Jump to content

Crusader

Advanced Member
  • Content Count

    1,441
  • Joined

  • Last visited

About Crusader

  • Rank
    Advanced Member
  • Birthday 11/27/1947

Contact Methods

  • AIM
    Crusader12799
  • Website URL
    http://
  • ICQ
    0

Profile Information

  • Location
    Charlotte, N.C.

Previous Fields

  • Teams:
    Folding@Home Team
  1. The information given is current. Just a note...according to my program list and add/remove programs the software listed is no longer resident on this machine.
  2. This, also, is my combofix log: ComboFix 07-11-19.3 - christine 2007-11-22 21:12:32.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.1.1252.1.1033.18.142 [GMT -5:00] Running from: C:\Documents and Settings\christine\Desktop\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2007-10-23 to 2007-11-23 ))))))))))))))))))))))))))))))) . 2007-11-22 20:50 <DIR> d-------- C:\Program Files\Trend Micro 2007-11-22 20:24 <DIR> d-------- C:\Program Files\RogueRemover FREE 2007-11-22 20:18 <DIR> d-------- C:\WINDOWS\LastGood 2007-11-16 14:01 <DIR> d-------- C:\WINDOWS\CAVTemp 2007-11-16 13:11 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2007-11-16 11:52 79,424 --a------ C:\WINDOWS\system32\vetredir.dll 2007-11-16 11:51 <DIR> d-------- C:\Program Files\Common Files\Scanner 2007-11-16 11:51 <DIR> d-------- C:\Program Files\CA 2007-11-16 11:51 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\CA 2007-11-16 00:38 2,550 --a------ C:\WINDOWS\system32\Uninstall.ico 2007-11-15 23:04 <DIR> d-------- C:\Program Files\XoftSpySE 2007-11-15 22:24 <DIR> d-------- C:\Documents and Settings\christine\Application Data\AdwareAlert 2007-11-15 17:51 <DIR> d-------- C:\Documents and Settings\christine\Application Data\Lavasoft 2007-11-15 17:49 2,636,408 --a------ C:\aawsepersonal.exe 2007-11-07 13:44 <DIR> d-------- C:\WINDOWS\Downloaded Installations 2007-11-07 13:44 <DIR> d-------- C:\Program Files\Common Files\Adobe 2007-11-04 16:44 <DIR> d-------- C:\Documents and Settings\christine\Application Data\Apple Computer 2007-11-04 16:40 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer 2007-11-04 16:39 <DIR> d-------- C:\Program Files\Apple Software Update 2007-11-04 16:39 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Apple 2007-11-04 16:11 21,760 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys 2007-10-31 21:31 <DIR> d-------- C:\Program Files\MELL 2007-10-31 21:31 <DIR> d-------- C:\Program Files\Common Files\MELL 2007-10-28 15:47 <DIR> d-------- C:\Program Files\Yahoo! Games . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-11-19 17:51 --------- d-----w C:\Program Files\Morpheus 2007-11-16 15:23 --------- d-----w C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor 2007-11-04 21:41 --------- d-----w C:\Program Files\QuickTime 2007-10-31 15:35 --------- d-----w C:\Program Files\Viewpoint 2007-10-31 15:35 --------- d-----w C:\Program Files\AIM6 2007-10-31 15:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint 2007-10-31 15:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL Downloads 2007-10-31 15:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL 2007-10-18 18:16 --------- d-----w C:\Program Files\FreshDevices 2007-10-08 01:26 --------- d-----w C:\Program Files\MSECache 2007-10-08 01:17 --------- d-----w C:\Program Files\Microsoft ActiveSync 2007-10-08 01:17 --------- d-----w C:\Program Files\Common Files\L&H 2007-10-08 01:16 --------- d-----w C:\Program Files\Microsoft Works 2007-10-08 01:15 --------- d-----w C:\Program Files\Microsoft.NET . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5DE176A4-B5FF-4D50-B084-E047526B8E97}] C:\WINDOWS\system32\VideoMP3.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\System32\ctfmon.exe" [2002-08-29 05:41] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-08-21 12:45] "cctray"="C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe" [2007-08-16 22:25] "QOELOADER"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe" [2007-11-16 11:51] "CAVRID"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe" [2007-08-20 13:42] "CaPPcl"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAAntiSpyware.exe" [2007-08-16 21:10] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk] path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader] 2007-03-09 11:09 63712 --a------ C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2007-10-10 19:51 39792 --a------ C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6] C:\Program Files\AIM6\aim6.exe /d locale=en-US ee://aol/imApp [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe runtime -Delay [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mell Reg Reminder] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] C:\Program Files\Messenger\msmsgs.exe /background [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\qttask.exe -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Pctspk"=2 (0x2) "MDM"=2 (0x2) "ATI Smart"=2 (0x2) "Ati HotKey Poller"=2 (0x2) "Viewpoint Manager Service"=2 (0x2) "ose"=3 (0x3) "iPod Service"=3 (0x3) R3 PPCtlPriv;PPCtlPriv;"C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe" R3 Ptserlp;PCTEL Serial Device Driver for PCI;C:\WINDOWS\System32\DRIVERS\ptserlp.sys S3 FreshIO;FreshIO;\??\C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys S4 Pctspk;PCTEL Speaker Phone;C:\WINDOWS\system32\pctspk.exe *Newly Created Service* - CATCHME *Newly Created Service* - GTNDIS5 . Contents of the 'Scheduled Tasks' folder "2007-11-14 16:14:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe "2007-11-16 18:05:39 C:\WINDOWS\Tasks\CAAntiSpywareScan_Daily as christine at 12 51 PM.job" - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAAntiSpyware.exe . ************************************************************************** catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-22 21:13:53 Windows 5.1.2600 Service Pack 1 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2007-11-22 21:14:47 . --- E O F ---
  3. I had this trojan, I've been working on it on my own. I no longer gets warnings, but I'm not dure it's entirely gone. Can you tell anything from my HJT log? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:50:40 PM, on 11/22/2007 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe C:\WINDOWS\System32\ctfmon.exe C:\WINDOWS\System32\devldr32.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAPPActiveProtection.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Mp3 Video - {5DE176A4-B5FF-4D50-B084-E047526B8E97} - C:\WINDOWS\system32\VideoMP3.dll (file missing) O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe" O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe" O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe" O4 - HKLM\..\Run: [CaPPcl] C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAAntiSpyware.exe /scan /startup O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1182489966479 O23 - Service: CaCCProvSP - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe O23 - Service: PPCtlPriv - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe O23 - Service: WMP54Gv4SVC - GEMTEKS - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe O24 - Desktop Component 0: (no name) - https://webmail.carolina.rr.com/attach/babypics%20739.jpg -- End of file - 3705 bytes
  4. All of this is loaded through your autoexec.bat file. All you need do is reboot to a command prompt...type in edit autoexec.bat. When the DOS editor appears. Type rem (then a space) before each item you wnat to disable at startup. This is nice, because if it produces undesireable results, you can simply reboot to the command prompt and remove the rem command. Jim
  5. Congratulations! Here's wishing you both the best of everything.
  6. Dell has chosen to go with many proprietary computer components instead of using industry standard computer parts. When it is time for replacement or upgrade of these components, they have to be purchased from Dell. In Dell's case, one of the proprietary parts is one you might not expect: your Dell power supply may look like a standard ATX power supply, but in fact cannot be replaced with a standard ATX power supply. The reason you need a proprietary Dell power supply is because Dell has been using specially modified ATX motherboards with non-standard pinout of the motherboard power connectors. This Dell to ATX adapter converts between the non-standard pinout to the standard ATX pinout and turns a standard ATX power supply into the equivalent of a Dell power supply. Info
  7. That doesn't sound good at all. The smell might be coming from either the power supply or the motherboard. In any case, smells like that spell problems.
  8. Thankyou very much for the invite compaqdude! I signed up for it and it is kinda cool.
  9. With Windows M.E., there is no built-in application to burn CD's. This means you have to do your saving from within the application proviced for burning CD's. This software may come from Adaptec or numerous other companies. Which application do you have for burning cd's?
  10. Crusader

    XP OS CD

    I'm afraid the only way for you to obtain the backup utility is to purchase the CD. I'm sure Dell is not going to provide it.
  11. Log in as Administrator, select change password from your login screen, create a password. Windows 2000 is a little different than XP in that way. Anytime you create a limited user account, you need to password your Admin account.
  12. In most cases, the light on your wireless card indicates power getting to the card. If there is no light whatsoever, I would first suspect the card. I would try replacing the card. If you still get no power light, it would then make sense that there is an issue with the slot it's plugged into.
  13. Oh, I wish it was that easy! Unfortunately, you canot change the speed of your CPU to whatever you want it to be. Your processor speed is limited to the speed what is designed at manufacture.
  14. I may not be a top folder....but at least I'm consistant...lol
×
×
  • Create New...