Much malware, popups, browser highjack please check logs

This is a friend's computer. She is running a PC with Windows XP Home SP3.

She was experiencing a problem with what she called pop ups with a lighthouse.

Anyway, when I looked at her computer and clicked on the link in question inside her *Incredimail*, what was happening was the links were trying to open Netscape Navigator browser which she does not have.

Anyway, after cringing when I saw she had Incredimail, I checked to see what other *programs* she had installed.

Among some of them were the following:

MyWay or MyWay Search Assistant
Viewpoint Manager (Remove Only)
Viewpoint Media Player
Viewpoint Toolbar
Viewpoint Toolbar (Remove Only)

She also had a bunch of files saved to her desktop. I selected them all and dragged them to a folder on the desktop for a temporary fix. I then sent the files on the desktop to the recycle bin. When I ran CCleaner, oops, the recycle bin was emptied along with her *important files* I am sure you are laughing right now because you know what I have in that folder is shortcuts to those files. Poof, her *important files* are history.:cry

I did create a System Restore Point before creating beginning any work. I am thinking if I restore that point the files will return to the desktop. Am I right?:confused

My friend is not happy.

Running the scans and doing the uninstalls of the various programs took almost 10 hours. She had a lot of bad stuff on the computer. I did convince her that Incredimail is not a good thing, even though the dog was cute that would run onto the screen to announce the mail arrival.

Configured Outlook e-mail accounts for her.

Incredimail has made itself the search engine of choice even after running all of the scans and clean up.

I couldn't run Root Repeal. It did the same thing it did on my own computer the last time I tried to run it. It stalled and then said virtual memory was too low. It did not matter that the system had a fresh reboot.

Please check scans and advise. Thanks

 

If I have to do a system restore to get those files back, then that is the trade-off - having to do the malware process all over again. My friend really needs those files back.

OK. I thought I did send that one to the desktop from my usb drive.

Yes. I was under the impression the Incredimail is some sort of malware. Am I incorrect in having that impression?

The Search provider is still Incredimail even after the clean up and uninstall.

 

So I can't get those files back on the desktop by doing a system restore to the point I created before I started the work on the computer?

OK. So do you still recommend running CCleaner on a clean system?