OK - try this.
Go to
Windows Update and check to make certain there are no outstanding high-priority updates for your system.
Run the
Microsoft Windows Malicious Software Removal Tool
Download, install, and update
MicrosoftAntiSpyware Beta. Just install it and update it (when the program has installed, select "File" at the top left-hand side of the page, and click "Search for updates ... "), don't run it yet. When the update has been completed, just close the application.
Download
STINGER. Again, just download it right now; we'll use it later. See this
TUTORIAL.
Move HiJackThis to a folder of its own either directly on your C:\ drive or in your Programs folder.
With
NO OTHER PROGRAMS RUNNING, OR BROWSERS, WINDOWS, EMAIL, MESSAGING, OR CHAT CLIENTS OPEn, run HiJackThis, and place a checkmark next ot these entries:
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - Global Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O4 - Global Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe
and click "Fix" to have HJT remove them.
Download and install
CCleaner[/i][/u]. When it has installed, select "Analyze", let it scan through your system (should be just a couple minutes), then select "Run Cleaner", confirm you wish to delete files, and follow any onscreen prompts. When that is complete, click on the 3rd tab, "Issues", and select "Analyze". When the analysis has completed, select "Fix selected issues .... ", and confirm when prompted. The application will offer to write a registry backup - let it do so. It will offer to place the backup in your "My Documents" folder - select "New Folder", name the folder "CCleaner Backups", and click "Save".
Now,
Boot Into Safe Mode.
Locate and run Stinger, selecting "Fix". Reboot into safe mode when it has completed.
Locate and run Microsoft AntiSpyware Beta, select "Full System Scan", and let it fix whatever it finds.
Run CCleanup once more, and boot back into safe mode.
Click Start>Programs>Accessories>System Tools, select "Disk Defragmenter", and defrag your C:\ drive.
When that has been done, reboot normally, and again with nothing else running or open, run HiJackThis once more, this time just saving the log.
Connect to the internet, navigate back here, and post the new HJT log.