Computer virus, cant remove

This is the first half

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Friday, March 14, 2008 7:43:02 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 14/03/2008
Kaspersky Anti-Virus database records: 630518
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\

Scan Statistics:
Total number of scanned objects: 97236
Number of viruses found: 21
Number of infected objects: 327
Number of suspicious objects: 0
Duration of the scan process: 01:27:18

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL\TopSpeed\2.0\aolstderr.txt Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL\TopSpeed\2.0\aolstdout.txt Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL\TopSpeed\2.0\cache.db Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL\TopSpeed\2.0\server.lock Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Grisoft\Avg7Data\avg7log.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Grisoft\Avg7Data\avg7log.log.lck Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy\Recovery\Sentry.zip/Explorer.exe Infected: not-a-virus:Monitor.Win32.Ardamax.24 skipped
C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy\Recovery\Sentry.zip ZIP: infected - 1 skipped
C:\Documents and Settings\Hellrazer\Local Settings\Temp\hsperfdata_Hellrazer\2080 Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\aaqq.exe.bac_a00748 Infected: Trojan-Downloader.Win32.Small.hsg skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\ctfmon.exe.tmp.bac_a00748 Infected: Virus.Win32.Trats.d skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\Explorer.006.bac_a00748 Infected: not-a-virus:Monitor.Win32.Ardamax.24 skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\Explorer.007.bac_a00748 Infected: not-a-virus:Monitor.Win32.Ardamax.24 skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\jkkll.exe.bac_a00748 Infected: Virus.Win32.Trats.d skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\lktjwxtm.exe.bac_a00748 Infected: Trojan-Downloader.Win32.Agent.gwe skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\lsgjjiqe.exe.bac_a00748 Infected: Trojan-Downloader.Win32.Agent.gwe skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\zzqq.exe.bac_a00748/data0002 Infected: Trojan-Downloader.Win32.PurityScan.eg skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\zzqq.exe.bac_a00748 NSIS: infected - 1 skipped
C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine\zzqq.exe.bac_a00748 CryptFF.b: infected - 1 skipped
C:\Documents and Settings\Tiffany\Application Data\AVG7\Log\emc.log Object is locked skipped
C:\Documents and Settings\Tiffany\Application Data\Sun\Java\Deployment\cache\6.0\34\63206922-47653526/vmain.class Infected: Exploit.Java.Gimsh.b skipped
C:\Documents and Settings\Tiffany\Application Data\Sun\Java\Deployment\cache\6.0\34\63206922-47653526 ZIP: infected - 1 skipped
C:\Documents and Settings\Tiffany\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN/data0001.cab/Save.exe Infected: not-a-virus:AdWare.Win32.SaveNow.e skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN/data0001.cab/SaveUninst.exe Infected: not-a-virus:AdWare.Win32.SaveNow.bl skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN/data0001.cab/Weather/Weather.exe Infected: not-a-virus:AdWare.Win32.SaveNow skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN/data0001.cab/Weather/Uninst.exe Infected: not-a-virus:AdWare.Win32.SaveNow.bl skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN/data0001.cab Infected: not-a-virus:AdWare.Win32.SaveNow.bl skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0022.BIN Infected: not-a-virus:AdWare.Win32.SaveNow.bl skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe/WISE0023.BIN Infected: not-a-virus:AdWare.Win32.EZula.bc skipped
C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe WiseSFX: infected - 7 skipped
C:\Documents and Settings\Tiffany\Desktop\Remove\calc.exe Infected: Backdoor.Win32.IRCBot.bod skipped
C:\Documents and Settings\Tiffany\Desktop\Remove\vvqq.exe/stream/data0001 Infected: not-a-virus:AdWare.Win32.Agent.abh skipped
C:\Documents and Settings\Tiffany\Desktop\Remove\vvqq.exe/stream/data0002 Infected: not-a-virus:AdWare.Win32.AdBand.h skipped
C:\Documents and Settings\Tiffany\Desktop\Remove\vvqq.exe/stream Infected: not-a-virus:AdWare.Win32.AdBand.h skipped
C:\Documents and Settings\Tiffany\Desktop\Remove\vvqq.exe NSIS: infected - 3 skipped
C:\Documents and Settings\Tiffany\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Tiffany\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Tiffany\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Tiffany\Local Settings\History\History.IE5\MSHist012008031420080315\index.dat Object is locked skipped
C:\Documents and Settings\Tiffany\Local Settings\Temp\~DF5576.tmp Object is locked skipped
C:\Documents and Settings\Tiffany\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Tiffany\ntuser.dat Object is locked skipped
C:\Documents and Settings\Tiffany\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Incomplete\Preview-T-1932810-Wicked Remix (mamals).wma Infected: Trojan-Downloader.WMA.Wimad.k skipped
C:\Program Files\Incomplete\T-105290-_cracked_ chill factor sound track 20.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
C:\Program Files\Incomplete\T-190310-_live_ theme song of helloween 40.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
C:\Program Files\LimeWire\###### theme song of helloween 10.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
C:\Program Files\LimeWire\01 - resdient evil 16.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
C:\Program Files\LimeWire\Rare Recording.wma Infected: Trojan-Downloader.WMA.Wimad.k skipped
C:\Program Files\LimeWire\Wicked Remix (mamals).wma Infected: Trojan-Downloader.WMA.Wimad.k skipped
C:\QooBox\Quarantine\C\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas .exe.vir Infected: Virus.Win32.Trats.d skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\axnupgni.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\bafgxifp.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\bisewcsl.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\blppvcbp.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\cjyuwsbm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\crqprgma.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\csvaynqd.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ctfmon.exe.tmp.vir Infected: Virus.Win32.Trats.d skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\cuxfuefl.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\cxqibalj.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\deggmamx.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\dleqshsw.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\dvdsvrjl.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\emapgemb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\emypltqo.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\fauibccb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\fuiihsfc.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ggsarcwe.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\gkgdjgyy.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\hhvxkqgw.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\hmrklfxk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\hpudytvm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\hvnbskxa.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ieoyxsil.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jhepvuyo.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jkkll.exe.vir Infected: Virus.Win32.Trats.d skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jmhkhnlf.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jonukeya.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jsuahlyk.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\kecimknb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\khgwamiy.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\kryddpia.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ktkhxxjs.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\mrqknwmn.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ngilfiod.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\nnpjbbtb.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ntkdoxcj.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\oppvxone.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\osslkums.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\piuiekpv.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\pjyldqst.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\qbkhtiab.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.eby skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\qvjdikpq.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\rrmjgxoi.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\tayrexfm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\tdincvpv.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\tgahfnlq.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\uhjufeke.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\wnqcsnhq.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\wxgkghgo.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\wxwiyblv.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\xlekhrxa.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\xsockrkv.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\yasekxwx.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ytpigqbm.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\catchme2008-03-05_221319.18.zip/jkkll.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\QooBox\Quarantine\catchme2008-03-05_221319.18.zip/ljjigec.dll Infected: Trojan-Downloader.Win32.Small.htr skipped
C:\QooBox\Quarantine\catchme2008-03-05_221319.18.zip ZIP: infected - 2 skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP551\A0256851.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.eby skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP553\A0259053.exe Infected: Backdoor.Win32.IRCBot.bod skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP554\A0259960.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262190.exe Infected: not-a-virus:AdWare.Win32.OneStep.c skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262191.dll Infected: not-a-virus:AdWare.Win32.OneStep.a skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262192.exe Infected: not-a-virus:AdWare.Win32.OneStep.c skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262194.exe Infected: Trojan-Downloader.Win32.Agent.gwe skipped



C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262200.dll Infected: not-a-virus:AdWare.Win32.OneStep.a skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP559\A0262201.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP570\A0263023.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP570\A0263024.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.gen skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP570\A0263032.exe Infected: Virus.Win32.Trats.d skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP570\A0263033.exe Infected: Virus.Win32.Trats.d skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP572\A0263095.exe Infected: Virus.Win32.Trats.d skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP572\A0263096.exe Infected: Virus.Win32.Trats.d skipped
C:\System Volume Information\_restore{41D88CBE-861B-46BD-AFB6-7085CF7E8C4C}\RP572\A0263098.exe Infected: Backdoor.Win32.IRCBot.bod skipped

 

You've a number of infected files to remove. I've bolded them below.

C:\Documents and Settings\Tiffany\Desktop\need to sort\Desktop Items\Jesses jump Drive\Microsoft Games\icqfilesharev15.exe
C:\Documents and Settings\Tiffany\Desktop\Remove\calc.exe
C:\Documents and Settings\Tiffany\Desktop\Remove\vvqq.exe
C:\Program Files\Incomplete\Preview-T-1932810-Wicked Remix (mamals).wma
C:\Program Files\Incomplete\T-105290-_cracked_ chill factor sound track 20.wma
C:\Program Files\Incomplete\T-190310-_live_ theme song of helloween 40.wma
C:\Program Files\LimeWire\###### theme song of helloween 10.wma
C:\Program Files\LimeWire\01 - resdient evil 16.wma
C:\Program Files\LimeWire\Rare Recording.wma
C:\Program Files\LimeWire\Wicked Remix (mamals).wma
C:\WINDOWS\Downloaded Program Files\popcaploader.dll
C:\WINDOWS\system32\cpctdaas.dll
C:\WINDOWS\system32\hxkuxody.dll
C:\WINDOWS\system32\qobpcbjs.dll
C:\WINDOWS\system32\qoerorlr.dll

As you can see, many of them are from Limewire (the Incomplete folder is Limewire also). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It may be contributing to your current situation. This page will give you further information.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

References for the risk of these programs are here,
here and here.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.


Open Spybot and select the Recovery button. Click Select All at the top of the window, then click Purge selected items. Close Spybot.

You also need to empty the C:\Documents and Settings\Tiffany\.housecall6.6\Quarantine folder.

Let me know if all the above is succesful, then we can finish up with the rest.

 

what doyou mean when you say click all, and also ont he files to remove. do you mean manualy delet them?

 

Click the Select All button, or place a check next to each entry in the Recovery list.

Yes. Those files need to be manually deleted.

 

sorry for late replay been busy, but i have deleted and run the scan seccesfully.

 

Lets make sure nothing new has come in. Please delete the ComboFix.exe file you currently have and download a fresh copy from here, saving it to your desktop.

Once again, please disable any realtime protection applications.

• Close all open programs and windows
• Double click combofix.exe and follow the prompts.
• It may reboot your computer and resume running when you logon. Wait for it to complete. When finished, it will open a log for you. Post that log and a new HijackThis log in your next reply.

Note: Do not mouseclick combofix's window while its running. That may cause it to stall