no windows update, browser redirects, no task bar or icons at startup

[turinj5677]

I do have an xp cd so I ran the program as you said.  It did access the cd a few times.  During the process I did get a window open from outpost saying that postupdate.exe was trying to modify a critical registry entry.  I clicked allow.  At the end of the process I got an avg notification that said threat was blocked.

File name: 9472350473.org/fg74ut7dfgju4/kucrjsinb.php
Threat name: Exploit Phoenix Exploit Kit (type 1834)

When I clicked on more info it said this:

process name c:/windows/system32/svchost.exe
process id: 1416

As I was copying this info from that window the screen blinked for a second, the taskbar changed colors for a few seconds, then the screen blinked again and it went back to normal.

[turinj5677]

It didn't seem to make a difference at all in the way the machine is running.  I still cannot access the update site. 

[SuperDave]

Ok. Let's try this:

Download Dial-a-Fix by djlizard, save it to the desktop then extract it to it's own folder.

•Open the folder and run Dial-a-fix.exe
•2 windows will open. Close the one in the background labeled Restrictive Policies
•Check the box in section 1, Empty temp folders.

•Check the box in section 2, Fix Windows Installer.

•Check the box in section 3, Fix Windows Update.

•Check the box in section 4, labeled SSL/HTTPS/Cryptography. The 4 boxes under it should be pre-checked

•Check all boxes in section 5, labeled Registration Center.

•Click Go

•OK any error messages if received, but write them down and post them here.

•Restart the computer when done.

[turinj5677]

Dave I hope you don't mind but I am gonna post the whole log from dial-a-fix because there were many errors and most were saying the same thing about different files.  I highlighted all the errors. 

During the time the program was running my screen blinked twice and the task bar changed colors.  The second time they never went back until after I rebooted. 

Once I rebooted I got an alert from the security center saying my automatic updates were off.  When I clicked on the balloon and tried to turn them on from the security center I got a little message saying that windows couldn't perform that operation at this time through the security center to go to system in the control panel and click on automatic updates.  When I went to system, there was no longer an automatic update tab.  When I click on windows update from program files I still get the same cannot display web page message. 

The first time I re-booted after running the program the machine locked up just as the windows emblem came up.  It re-booted ok after that. Since I have had the computer re-booted it has been working away.  Light flashing and I hear my hard drive working like there was a scan going on.  I looked at my task manager but there was no other application running except firefox.  Don't know if that is anything, just seemed unusual to me. 



9:12:40 PM | Dial-a-fix was unable to determine your version of Internet Explorer
Notes about this log:
1) "->" denotes an external command being executed, and "-> (number)" indicates
     the return code from the previous command
2) Not all external command return codes are accurate, or useful
3) Sometimes commands return 0 (no error) even when they fail or crash
4) If an error occurs while registering an object, please send an email to:
     [email protected] and include a copy of this log

DAF version: v0.60.0.24

--- System info ---
OS: Microsoft Windows XP Service Pack 3
IE version: 8.0.6001.18702
MPC: 76487-OEM
CPU: Intel(R) Pentium(R) D CPU 3.20GHz (~3200MHz)
CPU: CPU is 64-bit or has 64-bit extensions
CPU: 2 CPU cores present
BIOS: 7/11/2005
Memory (approx): 1533MB
Uptime: 0 hour(s)
Current directory: C:\Documents and Settings\Dad\Desktop\Dial-a-fix-v0.60.0.24
---

1/5/2011 9:12:40 PM -- Dial-a-fix : [v0.60.0.24] -- started
9:12:41 PM | Policy scan started
9:12:41 PM | Policy scan ended - no restrictive policies were found
--- Emptying temp folders ---
9:15:03 PM | Deleting C:\Documents and Settings\Dad\Local Settings\temp...
9:15:04 PM | C:\Documents and Settings\Dad\Local Settings\temp could not be completely emptied, please reboot and try again
9:15:04 PM | Deleting C:\WINDOWS\temp...
9:15:04 PM | C:\WINDOWS\temp could not be completely emptied, please reboot and try again
9:15:04 PM | Deleting C:\DOCUME~1\Dad\LOCALS~1\Temp...
9:15:04 PM | Re-created directory C:\DOCUME~1\Dad\LOCALS~1\Temp
--- MSI ---
9:15:11 PM | Registered: C:\WINDOWS\system32\msi.dll
--- Windows Update ---
--- Registration: Windows Update/Automatic Update DLLs ---
9:15:18 PM | Unregistered: C:\WINDOWS\system32\msxml.dll
9:15:18 PM | Registered: C:\WINDOWS\system32\msxml.dll
9:15:19 PM | Unregistered: C:\WINDOWS\system32\msxml2.dll
9:15:19 PM | Registered: C:\WINDOWS\system32\msxml2.dll
9:15:22 PM | Unregistered: C:\WINDOWS\system32\msxml3.dll
9:15:23 PM | Registered: C:\WINDOWS\system32\msxml3.dll
9:15:23 PM | Unregistered: C:\WINDOWS\system32\msxml4.dll
9:15:23 PM | Registered: C:\WINDOWS\system32\msxml4.dll
9:15:24 PM | Unregistered: C:\WINDOWS\system32\qmgr.dll
9:15:24 PM | Registered: C:\WINDOWS\system32\qmgr.dll
9:15:24 PM | Unregistered: C:\WINDOWS\system32\qmgrprxy.dll
9:15:24 PM | Registered: C:\WINDOWS\system32\qmgrprxy.dll
9:15:24 PM | Unregistered: C:\WINDOWS\system32\muweb.dll
9:15:24 PM | Registered: C:\WINDOWS\system32\muweb.dll
9:15:25 PM | Unregistered: C:\WINDOWS\system32\winhttp.dll
9:15:25 PM | Registered: C:\WINDOWS\system32\winhttp.dll
9:15:25 PM | Registered: C:\WINDOWS\system32\wuapi.dll
9:16:42 PM | Unregistered: C:\WINDOWS\system32\wuaueng.dll
9:21:42 PM | Error during registration of C:\WINDOWS\system32\wuaueng.dll - version: 7.4.7600.226. The error returned is: The specified service has been marked for deletion.
(-2147023824)
9:21:42 PM | Unregistered: C:\WINDOWS\system32\wuaueng1.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\wuaueng1.dll
9:21:43 PM | Unregistered: C:\WINDOWS\system32\wucltui.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\wucltui.dll
9:21:43 PM | Unregistered: C:\WINDOWS\system32\wups.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\wups.dll
9:21:43 PM | Unregistered: C:\WINDOWS\system32\wups2.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\wups2.dll
9:21:43 PM | Unregistered: C:\WINDOWS\system32\wuweb.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\wuweb.dll
9:21:43 PM | Registered: C:\WINDOWS\system32\ole32.dll
--- SSL/HTTPS/Cryptography ---
9:21:48 PM | Executed 'cmd.exe /c rmdir /q /s C:\WINDOWS\system32\Catroot2'
--- Registration: SSL/HTTPS/Cryptography ---
9:21:50 PM | Unregistered: C:\WINDOWS\system32\cryptdlg.dll
9:21:50 PM | Registered: C:\WINDOWS\system32\cryptdlg.dll
9:21:51 PM | Unregistered: C:\WINDOWS\system32\cryptui.dll
9:21:51 PM | Registered: C:\WINDOWS\system32\cryptui.dll
9:21:51 PM | Unregistered: C:\WINDOWS\system32\cryptext.dll
9:21:51 PM | Registered: C:\WINDOWS\system32\cryptext.dll
9:21:51 PM | Unregistered: C:\WINDOWS\system32\dssenh.dll
9:21:51 PM | Registered: C:\WINDOWS\system32\dssenh.dll
9:21:51 PM | Unregistered: C:\WINDOWS\system32\gpkcsp.dll
9:21:51 PM | Registered: C:\WINDOWS\system32\gpkcsp.dll
9:21:51 PM | Unregistered: C:\WINDOWS\system32\initpki.dll
9:22:34 PM | Registered: C:\WINDOWS\system32\initpki.dll
9:22:34 PM | Unregistered: C:\WINDOWS\system32\licdll.dll
9:22:34 PM | Registered: C:\WINDOWS\system32\licdll.dll
9:22:34 PM | Unregistered: C:\WINDOWS\system32\mssign32.dll
9:22:34 PM | Registered: C:\WINDOWS\system32\mssign32.dll
9:22:34 PM | Unregistered: C:\WINDOWS\system32\mssip32.dll
9:22:34 PM | Registered: C:\WINDOWS\system32\mssip32.dll
9:22:35 PM | Unregistered: C:\WINDOWS\system32\scardssp.dll
9:22:36 PM | Registered: C:\WINDOWS\system32\scardssp.dll
9:22:36 PM | Unregistered: C:\WINDOWS\system32\sccbase.dll
9:22:36 PM | Registered: C:\WINDOWS\system32\sccbase.dll
9:22:36 PM | Unregistered: C:\WINDOWS\system32\scecli.dll
9:22:36 PM | Registered: C:\WINDOWS\system32\scecli.dll
9:22:37 PM | Unregistered: C:\WINDOWS\system32\softpub.dll
9:22:37 PM | Registered: C:\WINDOWS\system32\softpub.dll
9:22:37 PM | Unregistered: C:\WINDOWS\system32\slbcsp.dll
9:22:37 PM | Registered: C:\WINDOWS\system32\slbcsp.dll
9:22:39 PM | Unregistered: C:\WINDOWS\system32\regwizc.dll
9:22:39 PM | Registered: C:\WINDOWS\system32\regwizc.dll
9:22:39 PM | Unregistered: C:\WINDOWS\system32\rsaenh.dll
9:22:39 PM | Registered: C:\WINDOWS\system32\rsaenh.dll
9:22:39 PM | Unregistered: C:\WINDOWS\system32\winhttp.dll
9:22:40 PM | Registered: C:\WINDOWS\system32\winhttp.dll
9:22:40 PM | Unregistered: C:\WINDOWS\system32\wintrust.dll
9:22:40 PM | Registered: C:\WINDOWS\system32\wintrust.dll
--- Registration: ActiveX controls/codecs ---
9:22:41 PM | Registered: C:\WINDOWS\system32\acelpdec.ax
9:22:41 PM | Registered: C:\WINDOWS\system32\actxprxy.dll
9:22:41 PM | Registered: C:\WINDOWS\system32\asctrls.ocx
9:22:42 PM | Registered: C:\WINDOWS\system32\daxctle.ocx
9:22:42 PM | Registered: C:\WINDOWS\system32\hhctrl.ocx
9:22:42 PM | Registered: C:\WINDOWS\system32\l3codecx.ax
9:22:42 PM | Registered: C:\WINDOWS\system32\licmgr10.dll
9:22:42 PM | Registered: C:\WINDOWS\system32\mpg4ds32.ax
9:22:47 PM | Registered: C:\WINDOWS\system32\msdxm.ocx
9:22:47 PM | Registered: C:\WINDOWS\system32\proctexe.ocx
9:22:47 PM | Registered: C:\WINDOWS\system32\tdc.ocx
9:22:47 PM | Registered: C:\WINDOWS\system32\wshom.ocx
--- Registration: Control Panel applets ---
9:22:48 PM | DllInstalled: C:\WINDOWS\system32\inetcpl.cpl
9:22:48 PM | DllInstalled: C:\WINDOWS\system32\appwiz.cpl
9:22:48 PM | Registered: C:\WINDOWS\system32\appwiz.cpl
9:22:48 PM | DllInstalled: C:\WINDOWS\system32\nusrmgr.cpl
9:22:49 PM | Registered: C:\WINDOWS\system32\nusrmgr.cpl
--- Registration: Direct[X|Draw|Show|Media] ---
9:22:49 PM | Registered: C:\WINDOWS\system32\quartz.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\danim.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\dmscript.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\dmstyle.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\dxmasf.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\dxtmsft.dll
9:22:50 PM | Registered: C:\WINDOWS\system32\dxtrans.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\sbe.dll
--- Registration: Programming cores/runtimes ---
9:22:51 PM | Registered: C:\WINDOWS\system32\atl.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\corpol.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\jscript.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\dispex.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\scrrun.dll
9:22:51 PM | Registered: C:\WINDOWS\system32\scrobj.dll
9:22:52 PM | Registered: C:\WINDOWS\system32\vbscript.dll
9:22:52 PM | Registered: C:\WINDOWS\system32\wshext.dll
--- Registration: Explorer/IE/OE/shell/WMP ---
9:22:52 PM | Registered: C:\WINDOWS\system32\activeds.dll
9:22:52 PM | Registered: C:\WINDOWS\system32\audiodev.dll
9:22:54 PM | DllInstalled: C:\WINDOWS\system32\browseui.dll
9:22:54 PM | Registered: C:\WINDOWS\system32\browseui.dll
9:22:54 PM | Registered: C:\WINDOWS\system32\browsewm.dll
9:22:55 PM | Registered: C:\WINDOWS\system32\cabview.dll
9:22:55 PM | Registered: C:\WINDOWS\system32\cdfview.dll
9:22:56 PM | Registered: C:\WINDOWS\system32\clbcatex.dll
9:22:56 PM | Registered: C:\WINDOWS\system32\clbcatq.dll
9:22:56 PM | Registered: C:\WINDOWS\system32\comcat.dll
9:22:56 PM | Registered: C:\WINDOWS\system32\cscui.dll
9:22:56 PM | Registered: C:\WINDOWS\system32\credui.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\datime.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\devmgr.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dfsshlex.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dmdlgs.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dmdskmgr.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dmloader.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dmocx.dll
9:22:57 PM | Registered: C:\WINDOWS\system32\dmview.ocx
9:22:58 PM | DllInstalled: C:\WINDOWS\system32\dsuiext.dll
9:22:58 PM | Registered: C:\WINDOWS\system32\dsuiext.dll
9:22:58 PM | DllInstalled: C:\WINDOWS\system32\dsquery.dll
9:22:58 PM | Registered: C:\WINDOWS\system32\dsquery.dll
9:22:59 PM | Registered: C:\WINDOWS\system32\dskquoui.dll
9:22:59 PM | Registered: C:\WINDOWS\system32\els.dll
9:22:59 PM | Registered: C:\WINDOWS\system32\es.dll
9:22:59 PM | Registered: C:\WINDOWS\system32\fontext.dll
9:23:00 PM | Registered: C:\WINDOWS\system32\hlink.dll
9:23:00 PM | Registered: C:\WINDOWS\system32\hnetcfg.dll
9:23:00 PM | Registered: C:\WINDOWS\system32\iedkcs32.dll
9:23:00 PM | Registered: C:\WINDOWS\system32\iepeers.dll
9:23:00 PM | Error 127: C:\WINDOWS\system32\iesetup.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:26:35 PM | Error 127: C:\WINDOWS\system32\iesetup.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
9:29:37 PM | Registered: C:\WINDOWS\system32\ils.dll
9:29:37 PM | Error 127: C:\WINDOWS\system32\imgutil.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:31:18 PM | Registered: C:\WINDOWS\system32\inetcfg.dll
9:31:19 PM | Registered: C:\WINDOWS\system32\inetcomm.dll
9:31:19 PM | Error 127: C:\WINDOWS\system32\inseng.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:32:02 PM | Error 127: C:\WINDOWS\system32\inseng.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
9:32:59 PM | Registered: C:\WINDOWS\system32\laprxy.dll
9:33:00 PM | Registered: C:\WINDOWS\system32\lmrt.dll
9:33:00 PM | Registered: C:\WINDOWS\system32\mlang.dll
9:33:01 PM | Registered: C:\WINDOWS\system32\mmcndmgr.dll
9:33:01 PM | Registered: C:\WINDOWS\system32\mmcshext.dll
9:33:02 PM | Registered: C:\WINDOWS\system32\mscoree.dll
9:33:02 PM | Error 127: C:\WINDOWS\system32\mshtml.dll is not registerable or the file is corrupted. Version: 8.00.6001.18999
9:35:10 PM | Error 127: C:\WINDOWS\system32\mshtml.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18999
9:36:03 PM | Registered: C:\WINDOWS\system32\mshtmled.dll
9:36:03 PM | Registered: C:\WINDOWS\system32\msieftp.dll
9:36:04 PM | Registered: C:\WINDOWS\system32\msoeacct.dll
9:36:04 PM | Registered: C:\WINDOWS\system32\msr2c.dll
9:36:04 PM | Error 127: C:\WINDOWS\system32\msrating.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:37:31 PM | DllInstalled: C:\WINDOWS\system32\mydocs.dll
9:37:32 PM | Registered: C:\WINDOWS\system32\mydocs.dll
9:37:32 PM | Registered: C:\WINDOWS\system32\mstime.dll
9:37:32 PM | Registered: C:\WINDOWS\system32\netcfgx.dll
9:37:32 PM | DllInstalled: C:\WINDOWS\system32\netplwiz.dll
9:37:33 PM | Registered: C:\WINDOWS\system32\netplwiz.dll
9:37:33 PM | Registered: C:\WINDOWS\system32\netman.dll
9:37:34 PM | Registered: C:\WINDOWS\system32\netshell.dll
9:37:34 PM | Registered: C:\WINDOWS\system32\ntmsevt.dll
9:37:34 PM | Registered: C:\WINDOWS\system32\ntmsmgr.dll
9:37:34 PM | DllInstalled: C:\WINDOWS\system32\ntmssvc.dll
9:37:34 PM | Registered: C:\WINDOWS\system32\ntmssvc.dll
9:37:35 PM | Error 127: C:\WINDOWS\system32\occache.dll is not registerable or the file is corrupted. Version: 8.00.6001.18992
9:38:46 PM | Error 127: C:\WINDOWS\system32\occache.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18992
9:39:30 PM | Registered: C:\WINDOWS\system32\ole32.dll
9:39:31 PM | Registered: C:\WINDOWS\system32\oleaut32.dll
9:39:31 PM | Registered: C:\WINDOWS\system32\oleacc.dll
9:39:31 PM | Registered: C:\WINDOWS\system32\olepro32.dll
9:39:31 PM | DllInstalled: C:\WINDOWS\system32\photowiz.dll
9:39:32 PM | Registered: C:\WINDOWS\system32\photowiz.dll
9:39:32 PM | Error 127: C:\WINDOWS\system32\pngfilt.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:41:06 PM | Registered: C:\WINDOWS\system32\remotepg.dll
9:41:06 PM | Registered: C:\WINDOWS\system32\rpcrt4.dll
9:41:07 PM | Registered: C:\WINDOWS\system32\rshx32.dll
9:41:07 PM | Registered: C:\WINDOWS\system32\sendmail.dll
9:41:07 PM | Registered: C:\WINDOWS\system32\slayerxp.dll
9:41:10 PM | DllInstalled: C:\WINDOWS\system32\shdocvw.dll
9:41:11 PM | Registered: C:\WINDOWS\system32\shdocvw.dll
9:41:11 PM | Registered: C:\WINDOWS\system32\shell32.dll
9:41:14 PM | DllInstalled: C:\WINDOWS\system32\shell32.dll
9:41:15 PM | Registered: C:\WINDOWS\system32\shmedia.dll
9:41:15 PM | DllInstalled: C:\WINDOWS\system32\shimgvw.dll
9:41:16 PM | Registered: C:\WINDOWS\system32\shimgvw.dll
9:41:16 PM | DllInstalled: C:\WINDOWS\system32\shsvcs.dll
9:41:16 PM | Registered: C:\WINDOWS\system32\shsvcs.dll
9:41:16 PM | Registered: C:\WINDOWS\system32\srclient.dll
9:41:17 PM | Unregistered: C:\WINDOWS\system32\stobject.dll
9:41:17 PM | Registered: C:\WINDOWS\system32\stobject.dll
9:41:17 PM | DllInstalled: C:\WINDOWS\system32\themeui.dll
9:41:18 PM | Registered: C:\WINDOWS\system32\themeui.dll
9:41:18 PM | Registered: C:\WINDOWS\system32\twext.dll
9:41:21 PM | DllInstalled: C:\WINDOWS\system32\urlmon.dll
9:41:21 PM | Registered: C:\WINDOWS\system32\urlmon.dll
9:41:21 PM | Registered: C:\WINDOWS\system32\userenv.dll
9:41:21 PM | Error 127: C:\WINDOWS\system32\webcheck.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
9:42:08 PM | Error 127: C:\WINDOWS\system32\webcheck.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
9:42:58 PM | Registered: C:\WINDOWS\system32\webvw.dll
9:42:58 PM | Registered: C:\WINDOWS\system32\winhttp.dll
9:42:58 PM | DllInstalled: C:\WINDOWS\system32\wininet.dll
9:42:59 PM | Registered: C:\WINDOWS\system32\zipfldr.dll
9:42:59 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdadc.dll
9:42:59 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaenum.dll
9:42:59 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaer.dll
9:43:00 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaipp.dll
9:43:00 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaora.dll
9:43:00 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaosp.dll
9:43:00 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaps.dll
9:43:01 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdasc.dll
9:43:01 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdasql.dll
9:43:01 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdatt.dll
9:43:01 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msdaurl.dll
9:43:01 PM | Registered: C:\Program Files\Common Files\system\Ole DB\msxactps.dll
9:43:02 PM | Registered: C:\Program Files\Common Files\system\Ole DB\oledb32.dll
9:43:02 PM | Registered: C:\Program Files\Common Files\system\Ole DB\oledb32r.dll
9:43:02 PM | Registered: C:\Program Files\Common Files\system\Ole DB\sqloledb.dll
9:43:03 PM | Registered: C:\Program Files\Common Files\system\Ole DB\sqlxmlx.dll

[SuperDave]

Please run SFC again as instructed in Reply # 14

[turinj5677]

Please run SFC again as instructed in Reply # 14

Should I disable my anti-virus and firewall first this time??

[SuperDave]

Should I disable my anti-virus and firewall first this time??

No. Not necessary.

[turinj5677]

Ok.  Ran it again.  No errors this time.  Ran much faster too.  But nothing seems to have changed with the computer.  After I rebooted I tried to access windows update to no avail.  IE ended up hanging up and I had to end task. 

[SuperDave]

• Download TDSSKiller and save it to your Desktop.
  
• Extract its contents to your desktop.
• Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  
• If an infected file is detected, the default action will be Cure, click on Continue.
  
• If a suspicious file is detected, the default action will be Skip, click on Continue.
  
• It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  
• Click the Report button and copy/paste the contents of it into your next reply
  

Note:It will also create a log in the C:\ directory..

[turinj5677]

It found one error that it cured.  After reboot I am able to acess the windows update site!!    Should I go ahead and get and install my updates?

Here is the report:

2011/01/06 22:04:09.0390   TDSS rootkit removing tool 2.4.12.0 Dec 16 2010 09:46:46
2011/01/06 22:04:09.0390   ================================================================================
2011/01/06 22:04:09.0390   SystemInfo:
2011/01/06 22:04:09.0390   
2011/01/06 22:04:09.0390   OS Version: 5.1.2600 ServicePack: 3.0
2011/01/06 22:04:09.0390   Product type: Workstation
2011/01/06 22:04:09.0390   ComputerName: THOMAS-BBFF0909
2011/01/06 22:04:09.0390   UserName: Dad
2011/01/06 22:04:09.0390   Windows directory: C:\WINDOWS
2011/01/06 22:04:09.0390   System windows directory: C:\WINDOWS
2011/01/06 22:04:09.0390   Processor architecture: Intel x86
2011/01/06 22:04:09.0390   Number of processors: 2
2011/01/06 22:04:09.0390   Page size: 0x1000
2011/01/06 22:04:09.0390   Boot type: Normal boot
2011/01/06 22:04:09.0390   ================================================================================
2011/01/06 22:04:10.0750   Initialize success
2011/01/06 22:05:12.0687   ================================================================================
2011/01/06 22:05:12.0687   Scan started
2011/01/06 22:05:12.0687   Mode: Manual;
2011/01/06 22:05:12.0687   ================================================================================
2011/01/06 22:05:13.0046   ACPI            (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/01/06 22:05:13.0093   ACPIEC          (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/01/06 22:05:13.0171   aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/01/06 22:05:13.0218   AFD             (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2011/01/06 22:05:13.0281   afw             (f85e257cae6133fcda85332fa52b455e) C:\WINDOWS\system32\DRIVERS\afw.sys
2011/01/06 22:05:13.0328   afwcore         (90b57bf63271cd3df6bb264f91e0be35) C:\WINDOWS\system32\drivers\afwcore.sys
2011/01/06 22:05:13.0468   Arp1394         (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2011/01/06 22:05:13.0578   Aspi32          (ed8cee58c1e4c5893f5b2fd686a272bf) C:\WINDOWS\system32\drivers\Aspi32.sys
2011/01/06 22:05:13.0609   AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/01/06 22:05:13.0625   atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/01/06 22:05:13.0703   Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/01/06 22:05:13.0734   audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/01/06 22:05:13.0781   AVGIDSDriver    (0c61f066f4d94bd67063dc6691935143) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
2011/01/06 22:05:13.0812   AVGIDSEH        (84853f800cd69252c3c764fe50d0346f) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
2011/01/06 22:05:13.0875   AVGIDSFilter    (28d6adcd03e10f3838488b9b5d407dd4) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
2011/01/06 22:05:13.0890   AVGIDSShim      (0eb16f4dbbb946360af30d2b13a52d1d) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
2011/01/06 22:05:13.0937   Avgldx86        (5fe5a2c2330c376a1d8dcff8d2680a2d) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
2011/01/06 22:05:13.0984   Avgmfx86        (54f1a9b4c9b540c2d8ac4baa171696b1) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
2011/01/06 22:05:14.0015   Avgrkx86        (8da3b77993c5f354cc2977b7ea06d03a) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
2011/01/06 22:05:14.0046   Avgtdix         (660788ec46f10ece80274d564fa8b4aa) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
2011/01/06 22:05:14.0109   Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/01/06 22:05:14.0171   cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/01/06 22:05:14.0218   Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/01/06 22:05:14.0250   Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/01/06 22:05:14.0296   Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/01/06 22:05:14.0453   Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/01/06 22:05:14.0531   dmboot          (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
2011/01/06 22:05:14.0593   dmio            (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
2011/01/06 22:05:14.0625   dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/01/06 22:05:14.0671   DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/01/06 22:05:14.0718   drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/01/06 22:05:14.0765   e1express       (0849eacdc01487573add86f5e470806c) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
2011/01/06 22:05:14.0828   Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/01/06 22:05:14.0859   Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2011/01/06 22:05:14.0890   Fips            (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
2011/01/06 22:05:14.0906   Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/01/06 22:05:14.0953   FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/01/06 22:05:15.0000   Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/01/06 22:05:15.0015   Ftdisk          (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/01/06 22:05:15.0046   GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
2011/01/06 22:05:15.0078   Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/01/06 22:05:15.0156   HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/01/06 22:05:15.0203   hidusb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/01/06 22:05:15.0265   HPZid412        (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
2011/01/06 22:05:15.0312   HPZipr12        (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
2011/01/06 22:05:15.0343   HPZius12        (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
2011/01/06 22:05:15.0421   HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/01/06 22:05:15.0546   i8042prt        (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/01/06 22:05:15.0562   Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/01/06 22:05:15.0656   intelppm        (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/01/06 22:05:15.0703   Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/01/06 22:05:15.0750   IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/01/06 22:05:15.0796   IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/01/06 22:05:15.0828   IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/01/06 22:05:15.0875   IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/01/06 22:05:15.0921   IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/01/06 22:05:15.0953   isapnp          (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/01/06 22:05:15.0984   iviVD           (7bd8ff29fecc1f4ef5b26ce3ffa80ae8) C:\WINDOWS\system32\DRIVERS\iviVD.sys
2011/01/06 22:05:16.0015   Kbdclass        (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/01/06 22:05:16.0046   kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/01/06 22:05:16.0093   KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/01/06 22:05:16.0125   L8042Kbd        (5a11400ea1f0a106fe7edb28c270f7b8) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
2011/01/06 22:05:16.0156   L8042mou        (20c919b52897b72ebcb2ad2fc29d8ef0) C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
2011/01/06 22:05:16.0218   LMouKE          (90a794d0a0bf3531c4ba1c0510449629) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
2011/01/06 22:05:16.0250   mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/01/06 22:05:16.0296   Modem           (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
2011/01/06 22:05:16.0312   Mouclass        (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/01/06 22:05:16.0359   mouhid          (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/01/06 22:05:16.0375   MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/01/06 22:05:16.0437   MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/01/06 22:05:16.0484   MRxSmb          (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/01/06 22:05:16.0531   Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/01/06 22:05:16.0546   MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/01/06 22:05:16.0593   MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/01/06 22:05:16.0640   MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/01/06 22:05:16.0687   mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/01/06 22:05:16.0734   Mup             (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/01/06 22:05:16.0765   NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/01/06 22:05:16.0796   NdisTapi        (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/01/06 22:05:16.0828   Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/01/06 22:05:16.0859   NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/01/06 22:05:16.0890   NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/01/06 22:05:16.0937   NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/01/06 22:05:16.0968   NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/01/06 22:05:17.0031   NIC1394         (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2011/01/06 22:05:17.0046   Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/01/06 22:05:17.0093   Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/01/06 22:05:17.0140   Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/01/06 22:05:17.0281   nv              (920d2d77a9c17dc628123d16eeea5c22) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2011/01/06 22:05:17.0406   NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/01/06 22:05:17.0421   NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/01/06 22:05:17.0453   ohci1394        (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2011/01/06 22:05:17.0484   Parport         (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/01/06 22:05:17.0515   PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/01/06 22:05:17.0562   ParVdm          (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/01/06 22:05:17.0578   PCI             (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/01/06 22:05:17.0609   PCIIde          (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/01/06 22:05:17.0656   Pcmcia          (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/01/06 22:05:17.0796   pelmouse        (e541a80cdffd6077c761b4578efc0450) C:\WINDOWS\system32\DRIVERS\pelmouse.sys
2011/01/06 22:05:17.0843   pelusblf        (6432858a4493e906a7d61b9b17a0672a) C:\WINDOWS\system32\DRIVERS\pelusblf.sys
2011/01/06 22:05:17.0937   PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/01/06 22:05:17.0984   PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/01/06 22:05:18.0000   Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/01/06 22:05:18.0031   PxHelp20        (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
2011/01/06 22:05:18.0171   RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/01/06 22:05:18.0218   Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/01/06 22:05:18.0234   RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/01/06 22:05:18.0250   Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/01/06 22:05:18.0281   Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/01/06 22:05:18.0328   RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/01/06 22:05:18.0359   rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/01/06 22:05:18.0406   RDPWD           (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/01/06 22:05:18.0453   redbook         (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/01/06 22:05:18.0515   RTSTOR          (578d3aa8c0b8a575839d451a142d2973) C:\WINDOWS\system32\drivers\RTSTOR.SYS
2011/01/06 22:05:18.0593   SandBox         (57ef0a92bada411c563384c08a4a25cd) C:\WINDOWS\system32\drivers\SandBox.sys
2011/01/06 22:05:18.0656   SASDIFSV        (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2011/01/06 22:05:18.0671   SASKUTIL        (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2011/01/06 22:05:18.0734   Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/01/06 22:05:18.0796   serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/01/06 22:05:18.0828   Serial          (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/01/06 22:05:18.0875   Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/01/06 22:05:18.0921   sfng32          (71011e31a67514be6e5468734766f673) C:\WINDOWS\system32\drivers\sfng32.sys
2011/01/06 22:05:19.0015   splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/01/06 22:05:19.0062   sr              (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/01/06 22:05:19.0109   Srv             (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/01/06 22:05:19.0171   swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/01/06 22:05:19.0218   swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/01/06 22:05:19.0312   sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/01/06 22:05:19.0359   Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/01/06 22:05:19.0406   TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/01/06 22:05:19.0421   TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/01/06 22:05:19.0468   TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/01/06 22:05:19.0562   Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/01/06 22:05:19.0625   Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/01/06 22:05:19.0671   USBAAPL         (5c2bdc152bbab34f36473deaf7713f22) C:\WINDOWS\system32\Drivers\usbaapl.sys
2011/01/06 22:05:19.0734   usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2011/01/06 22:05:19.0781   usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/01/06 22:05:19.0843   usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/01/06 22:05:19.0875   usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/01/06 22:05:19.0921   usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/01/06 22:05:19.0953   usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/01/06 22:05:20.0000   USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/01/06 22:05:20.0031   usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/01/06 22:05:20.0062   VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/01/06 22:05:20.0125   VolSnap         (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/01/06 22:05:20.0187   Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/01/06 22:05:20.0250   wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/01/06 22:05:20.0328   WpdUsb          (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
2011/01/06 22:05:20.0390   WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/01/06 22:05:20.0437   \HardDisk0 - detected Rootkit.Win32.TDSS.tdl4 (0)
2011/01/06 22:05:20.0437   ================================================================================
2011/01/06 22:05:20.0437   Scan finished
2011/01/06 22:05:20.0437   ================================================================================
2011/01/06 22:05:20.0453   Detected object count: 1
2011/01/06 22:05:33.0281   \HardDisk0 - will be cured after reboot
2011/01/06 22:05:33.0281   Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure
2011/01/06 22:05:45.0296   Deinitialize success

[SuperDave]

Should I go ahead and get and install my updates?

Yes, please. Let me know how that goes, then we'll do some cleanup.

[turinj5677]

Ok.  Things are running a lot better than they were!  My browser is not redirecting anymore.  Internet Explorer seems to be running trouble free so far. 

There wasn't many critical updates.  It started with just one, then after that one another one popped up, then one last one.  They were all related to Microsoft .NET Framework.  At first it told me that I had that update hidden and had to unhide it.  The first was Framework itself 1.1 sp 1 .   Then there was two security updates for that.  (kb982670) and (kb2416447). 

I have not gotten the Generic Host Processes error the last few times I have booted up, however should I go to the link you provided in reply #1 and download the hotfix?? 

I am still getting the jsched.exe has encountered a problem and needed to shut down.

The last few times I have shut down I have gotten a end program message that program - n  is not responding.

There are several optional updates that ms is offering.  Do I need any of these??

Update for Internet Explorer 8 Compatibility View List for Windows XP (KB2447568)

Update for Root Certificates [October 2010] (KB931125)

Windows PowerShell 2.0 and WinRM 2.0 for Windows XP and Windows Embedded (KB968930)

Update for Windows XP (KB971513)

Windows Search 4.0 for Windows XP (KB940157)

Microsoft Silverlight (KB2416427)

[SuperDave]

I am still getting the jsched.exe has encountered a problem and needed to shut down.

You can try this to disable it. If that doesn't work, we can try a new install. Please let me know.

There are several optional updates that ms is offering.  Do I need any of these??

You should download them. Any program that is not kept up-to-date is a breeding ground for infections.

[turinj5677]

So far so good on the jusched.exe.  Doesn't seem to be popping up and I scheduled the it in my tasks.

I think I am all updated now!!

[SuperDave]

Ok. If there's nothing else, let's do some cleanup.
You may keep SAS and MBAM, if you wish. Update them and run them on a regular basis.

Delete the Combo-Fix.exe file, C:\Combo-Fix folder, C:\QooBox folder, C:\WINDOWS\nircmd.exe, C:\combo-fix.txt and C:\Combo-Fix-quarantined-files.txt
You may have a problem deleting one of the folders. In that case, just empyt the folder of whatever files you can and leave it.
**********************************************
To turn off Windows XP System Restore:

NOTE: These instructions assume that you are using the default Windows XP Start Menu and have not changed to the Classic Start menu. To re-enable the default menu, right-click Start, click Properties, click Start menu (not Classic) and then click OK.

1. Click Start.
2. Right-click the My Computer icon, and then click Properties.
3. Click the System Restore tab.
4. Check "Turn off System Restore" or "Turn off System Restore on all drives"
5. Click Apply.
6.  When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
7. Click OK.
8. Restart the computer and follow the instructions in the next section to turn on System Restore.

To turn on Windows XP System Restore:

1. Click Start.
2. Right-click My Computer, and then click Properties.
3. Click the System Restore tab.
4. Uncheck "Turn off System Restore" or "Turn off System Restore on all drives."
5. Click Apply, and then click OK.
This will give you a new, clean Restore Point.
************************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
**************************************************
Use the Secunia Software Inspector to check for out of date software.

•Click Start Now

•Check the box next to Enable thorough system inspection.

•Click Start

•Allow the scan to finish and scroll down to see if any updates are needed.
•Update anything listed.
.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!