Hi, thanks for coming back to me.
Just back in normal mode so can update you on progress and supply remaining info.
Photo software is Photoshop. I had an old version but was installing an aquired copy of Photoshop CS3 (P2P) on a different drive to test the new features.
"D" drive is an additional hard drive. I have over 1.5m files on the PC so I'm not surprised re. the time it takes to complete each scan. "K" is a removeable hard drive which I was starting to back up my system onto but only got so far, hence contains copies of some of the files on the main system.
I mentioned Norton in connection with the trojans because their products have identified and secured me against trojans in the past. Perhaps I was expecting too much, just my understanding.
Regarding the "you must be an administrator" - it's unusual for me. I've never seen it before. I agree it's in connection with the install of CS3 as everything was fine up to that point.
Majority of the time while Kaspersky was running I was on the couch trying to stay away from the computer. But thanks for the advice - I will remember in future.
PC info:
OS: Windows XP Home Edition SP2 (WinNT 5.01.2600) - all updates installed immediately
Hard drive size: 250GB
Ram: 1 GB
CPU: 3.40GHz
Browsers: Firefox latest vesion (used every day) - IE6 (only use when forced to)
Thanks for the info on ClickBank - they are actually an digital product affiliate marketing group, I only go there to log into my account and get urls for the purpose of promoting other peoples digital products. I don't download/buy products. Interesting that you say Clickbar was downloaded. I was not aware of this. Thanks.
Thanks for the info on the infections found so far.
Here is an update on my progress since.
-------------------
AVG IN SAFE MODE
-------------------
Ran AVG in safe mode and it found pretty much the same files as the previous scan. I followed your directives to the letter but it didn't save a scan report, and the scan took 9 hours so I'm a little adverse to doing it again.
Attached is an image the quarantined files from the AVG scan:
avg-quarantined-safemode.jpg
There were some failures in quarantining the baddies after the scan so I'm going to have to go back in and re-scan I guess after I remove the "resources" folder.
----------------------------------
WINDOWS DEFENDER IN SAFE MODE
----------------------------------
Found 1 item:
Adware:Win32/TwainTech in C:\WINDOWS\smdat32.sys
Removed successfully by program.
-----------
HJT Report
-----------
hjt-220807.txt
Thanks inadvance for your help. This computer is my livelyhood and being in my 5th day without being able to work is not going down well with my clients - as you can imagine!
