TY much, that answers my questions completely....and the admin poster earlier found the link to the other parser: http://www.hijackthis.de./index.php
so far we are down to no more red entries, and I will definitly make sure to check out mDNSResponder.exe...thx also for the tips on monitoring the satellite connection.
@jholland1964
I apologize for both muddying the waters nd not listing all we uninstalled...trust me...it was bloatware...for example we removed that idiotic 60 MS office trial, adobe acrobat, which I don't trust at all (I use foxit reader)...we also removed Roxio as it and Nero etc are constantly trying to call home. Also a lot of Google toolbars and google updater etc, even found a sneakily installed Zonealarm (free) toolbar...a few Gateway and MS default search pages...nuthin drastic. I should have been more clear in my initial description :/
I tend to agree that at present the comp is not the issue...and the user can't (socially acceptably) bypass the router, but I intend to at least for the short term, have him try that as well. We seemed to have solved the internet connection issues and even increased the time he can spend on Diablo II from 10-15 mins to over two hours. So I sorta have to assume its just that a 1 Mb/s connection is NOT great for even an old game like D2...lol
I feel the problem is more ISP related..but due to his location and financial limitations...he has limited options. I realize that this is more a malware removal help site, but I couldnt think of anyone better to ask about the few bloatware apps than here.
So tomorrow the plan is do better research into ISP options, if there are any.
Thanks for the help guys and as usual I will continue to send folks here with true, nasty, completely infected machines....so you gentlemen can work your magic 
Rock on IANAG !!
Here is MY Hijack this log...can we say stripped to the bone
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.24\RivaTuner.exe" /S
O4 - HKLM\..\Run: [SnoopFreeUI] SnoopFreeUI.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [EVEREST AutoStart] C:\Program Files\Lavalys\EVEREST Ultimate Edition\everest.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/micr...?1263345299953
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1263345284515
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\PROGRA~1\Symantec\NORTON~1\GHOSTS~2.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Snoop Free Service (SnoopFreeSvc) - Unknown owner - C:\WINDOWS\System32\SnoopFreeSvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Last edited by Ghot; 07-30-2010 at 02:24 AM.
Windows XP Pro w/SP3
AMD Phenom II X4 955 B.E. (C2) OC'd to 3.8Ghz
ASUS M4N82 Deluxe 980a SLI Mobo
EVGA GeForce GTX 580 1536MB
Corsair CM2X2048-8500C5D Dual Channel
SATA WD 300GB Velociraptor
WD 1TB Caviar Black
LG GH22LS30 CD/DVD Burner
PC Power & Cooling Silencer 750W
ViewSonic G90FB 19" CRT Monitor
Harmon Kardon Speakers (3)
Coolermaster ATCS 840 Full Tower
3x230mm, 1x120mm, Optional: 3x Scythe S-Flex SFF21G 120mm
ZALMAN CNPS 10X Extreme CPU Cooler
Steelseries 6GV2 Keyboard
Reply With Quote