Logs to be checked.

[SuperDave]

NOTE: This post was created by Superdave for bobbijoslin because the OP sent this information in a pm to me.

I was reviewing a post and following the instructions but at this point besides updating java I do not know what else I should do.  I am going to try to send my results with this - never did this before so bare with me.  I sure would appreciate it if you could help me.
thank you,
Bobbi
Antivirus/Firewall Check:[/b]
 Windows Firewall Enabled! 
 avast! Internet Security   
 Antivirus up to date! 
```````````````````````````````
Anti-malware/Other Utilities Check:
 Windows Defender   
 Java(TM) 6 Update 24 
 Java(TM) SE Runtime Environment 6 Update 1
 Java(TM) 6 Update 2 
 Java(TM) 6 Update 3 
 Java(TM) 6 Update 5 
 Java(TM) 6 Update 7 
 Out of date Java installed!
````````````````````````````````
Process Check: 
objlist.exe by Laurent
 Windows Defender MSMpEng.exe
 Windows Defender MSASCui.exe
 Windows Defender MsMpEng.exe   
 Windows Defender MSASCui.exe   
 Alwil Software Avast5 AvastSvc.exe 
 Alwil Software Avast5 avastUI.exe 
``````````End of Log````````````

DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by HP_Administrator at 18:25:15 on 2011-10-30
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.446.88 [GMT -6:00]
.
AV: avast! Internet Security *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fisher-Price\DACS\MiniApp\DACSMiniApp.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\program files\real\realplayer\update\realsched.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\notepad.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uSearch Page =
uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie8
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uWindow Title = Windows Internet Explorer provided by Yahoo!
uSearch Bar =
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uInternet Connection Wizard,ShellNext = iexplore
mSearchAssistant =
mCustomizeSearch = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80115
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn2\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn2\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: jZip Webmail plugin: {647fd14a-c4f1-46f4-8fc3-0b40f54226f7} - c:\program files\jzip\WebmailPlugin.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll"
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn2\YTSingleInstance.dll
TB: {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn2\yt.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll"
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - No File
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
TB: {5CBE2611-C31B-401F-89BC-4CBB25E853D7} - No File
TB: {F35CE83E-9EBF-40D5-AE87-53F982389740} - No File
TB: {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - No File
TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File
TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
TB: {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [updateMgr] c:\program files\adobe\acrobat 7.0\reader\AdobeUpdateManager.exe AcRdB7_0_9
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~2.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB7.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BRI/2; yie8)" -"http://www.gamesfreak.net/swf-files/speeding.dir"
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [AlwaysReady Power Message APP] ARPWRMSG.EXE
mRun: [HPBootOp] "c:\program files\hewlett-packard\hp boot optimizer\HPBootOp.exe" /run
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Microsoft Works Update Detection] c:\program files\common files\microsoft shared\works shared\WkUFind.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [DACSMiniApp] c:\program files\fisher-price\dacs\miniapp\DACSMiniApp.exe
mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [ErrorTeck] c:\program files\errorteck\ErrorTeck.exe /scan
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [avast] "c:\program files\alwil software\avast5\avastUI.exe" /nogui
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [<NO NAME>]
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe"  -osboot
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
Trusted Zone: passport.com\www
Trusted Zone: passport.net\www
Trusted Zone: windowsonecare.com\www
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file:///C:/Program%20Files/Airport%20Mania%20-%20First%20Flight/Images/stg_drm.ocx
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} - hxxp://webiq005.webiqonline.com/WebIQ/DataServer/DataServer.dll?Handler=GetEngineDistribution&EDID={896A23A1-5821-4609-A6C6-6D5536C585C9}
DPF: {49232000-16E4-426C-A231-62846947304B} - hxxp://ipgweb.cce.hp.com/rdqcpqdktp/downloads/sysinfo.cab
DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} - hxxp://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/Monopoly/Images/armhelper.ocx
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
TCP: DhcpNameServer = 10.0.0.1
TCP: Interfaces\{892900FC-9814-4488-99C0-81491C1EE93D} : DhcpNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.118.3.243
TCP: Interfaces\{A157478E-F726-4A96-8080-528197B718D8} : DhcpNameServer = 10.0.0.1
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\wifd1f~1\MpShHook.dll
mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12
.
============= SERVICES / DRIVERS ===============
.
R0 sonyhcb;Sony Digital Imaging Base;c:\windows\system32\drivers\sonyhcb.sys [2006-7-20 6097]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-2-24 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-12-31 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-12-31 20568]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-5-3 44768]
R2 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\SeaPort.EXE [2011-6-15 249648]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-2 135664]
S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-7-7 195336]
S3 GamesAppService;GamesAppService;c:\program files\wildtangent games\app\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-2-2 135664]
S3 MR97310_VGA_DUAL_CAMERA;VGA Dual-Mode Camera;c:\windows\system32\drivers\mr97310v.sys [2004-3-30 118106]
S3 sonyhcs;Sony Digital Imaging Video;c:\windows\system32\drivers\sonyhcs.sys [2006-7-20 299731]
.
=============== Created Last 30 ================
.
2011-10-30 23:46:15   56200   ----a-w-   c:\documents and settings\all users\application data\microsoft\windows defender\definition updates\{e824b431-083d-4a90-a191-5f89a24bf927}\offreg.dll
2011-10-28 06:29:07   6668624   ----a-w-   c:\documents and settings\all users\application data\microsoft\windows defender\definition updates\{e824b431-083d-4a90-a191-5f89a24bf927}\mpengine.dll
2011-10-22 01:33:53   --------   d-----w-   c:\program files\common files\xing shared
.
==================== Find3M  ====================
.
2011-10-14 14:43:52   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-26 17:41:20   611328   ----a-w-   c:\windows\system32\uiautomationcore.dll
2011-09-26 17:41:20   220160   ----a-w-   c:\windows\system32\oleacc.dll
2011-09-26 17:41:14   20480   ----a-w-   c:\windows\system32\oleaccrc.dll
2011-09-09 09:12:13   599040   ----a-w-   c:\windows\system32\crypt32.dll
2011-09-06 20:45:29   41184   ----a-w-   c:\windows\avastSS.scr
2011-09-06 20:38:05   442200   ----a-w-   c:\windows\system32\drivers\aswSnx.sys
2011-09-06 13:20:51   1858944   ----a-w-   c:\windows\system32\win32k.sys
2011-08-22 23:48:55   916480   ----a-w-   c:\windows\system32\wininet.dll
2011-08-22 23:48:54   43520   ----a-w-   c:\windows\system32\licmgr10.dll
2011-08-22 23:48:54   1469440   ----a-w-   c:\windows\system32\inetcpl.cpl
2011-08-22 11:56:39   385024   ----a-w-   c:\windows\system32\html.iec
2011-08-17 13:49:54   138496   ----a-w-   c:\windows\system32\drivers\afd.sys
.
============= FINISH: 18:28:43.24 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume2
Install Date: 2/11/2006 12:44:58 AM
System Uptime: 10/30/2011 5:45:31 PM (1 hours ago)
.
Motherboard: ASUSTek Computer INC. |  | Amberine M
Processor: AMD Athlon(tm) 64 Processor 3200+ | Socket 939 | 1989/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 66 GiB total, 29.132 GiB free.
D: is FIXED (FAT32) - 9 GiB total, 1.127 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1721: 9/15/2011 2:48:58 AM - System Checkpoint
RP1722: 9/15/2011 3:00:19 AM - Software Distribution Service 3.0
RP1723: 9/16/2011 1:57:24 AM - Software Distribution Service 3.0
RP1724: 9/17/2011 2:44:00 AM - System Checkpoint
RP1725: 9/18/2011 3:08:44 AM - System Checkpoint
RP1726: 9/19/2011 4:07:22 AM - System Checkpoint
RP1727: 9/20/2011 1:33:14 AM - Software Distribution Service 3.0
RP1728: 9/21/2011 2:30:42 AM - System Checkpoint
RP1729: 9/22/2011 3:30:45 AM - System Checkpoint
RP1730: 9/23/2011 1:34:27 AM - Software Distribution Service 3.0
RP1731: 9/24/2011 1:55:45 AM - System Checkpoint
RP1732: 9/25/2011 1:58:58 AM - System Checkpoint
RP1733: 9/26/2011 2:14:45 AM - System Checkpoint
RP1734: 9/27/2011 2:17:12 AM - Software Distribution Service 3.0
RP1735: 9/28/2011 3:48:05 AM - System Checkpoint
RP1736: 9/28/2011 9:16:10 PM - Software Distribution Service 3.0
RP1737: 9/30/2011 8:02:57 AM - Software Distribution Service 3.0
RP1738: 10/1/2011 8:03:57 AM - System Checkpoint
RP1739: 10/2/2011 9:04:16 AM - System Checkpoint
RP1740: 10/3/2011 10:44:34 AM - System Checkpoint
RP1741: 10/4/2011 7:34:16 AM - Software Distribution Service 3.0
RP1742: 10/5/2011 7:51:42 AM - System Checkpoint
RP1743: 10/6/2011 8:22:45 AM - System Checkpoint
RP1744: 10/7/2011 2:31:02 AM - Software Distribution Service 3.0
RP1745: 10/8/2011 2:31:58 AM - System Checkpoint
RP1746: 10/9/2011 9:54:41 AM - System Checkpoint
RP1747: 10/10/2011 10:28:15 AM - System Checkpoint
RP1748: 10/11/2011 1:45:15 AM - Software Distribution Service 3.0
RP1749: 10/12/2011 9:53:47 AM - System Checkpoint
RP1750: 10/12/2011 5:06:42 PM - Software Distribution Service 3.0
RP1751: 10/13/2011 8:07:21 AM - Software Distribution Service 3.0
RP1752: 10/14/2011 8:43:26 AM - Software Distribution Service 3.0
RP1753: 10/15/2011 9:07:03 AM - System Checkpoint
RP1754: 10/17/2011 9:25:30 AM - System Checkpoint
RP1755: 10/18/2011 7:06:04 AM - Software Distribution Service 3.0
RP1756: 10/19/2011 9:34:34 AM - System Checkpoint
RP1757: 10/20/2011 11:00:09 AM - System Checkpoint
RP1758: 10/21/2011 1:54:35 AM - Software Distribution Service 3.0
RP1759: 10/22/2011 11:21:32 PM - System Checkpoint
RP1760: 10/24/2011 2:08:11 PM - System Checkpoint
RP1761: 10/25/2011 2:09:20 AM - Software Distribution Service 3.0
RP1762: 10/26/2011 1:36:41 PM - System Checkpoint
RP1763: 10/27/2011 1:41:19 PM - System Checkpoint
RP1764: 10/28/2011 12:26:56 AM - Software Distribution Service 3.0
RP1765: 10/29/2011 3:42:29 PM - System Checkpoint
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Photoshop 6.0
Adobe Reader 9.4.6
Adobe Shockwave Player 11.6
Adobe SVG Viewer
Agere Systems PCI-SV92PP Soft Modem
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI Control Panel
ATI Display Driver
avast! Internet Security
Bing Bar
BufferChm
CameraDrivers
CP_AtenaShokunin1Config
CP_CalendarTemplates1
cp_LightScribeConfig
cp_LightScribePlugin
CP_Package_Basic1
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CP_Panorama1Config
Critical Update for Windows Media Player 11 (KB959772)
CueTour
Destinations
DeviceManagementQFolder
DocProc
DocumentViewer
DocumentViewerQFolder
Eighteen Wheels of Steel Extreme Trucker
Eighteen Wheels of Steel Haulin'
Enhanced Multimedia Keyboard Solution
GdiplusUpgrade
getPlus(R)_ocx
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Boot Optimizer
HP DigitalMedia Archive
HP Document Viewer 5.3
HP Games
HP Image Zone 5.3
HP Image Zone for Media Center PC
HP Imaging Device Functions 5.3
HP Photosmart 330,380,420,470,7800,8000,8200 Series
HP Photosmart Cameras 5.0
HP Product Assistant
HP Solution Center & Imaging Support Tools 5.3
HP Update
HPProductAssistant
HpSdpAppCoreApp
InstantShareDevices
InterVideo WinDVD Player
iTunes
Java Auto Updater
Java(TM) 6 Update 2
Java(TM) 6 Update 24
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6 Update 1
Junk Mail filter update
jZip
LiveUpdate 2.6 (Symantec Corporation)
Messenger Plus! Live
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Away Mode
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Disc 2
Microsoft Office 2000 Professional
Microsoft Picture It! Express 7.0
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Midnight Outlaw Illegal Street Drag - Nitro Edition
MobileMe Control Panel
MSN
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser (KB933579)
muvee autoProducer 4.5
muvee autoProducer unPlugged 1.2
Mystery P.I. - Special Edition Bundle 2
NVIDIA PhysX v8.10.29
OpenOffice.org 3.0
Otto
PanoStandAlone
PC-Doctor 5 for Windows
PhotoGallery
PIXELA ImageMixer
Playsushi
PS2
PSPrinters08
PSTAPlugin
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
QuickTime
RandMap
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
RealUpgrade 1.1
ScannerCopy
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Internet Explorer 8 (KB976325)
Security Update for Windows Internet Explorer 8 (KB978207)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Segoe UI
SkinsHP1
SolutionCenter
Sonic_PrimoSDK
Status
Super TextTwist
swMSM
The Digital Arts and Crafts Studio
TrayApp
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB968220)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB976749)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update Installer for WildTangent Games App
Update Rollup 2 for Windows XP Media Center Edition 2005
Updates from HP (remove only)
VGA Dual-Mode Camera
WebFldrs XP
WebIQ Technology Engine
WebReg
WildTangent Games
WildTangent Games App
Windows Defender
Windows Driver Package - Camera Maker (MR97310_VGA_DUAL_CAMERA) Image 03/30/2004 2.0.0.0
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Safety Scanner
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player 11
Windows Presentation Foundation
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
Word Slinger
XML Paper Specification Shared Components Pack 1.0
Yahoo! Install Manager
Yahoo! Software Update
Yahoo! Toolbar
.
==== Event Viewer Messages From Past Week ========
.
10/25/2011 4:36:14 PM, error: Dhcp [1002]  - The IP address lease 10.0.0.3 for the Network Card with network address 0015F2378836 has been denied by the DHCP server 10.0.0.1 (The DHCP Server sent a DHCPNACK message).
10/24/2011 4:37:47 PM, error: Service Control Manager [7026]  - The following boot-start or system-start driver(s) failed to load:  ftsata2

[SuperDave]

Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*************************************************************************
What sort of problems are you experiencing with your computer?

Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
******************************************************
Please read here for more information about WildTangent. Your choice if you want to remove it or not.

If you choose to follow my advice, please follow these instructions.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

•WildTangent Web Driveror anything related to WildTangent.
********************************************************
SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
•Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.
**************************************************
Please download Malwarebytes Anti-Malware from here.
Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
• Please save the log to a location you will remember.
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy and paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

[bobbijoslin]

I updated my Java and removed the old version.  I tried to remove wild tangent (3 times) but it is still in my add/remove programs page.  Superanti spyware downloaded.  Here is the log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/02/2011 at 03:30 PM

Application Version : 5.0.1134

Core Rules Database Version : 7888
Trace Rules Database Version: 5700

Scan type       : Complete Scan
Total Scan Time : 01:29:06

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned      : 661
Memory threats detected   : 0
Registry items scanned    : 39342
Registry threats detected : 0
File items scanned        : 60080
File threats detected     : 92

Adware.180solutions/Seekmo
   C:\Documents and Settings\HP_Administrator\Application Data\SeekmoToolbar\skbar.log
   C:\Documents and Settings\HP_Administrator\Application Data\SeekmoToolbar

Adware.Tracking Cookie
   C:\Documents and Settings\HP_Administrator\Cookies\TR4LTO02.txt [ /adserver.zonemedia.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\5YPON4XC.txt [ /atdmt.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\LDJ8LTC6.txt [ /imrworldwide.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\RV08726W.txt [ /247realmedia.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\Y5QPBET3.txt [ /serving-sys.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\VZEUYDFN.txt [ /tribalfusion.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\TPEJY6W2.txt [ /invitemedia.com ]
   C:\Documents and Settings\HP_Administrator\Cookies\8YRIBLGW.txt [ /doubleclick.net ]
   C:\Documents and Settings\HP_Administrator\Cookies\BEFDZ0LT.txt [ /ad.wsod.com ]
   C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\Cookies\CQHJO97V.txt [ Cookie:[email protected]/products/campaigns/adv/ds/majorgeeks/txt/ ]
   C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\Cookies\KVAKVXYA.txt [ Cookie:[email protected]/click/ ]
   C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\Cookies\[email protected][1].txt [ Cookie:[email protected]/ ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .apmebf.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .fastclick.net [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .fastclick.net [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .fastclick.net [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .advertising.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .doubleclick.net [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   accounts.google.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   accounts.google.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   accounts.google.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .yieldmanager.net [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .statcounter.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .legolas-media.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .legolas-media.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .legolas-media.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .ads.pointroll.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .advertising.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .questionmarket.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .questionmarket.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .serving-sys.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .serving-sys.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .serving-sys.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .serving-sys.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .advertising.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .advertising.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .akamai.interclickproxy.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .a1.interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .interclick.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .invitemedia.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .zedo.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .zedo.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .zedo.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .zedo.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   .zedo.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
   statse.webtrendslive.com [ C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]



Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8073

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11/3/2011 6:41:47 AM
mbam-log-2011-11-03 (06-41-47).txt

Scan type: Full scan (C:\|D:\|)
Objects scanned: 296475
Time elapsed: 3 hour(s), 10 minute(s), 14 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 8
Registry Values Infected: 2
Registry Data Items Infected: 0
Folders Infected: 3
Files Infected: 6

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} (Adware.OneToolBar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5929CD6E-2062-44A4-B2C5-2C7E78FBAB38} (Fake.Dropped.Malware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6FD31ED6-7C94-4BBC-8E95-F927F4D3A949} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{E596DF5F-4239-4D40-8367-EBADF0165917} (Rogue.Installer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109FD3D-D891-4f80-8339-50A4913ACE6F} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90B5A95A-AFD5-4d11-B9BD-A69D53D22226} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.TryMedia) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} (Adware.OneToolBar) -> Value: {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} (Adware.OneToolBar) -> Value: {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected] (PUP.PlaySushi) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\chrome (PUP.PlaySushi) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\components (PUP.PlaySushi) -> Quarantined and deleted successfully.

Files Infected:
c:\RECYCLER\adapt_installer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\chrome.manifest (PUP.PlaySushi) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\install.rdf (PUP.PlaySushi) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\chrome\pstextlinks.jar (PUP.PlaySushi) -> Not selected for removal.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\components\playsushiff.dll (PUP.PlaySushi) -> Quarantined and deleted successfully.
c:\documents and settings\hp_administrator\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]\components\playsushiff.xpt (PUP.PlaySushi) -> Quarantined and deleted successfully.

06:49:08   HP_Administrator   MESSAGE   Protection started successfully
06:49:23   HP_Administrator   MESSAGE   IP Protection started successfully

[bobbijoslin]

My computer is having a hard time shutting down programs, when i turn it on I have to wait for an Acrobat page to load so that I can shut it - I do not know why this page loads. 
I tried deleting Wild Tangent 3 times but it is still on the list.
Midnight Outlaw Illegal Street Drag - Nitro Edition will not delete.  It says could not open INSTALL.LOG file.
When I go on facebook to play Gardens of Time the game is always getting stuck.  I have tried downloading Google Chrome but that does not seem to make a difference.  However, I don't know if this is the game, my internet or my computer.
A couple of months ago I had to get a new motherboard installed. I think it happened because the computer was having a hard time shutting down so at times we had to unplug it.  It would also get stuck on pages so we had to unplug it.  Trying to be more patient now because I do not want to ruin another mother board.

[SuperDave]

Please download ComboFix from BleepingComputer.com

Alternate link: GeeksToGo.com

and save it to your Desktop.
It would be easiest to download using Internet Explorer.
If you want to use Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
Double click ComboFix.exe & follow the prompts.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console

Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


Click on Yes, to continue scanning for malware.
When finished, it shall produce a log for you.  Please include the contents of C:\ComboFix.txt in your next reply.

If you have problems with ComboFix usage, see How to use ComboFix

[bobbijoslin]

Here are the contents of the combo fix log - note: I noticed Acrobat did not come on when I started my computer.  Thank you thank you thank you
ComboFix 11-11-03.05 - HP_Administrator 11/03/2011  21:13:05.1.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.446.144 [GMT -6:00]
Running from: c:\documents and settings\HP_Administrator\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
C:\Install.exe
c:\windows\HPCPCUninstaller-6.3.2.116-9972322.exe
c:\windows\kb913800.exe
c:\windows\system32\ps2.bat
c:\windows\system32\regobj.dll
D:\Autorun.inf
.
.
(((((((((((((((((((((((((   Files Created from 2011-10-04 to 2011-11-04  )))))))))))))))))))))))))))))))
.
.
2011-11-04 02:28 . 2011-11-04 02:28   56200   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{F0704142-298B-450A-847C-D19048B557D5}\offreg.dll
2011-11-03 01:36 . 2011-11-03 01:36   --------   d-----w-   c:\documents and settings\HP_Administrator\Application Data\Malwarebytes
2011-11-03 01:36 . 2011-11-03 01:36   --------   d-----w-   c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-03 01:36 . 2011-11-03 12:39   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2011-11-03 01:36 . 2011-08-31 23:00   22216   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-11-02 19:27 . 2011-11-02 19:27   --------   d-----w-   c:\documents and settings\HP_Administrator\Application Data\SUPERAntiSpyware.com
2011-11-02 19:26 . 2011-11-02 19:27   --------   d-----w-   c:\program files\SUPERAntiSpyware
2011-11-02 19:26 . 2011-11-02 19:26   --------   d-----w-   c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2011-11-02 18:51 . 2011-11-02 18:51   --------   d-----w-   c:\documents and settings\All Users\Uniblue
2011-11-01 15:08 . 2011-10-07 03:48   6668624   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{F0704142-298B-450A-847C-D19048B557D5}\mpengine.dll
2011-10-22 01:33 . 2011-10-22 01:33   --------   d-----w-   c:\program files\Common Files\xing shared
2011-10-22 01:32 . 2011-10-22 01:34   --------   d-----w-   c:\program files\real
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-14 14:43 . 2011-06-09 15:24   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-07 03:48 . 2009-01-02 03:05   6668624   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-10-03 11:06 . 2011-04-20 22:26   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2011-10-03 08:37 . 2007-06-13 02:26   73728   ----a-w-   c:\windows\system32\javacpl.cpl
2011-09-26 17:41 . 2007-10-09 19:03   611328   ----a-w-   c:\windows\system32\uiautomationcore.dll
2011-09-26 17:41 . 2004-08-10 12:00   220160   ----a-w-   c:\windows\system32\oleacc.dll
2011-09-26 17:41 . 2004-08-10 12:00   20480   ----a-w-   c:\windows\system32\oleaccrc.dll
2011-09-09 09:12 . 2004-08-10 12:00   599040   ----a-w-   c:\windows\system32\crypt32.dll
2011-09-06 20:45 . 2010-09-10 01:49   41184   ----a-w-   c:\windows\avastSS.scr
2011-09-06 20:45 . 2008-12-31 20:03   199304   ----a-w-   c:\windows\system32\aswBoot.exe
2011-09-06 20:38 . 2011-02-24 22:51   442200   ----a-w-   c:\windows\system32\drivers\aswSnx.sys
2011-09-06 20:37 . 2008-12-31 20:04   320856   ----a-w-   c:\windows\system32\drivers\aswSP.sys
2011-09-06 20:36 . 2008-12-31 20:04   34392   ----a-w-   c:\windows\system32\drivers\aswRdr.sys
2011-09-06 20:36 . 2008-12-31 20:04   52568   ----a-w-   c:\windows\system32\drivers\aswTdi.sys
2011-09-06 20:36 . 2008-12-31 20:04   110552   ----a-w-   c:\windows\system32\drivers\aswmon2.sys
2011-09-06 20:36 . 2008-12-31 20:04   104536   ----a-w-   c:\windows\system32\drivers\aswmon.sys
2011-09-06 20:36 . 2008-12-31 20:04   20568   ----a-w-   c:\windows\system32\drivers\aswFsBlk.sys
2011-09-06 20:33 . 2008-12-31 20:04   30808   ----a-w-   c:\windows\system32\drivers\aavmker4.sys
2011-09-06 13:20 . 2004-08-10 12:00   1858944   ----a-w-   c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2004-08-10 12:00   916480   ----a-w-   c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2004-08-10 12:00   43520   ----a-w-   c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2004-08-10 12:00   1469440   ----a-w-   c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2004-08-10 12:00   385024   ----a-w-   c:\windows\system32\html.iec
2011-08-17 13:49 . 2004-08-10 12:00   138496   ----a-w-   c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45   122512   ----a-w-   c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-28 39408]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-10-17 4615552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-06 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2005-08-03 77312]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-09-21 1605740]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2010-06-10 49208]
"Microsoft Works Update Detection"="c:\program files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2002-07-16 28672]
"KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440]
"DACSMiniApp"="c:\program files\Fisher-Price\DACS\MiniApp\DACSMiniApp.exe" [2007-07-04 193792]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-03-17 47392]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-09-06 3722416]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-27 421160]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2011-10-22 273528]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
Pin.lnk - c:\hp\bin\CLOAKER.EXE [2005-12-2 27136]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54   551296   ----a-w-   c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe"  -osboot
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\GameHouse\\TextTwist\\TextTwist.exe"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Valusoft\\Midnight Outlaw Illegal Street Drag - Nitro Edition\\OutlawNE.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
.
R0 sonyhcb;Sony Digital Imaging Base;c:\windows\system32\drivers\sonyhcb.sys [7/20/2006 5:17 PM 6097]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2/24/2011 4:51 PM 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [12/31/2008 2:04 PM 320856]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 10:27 AM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 3:55 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [8/11/2011 5:38 PM 116608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [12/31/2008 2:04 PM 20568]
R2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [6/15/2011 5:33 PM 249648]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [11/2/2011 7:36 PM 22216]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2/2/2010 9:21 PM 135664]
S3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [7/7/2011 7:31 PM 195336]
S3 GamesAppService;GamesAppService;c:\program files\WildTangent Games\App\GamesAppService.exe [10/12/2010 11:59 AM 206072]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2/2/2010 9:21 PM 135664]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 MR97310_VGA_DUAL_CAMERA;VGA Dual-Mode Camera;c:\windows\system32\drivers\mr97310v.sys [3/30/2004 12:29 PM 118106]
S3 sonyhcs;Sony Digital Imaging Video;c:\windows\system32\drivers\sonyhcs.sys [7/20/2006 5:17 PM 299731]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
2009-03-08 10:32   128512   ----a-w-   c:\windows\system32\advpack.dll
.
Contents of the 'Scheduled Tasks' folder
.
2011-10-29 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 17:50]
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 03:20]
.
2011-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 03:20]
.
2011-11-04 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-04 02:20]
.
2011-11-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-2273296320-57989891-346035445-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 19:40]
.
2011-10-29 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-2273296320-57989891-346035445-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 19:40]
.
2011-11-04 c:\windows\Tasks\User_Feed_Synchronization-{54E9B92A-3F43-4502-B8B4-11BC9FE40C95}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 10:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uInternet Connection Wizard,ShellNext = iexplore
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
Trusted Zone: passport.com\www
Trusted Zone: passport.net\www
Trusted Zone: windowsonecare.com\www
TCP: DhcpNameServer = 10.0.0.1
DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - (no file)
HKCU-Run-updateMgr - c:\program files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe
HKLM-Run-ErrorTeck - c:\program files\ErrorTeck\ErrorTeck.exe
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
AddRemove-Adobe Photoshop 6.0 - c:\program files\Adobe\Photoshop 6.0\Uninst.isu
AddRemove-Playsushi - c:\program files\PlaySushi\psuninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-03 21:32
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ... 
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(748)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2011-11-03  21:42:16
ComboFix-quarantined-files.txt  2011-11-04 03:42
.
Pre-Run: 31,696,875,520 bytes free
Post-Run: 31,921,463,296 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
.
- - End Of File - - E8854991F9A56F7BA26EABE703C413D2

[SuperDave]

P2P - I see you have P2P software installed on your machine. (LimeWire)We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
***********************************************
Re-running ComboFix to remove infections:

• Close any open browsers.
• Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
• Open notepad and copy/paste the text in the quotebox below into it:
  

  KillAll::
  
  DDS::
  Trusted Zone: passport.com\www
  Trusted Zone: passport.net\www
  Trusted Zone: windowsonecare.com\www
  
  FF::
  Trusted Zone: passport.com\www
  Trusted Zone: passport.net\www
  Trusted Zone: windowsonecare.com\www
  
  
• Save this as CFScript.txt, in the same location as ComboFix.exe
  
  
  
  
• Referring to the picture above, drag CFScript into ComboFix.exe
• When finished, it shall produce a log for you at C:\ComboFix.txt
  
• Please post the contents of the log in your next reply.

**************************************************
Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

[bobbijoslin]

My oldest son put limewire on years ago.  It was messing up the computer so I deleted it in the control panel.  I went in to delete it again after you saw that it is still on my computer but I do not see a p2p anywhere.  I have no idea what half of the programs are so I don't delete for fear that I will screw something up.  Do you know what other name it would be under in add/remove programs or am I going to have to look for it somewhere else?

[SuperDave]

It was messing up the computer so I deleted it in the control panel.  I went in to delete it again after you saw that it is still on my computer but I do not see a p2p anywhere.  I have no idea what half of the programs are so I don't delete for fear that I will screw something up.  Do you know what other name it would be under in add/remove programs or am I going to have to look for it somewhere else?

That's ok. It was just a remnant of the program that was left behind. Please run the ComboFix script and the Security Check and post the logs.

[bobbijoslin]

Ran scan.  Results to follow.  Also note - my computer was running slow so I went to a microsoft website and installed microsoft security essentials and deleted avast and the spyware and malware app.  I was wondering why the computer says that I have multiple antivirus programs when I have deleted them all - avast, macafee, cyberdefender, norton and I don't remember what else.  Is this okay?
ComboFix 11-11-12.04 - HP_Administrator 11/12/2011  18:56:44.2.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.446.161 [GMT -7:00]
Running from: c:\documents and settings\HP_Administrator\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
AV: PC Cleaners *Disabled/Updated* {737A8864-C2D9-4337-B49A-B5E35815B9BB}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\HP_Administrator\Application Data\PriceGong
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\1.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\a.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\b.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\c.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\d.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\e.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\f.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\g.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\h.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\i.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\J.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\k.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\l.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\m.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\n.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\o.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\p.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\q.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\r.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\s.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\t.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\u.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\v.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\w.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\x.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\y.xml
c:\documents and settings\HP_Administrator\Application Data\PriceGong\Data\z.xml
c:\documents and settings\HP_Administrator\WINDOWS
c:\windows\system32\config\systemprofile\WINDOWS
.
.
(((((((((((((((((((((((((   Files Created from 2011-10-13 to 2011-11-13  )))))))))))))))))))))))))))))))
.
.
2011-11-12 20:00 . 2011-11-12 20:00   28752   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{91CF9112-C1D5-426B-AF8C-1AD87B921BA6}\MpKsl5359e1b7.sys
2011-11-12 19:58 . 2011-11-12 19:58   56200   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{91CF9112-C1D5-426B-AF8C-1AD87B921BA6}\offreg.dll
2011-11-12 19:58 . 2011-10-18 08:28   6668624   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{91CF9112-C1D5-426B-AF8C-1AD87B921BA6}\mpengine.dll
2011-11-10 14:42 . 2011-10-18 08:28   6668624   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-11-08 04:37 . 2011-11-08 04:37   --------   d-----w-   c:\windows\Options
2011-11-08 04:15 . 2003-11-11 01:13   69715   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2011-11-08 04:15 . 2003-11-11 01:12   266240   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2011-11-08 04:15 . 2003-11-11 01:12   192512   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2011-11-08 04:15 . 2003-11-11 01:11   5632   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2011-11-08 04:15 . 2003-11-11 01:14   729088   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2011-11-08 04:15 . 2011-11-08 04:15   188548   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2011-11-08 04:15 . 2011-11-08 04:15   311428   ----a-w-   c:\program files\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2011-11-08 04:15 . 2011-11-08 04:15   --------   d-----w-   C:\ATI
2011-11-08 00:45 . 2011-11-08 00:45   --------   d-----w-   c:\documents and settings\All Users\Application Data\UAB
2011-11-08 00:45 . 2011-11-08 00:45   --------   d-----w-   c:\documents and settings\HP_Administrator\Local Settings\Application Data\PC_Drivers_Headquarters
2011-11-08 00:33 . 2011-11-08 00:33   --------   d-----w-   c:\documents and settings\All Users\Application Data\Driver Utilities
2011-11-08 00:27 . 2011-11-08 00:27   --------   d-----w-   c:\program files\Driver Utilities
2011-11-07 04:32 . 2011-11-07 04:34   --------   d-----w-   c:\program files\Microsoft Security Client
2011-11-07 03:45 . 2011-11-07 03:45   --------   d-----w-   c:\documents and settings\HP_Administrator\Application Data\PC Cleaners
2011-11-07 03:41 . 2011-11-07 03:43   --------   d-----w-   c:\documents and settings\All Users\Application Data\PC1Data
2011-11-07 02:41 . 2011-11-07 02:41   41272   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2011-11-06 22:54 . 2011-11-06 22:54   --------   d-----w-   c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2011-11-06 06:46 . 2011-11-06 06:46   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-04 13:53 . 2011-10-07 03:48   6668624   ------w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{F9C8B78E-875F-455B-987B-150DC745D141}\mpengine.dll
2011-11-03 01:36 . 2011-11-03 01:36   --------   d-----w-   c:\documents and settings\HP_Administrator\Application Data\Malwarebytes
2011-11-03 01:36 . 2011-11-03 01:36   --------   d-----w-   c:\documents and settings\All Users\Application Data\Malwarebytes
2011-11-03 01:36 . 2011-11-07 18:44   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2011-11-02 18:51 . 2011-11-02 18:51   --------   d-----w-   c:\documents and settings\All Users\Uniblue
2011-10-22 01:33 . 2011-10-22 01:33   --------   d-----w-   c:\program files\Common Files\xing shared
2011-10-22 01:32 . 2011-10-22 01:34   --------   d-----w-   c:\program files\real
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-07 03:40 . 2006-03-23 04:05   5359888   ----a-w-   c:\windows\uninst.exe
2011-10-10 14:22 . 2004-08-10 12:00   692736   ----a-w-   c:\windows\system32\inetcomm.dll
2011-10-07 03:48 . 2009-01-02 03:05   6668624   ------w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-10-03 11:06 . 2011-04-20 22:26   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2011-10-03 08:37 . 2007-06-13 02:26   73728   ----a-w-   c:\windows\system32\javacpl.cpl
2011-09-28 07:06 . 2004-08-10 12:00   599040   ----a-w-   c:\windows\system32\crypt32.dll
2011-09-26 17:41 . 2007-10-09 19:03   611328   ----a-w-   c:\windows\system32\uiautomationcore.dll
2011-09-26 17:41 . 2004-08-10 12:00   220160   ----a-w-   c:\windows\system32\oleacc.dll
2011-09-26 17:41 . 2004-08-10 12:00   20480   ----a-w-   c:\windows\system32\oleaccrc.dll
2011-09-06 13:20 . 2004-08-10 12:00   1858944   ----a-w-   c:\windows\system32\win32k.sys
2011-08-22 23:48 . 2004-08-10 12:00   916480   ----a-w-   c:\windows\system32\wininet.dll
2011-08-22 23:48 . 2004-08-10 12:00   43520   ----a-w-   c:\windows\system32\licmgr10.dll
2011-08-22 23:48 . 2004-08-10 12:00   1469440   ----a-w-   c:\windows\system32\inetcpl.cpl
2011-08-22 11:56 . 2004-08-10 12:00   385024   ----a-w-   c:\windows\system32\html.iec
2011-08-17 13:49 . 2004-08-10 12:00   138496   ----a-w-   c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((   SnapShot@2011-11-04_03.33.08   )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-11 19:51 . 2011-11-11 19:51   16384              c:\windows\Temp\Perflib_Perfdata_7f4.dat
+ 2011-11-07 04:28 . 2010-06-02 11:55   74072              c:\windows\system32\XAPOFX1_5.dll
+ 2011-11-07 04:28 . 2010-02-04 17:01   74072              c:\windows\system32\XAPOFX1_4.dll
+ 2011-11-07 04:28 . 2009-09-05 00:44   69464              c:\windows\system32\XAPOFX1_3.dll
+ 2011-11-07 04:28 . 2008-10-27 17:04   70992              c:\windows\system32\XAPOFX1_2.dll
+ 2011-11-07 04:28 . 2008-07-31 17:41   68616              c:\windows\system32\XAPOFX1_1.dll
+ 2011-11-07 04:28 . 2008-05-30 21:17   65032              c:\windows\system32\XAPOFX1_0.dll
+ 2011-11-07 04:28 . 2010-02-04 17:01   22360              c:\windows\system32\X3DAudio1_7.dll
+ 2011-11-07 04:28 . 2009-03-16 21:18   22360              c:\windows\system32\X3DAudio1_6.dll
+ 2011-11-07 04:28 . 2008-10-27 17:04   23376              c:\windows\system32\X3DAudio1_5.dll
+ 2011-11-07 04:28 . 2008-05-30 21:17   25608              c:\windows\system32\X3DAudio1_4.dll
+ 2011-11-07 04:28 . 2008-03-05 23:00   25608              c:\windows\system32\X3DAudio1_3.dll
+ 2011-11-08 04:39 . 2005-03-04 18:10   74496              c:\windows\system32\ReinstallBackups\0007\DriverFiles\Rtlnicxp.sys
+ 2011-11-08 04:16 . 2008-04-13 18:40   24960              c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\pciidex.sys
+ 2011-11-08 04:16 . 2008-04-13 18:40   96512              c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
+ 2005-08-31 12:07 . 2011-11-06 18:23   73216              c:\windows\system32\perfc009.dat
- 2005-08-31 12:07 . 2011-10-13 14:42   73216              c:\windows\system32\perfc009.dat
+ 2011-11-07 04:04 . 2011-11-07 04:04   10134              c:\windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
+ 2011-11-06 22:52 . 2011-11-06 22:52   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\ProductName.chm.de_D066A77819B7480BA99CC79FB02C9357.exe
+ 2011-11-06 22:52 . 2011-11-06 22:52   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.pt_6CF114D33913468CBA2AA6967939B819.exe
+ 2011-11-06 22:52 . 2011-11-06 22:52   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.it_251B66F1CA924E82A1EE29E85D5EC5A1.exe
+ 2011-11-06 22:52 . 2011-11-06 22:52   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.fr_E1678746353A46E3A9150D3E8B3832B1.exe
+ 2011-11-06 22:52 . 2011-11-06 22:52   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.es_654C8EA5162D4D4084239A5EDD67F462.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   55176              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\UNINST_Uninstall_D_4299976C1167441FA07CEF9926E410B1.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\ProductName.chm.de_D066A77819B7480BA99CC79FB02C9357.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\NewShortcut7_093EA01C878D4FB8BBB75CF2AF29E7A1.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriversHQ.DriverDe_84B8F33B3EBF407BAC7CF7FF8090594C.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriversHQ.DriverDe_73EA94828B1A467994E24B03923D8FFE.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriverDetective.pt_6CF114D33913468CBA2AA6967939B819.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriverDetective.it_251B66F1CA924E82A1EE29E85D5EC5A1.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriverDetective.fr_E1678746353A46E3A9150D3E8B3832B1.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriverDetective.es_654C8EA5162D4D4084239A5EDD67F462.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\DriverDetective.ch_571875AB094D409B841CA52363CEAF75.exe
+ 2011-11-08 00:30 . 2011-11-08 00:30   75656              c:\windows\Installer\{222D57F5-2912-4162-8F63-E7841082C45E}\ARPPRODUCTICON.exe
+ 2011-11-06 22:53 . 2011-11-06 22:53   59392              c:\windows\assembly\NativeImages_v2.0.50727_32\ExceptionLogging\d1074b112648ffa505d8470012cbbf68\ExceptionLogging.ni.dll
+ 2011-11-07 04:04 . 2011-11-07 04:04   36920              c:\windows\assembly\GAC_MSIL\HP.ActiveCheckLocalMode.SessionManager\1.1.0.0__87cc6405259abc0f\HP.ActiveCheckLocalMode.SessionManager.dll
+ 2011-11-07 04:04 . 2011-11-07 04:04   32312              c:\windows\assembly\GAC_MSIL\HP.ActiveCheckLocalMode.ServiceFacade\1.1.0.0__87cc6405259abc0f\HP.ActiveCheckLocalMode.ServiceFacade.dll
+ 2008-07-21 23:14 . 2008-07-21 23:14   9728              c:\windows\system32\RtNicProp32.dll
+ 2011-11-08 04:16 . 2001-08-18 04:51   3328              c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\pciide.sys
+ 2007-10-12 01:40 . 2007-10-12 01:40   9096              c:\windows\system32\drivers\amdide.sys
+ 2011-11-07 04:28 . 2010-06-02 11:55   527192              c:\windows\system32\XAudio2_7.dll
+ 2011-11-07 04:28 . 2010-02-04 17:01   528216              c:\windows\system32\XAudio2_6.dll
+ 2011-11-07 04:28 . 2009-09-05 00:44   515416              c:\windows\system32\XAudio2_5.dll
+ 2011-11-07 04:28 . 2009-03-16 21:18   517448              c:\windows\system32\XAudio2_4.dll
+ 2011-11-07 04:28 . 2008-10-27 17:04   514384              c:\windows\system32\XAudio2_3.dll
+ 2011-11-07 04:28 . 2008-07-31 17:40   509448              c:\windows\system32\XAudio2_2.dll
+ 2011-11-07 04:28 . 2008-05-30 21:19   507400              c:\windows\system32\XAudio2_1.dll
+ 2011-11-07 04:28 . 2008-03-05 23:03   479752              c:\windows\system32\XAudio2_0.dll
+ 2011-11-07 04:28 . 2010-06-02 11:55   239960              c:\windows\system32\xactengine3_7.dll
+ 2011-11-07 04:28 . 2010-02-04 17:01   238936              c:\windows\system32\xactengine3_6.dll
+ 2011-11-07 04:28 . 2009-09-05 00:44   238936              c:\windows\system32\xactengine3_5.dll
+ 2011-11-07 04:28 . 2009-03-16 21:18   235352              c:\windows\system32\xactengine3_4.dll
+ 2011-11-07 04:28 . 2008-10-27 17:04   235856              c:\windows\system32\xactengine3_3.dll
+ 2011-11-07 04:28 . 2008-07-31 17:41   238088              c:\windows\system32\xactengine3_2.dll
+ 2011-11-07 04:28 . 2008-05-30 21:18   238088              c:\windows\system32\xactengine3_1.dll
+ 2011-11-07 04:28 . 2008-03-05 23:03   238088              c:\windows\system32\xactengine3_0.dll
+ 2005-08-31 12:07 . 2011-11-06 18:23   446136              c:\windows\system32\perfh009.dat
- 2005-08-31 12:07 . 2011-10-13 14:42   446136              c:\windows\system32\perfh009.dat
- 2009-10-20 18:55 . 2011-05-25 01:14   222080              c:\windows\system32\MpSigStub.exe
+ 2009-10-20 18:55 . 2010-10-19 20:51   222080              c:\windows\system32\MpSigStub.exe
- 2011-10-14 14:43 . 2011-10-14 14:43   247968              c:\windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe
+ 2011-11-06 06:46 . 2011-11-06 06:46   247968              c:\windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.exe
- 2011-10-14 14:43 . 2011-10-14 14:43   335520              c:\windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.dll
+ 2011-11-06 06:46 . 2011-11-06 06:46   335520              c:\windows\system32\Macromed\Flash\FlashUtil11c_ActiveX.dll
+ 2008-02-25 19:54 . 2008-02-25 19:54   105088              c:\windows\system32\drivers\Rtnicxp.sys
+ 2011-04-18 20:18 . 2011-04-18 20:18   165648              c:\windows\system32\drivers\MpFilter.sys
- 2008-08-13 13:47 . 2011-05-02 15:31   692736              c:\windows\system32\dllcache\inetcomm.dll
+ 2008-08-13 13:47 . 2011-10-10 14:22   692736              c:\windows\system32\dllcache\inetcomm.dll
- 2011-09-03 10:17 . 2011-09-09 09:12   599040              c:\windows\system32\dllcache\crypt32.dll
+ 2011-09-03 10:17 . 2011-09-28 07:06   599040              c:\windows\system32\dllcache\crypt32.dll
+ 2011-11-07 04:28 . 2010-05-26 18:41   248672              c:\windows\system32\d3dx11_43.dll
+ 2011-11-07 04:28 . 2009-09-05 00:29   235344              c:\windows\system32\d3dx11_42.dll
+ 2011-11-07 04:28 . 2010-05-26 18:41   470880              c:\windows\system32\d3dx10_43.dll
+ 2011-11-07 04:28 . 2009-09-05 00:29   453456              c:\windows\system32\d3dx10_42.dll
+ 2011-11-07 04:28 . 2009-03-09 22:27   453456              c:\windows\system32\d3dx10_41.dll
+ 2011-11-07 04:28 . 2008-10-10 11:52   452440              c:\windows\system32\d3dx10_40.dll
+ 2011-11-07 04:28 . 2008-07-10 18:01   467984              c:\windows\system32\d3dx10_39.dll
+ 2011-11-07 04:28 . 2008-05-30 21:11   467984              c:\windows\system32\d3dx10_38.dll
+ 2011-11-07 04:28 . 2008-02-06 06:07   462864              c:\windows\system32\d3dx10_37.dll
+ 2011-11-07 03:26 . 2011-11-07 03:26   361984              c:\windows\Installer\ca2a8.msi
+ 2011-11-07 04:34 . 2011-11-07 04:34   785920              c:\windows\Installer\4e92f1.msi
+ 2011-11-07 04:33 . 2011-11-07 04:33   483840              c:\windows\Installer\4e92ea.msi
+ 2011-11-07 04:33 . 2011-11-07 04:33   301056              c:\windows\Installer\4e92e4.msi
+ 2011-11-07 04:02 . 2011-11-07 04:02   457216              c:\windows\Installer\2fff01.msi
+ 2011-11-06 22:53 . 2011-11-06 22:53   119296              c:\windows\assembly\NativeImages_v2.0.50727_32\XPBurnComponent\657a74c89577b43af1deaa78f42e4590\XPBurnComponent.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   304128              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\ddf09f7079bb2926ec7cca2ee1a8592e\Microsoft.Practices.ObjectBuilder.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   309248              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\dc31510fc1b19aaa26c90f83b8e676d2\Microsoft.Practices.EnterpriseLibrary.Common.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   148992              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\cae0d82f8a7e5f4d28fc3873f7812a8f\Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.ni.dll
+ 2011-11-08 00:32 . 2011-11-08 00:32   148992              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\7d14bddc34332430a7372d087f1a17b8\Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.ni.dll
+ 2011-11-08 00:32 . 2011-11-08 00:32   304128              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\65169e68603e52df7e61e810b95307cf\Microsoft.Practices.ObjectBuilder.ni.dll
+ 2011-11-08 00:32 . 2011-11-08 00:32   309248              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\4e52362c74d18c5a9c596bd2095759c0\Microsoft.Practices.EnterpriseLibrary.Common.ni.dll
+ 2011-11-08 00:32 . 2011-11-08 00:32   230912              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Applicati#\f36f7a5bf9b0e81e946221b54b823e86\Microsoft.ApplicationBlocks.Updater.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   230912              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Applicati#\059ccd5fea4f4dea7e26f9b1094c6b0d\Microsoft.ApplicationBlocks.Updater.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   202240              c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WUApiLib\e61df079bf0ce7a5ef2044793c6f956b\Interop.WUApiLib.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   547840              c:\windows\assembly\NativeImages_v2.0.50727_32\ICSharpCode.SharpZi#\aa5bf94922bb4d04357f4fbed5352fea\ICSharpCode.SharpZipLib.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   410112              c:\windows\assembly\NativeImages_v2.0.50727_32\Agent.Communication\a8d25037d38d21dea8cd28335a686022\Agent.Communication.ni.dll
+ 2011-11-06 22:53 . 2011-11-06 22:53   352768              c:\windows\assembly\NativeImages_v2.0.50727_32\Agent.Common\521641804357814f7242d53b3645436f\Agent.Common.ni.dll
+ 2007-05-21 18:29 . 2011-11-07 03:06   2101848              c:\windows\system32\Restore\rstrlog.dat
+ 2011-11-07 04:28 . 2010-05-26 18:41   1998168              c:\windows\system32\D3DX9_43.dll
+ 2011-11-07 04:28 . 2009-09-05 00:29   1892184              c:\windows\system32\D3DX9_42.dll
+ 2011-11-07 04:28 . 2009-03-09 22:27   4178264              c:\windows\system32\D3DX9_41.dll
+ 2011-11-07 04:28 . 2008-10-10 11:52   4379984              c:\windows\system32\D3DX9_40.dll
+ 2011-11-07 04:28 . 2008-07-10 18:00   3851784              c:\windows\system32\D3DX9_39.dll
+ 2011-11-07 04:28 . 2008-05-30 21:11   3850760              c:\windows\system32\D3DX9_38.dll
+ 2011-11-07 04:28 . 2008-03-05 22:56   3786760              c:\windows\system32\D3DX9_37.dll
+ 2011-11-07 04:28 . 2010-05-26 18:41   1868128              c:\windows\system32\d3dcsx_43.dll
+ 2011-11-07 04:28 . 2009-09-05 00:29   5501792              c:\windows\system32\d3dcsx_42.dll
+ 2011-11-07 04:28 . 2010-05-26 18:41   2106216              c:\windows\system32\D3DCompiler_43.dll
+ 2011-11-07 04:28 . 2009-09-05 00:29   1974616              c:\windows\system32\D3DCompiler_42.dll
+ 2011-11-07 04:28 . 2009-03-09 22:27   1846632              c:\windows\system32\D3DCompiler_41.dll
+ 2011-11-07 04:28 . 2008-10-10 11:52   2036576              c:\windows\system32\D3DCompiler_40.dll
+ 2011-11-07 04:28 . 2008-07-10 18:00   1493528              c:\windows\system32\D3DCompiler_39.dll
+ 2011-11-07 04:28 . 2008-05-30 21:11   1491992              c:\windows\system32\D3DCompiler_38.dll
+ 2011-11-07 04:28 . 2008-03-05 22:56   1420824              c:\windows\system32\D3DCompiler_37.dll
+ 2011-11-07 04:04 . 2011-11-07 04:04   2527232              c:\windows\Installer\2fff07.msi
+ 2011-11-08 00:30 . 2011-11-08 00:30   2859520              c:\windows\Installer\13a3062.msi
+ 2011-11-06 22:53 . 2011-11-06 22:53   1150464              c:\windows\assembly\NativeImages_v2.0.50727_32\Common\25f4b6d80a341f8c1562563e21e632db\Common.ni.dll
+ 2011-11-08 00:32 . 2011-11-08 00:32   5004800              c:\windows\assembly\NativeImages_v2.0.50727_32\Agent\8072d149ea69d3c6380080ed2c6592c2\Agent.ni.exe
+ 2011-11-06 22:53 . 2011-11-06 22:53   5004800              c:\windows\assembly\NativeImages_v2.0.50727_32\Agent\1dd45f14f18a765a6bd66d39da95109e\Agent.ni.exe
+ 2006-03-14 02:48 . 2011-11-10 03:55   50295240              c:\windows\system32\MRT.exe
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-28 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-06 64512]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2005-08-03 77312]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-09-21 1605740]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2010-06-10 49208]
"Microsoft Works Update Detection"="c:\program files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2002-07-16 28672]
"KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440]
"DACSMiniApp"="c:\program files\Fisher-Price\DACS\MiniApp\DACSMiniApp.exe" [2007-07-04 193792]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-03-17 47392]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-27 421160]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2011-10-22 273528]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
Pin.lnk - c:\hp\bin\CLOAKER.EXE [2005-12-2 27136]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe"  -osboot
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\GameHouse\\TextTwist\\TextTwist.exe"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Valusoft\\Midnight Outlaw Illegal Street Drag - Nitro Edition\\OutlawNE.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
.
R0 sonyhcb;Sony Digital Imaging Base;c:\windows\system32\drivers\sonyhcb.sys [7/20/2006 4:17 PM 6097]
R1 MpKsl5359e1b7;MpKsl5359e1b7;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{91CF9112-C1D5-426B-AF8C-1AD87B921BA6}\MpKsl5359e1b7.sys [11/12/2011 1:00 PM 28752]
S1 MpKsl699d947a;MpKsl699d947a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKsl699d947a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKsl699d947a.sys [?]
S1 MpKsl9799cf07;MpKsl9799cf07;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A0599EEA-302C-493B-B863-4003D5218E32}\MpKsl9799cf07.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A0599EEA-302C-493B-B863-4003D5218E32}\MpKsl9799cf07.sys [?]
S1 MpKsl9f975861;MpKsl9f975861;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKsl9f975861.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKsl9f975861.sys [?]
S1 MpKslc712067d;MpKslc712067d;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKslc712067d.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DD14BAF8-8CAF-4D21-9D63-C76430282475}\MpKslc712067d.sys [?]
S1 MpKslf16e3687;MpKslf16e3687;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A0599EEA-302C-493B-B863-4003D5218E32}\MpKslf16e3687.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A0599EEA-302C-493B-B863-4003D5218E32}\MpKslf16e3687.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [11/6/2011 7:41 PM 41272]
S3 MR97310_VGA_DUAL_CAMERA;VGA Dual-Mode Camera;c:\windows\system32\drivers\mr97310v.sys [3/30/2004 11:29 AM 118106]
S3 sonyhcs;Sony Digital Imaging Video;c:\windows\system32\drivers\sonyhcs.sys [7/20/2006 4:17 PM 299731]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL4FF14B4A
*NewlyCreated* - MPKSL5359E1B7
*Deregistered* - MpKsl4ff14b4a
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
2009-03-08 10:32   128512   ----a-w-   c:\windows\system32\advpack.dll
.
Contents of the 'Scheduled Tasks' folder
.
2011-11-12 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 17:50]
.
2011-11-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 03:20]
.
2011-11-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 03:20]
.
2011-11-12 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 22:39]
.
2011-11-13 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-2273296320-57989891-346035445-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 19:40]
.
2011-11-13 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-2273296320-57989891-346035445-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 19:40]
.
2011-11-13 c:\windows\Tasks\User_Feed_Synchronization-{54E9B92A-3F43-4502-B8B4-11BC9FE40C95}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 10:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q106&bd=pavilion&pf=desktop
uInternet Connection Wizard,ShellNext = iexplore
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
Trusted Zone: passport.com\www
Trusted Zone: passport.net\www
Trusted Zone: windowsonecare.com\www
TCP: DhcpNameServer = 10.0.0.1
DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-12 19:12
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ... 
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(816)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2011-11-12  19:21:09
ComboFix-quarantined-files.txt  2011-11-13 02:21
ComboFix2.txt  2011-11-04 03:42
.
Pre-Run: 31,988,629,504 bytes free
Post-Run: 32,062,812,160 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 59B7C53CA3EEC9D56F7A8580B502FA77

[SuperDave]

I was wondering why the computer says that I have multiple antivirus programs when I have deleted them all - avast, macafee, cyberdefender, norton and I don't remember what else.  Is this okay?

Programs are not supposed to be deleted. They are supposed to be uninstalled. That way, there are no remnants left. You still show two AV programs; Microsoft Security Essentials and PC Cleaners . Just make sure that only one is enabled.

SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

• Double click Sysprot.exe to start the program.
• Click on the Log tab.
• In the Write to log box select the following items.
• Process << Selected
  
• Kernel Modules << Selected
  
• SSDT << Selected
  
• Kernel Hooks << Selected
  
• IRP Hooks << NOT Selected
  
• Ports << NOT Selected
  
• Hidden Files << Selected
  
• At the bottom of the page
• Hidden Objects Only << Selected
  
• Click on the Create Log button on the bottom right.
• After a few seconds a new window should appear.
• Select Scan Root Drive. Click on the Start button.
• When it is complete a new window will appear to indicate that the scan is finished.
• The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

[bobbijoslin]

Sorry it took so long.  I had a hard time finding the file.  here are the results


******************************************************************************************
******************************************************************************************

No Hidden Processes found

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \SystemRoot\System32\Drivers\dump_atapi.sys
Service Name: ---
Module Base: F0DFF000
Module End: F0E17000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS
Service Name: ---
Module Base: F7A74000
Module End: F7A76000
Hidden: Yes

******************************************************************************************
******************************************************************************************
No SSDT Hooks found

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
No hidden files/folders found

[SuperDave]

Is your computer any better?

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.
•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

[bobbijoslin]

Sometimes it runs great.  At other times I could pull my hair out.  Still having issues with shutting internet pages down.  With the internet stuff I don't know if it is my computer or my internet.  It says that I am getting 100.0Mbsp (not sure what that means - just know that it is better than when we had dial-up. We live in the middle of nowhere so short of using hughs net I don't know if we could get much faster but that is a topic for another discussion) Sometimes I think ther may be a background program running.  When I went to hp help to see what to do to check there was a weird program like xxxxx or zzzz on there.
Anyway, here are the results of the scan:

C:\Documents and Settings\HP_Administrator\Application Data\Mozilla\Firefox\Profiles\b2sptapt.default\extensions\[email protected]\components\PlaySushiFF.dll   probably a variant of Win32/Adware.Gamevance.AG application   cleaned by deleting - quarantined
C:\System Volume Information\_restore{106CF321-99A3-4E3A-9103-1BD027606A99}\RP13\A0000338.dll   probably a variant of Win32/Adware.Gamevance.AG application   cleaned by deleting - quarantined

[SuperDave]

Please download MiniToolBox to Desktop and run it.



Checkmark the following boxes:

• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• List content of Hosts
• List IP Configuration
• Lst Last 10 Event Viewer Errors
• List Users, Partitions and Memory Size
[/b]

Click Go and copy/paste the log (Result.txt) into your next post. .