0 (on my logon account name), followed by: Event ID 529, Logon Failure: Unknown user name or bad password, User Name: (me), Domain: (our computer), Logon Type: 2, Logon Process: Advapi. Is someone trying to access our computer or am I misinterpreting this?
  14. I'm not aware of turning off any services to save resources, but we did have an issue with malware/spyware that was supposedly resolved a couple of weeks ago. All that shows up on an ewid scan now are some tracking cookies. I guess I'm not sure what to do now, since I have these three services that aren't functioning properly. Is there somewhere else I should post?