Can't run any install programs to solve problem

I have tried to do the "Do these first" items before contacting. My malody won't allow any new files to be opened and installed. Files before problem seem to run fine. I tried updating my adaware, and it wouldn't do that so I downloaded the udate zip and unzipped it and installed it manually. it found 4 "minor" tracking cookies, but the program locks when I try to delete them with Adaware. Also AVGFree doesn't find anything when I run it. Both are latest versions with latest updates. Also when I reboot the system, a green circle icon pops up very briefly in the icon tray while the system shuts down. I've tried to download the recommended spyware utilities, can download the file, but they just lock up when I try to run the install for them, even in safe mode. I've also tried online scans, but I can't download any activeZ controls, system locks up. I believe I got this by trying to download various image "grabber programs" (all on first search page) found using MSN seach for the same. Not for porn use, but for manufacture vendor sites. No Porn sites visited. Any ideas would be appreciated, if all else fails, may by new hard drive and install operating system and recommended software and then put infected drive in as slave and see if I can clean it.

 

Ok turned off pc for 24 hours was able to finally get in and do some stuff. Reason unknown. Can only do things in Safe Mode with Networking. Hijack This and many of the other software recommended to use when trying to download and install, or run in normal mode pops up with invalid image when clicking on the icon to run it, or locks up when trying to run it, no active x at all will download, no spyware killer programs will install after download in normal. Programs not in any way associated with viruses, spyware, etc. load and run fine. Following are exceptions: Adaware runs and comes up clean, both in safe and normal mode(Had to manually install updated definitions). Spybot runs and comes up clean, both in safe and normal mode. AVGFree runs and comes up clean, both in safe and normal mode. Trend and Symatec Avert Stinger did not find anything. Here is a copy of Hijack this I just ran in safe mode. It will not run in normal mode. Thanks for taking the time to help with this. Much Appreciated.

 

Ran the LSPFix. Ran the fix recommended on HJT. Rebooted in Normal mode. Still will not work in normal mode. Comes up with a little window popup approx 150 x 150 with a red circle and white x in it and says in a plain font INVALID PICTURE. Came back to safe mode and ran HJT again. IE was not running, nothing but HJT was running and internet unplugged when I did the HJT log. On the startup log, I forgot I had the HJT log open still.

 

I get the message when i try to download a new program and run it. If it was previously installed, (before any problems) is works fine. I started to notice a little icon pop up as windows was closed and became suspicous that someone had placed some sort of data/password stealer on my machine. About 6 months ago some had stole my aol password somehow. I went to majorgeeks and proceeded to download all recommended items, but they wouldn't install in normal mode. just in safe mode. So I became very suspicious. The error message pops up whenever I click on any of the newly installed items in normal mode. They worked fine in safe mode, but give the image error whenever clicked on in normal mode. All other programs work fine in normal mode and will load when icons clicked on. I have 384M of RAM. Will try to disable images and see what happens.

 

Ok wrong wording. I unzipped it and tried to run it. If you click on hijackthis.exe. it brings up the invalid picture warning again. I removed it and tried to download and unzip it again. but still does the same thing. You know now that I think about it a friend recommended a few weeks back to download and run WINner Tweak and registry cleaner XP. To clean up any loose registry entries. I did, but it didn't seem to do anything. So I moved on and forgot about it. I thought I got it off MajorGeeks, but just checked and a link is not there. Just checked it now and it won't run again, or uninstall. Maybe it removed some stuff it wasn't supposed to when I tried to run it the first time. I can't install OR run any program in Normal Mode (I can in safe mode) that wasn't on the machine prior to the WINner Tweak. Is there a fixer for the registry that you recommend. I'm feelin now that is the problem and not a spyware bug of some sorts. But haven't been able to run HJT in normal mode either. I also tried to unzip it and run it on another harddrive to, but still get invalid picture error.

 

I can run programs in safe mode, in normal I can't. Changing HJT to .com didn't have any affect. CWShredder runs fine in safe, same problem as HJT in normal mode.

 

I just went and looked and sure enough it did make a backup of the registry dated 1/24/05. I tried to reinstall the backup, but said that it couldn't because some entries were in use and/or missing. I opened the backup with Notepad. I could post the notepad file if you want to see what it says.
Here is something that caught my eye when going through it. I have no idea what this is, but i've never used the media player that I know of. My machine is mainly a work machine. [HKEY_USERS\S-1-5-18\Software\Microsoft\MediaPlayer\Battery\Presets\Nerds Are Cool] There are several entries where the are "Nerds are Cool" is replaced with what sounds like song titles. Here are some examples of whats there. khemicalnova, kaleidoscope, ISeeTheTruth, Lotus, illuminator, GrooveSwirl, Geeks Kick ASCII. Is there a secure way to get this to you if you wanted it? The list is very detailed. I'm going to try reinstalling the Winner Tweak and Registry cleaner in safe mode and try restoring the backup. It is download3560 by the way.