Dan,
Here is my ComboScript log:
ComboFix 08-06-20.4 - smercer2 2008-06-27 15:46:45.2 - NTFSx86
Running from: C:\Documents and Settings\smercer2\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\smercer2\Desktop\CFScript.txt
* Created a new restore point
FILE ::
C:\Documents and Settings\All Users\Application Data\novarozy.dll
C:\WINDOWS\system32\{ebb0b145-a1b9-03c8-5366-8cf4d7eb3489}.dll
C:\WINDOWS\system32\{ebb0b145-a1b9-03c8-5366-8cf4d7eb3489}.dll-uninst.exe
C:\WINDOWS\system32\jlwnw64j.exe
C:\WINDOWS\system32\vlwnw64.exe
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Application Data\novarozy.dll
C:\Old temp
C:\Old temp\~DFC74B.tmp
C:\Old temp\~DFCD5F.tmp
C:\Old temp\~DFD6A3.tmp
C:\Old temp\~DFEA6A.tmp
C:\Old temp\~WRD0001.doc
C:\Old temp\2bti.exe
C:\Old temp\aim0508175826.tmp
C:\Old temp\AIM291C.tmp.arf
C:\Old temp\AIM291E.tmp.arf
C:\Old temp\AIM2920.tmp.arf
C:\Old temp\AIM406.tmp.arf
C:\Old temp\AIM409.tmp.arf
C:\Old temp\AIM40A.tmp.arf
C:\Old temp\AIM4C8.tmp.arf
C:\Old temp\AIM4C9.tmp.arf
C:\Old temp\AIM4CA.tmp.arf
C:\Old temp\AIM4CB.tmp.arf
C:\Old temp\AIM4CC.tmp.arf
C:\Old temp\AIM4CD.tmp.arf
C:\Old temp\AppCoreInst.dat
C:\Old temp\CCI10.tmp
C:\Old temp\CCI11.tmp
C:\Old temp\CCI3.tmp
C:\Old temp\CCI7.tmp
C:\Old temp\CCIA.tmp
C:\Old temp\CCIB.tmp
C:\Old temp\CCID.tmp
C:\Old temp\CCIE.tmp
C:\Old temp\CCIF.tmp
C:\Old temp\CF_Register_Action.dat
C:\Old temp\control.xml
C:\Old temp\DefInstAction.dat
C:\Old temp\Downloader.exe
C:\Old temp\FW_Register_Plugin_Action.dat
C:\Old temp\gc_ep_w01_enu.exe
C:\Old temp\hpoMSI_AiO_Scan_LOG.txt
C:\Old temp\hpoMSI_Enterprise_LOG.txt
C:\Old temp\hpoMSI_QFolder.log
C:\Old temp\hpoMSI_Scan_LOG.txt
C:\Old temp\HPOUNI001.2008Apr22-190533.LOG
C:\Old temp\hpzarp000.log
C:\Old temp\hpzchk000.log
C:\Old temp\hpzdui000.log
C:\Old temp\hpzdui001.log
C:\Old temp\hpzdui002.log
C:\Old temp\hpzmsi000.log
C:\Old temp\hpzmsi001.log
C:\Old temp\hpzmsi002.log
C:\Old temp\hpzmsi003.log
C:\Old temp\hpzmsi004.log
C:\Old temp\hpzmsi005.log
C:\Old temp\hpzpnp000.log
C:\Old temp\hpzpnp001.log
C:\Old temp\hpzpnp002.log
C:\Old temp\hpzpnp003.log
C:\Old temp\hpzprl000.log
C:\Old temp\hpzprl001.log
C:\Old temp\hpzprl002.log
C:\Old temp\hpzpsc000.log
C:\Old temp\hpzpsc001.log
C:\Old temp\hpzpsc002.log
C:\Old temp\hpzpsc003.log
C:\Old temp\hpzpsc004.log
C:\Old temp\hpzpsc005.log
C:\Old temp\hpzpsc006.log
C:\Old temp\hpzpsc007.log
C:\Old temp\hpzpsc008.log
C:\Old temp\hpzrcv000.log
C:\Old temp\hpzrcv001.log
C:\Old temp\hpzrcv002.log
C:\Old temp\hpzrcv003.log
C:\Old temp\hpzrei000.log
C:\Old temp\hpzrei001.log
C:\Old temp\hpzrei002.log
C:\Old temp\hpzs34ff0
C:\Old temp\hpzscr000.log
C:\Old temp\hpzscr000_MSI_0.log
C:\Old temp\hpzscr000_MSI_1.log
C:\Old temp\hpzscr000_MSI_2.log
C:\Old temp\HPZSet000.log
C:\Old temp\HPZSet001.log
C:\Old temp\HPZSet002.log
C:\Old temp\hpzshl000.log
C:\Old temp\hpzwis000.log
C:\Old temp\hpzwis001.log
C:\Old temp\hpzwrp000.log
C:\Old temp\IDSinst.LOG
C:\Old temp\is-3173.tmp
C:\Old temp\ldrleem.exe
C:\Old temp\NDr16A.tmp.html
C:\Old temp\NDr16B.tmp.html
C:\Old temp\NDR2C.tmp
C:\Old temp\NDR2F.tmp
C:\Old temp\NDR31.tmp
C:\Old temp\NDr7B.tmp.html
C:\Old temp\NDr7C.tmp.html
C:\Old temp\NDr7F.tmp.html
C:\Old temp\NDR91.tmp
C:\Old temp\Norton Setup 15,0,0 6-23-2008 17h39m28s.log
C:\Old temp\Norton Setup 15,0,0 6-24-2008 19h21m52s.log
C:\Old temp\Norton Setup 15,5,0 6-24-2008 19h57m58s.log
C:\SDFix
C:\SDFix\apps\assosfix.reg
C:\SDFix\apps\cliptext.exe
C:\SDFix\apps\download.exe
C:\SDFix\apps\dummy.sys
C:\SDFix\apps\Enable_Command_Prompt.reg
C:\SDFix\apps\ERDNT.E_E
C:\SDFix\apps\ERDNTDOS.LOC
C:\SDFix\apps\ERDNTWIN.LOC
C:\SDFix\apps\ERUNT.EXE
C:\SDFix\apps\ERUNT.LOC
C:\SDFix\apps\fix.reg
C:\SDFix\apps\FixBH.reg
C:\SDFix\apps\FixComponents.reg
C:\SDFix\apps\FIXCU.reg
C:\SDFix\apps\FIXLM.reg
C:\SDFix\apps\FixPath.exe
C:\SDFix\apps\FixRedir.reg
C:\SDFix\apps\FixSchedule.reg
C:\SDFix\apps\FixWebCheck.reg
C:\SDFix\apps\fixXP.reg
C:\SDFix\apps\FixXPsp2.reg
C:\SDFix\apps\grep.exe
C:\SDFix\apps\HPFix.reg
C:\SDFix\apps\HPFix2.reg
C:\SDFix\apps\HPFix3.reg
C:\SDFix\apps\HPFix4.reg
C:\SDFix\apps\HPFix5.reg
C:\SDFix\apps\HPFix6.reg
C:\SDFix\apps\HPFix7.reg
C:\SDFix\apps\HPFix8.reg
C:\SDFix\apps\HPFix9.reg
C:\SDFix\apps\isadmin.exe
C:\SDFix\apps\leg2.txt
C:\SDFix\apps\legacy.txt
C:\SDFix\apps\legacybk.txt
C:\SDFix\apps\locate.com
C:\SDFix\apps\LS.exe
C:\SDFix\apps\MD5File.exe
C:\SDFix\apps\MyGcpvFix.reg
C:\SDFix\apps\MyGkFix2.reg
C:\SDFix\apps\Process.exe
C:\SDFix\apps\procs.exe
C:\SDFix\apps\psservice.exe
C:\SDFix\apps\Rem.txt
C:\SDFix\apps\Rem2.txt
C:\SDFix\apps\Replace\regedit.exe
C:\SDFix\apps\Replace\W2K.exe
C:\SDFix\apps\Replace\w2k\beep.sys
C:\SDFix\apps\Replace\w2k\null.sys
C:\SDFix\apps\Replace\XP.exe
C:\SDFix\apps\Replace\xp\beep.sys
C:\SDFix\apps\Replace\xp\null.sys
C:\SDFix\apps\Reset_AppInit_DLLs.reg
C:\SDFix\apps\RestartIt!.exe
C:\SDFix\apps\Restore_SecurityCenter.reg
C:\SDFix\apps\Restore_SharedAccess.reg
C:\SDFix\apps\sc.exe
C:\SDFix\apps\sed.exe
C:\SDFix\apps\SF.exe
C:\SDFix\apps\shutdown.exe
C:\SDFix\apps\srv2.txt
C:\SDFix\apps\srv2bk.txt
C:\SDFix\apps\svc.txt
C:\SDFix\apps\svcbk.txt
C:\SDFix\apps\swreg.exe
C:\SDFix\apps\swsc.exe
C:\SDFix\apps\unzip.exe
C:\SDFix\apps\vfind.exe
C:\SDFix\apps\WINMSG.EXE
C:\SDFix\apps\winsec.reg
C:\SDFix\apps\zip.exe
C:\SDFix\backups\backupreg.zip
C:\SDFix\backups\backups.zip
C:\SDFix\backups\catchme.log
C:\SDFix\backups\catchme.zip
C:\SDFix\backups\HOSTS
C:\SDFix\catchme.exe
C:\SDFix\dummy.sys
C:\SDFix\Report.txt
C:\SDFix\RunThis.bat
C:\SDFix\SDFIX_ReadMe_Online.url
C:\SDFix\W2K_CodecRepair.inf
C:\SDFix\XP_CodecRepair.inf
C:\temp\itmp4
C:\temp\itmp4\mkbv4i.log
C:\WINDOWS\system32\{ebb0b145-a1b9-03c8-5366-8cf4d7eb3489}.dll-uninst.exe
C:\WINDOWS\system32\{ebb0b145-a1b9-03c8-5366-8cf4d7eb3489}.dll
C:\WINDOWS\system32\1049a
C:\WINDOWS\system32\1049a\hinacomDE.exe
C:\WINDOWS\system32\axc
C:\WINDOWS\system32\axc\ashcom3e.exe
C:\WINDOWS\system32\bgi
C:\WINDOWS\system32\bgi\pidam2.exe
C:\WINDOWS\system32\eb10
C:\WINDOWS\system32\eb10\zvuxderr.exe
C:\WINDOWS\system32\jlwnw64j.exe
C:\WINDOWS\system32\vlwnw64.exe
.
((((((((((((((((((((((((( Files Created from 2008-05-27 to 2008-06-27 )))))))))))))))))))))))))))))))
.
2008-06-24 20:16 . 2008-06-24 20:16 <DIR> d-------- C:\Program Files\Windows Sidebar
2008-06-24 20:16 . 2008-06-25 06:09 <DIR> d-------- C:\Program Files\Norton AntiVirus
2008-06-24 16:54 . 2008-06-24 16:55 <DIR> d-------- C:\WINDOWS\ERUNT
2008-06-23 21:05 . 2008-06-23 21:05 <DIR> d-------- C:\Program Files\Trend Micro
2008-06-23 21:03 . 2008-06-23 21:03 812,344 --a------ C:\HJTInstall.exe
2008-06-22 21:00 . 2008-06-22 21:00 <DIR> d-------- C:\Documents and Settings\smercer2\Application Data\Symantec
2008-06-21 08:19 . 2008-06-21 08:19 9,662 --a------ C:\WINDOWS\system32\ZoneAlarmIconUS.ico
2008-06-18 06:59 . 2008-06-13 09:10 272,128 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-25 20:06 --------- d-----w C:\Program Files\Viewpoint
2008-06-25 20:06 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-06-25 10:54 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-25 10:53 --------- d-----w C:\Program Files\Browser Mouse
2008-06-25 10:09 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-06-25 01:19 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-06-25 00:19 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF
2008-06-25 00:19 60,800 ----a-w C:\WINDOWS\system32\S32EVNT1.DLL
2008-06-25 00:19 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2008-06-25 00:19 10,671 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT
2008-06-25 00:19 --------- d-----w C:\Program Files\Symantec
2008-06-22 11:00 --------- d-----w C:\Program Files\DevalVR
2008-06-21 12:47 --------- d-----w C:\Program Files\Google
2008-06-13 13:10 272,128 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-05-29 22:01 --------- d-----w C:\Documents and Settings\smercer2\Application Data\AdobeUM
2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:18 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-03-27 08:12 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
2005-04-15 22:09 5,647,872 ----a-w C:\Program Files\Dameware.MSI
2005-04-15 21:41 10,061,312 ----a-w C:\Program Files\vpnclient-win-msi-4.0.5.C-k9.exe
2005-04-15 20:45 967,486 ----a-w C:\Program Files\tightvnc-1.2.9-setup.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 03:56 15360]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 16:45 313472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2004-08-20 16:55 155648]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2004-08-20 16:51 118784]
"KBD"="C:\HP\KBD\KBD.EXE" [2003-02-11 14:02 61440]
"RoxioDragToDisc"="C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe" [2003-01-13 11:19 757760]
"mmtask"="c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe" [2004-01-26 11:46 53248]
"MMTray"="C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" [2004-01-26 11:46 118784]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2004-12-27 21:20 98304]
"Logitech Utility"="Logi_MwX.Exe" [2003-11-07 05:50 19968 C:\WINDOWS\LOGI_MWX.EXE]
"PS2"="C:\WINDOWS\system32\ps2.exe" [2002-10-16 10:57 81920]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2008-01-25 17:47 51048]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe" [2007-03-12 18:30 517768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SymLnch"="C:\Documents and Settings\smercer2\Application Data\Symantec\Layouts\Norton AntiVirus\15.0\SymAllLanguages\NAVCD_RETAIL\20070826\Support\SymLnch\SymLnch.exe" [ ]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
VPN Client.lnk - C:\WINDOWS\Installer\{3E5562ED-69AB-4CEC-91E2-64E18EC5ACC6}\Icon3E5562ED7.ico [2005-04-15 17:51:07 6144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"novarozy"= {6a21d3b2-e1df-43b8-95ea-b6cae2843288} - C:\Documents and Settings\All Users\Application Data\novarozy.dll [ ]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.ffds"= C:\Program Files\ffdshow\ffdshow.ax
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioAudioCentral]
--a------ 2003-01-09 10:21 253952 C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioEngineUtility]
--a------ 2003-01-13 15:05 69632 C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2003-12-12 20:50 33792 C:\Program Files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\TightVNC\\WinVNC.exe"=
"C:\\Program Files\\Microsoft Office\\OFFICE11\\EXCEL.EXE"=
"C:\\Program Files\\Microsoft Office\\OFFICE11\\WINWORD.EXE"=
"C:\\Program Files\\AIM\\aim.exe"=
"C:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{87be01b3-a4f9-11db-95a9-00e018a937ae}]
\Shell\AutoRun\command - E:\LaunchU3.exe -a
*Newly Created Service* - LIVEUPDATE_NOTICE_EX
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-06-27 15:52:50
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
**************************************************************************
.
Completion time: 2008-06-27 15:59:29
ComboFix-quarantined-files.txt 2008-06-27 19:58:25
ComboFix2.txt 2008-06-26 21:09:59
Pre-Run: 45,194,825,728 bytes free
Post-Run: 45,127,962,624 bytes free
317 --- E O F --- 2008-06-20 07:04:49
Here is my MalwareBytes log:
Malwarebytes' Anti-Malware 1.18
Database version: 895
4:50:57 PM 6/27/2008
mbam-log-6-27-2008 (16-50-57).txt
Scan type: Full Scan (C:\|)
Objects scanned: 93322
Time elapsed: 35 minute(s), 0 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 40
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\targetedbanner (Trojan.BHO) -> Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\Program Files\Trend Micro\HijackThis\backups\backup-20080625-161543-869.dll (Adware.PopCap) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\Old temp\Downloader.exe.vir (Trojan.DownLoader) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\Old temp\ldrleem.exe.vir (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\jlwnw64j.exe.vir (Adware.Agent) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\mcntmadm.exe.vir (Adware.Agent) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\tcntaxdm.exe.vir (Adware.Agent) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\vlwnw64.exe.vir (Adware.Agent) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\1049a\hinacomDE.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\axc\ashcom3e.exe.vir (Adware.Agent) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\bgi\pidam2.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\QooBox\Quarantine\C\WINDOWS\system32\eb10\zvuxderr.exe.vir (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039321.dll (Adware.ClickSpring) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039323.dll (Adware.ClickSpring) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039330.exe (Adware.WebHancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039331.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039332.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0039333.exe (Adware.Webhancer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP624\A0041338.exe (Adware.ISM) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0041354.exe (AdWare.CommAd) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0041355.exe (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0041360.dll (AdWare.CommAd) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0042067.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0042068.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045159.exe (Trojan.DownLoader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045162.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045207.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045223.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045224.exe (Trojan.DownLoader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0045264.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP625\A0046843.exe (Adware.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP628\A0046948.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP628\A0046949.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047022.exe (Trojan.DownLoader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047024.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047088.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047089.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047090.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047091.exe (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047095.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{563816D7-AC0E-46FB-8355-1535D7FB1AA3}\RP629\A0047096.exe (Adware.Agent) -> Quarantined and deleted successfully.
As for the Kaspersky, I was unable to do a scan. It would not let me accept and scan. It kept saying I needed the latest Java software. I installed Java and continue to have the same error message. Any assistance here would be great. Thanks.