SkippyE

I have seen this thread here before, but I think I have to start a new topic to get help. Anyways, what happened is that if I attempt to go to windowsupdate.microsoft.com, I get redirected to Google's homepage. And, if I try to go to any site that will help me find out how to stop this virus (Like some popular antivirus sites, download.microsoft.com, etc) it won't let me go there, saying that it cannot find the server. Here is the contents of DDS.txt:

DDS (Ver_09-03-16.01) - NTFSx86
Run by Administrator at 14:49:21.84 on Thu 03/26/2009
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.510.89 [GMT -7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Outdated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\AOL\1221889873\ee\AOLSoftware.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\Symantec\NORTON~1\GHOSTS~2.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\explorer.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\PROGRA~1\AOL9~1.1\waol.exe
C:\Program Files\Common Files\AOL\Topspeed\3.0\aoltpsd3.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrator\Desktop\Ricky's Drive\gmer\gmer.exe
C:\Documents and Settings\Administrator\Desktop\Ricky's Drive\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.aol.com/?src=toolbar
uSearch Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://www.aol.com/?src=customie7
uSearch Bar = hxxp://www.google.com/ie
mDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local;localhost
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: IAOLTBSearch Class: {ea756889-2338-43db-8f07-d1ca6fb9c90d} - c:\program files\aol toolbar\aoltb.dll
uURLSearchHooks: ttcnewspapers Toolbar: {0a12fd27-ddff-4465-a41b-ebcb78dfc401} - c:\program files\ttcnewspapers\tbttc1.dll
mURLSearchHooks: IAOLTBSearch Class: {ea756889-2338-43db-8f07-d1ca6fb9c90d} - c:\program files\aol toolbar\aoltb.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: ttcnewspapers Toolbar: {0a12fd27-ddff-4465-a41b-ebcb78dfc401} - c:\program files\ttcnewspapers\tbttc1.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: AOL Toolbar Loader: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol toolbar\aoltb.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: ttcnewspapers Toolbar: {0a12fd27-ddff-4465-a41b-ebcb78dfc401} - c:\program files\ttcnewspapers\tbttc1.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol toolbar\aoltb.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
TB: {A057A204-BACC-4D26-9A9E-3AF287E2699B} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [AdobeUpdater] "c:\program files\common files\adobe\updater5\AdobeUpdater.exe"
uRun: [MsnMsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background
uRun: [EA Core] "c:\program files\electronic arts\eadm\Core.exe" -silent
uRun: [LDM] c:\program files\logitech\desktop messenger\8876480\program\BackWeb-8876480.exe
uRun: [LogitechSoftwareUpdate] "c:\program files\logitech\video\ManifestEngine.exe" boot
uRun: [Performance Center] c:\program files\ascentive\performance center\ApcMain.exe -m
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [HostManager] c:\program files\common files\aol\1221889873\ee\AOLSoftware.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [QBCD Autorun] D:\autorun.exe restart QB_SEQUENCE first
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [LogitechVideoRepair] c:\program files\logitech\video\ISStart.exe
mRun: [LogitechVideoTray] c:\program files\logitech\video\LogiTray.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe
mRun: [HPHmon03] c:\windows\system32\hphmon03.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LDMConf.exe
IE: &AOL Toolbar Search - c:\documents and settings\all users\application data\aol\ietoolbar\resources\en-us\local\search.html
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: Sothink SWF Catcher - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\administrator\start menu\programs\imvu\Run IMVU.lnk
IE: {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - c:\program files\common files\sourcetec\swf catcher\InternetExplorer.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.srtest.com/srl_bin/sysreqlab_srl.cab
DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - hxxp://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.7.109.cab
DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - hxxps://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.2.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1210391698234
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1210399303750
DPF: {75A6AEA3-F26E-4608-AE9B-8DA78C87576E} - hxxps://secure.footprint.net/kingsisle/static/themes/wizard101A/activex/Wizard101GameLauncher.CAB
DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} - hxxps://transfers.ds.microsoft.com/FTM/TransferSource/grTransferCtrl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {C02226EB-A5D7-4B1F-BD7E-635E46C2288D} - hxxp://a.download.toontown.com/sv1.0.35.18/ttinst.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {FF791555-FDAC-43AB-B792-389E4CC0A6E5} - hxxp://download.test.toontown.com/sv1.0.37.1.test/tt_test.cab
TCP: NameServer = 85.255.112.39,85.255.112.40
TCP: {96A145DD-A3E1-47E8-95F1-A87255E9F10D} = 85.225.112.39,85.225.112.40
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: igfxcui - igfxsrvc.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\admini~1\applic~1\mozilla\firefox\profiles\bcfk6ler.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2155217&SearchSource=3&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.aol.com/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2155217&SearchSource=2&q=
FF - component: c:\documents and settings\administrator\application data\mozilla\firefox\profiles\bcfk6ler.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}\components\WinampPlayer.dll
FF - component: c:\documents and settings\administrator\application data\mozilla\firefox\profiles\bcfk6ler.default\extensions\{7e7165e2-0767-448c-852f-5fa8714f2c37}\components\PlainOldFavorites.dll
FF - component: c:\documents and settings\administrator\application data\mozilla\firefox\profiles\bcfk6ler.default\extensions\{8f72624d-17ea-419a-8e85-ff3ff83533d0}\components\FFAlert.dll
FF - plugin: c:\program files\google\update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-5-9 325128]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-5-9 27656]
R1 GhPciScan;GhostPciScanner;c:\program files\symantec\norton ghost 2003\GhPciScan.sys [2002-8-14 5632]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-1-31 298264]
R2 Fix8;Fix8 Live Cam, WDM Video Capture;c:\windows\system32\drivers\Fix8v2.sys [2009-2-25 257936]
R3 Dot4Usb HPH09;Dot4Usb HPH09;c:\windows\system32\drivers\hphius09.sys [2009-3-23 18864]
RUnknown TfFsMon;TfFsMon; [x]
RUnknown TfNetMon;TfNetMon; [x]
RUnknown TfSysMon;TfSysMon; [x]
S2 gupdate1c9865da4f83de4;Google Update Service (gupdate1c9865da4f83de4);c:\program files\google\update\GoogleUpdate.exe [2009-2-3 133104]
S2 KeyAgent;KeyAgent;\??\c:\windows\system32\drivers\keyagent.sys --> c:\windows\system32\drivers\KeyAgent.sys [?]
S2 MacHALDriver;Mac HAL;\??\c:\windows\system32\drivers\machaldriver.sys --> c:\windows\system32\drivers\MacHALDriver.sys [?]
S3 DBKDRVR54;DBKDRVR54;c:\program files\cheat engine\dbk32.sys [2009-1-11 16128]
S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\c:\program files\lavalys\everest home edition\kerneld.wnt --> c:\program files\lavalys\everest home edition\kerneld.wnt [?]
S3 scrcap;scrcap;c:\windows\system32\drivers\scrcap.sys --> c:\windows\system32\drivers\scrcap.sys [?]

=============== Created Last 30 ================

2009-03-26 12:53 28,544 a------- c:\windows\system32\drivers\pavboot.sys
2009-03-25 20:23 <DIR> --d----- C:\VRML
2009-03-25 20:19 <DIR> --d----- c:\program files\1964
2009-03-25 20:19 <DIR> --d----- c:\docume~1\admini~1\applic~1\Blender Foundation
2009-03-24 16:38 <DIR> --d----- c:\program files\GPLGS
2009-03-24 16:38 87,552 a------- c:\windows\system32\cpwmon2k.dll
2009-03-24 16:38 <DIR> --d----- c:\program files\Acro Software
2009-03-23 16:51 34 a------- c:\windows\hpfsched.ini
2009-03-23 16:50 <DIR> --d----- c:\program files\hp photosmart
2009-03-23 16:12 <DIR> --d----- c:\windows\system32\NtmsData
2009-03-23 16:04 <DIR> --d----- c:\temp\photosmart
2009-03-19 18:48 <DIR> --d----- C:\misc
2009-03-19 18:47 248,946 a------- c:\windows\trace.bat
2009-03-19 18:47 184,832 a------- c:\windows\nslookup.exe
2009-03-19 18:47 81,668 a------- c:\windows\BFR.EXE
2009-03-19 18:47 59,392 a------- c:\windows\nc.exe
2009-03-19 18:47 30,720 a------- c:\windows\whois.exe
2009-03-19 18:47 1,439 a------- c:\windows\getdns.bat
2009-03-16 11:15 <DIR> --d----- c:\program files\iPod
2009-03-16 11:15 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
2009-03-16 11:08 1,900,544 a------- c:\windows\system32\usbaaplrc.dll
2009-03-14 11:22 <DIR> --d----- c:\docume~1\admini~1\applic~1\fretsonfire
2009-03-11 20:35 40,208 a------- c:\windows\system32\DSETUP.DLL
2009-03-11 20:35 <DIR> --d----- c:\program files\FlexiMusic Wave Editor
2009-03-11 20:07 2 a------- c:\windows\system32\RICHTX.DEP
2009-03-11 20:07 <DIR> --d----- c:\program files\MP3 WAV Converter
2009-03-11 17:36 <DIR> --d----- C:\DVD_SHRINK
2009-03-07 22:34 <DIR> --d----- c:\program files\KingsIsle Entertainment
2009-03-07 17:25 <DIR> --d----- c:\docume~1\admini~1\applic~1\LEGO Company
2009-03-07 17:23 <DIR> --d----- c:\program files\LEGO Company
2009-03-06 23:18 54 a------- c:\windows\Musician.INI
2009-03-05 20:30 <DIR> --d----- C:\Panda3D-1.5.4
2009-03-05 20:26 <DIR> --d----- c:\program files\Rallentando Software
2009-03-04 20:48 <DIR> --d----- c:\program files\Sibelius Software
2009-03-03 20:51 <DIR> --d----- c:\docume~1\admini~1\applic~1\Meda RM2MP3 Converter
2009-03-03 20:48 <DIR> --d----- C:\ConvertedMedia
2009-03-03 20:48 503,808 a------- c:\windows\system32\mpeg2dmx.ax
2009-03-03 20:48 421,888 a------- c:\windows\system32\RealMediaSplitter.ax
2009-03-03 20:48 262,144 a------- c:\windows\system32\mpg4ds32.axu
2009-03-03 20:48 210,432 a------- c:\windows\system32\mpgdec.ax
2009-03-03 20:48 28,672 a------- c:\windows\system32\t3odm.dll
2009-02-26 18:17 <DIR> --d----- c:\program files\SmartFTP Client
2009-02-26 17:54 <DIR> --d----- c:\program files\Apache Software Foundation
2009-02-25 22:03 <DIR> --d----- c:\program files\TeamViewer
2009-02-25 18:38 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Video2Webcam
2009-02-25 18:38 <DIR> --d----- c:\docume~1\admini~1\applic~1\Video2Webcam
2009-02-25 18:38 1,056,984 a------- c:\windows\system32\drivers\V2WCDRV.sys
2009-02-25 18:22 257,936 a------- c:\windows\system32\drivers\Fix8v2.sys
2009-02-25 17:16 <DIR> --d----- C:\DevelopersKitPro
2009-02-25 16:49 <DIR> --d----- c:\program files\Crossword Weaver

==================== Find3M ====================

2009-03-05 23:59 36,864 a------- c:\windows\system32\drivers\usbaapl.sys
2009-02-03 17:03 10 a------- c:\docume~1\alluse~1\applic~1\mmrpplic.dat
2009-01-31 09:19 325,128 a------- c:\windows\system32\drivers\avgldx86.sys
2009-01-31 09:19 10,520 a------- c:\windows\system32\avgrsstx.dll
2009-01-27 17:21 81,920 -----r-- c:\windows\bwUnin-6.1.4.68-8876480L.exe
2009-01-25 22:20 107,888 a------- c:\windows\system32\CmdLineExt.dll
2009-01-25 22:08 2,092 a------- c:\windows\system32\ealregsnapshot1.reg
2009-01-10 15:03 208,896 a------- c:\windows\system32\ConTest.dll
2008-12-30 11:51 64,604 a---h--- c:\windows\system32\mlfcache.dat

============= FINISH: 14:50:15.52 ===============

And Attach.zip is attached. So can you please help?
And if you need for me to download a file from something like download.microsoft.com, you have to give me the full link to the exact .exe you want me to install, and I will be able to download it from an alternate website.
Also, I stopped the scanning gmer.exe was doing after 4-5 hours, because nothing changed on there after 4 hours and it was lagging my computer up.

Attached Files

Attach.zip (59.1 KB, 1 views)

SkippyE

I didn't mention this yet, but my antivirus will not update as well, and I am using a shared computer.

chemist

Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

Please copy this page to Notepad and Save it to your Desktop in order to assist you when carrying out the following instructions.

Before beginning the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding.
Ensure that there aren't any opened browsers when you are carrying out the procedures below.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

Please download ComboFix and Save it to your Desktop.

**Note: It is important that it is saved directly to your desktop**

First, we need to install the Windows Recovery Console.

The Windows Recovery Console will allow you to boot up into a special recovery(repair) mode, if needed. This allows us to help you in the case that your computer has a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

Download the file from here:

http://files.filefront.com/WindowsXP.../fileinfo.html

Do not be concerned that this file is for SP2 and you have SP3. It will work just fine on your system.

Save it as it is originally named to your Desktop.

Now close all open windows and programs, including all antivirus and antispyware programs. Get help here



Then drag the setup package onto ComboFix.exe and drop it. Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install the Recovery Console.

As part of installing the Recovery Console, ComboFix will begin to run. Your desktop may disappear. This is normal. It will return.

ComboFix will now automatically install the Windows Recovery Console onto your computer, which will show up as a new option when booting up your computer. Do not select the Windows Recovery Console option when you start your computer unless requested to by a helper.

Once the Recovery Console is installed, this blue window will appear:



Please continue as follows:

• Close/disable all antivirus and antispyware programs so they do not interfere with the running of ComboFix. Get help here
• Please click Yes to continue scanning for malware.

When the tool is finished, it will produce a log for you.

Please post that log, ComboFix.txt, in your next reply.

------------------------------------------------------

SkippyE

Hello,
I do not know how to disable my antivirus. It is AVG Anti-Virus Free. When I try to exit, it only closes the interface, but it is still running in some way.
EDIT: Nm, found the help link.

chemist

Due to lack of response, this topic will now be closed. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

IMPORTANT - Read This Before Posting For Malware Removal Help

------------------------------------------------------