need some help

[TurcoLoco]

Well, I could have you try running two different tools and get their logs to see if I could spot anything on them:

1) Autoruns, after downloading, run it (Windows running in NORMAL MODE), when the program starts and you agree to the EULA, press ESC to cancel the initial scan. Click OPTIONS, then check the box next to 'Hide Microsoft Entries' then run the scan. Once it is done, click file and save the log file on desktop so you can easily locate and attach it to your next post.

2) Download AnalyzerXP and run it in Normal Mode as well. Then Attach its log file (analyzer.txt) that should appear on the desktop, ok?

[Noob334]

Here are the logs, thanks for the help TL

[TurcoLoco]

I'd get rid of this task especially since you never used it:

Directory of C:\WINDOWS\Tasks Internet sign-up.job

TaskName Next Run Time
easy Internet sign-up Never

The files that either didn't pull up adequate information or came up on malware related links showing up on the logs of infected system, so I suggest you research these on the web to decided if they are legit or not, you could also update each file to VirusTotal to see if they are clean.

suspicious file types in WINDOWS folder:
W32i - - - - 94,208 02-22-2003 c:\windows\system32\pcdrkernelmodeservices.dll
W32i - - - - 77,824 02-22-2003 c:\windows\system32\progresstrace.dll
W32i - - - - 120,320 09-12-2005 c:\windows\system32\drivers\sshdrv65.sys
07/05/2006 09:02 PM 3,650 MRT.INI





=====] List of files located at the root of the C Drive:

Directory of C:\
05/14/2006 08:16 PM 98,904 mmjb.DDF
08/08/2005 03:37 PM 666 remind.log
14 File(s) 102,283 bytes
0 Dir(s) 69,294,129,152 bytes free

Internet Explorer appeared to be running, if you didn't have it running then that background process or another is totally using it behind your back, using ProcessExplorer to dig deeper to see what threading is going on with iexplore.exe:

=====] Process Analysis - Currently running Service based Processes:
Machine Debugging Manager ( system based service but do you really need it or use it?)
MDM.EXE 1336 Console 0 456 K

Another non-essential proces:!
OPXPApp.exe 2036 Console 0 1,252 K

iexplore.exe 17308 Console 0 2,604 K

Autoruns log didn't show anything either that I could see. I suggest try running a reputable Rootkit scanner such as the one Grisoft has and see if that can find anything.
Also, browse to C:\Windows\System32\Drivers\etc and check the HOSTS file to make sure there are no funky lines added to is, if not sure use HostsXpert (Hoster).