I am running Windows XP. I have intalled several new programs over the past couple of weeks. I have Malwarebytes' Anti-Malware and have the IP protection enabled. I also have Avira AntiVir Personal - Free Antivirus and keep them updated.

I have been having an issue with my computer being very slow and freezing up over the past few weeks. Everytime I attempt to open a new site or start IE, it prompts and states it has blocked access to a malicious IP = 95.211.1.176 and 95.211.1.173 (it is 80% of the time this IP, but sometimes it is another one; can't remember it though). Also, when I run IE, Avira will alert me stating it has detected a "pattern of the HTML/Infected.WebPage.Gen.HTML script virus" and I will quarantine this. This has alerted me on sites such as Google, eBay, eBates and others. I am unsure what is going on. Also, Malwarebytes' has found several items that it has quarantined such as Trojan.Tracur and Spyware.Zbot. Since I have quarantined these, my Malwarebytes doesn't block as many IP accessess and my Avira doesn't throw up as many prompts that a script virus is running on a webpage, but my computer is still acting very weird such as running very slowly and very sluggish. I am scared the remenants are still there, so I don't use this computer to connect to the internet much anymore, but I think this is a waste; I want this problem fixed and this is why I have turned to you all. Please help me.

I am unsure this has anythig to do with the problems I have mentioned above, but my keyboard is now skipping many letters. I have to watch what I type and it does not type about every 8th letter or so. This has never done this before and it started doing this only when my computer stared slowing down. I just thought it might have something to do with it.

I am more than willing to work hard and do whatever you ask to get rid of these things on my computer. I have read about the dangers of Zbot especially and I want to rid all remanents of it off my computer.

Any help or advice would be greatly appreciated. Thank you, in advance, for your time, attention and reply to my issues.

Here are the logs that have been requested to prepare to post here.

ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2009/10/17 10:46
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================
Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xEF4BF000 Size: 98304 File Visible: No Signed: -
Status: -
Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF8BAE000 Size: 8192 File Visible: No Signed: -
Status: -
Name: Rdbsҁ
Image Path: \FileSystem\Rdbsҁ
Address: 0xEFDAD000 Size: 175744 File Visible: No Signed: -
Status: Hidden from the Windows API!
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xB853F000 Size: 49152 File Visible: No Signed: -
Status: -
Hidden/Locked Files
-------------------
Path: C:\hiberfil.sys
Status: Locked to the Windows API!
SSDT
-------------------
#: 041 Function Name: NtCreateKey
Status: Hooked by "<unknown>" at address 0xf8d67b7e
#: 053 Function Name: NtCreateThread
Status: Hooked by "<unknown>" at address 0xf8d67b74
#: 063 Function Name: NtDeleteKey
Status: Hooked by "<unknown>" at address 0xf8d67b83
#: 065 Function Name: NtDeleteValueKey
Status: Hooked by "<unknown>" at address 0xf8d67b8d
#: 098 Function Name: NtLoadKey
Status: Hooked by "<unknown>" at address 0xf8d67b92
#: 122 Function Name: NtOpenProcess
Status: Hooked by "<unknown>" at address 0xf8d67b60
#: 128 Function Name: NtOpenThread
Status: Hooked by "<unknown>" at address 0xf8d67b65
#: 193 Function Name: NtReplaceKey
Status: Hooked by "<unknown>" at address 0xf8d67b9c
#: 204 Function Name: NtRestoreKey
Status: Hooked by "<unknown>" at address 0xf8d67b97
#: 247 Function Name: NtSetValueKey
Status: Hooked by "<unknown>" at address 0xf8d67b88
#: 257 Function Name: NtTerminateProcess
Status: Hooked by "<unknown>" at address 0xf8d67b6f
==EOF==

__________________________________________________ _____


DDS (Ver_09-09-29.01) - NTFSx86
Run by Missy at 11:27:09.53 on Sat 10/17/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.510.220 [GMT -4:00]
AV: AntiVir Desktop *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
============== Running Processes ===============
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\HPQ\shared\hpqwmi.exe
C:\Documents and Settings\Missy\Desktop\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [eabconfg.cpl] c:\program files\hpq\quick launch buttons\EabServr.exe /Start
mRun: [hpWirelessAssistant] c:\program files\hpq\hp wireless assistant\HP Wireless Assistant.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe " -t
Trusted Zone: brother.com\www
Trusted Zone: paypal.com\www
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} - hxxp://mypoints.worldwinner.com/games/v47/shared/FunGamesLoader.cab
DPF: {38AB0814-B09B-4378-9940-14A19638C3C2} - hxxp://www.auctiva.com/Aurigma/ImageUploader57.cab
DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: AtiExtEvent - Ati2evxx.dll
SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\window~4\MpShHook.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
============= SERVICES / DRIVERS ===============
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-5-24 11608]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-9-15 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-9-15 74480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-5-24 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-5-24 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgn tflt.sys [2009-5-24 55656]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2009-9-18 269648]
R2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\dr ivers\mbam.sys [2009-9-18 19160]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-9-15 7408]
=============== Created Last 30 ================
2009-10-17 10:30 604,488 a------- c:\windows\system32\TUProgSt.exe
2009-10-12 19:01 <DIR> --d----- c:\documents and settings\all users\AdobeTemp
2009-10-05 05:37 <DIR> --d----- c:\documents and settings\missy\DoctorWeb
2009-10-04 16:56 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-10-04 16:55 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-10-04 16:55 <DIR> --d----- c:\docume~1\missy\applic~1\SUPERAntiSpyware.com
2009-10-04 16:55 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-10-03 11:32 <DIR> --d----- c:\windows\system32\NtmsData
2009-10-02 20:57 <DIR> --d----- c:\program files\Trend Micro
2009-10-02 17:14 195,440 -------- c:\windows\system32\MpSigStub.exe
2009-10-01 19:13 3 a------- c:\windows\prnuse09.d1l
2009-10-01 19:13 10 a------- c:\windows\prsn09.d1l
2009-10-01 19:11 <DIR> --d----- c:\program files\Payroll 2009
2009-09-30 22:48 <DIR> --d----- c:\program files\common files\AnswerWorks 5.0
2009-09-30 22:48 1,848,608 a------- c:\windows\system32\acXMLParser.dll
2009-09-30 22:48 3,523,872 a------- c:\windows\system32\cdintf300.dll
2009-09-30 22:48 <DIR> --d----- c:\docume~1\missy\applic~1\Intuit
2009-09-30 22:47 <DIR> --d----- c:\program files\common files\Intuit
2009-09-30 22:47 <DIR> --d----- c:\program files\Quicken
2009-09-30 22:47 165 a------- c:\windows\QUICKEN.INI
2009-09-30 22:46 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Intuit
2009-09-29 11:34 10,368 ac------ c:\windows\system32\dllcache\hidusb.sys
2009-09-29 11:34 10,368 a------- c:\windows\system32\drivers\hidusb.sys
2009-09-29 11:33 32,128 ac------ c:\windows\system32\dllcache\usbccgp.sys
2009-09-29 11:33 32,128 a------- c:\windows\system32\drivers\usbccgp.sys
2009-09-29 00:04 615 a------- c:\windows\system32\Ofe5RZWm6QNWj.vbs
2009-09-28 23:57 615 a------- c:\windows\system32\ZwEDSnMBQveBI.vbs
2009-09-28 18:22 264,704 a------- c:\windows\system32\MaggiUninstall60.exe
2009-09-28 18:21 299,520 a------- c:\windows\uninst.exe
2009-09-28 18:21 <DIR> --d----- c:\documents and settings\missy\WINDOWS
2009-09-28 12:17 <DIR> --d----- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-09-27 22:12 208,744 a------- c:\windows\system32\muweb.dll
2009-09-27 22:12 268,648 a------- c:\windows\system32\mucltui.dll
2009-09-27 22:12 27,496 a------- c:\windows\system32\mucltui.dll.mui
2009-09-26 14:15 107,864 a------- c:\windows\system32\tsccvid.dll
2009-09-26 14:15 <DIR> --d----- c:\windows\system32\QuickTime
2009-09-26 14:14 <DIR> --d----- c:\program files\common files\TechSmith Shared
2009-09-26 11:06 <DIR> --d----- c:\program files\Microsoft ActiveSync
2009-09-25 19:45 <DIR> --d----- c:\docume~1\missy\applic~1\GetRightToGo
2009-09-25 18:22 86 a------- c:\windows\Brfaxrx.ini
2009-09-25 18:22 0 a------- c:\windows\brdfxspd.dat
2009-09-25 18:22 126,976 -------- c:\windows\system32\BrfxD05a.dll
2009-09-25 18:22 176,128 -------- c:\windows\system32\BroSNMP.dll
2009-09-25 18:22 5,120 -------- c:\windows\system32\BrDctF2L.dll
2009-09-25 18:22 3,072 -------- c:\windows\system32\BrDctF2S.dll
2009-09-25 18:22 73,728 -------- c:\windows\system32\BrDctF2.dll
2009-09-25 16:18 <DIR> --d----- c:\docume~1\missy\applic~1\Brother CreativeCenter
2009-09-25 16:18 <DIR> --d----- c:\program files\Brother CreativeCenter
2009-09-25 11:56 <DIR> --d----- c:\documents and settings\missy\.housecall6.6
2009-09-23 15:46 615 a------- c:\windows\system32\fJiFrYVw90iMuVV.vbs
2009-09-23 15:46 615 a------- c:\windows\system32\1gqB13rU0Qnhg.vbs
2009-09-23 15:45 615 a------- c:\windows\system32\FkRtF.vbs
2009-09-23 15:45 615 a------- c:\windows\system32\f2Psb.vbs
2009-09-23 15:41 615 a------- c:\windows\system32\q7RxIx8.vbs
2009-09-23 15:39 615 a------- c:\windows\system32\N1sbVlTp5O35Q.vbs
2009-09-23 15:38 615 a------- c:\windows\system32\V28rWAxrR404WB9.vbs
2009-09-23 15:34 <DIR> --d----- c:\docume~1\missy\applic~1\TuneUp Software
2009-09-23 15:32 <DIR> --d----- c:\docume~1\alluse~1\applic~1\TuneUp Software
2009-09-23 15:32 <DIR> --d----- c:\program files\TuneUp Utilities 2009
2009-09-23 15:32 <DIR> --dsh--- c:\docume~1\alluse~1\applic~1\{55A29068-F2CE-456C-9148-C869879E2357}
2009-09-23 10:35 <DIR> --d----- c:\program files\PhotoCardMaker
2009-09-23 09:35 615 a------- c:\windows\system32\1bRoZ.vbs
2009-09-23 09:34 615 a------- c:\windows\system32\hpbdf0U.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\pY3j7.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\Olhn9MgfFiWrx.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\QxRDvpbOY9rm5g8.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\Ia45w.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\FRamh.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\Z7CEwiy1cklPZ.vbs
2009-09-23 08:26 615 a------- c:\windows\system32\h9p3tPtYeLGX4.vbs
2009-09-23 08:26 615 a------- c:\windows\system32\cH42c.vbs
2009-09-22 10:48 <DIR> --d----- c:\docume~1\missy\applic~1\FastStone
2009-09-20 11:31 <DIR> --d----- c:\docume~1\missy\applic~1\DJ Nitrogen
2009-09-20 11:31 <DIR> --d----- c:\program files\DJ Nitrogen
2009-09-20 11:03 <DIR> --dsh--- c:\windows\ftpcache
2009-09-20 11:03 <DIR> --d----- c:\program files\Photo Watermark Professional
2009-09-19 17:08 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FunGames
2009-09-19 16:14 <DIR> --d----- c:\program files\AceMoney
2009-09-19 16:13 <DIR> --d----- c:\program files\Family Budget Planner
2009-09-19 16:12 <DIR> --d----- c:\program files\Microsoft Synchronization Services
2009-09-19 16:12 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
2009-09-19 16:05 <DIR> --d----- C:\GO-BUDGET 4
2009-09-19 15:50 <DIR> --d----- c:\program files\simpleDBudget
2009-09-19 15:47 53,760 a------- c:\windows\system32\ZlibTool.ocx
2009-09-19 15:47 958,224 a------- c:\windows\system32\MSCHART.OCX
2009-09-19 15:47 440,352 a------- c:\windows\system32\MSHFLXGD.OCX
2009-09-19 15:47 <DIR> --d----- c:\program files\CBE
2009-09-19 00:24 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Protexis
2009-09-19 00:24 80 ---shr-- c:\windows\system32\DE55CA5C49.dll
2009-09-19 00:11 22 a------- c:\windows\system32\syoepk_lib0.dll
2009-09-18 09:25 <DIR> --d----- c:\program files\Avery Dennison
2009-09-18 09:19 212,480 -------- c:\windows\pcdlib32.dll
2009-09-18 09:19 <DIR> --d----- c:\program files\Serif
2009-09-18 09:18 189,828 a------- c:\windows\Photo Pos Pro Uninstaller.exe
2009-09-18 09:16 <DIR> --d----- c:\program files\common files\Thraex Software
2009-09-18 09:16 <DIR> --d----- c:\program files\Photo Pos Pro
2009-09-18 09:01 <DIR> --d----- c:\docume~1\missy\applic~1\Malwarebytes
2009-09-18 09:01 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-18 09:01 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-09-18 09:01 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-09-18 09:01 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-09-18 08:52 <DIR> --d----- c:\program files\FastStone Image Viewer
==================== Find3M ====================
2009-09-11 10:18 136,192 a------- c:\windows\system32\msv1_0.dll
2009-09-04 17:03 58,880 a------- c:\windows\system32\msasn1.dll
2009-08-29 03:36 832,512 a------- c:\windows\system32\wininet.dll
2009-08-29 03:36 78,336 a------- c:\windows\system32\ieencode.dll
2009-08-29 03:36 17,408 -------- c:\windows\system32\corpol.dll
2009-08-26 04:00 247,326 a------- c:\windows\system32\strmdll.dll
2009-08-05 05:01 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-08-04 19:52 1,193,832 a------- c:\windows\system32\FM20.DLL
2009-08-04 11:13 2,145,280 a------- c:\windows\system32\ntoskrnl.exe
2009-08-04 10:20 2,023,936 a------- c:\windows\system32\ntkrnlpa.exe
2009-08-04 09:58 626,824 a------- c:\windows\system32\PosIpLiB.dll
2009-04-09 15:44 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009040920090 410\index.dat
============= FINISH: 11:27:42.00 ===============
__________________________________________________ _____


DDS (Ver_09-09-29.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 3/14/2009 3:55:12 PM
System Uptime: 10/17/2009 11:19:45 AM (0 hours ago)
Motherboard: Quanta | | 3082
Processor: Intel(R) Pentium(R) 4 CPU 2.80GHz | LGA 775 | 2793/800mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 65 GiB total, 31.409 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI Modem
Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_3082103C&REV_03\3&61A AA01&0&F3
Manufacturer:
Name: PCI Modem
PNP Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_3082103C&REV_03\3&61A AA01&0&F3
Service:
==== System Restore Points ===================
No restore point in system.
==== Installed Programs ======================
7-Zip 4.65
AceMoney Lite
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Media Player
Adobe Reader 9.1.3
Adobe Shockwave Player 11.5
AnswerWorks 5.0 English Runtime
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Bonjour
Broadcom 802.11 Wireless LAN Adapter
Brother MFL-Pro Suite MFC-6490CW
Camtasia Studio 6
CBE2_1
Conexant AC-97 Audio
Coupon Printer for Windows
Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07
DesignPro 5.4 Limited Edition
Family Budget Planner
FastStone Image Viewer 3.9
FrostWire 4.18.0
GO-BUDGET 4
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
HP Software Update
HP Wireless Assistant 1.01 A2
iTunes
Java(TM) 6 Update 13
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office FrontPage 2003
Microsoft Office Professional Edition 2003
Microsoft SQL Server Compact 3.5 SP1 English
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser
PaperPort Image Printer
Photo Pos Pro
PhotoCardMaker 1.0.1
PhotoWatermark Professional
Quick Launch Buttons 5.10 A2
Quicken 2009
QuickTime
RapidTyping
REALTEK Gigabit and Fast Ethernet NIC Driver
ScanSoft PaperPort 11
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Serif PhotoPlus 6.0
Sharetones for iPhone 2.00.00
simpleD Budget (a FREE GNU licensed Monthly Income Budgeting As
Spelling Dictionaries Support For Adobe Reader 9
SUPERAntiSpyware Free Edition
Synaptics Pointing Device Driver
Texas Instruments PCIxx21/x515 drivers.
TIxx21
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Defender
Windows Essentials Media Codec Pack 2.2
Windows Internet Explorer 7
Windows XP Service Pack 3
==== Event Viewer Messages From Past Week ========
10/17/2009 9:37:45 AM, error: Service Control Manager [7000] - The adfs service failed to start due to the following error: The system cannot find the file specified.
10/17/2009 10:26:20 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
10/14/2009 7:53:27 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
10/12/2009 4:03:44 PM, error: Service Control Manager [7034] - The Print Spooler service terminated unexpectedly. It has done this 3 time(s).
10/12/2009 4:02:15 PM, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
10/12/2009 3:59:48 PM, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
==== End Of File ===========================

Welcome to the forum thanksgiving08 and thanks for posting your logs.
One of the security team will be along soon to take a look and advise you of your next course of action.

Thanks for your patience.

thanksgiving08,

Welcome to PCHF!

I'm Crush the PCHF Security Team Leader and I'll be helping you to remove your Malware. Before we begin there are some things that you should know:

1. We are all volunteer staff here at PCHF so we log in and assess threads when real life, work, family, and other obligations permit. Additionally, we are located all over the world. There may be a bit of a time delay due to this.

2. Malware Removal threads are very time intensive. Each entry must be researched until it can be said with 100% certainty whether or not it can stay or needs to be removed. Sometimes additional work is needed to weed out suspect entries

3. This may turn into a long ordeal but, rest assured we will stay with you until you are completely disinfected.

4. Please do not run any tools or fixes unless asked to do so by myself or a member of the Security Team

5. If you are not the original poster of this thread DO NOT run any fixes given to the poster in this thread. They are all custom tailored specifically to this user. It could prove to be disastrous. PCHF does not assume any responsibility for users that decide to do so

6. If you have any questions or issues please stop and ask! We are all here to help.

With that out of the way:


There are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

Please note that as long as you are using any form of P2P networking to download files you can anticipate infestations of malware to occur.

P2P file sharing used to be fairly safe. This is no longer true; continue to use P2P sharing at your own risk!

Keep in mind that this practice may be the source of your current malware infestation.

References... citing the risk factors, of using P2P programs:
Malware: Help prevent the Infection
IM And P2P Malware Threats Nearly Triple
How to Prevent the Online Invasion of Spyware and Adware

I strongly recommend that you uninstall:

FrostWire 4.18.0

You can do so using the Control Panel >> Add or Remove Programs function. However, that choice is up to you.

As long as you have the P2P program(s) installed, per PCHF Policy, I can offer you no further assistance.

If you choose to remove these programs, when finished: Please generate a new DDS log and post it here for review

I have successfully removed Frostwire as you have recommended. As I stated, I am ready to do whatever I need to do to clean my computer.

I am ready for your assistance! Thank you for your time and assistance.

Can I see a newly generated DDS log please?

Thanks for such a quick reply. Here are the logs you requested. Please note, I have not rebooted since the uninstall of Frostwire; if I need to, please let me know.


DDS (Ver_09-09-29.01) - NTFSx86
Run by Missy at 18:22:42.65 on Sat 10/17/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.510.85 [GMT -4:00]
AV: AntiVir Desktop *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
============== Running Processes ===============
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\HPQ\shared\hpqwmi.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Avira\AntiVir Desktop\avscan.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Documents and Settings\Missy\Desktop\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [eabconfg.cpl] c:\program files\hpq\quick launch buttons\EabServr.exe /Start
mRun: [hpWirelessAssistant] c:\program files\hpq\hp wireless assistant\HP Wireless Assistant.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe " -t
Trusted Zone: brother.com\www
Trusted Zone: paypal.com\www
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} - hxxp://mypoints.worldwinner.com/games/v47/shared/FunGamesLoader.cab
DPF: {38AB0814-B09B-4378-9940-14A19638C3C2} - hxxp://www.auctiva.com/Aurigma/ImageUploader57.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8942.cab
DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: AtiExtEvent - Ati2evxx.dll
SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\window~4\MpShHook.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
============= SERVICES / DRIVERS ===============
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-5-24 11608]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-9-15 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-9-15 74480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2009-5-24 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-5-24 185089]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgn tflt.sys [2009-5-24 55656]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2009-9-18 269648]
R2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\dr ivers\mbam.sys [2009-9-18 19160]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-9-15 7408]
=============== Created Last 30 ================
2009-10-17 10:30 604,488 a------- c:\windows\system32\TUProgSt.exe
2009-10-05 05:37 <DIR> --d----- c:\documents and settings\missy\DoctorWeb
2009-10-04 16:56 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-10-04 16:55 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-10-04 16:55 <DIR> --d----- c:\docume~1\missy\applic~1\SUPERAntiSpyware.com
2009-10-04 16:55 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-10-03 11:32 <DIR> --d----- c:\windows\system32\NtmsData
2009-10-02 20:57 <DIR> --d----- c:\program files\Trend Micro
2009-10-02 17:14 195,440 -------- c:\windows\system32\MpSigStub.exe
2009-10-01 19:13 3 a------- c:\windows\prnuse09.d1l
2009-10-01 19:13 10 a------- c:\windows\prsn09.d1l
2009-10-01 19:11 <DIR> --d----- c:\program files\Payroll 2009
2009-09-30 22:48 <DIR> --d----- c:\program files\common files\AnswerWorks 5.0
2009-09-30 22:48 1,848,608 a------- c:\windows\system32\acXMLParser.dll
2009-09-30 22:48 3,523,872 a------- c:\windows\system32\cdintf300.dll
2009-09-30 22:48 <DIR> --d----- c:\docume~1\missy\applic~1\Intuit
2009-09-30 22:47 <DIR> --d----- c:\program files\common files\Intuit
2009-09-30 22:47 <DIR> --d----- c:\program files\Quicken
2009-09-30 22:47 165 a------- c:\windows\QUICKEN.INI
2009-09-30 22:46 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Intuit
2009-09-29 11:34 10,368 ac------ c:\windows\system32\dllcache\hidusb.sys
2009-09-29 11:34 10,368 a------- c:\windows\system32\drivers\hidusb.sys
2009-09-29 11:33 32,128 ac------ c:\windows\system32\dllcache\usbccgp.sys
2009-09-29 11:33 32,128 a------- c:\windows\system32\drivers\usbccgp.sys
2009-09-29 00:04 615 a------- c:\windows\system32\Ofe5RZWm6QNWj.vbs
2009-09-28 23:57 615 a------- c:\windows\system32\ZwEDSnMBQveBI.vbs
2009-09-28 18:22 264,704 a------- c:\windows\system32\MaggiUninstall60.exe
2009-09-28 18:21 299,520 a------- c:\windows\uninst.exe
2009-09-28 12:17 <DIR> --d----- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-09-27 22:12 208,744 a------- c:\windows\system32\muweb.dll
2009-09-27 22:12 268,648 a------- c:\windows\system32\mucltui.dll
2009-09-27 22:12 27,496 a------- c:\windows\system32\mucltui.dll.mui
2009-09-26 14:15 107,864 a------- c:\windows\system32\tsccvid.dll
2009-09-26 14:15 <DIR> --d----- c:\windows\system32\QuickTime
2009-09-26 14:14 <DIR> --d----- c:\program files\common files\TechSmith Shared
2009-09-26 11:06 <DIR> --d----- c:\program files\Microsoft ActiveSync
2009-09-25 18:22 86 a------- c:\windows\Brfaxrx.ini
2009-09-25 18:22 0 a------- c:\windows\brdfxspd.dat
2009-09-25 18:22 126,976 -------- c:\windows\system32\BrfxD05a.dll
2009-09-25 18:22 176,128 -------- c:\windows\system32\BroSNMP.dll
2009-09-25 18:22 5,120 -------- c:\windows\system32\BrDctF2L.dll
2009-09-25 18:22 3,072 -------- c:\windows\system32\BrDctF2S.dll
2009-09-25 18:22 73,728 -------- c:\windows\system32\BrDctF2.dll
2009-09-25 16:18 <DIR> --d----- c:\docume~1\missy\applic~1\Brother CreativeCenter
2009-09-25 16:18 <DIR> --d----- c:\program files\Brother CreativeCenter
2009-09-23 15:46 615 a------- c:\windows\system32\fJiFrYVw90iMuVV.vbs
2009-09-23 15:46 615 a------- c:\windows\system32\1gqB13rU0Qnhg.vbs
2009-09-23 15:45 615 a------- c:\windows\system32\FkRtF.vbs
2009-09-23 15:45 615 a------- c:\windows\system32\f2Psb.vbs
2009-09-23 15:41 615 a------- c:\windows\system32\q7RxIx8.vbs
2009-09-23 15:39 615 a------- c:\windows\system32\N1sbVlTp5O35Q.vbs
2009-09-23 15:38 615 a------- c:\windows\system32\V28rWAxrR404WB9.vbs
2009-09-23 15:34 <DIR> --d----- c:\docume~1\missy\applic~1\TuneUp Software
2009-09-23 15:32 <DIR> --d----- c:\program files\TuneUp Utilities 2009
2009-09-23 15:32 <DIR> --dsh--- c:\docume~1\alluse~1\applic~1\{55A29068-F2CE-456C-9148-C869879E2357}
2009-09-23 10:35 <DIR> --d----- c:\program files\PhotoCardMaker
2009-09-23 09:35 615 a------- c:\windows\system32\1bRoZ.vbs
2009-09-23 09:34 615 a------- c:\windows\system32\hpbdf0U.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\pY3j7.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\Olhn9MgfFiWrx.vbs
2009-09-23 08:28 615 a------- c:\windows\system32\QxRDvpbOY9rm5g8.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\Ia45w.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\FRamh.vbs
2009-09-23 08:27 615 a------- c:\windows\system32\Z7CEwiy1cklPZ.vbs
2009-09-23 08:26 615 a------- c:\windows\system32\h9p3tPtYeLGX4.vbs
2009-09-23 08:26 615 a------- c:\windows\system32\cH42c.vbs
2009-09-22 10:48 <DIR> --d----- c:\docume~1\missy\applic~1\FastStone
2009-09-20 11:31 <DIR> --d----- c:\docume~1\missy\applic~1\DJ Nitrogen
2009-09-20 11:31 <DIR> --d----- c:\program files\DJ Nitrogen
2009-09-20 11:03 <DIR> --dsh--- c:\windows\ftpcache
2009-09-20 11:03 <DIR> --d----- c:\program files\Photo Watermark Professional
2009-09-19 17:08 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FunGames
2009-09-19 16:14 <DIR> --d----- c:\program files\AceMoney
2009-09-19 16:13 <DIR> --d----- c:\program files\Family Budget Planner
2009-09-19 16:12 <DIR> --d----- c:\program files\Microsoft Synchronization Services
2009-09-19 16:12 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
2009-09-19 16:05 <DIR> --d----- C:\GO-BUDGET 4
2009-09-19 15:50 <DIR> --d----- c:\program files\simpleDBudget
2009-09-19 15:47 53,760 a------- c:\windows\system32\ZlibTool.ocx
2009-09-19 15:47 958,224 a------- c:\windows\system32\MSCHART.OCX
2009-09-19 15:47 440,352 a------- c:\windows\system32\MSHFLXGD.OCX
2009-09-19 15:47 <DIR> --d----- c:\program files\CBE
2009-09-19 00:24 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Protexis
2009-09-19 00:24 80 ---shr-- c:\windows\system32\DE55CA5C49.dll
2009-09-19 00:11 22 a------- c:\windows\system32\syoepk_lib0.dll
2009-09-18 09:25 <DIR> --d----- c:\program files\Avery Dennison
2009-09-18 09:19 212,480 -------- c:\windows\pcdlib32.dll
2009-09-18 09:19 <DIR> --d----- c:\program files\Serif
2009-09-18 09:18 189,828 a------- c:\windows\Photo Pos Pro Uninstaller.exe
2009-09-18 09:16 <DIR> --d----- c:\program files\common files\Thraex Software
2009-09-18 09:16 <DIR> --d----- c:\program files\Photo Pos Pro
2009-09-18 09:01 <DIR> --d----- c:\docume~1\missy\applic~1\Malwarebytes
2009-09-18 09:01 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-18 09:01 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-09-18 09:01 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-09-18 09:01 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-09-18 08:52 <DIR> --d----- c:\program files\FastStone Image Viewer
==================== Find3M ====================
2009-09-11 10:18 136,192 a------- c:\windows\system32\msv1_0.dll
2009-09-04 17:03 58,880 a------- c:\windows\system32\msasn1.dll
2009-08-29 03:36 832,512 a------- c:\windows\system32\wininet.dll
2009-08-29 03:36 78,336 a------- c:\windows\system32\ieencode.dll
2009-08-29 03:36 17,408 -------- c:\windows\system32\corpol.dll
2009-08-26 04:00 247,326 a------- c:\windows\system32\strmdll.dll
2009-08-05 05:01 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-08-04 19:52 1,193,832 a------- c:\windows\system32\FM20.DLL
2009-08-04 11:13 2,145,280 a------- c:\windows\system32\ntoskrnl.exe
2009-08-04 10:20 2,023,936 a------- c:\windows\system32\ntkrnlpa.exe
2009-08-04 09:58 626,824 a------- c:\windows\system32\PosIpLiB.dll
2009-04-09 15:44 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009040920090 410\index.dat
============= FINISH: 18:23:38.82 ===============
__________________________________________________ ___


DDS (Ver_09-09-29.01)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 3/14/2009 3:55:12 PM
System Uptime: 10/17/2009 1:27:26 PM (5 hours ago)
Motherboard: Quanta | | 3082
Processor: Intel(R) Pentium(R) 4 CPU 2.80GHz | LGA 775 | 2793/800mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 65 GiB total, 31.366 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI Modem
Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_3082103C&REV_03\3&61A AA01&0&F3
Manufacturer:
Name: PCI Modem
PNP Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_3082103C&REV_03\3&61A AA01&0&F3
Service:
==== System Restore Points ===================
No restore point in system.
==== Installed Programs ======================
7-Zip 4.65
AceMoney Lite
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Media Player
Adobe Reader 9.1.3
Adobe Shockwave Player 11.5
AnswerWorks 5.0 English Runtime
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Avira AntiVir Personal - Free Antivirus
Bonjour
Broadcom 802.11 Wireless LAN Adapter
Brother MFL-Pro Suite MFC-6490CW
Camtasia Studio 6
CBE2_1
Conexant AC-97 Audio
Coupon Printer for Windows
Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07
DesignPro 5.4 Limited Edition
Family Budget Planner
FastStone Image Viewer 3.9
GO-BUDGET 4
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
HP Software Update
HP Wireless Assistant 1.01 A2
iTunes
Java(TM) 6 Update 13
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office FrontPage 2003
Microsoft Office Professional Edition 2003
Microsoft SQL Server Compact 3.5 SP1 English
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser
PaperPort Image Printer
Photo Pos Pro
PhotoCardMaker 1.0.1
PhotoWatermark Professional
Quick Launch Buttons 5.10 A2
Quicken 2009
QuickTime
RapidTyping
REALTEK Gigabit and Fast Ethernet NIC Driver
ScanSoft PaperPort 11
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Serif PhotoPlus 6.0
Sharetones for iPhone 2.00.00
simpleD Budget (a FREE GNU licensed Monthly Income Budgeting As
Spelling Dictionaries Support For Adobe Reader 9
SUPERAntiSpyware Free Edition
Synaptics Pointing Device Driver
Texas Instruments PCIxx21/x515 drivers.
TIxx21
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
WebFldrs XP
Windows Defender
Windows Essentials Media Codec Pack 2.2
Windows Internet Explorer 7
Windows Live OneCare safety scanner
Windows XP Service Pack 3
==== Event Viewer Messages From Past Week ========
10/17/2009 9:37:45 AM, error: Service Control Manager [7000] - The adfs service failed to start due to the following error: The system cannot find the file specified.
10/17/2009 10:26:20 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
10/14/2009 7:53:27 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the stisvc service.
10/12/2009 4:03:44 PM, error: Service Control Manager [7034] - The Print Spooler service terminated unexpectedly. It has done this 3 time(s).
10/12/2009 4:02:15 PM, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
10/12/2009 3:59:48 PM, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
==== End Of File ===========================

Thanksgiving08,

You have MBAM installed, Correct? Can you please update the program, run a Full Scan and post the logfile here?

EDIT: 9,800!!