OK I need a little help please

Welcome to Majorgeeks!

To disable TeaTimer, run Spybot and click Mode and select Advanced Mode. Then click Tools and select Resident. Now in the right window pane, uncheck TeaTimer.
Also while this is open, in the left column now select IE Tweaks and then in the right pane make sure all the Miscellaneous locks are unchecked.
Now quit Spybot!


Is your copy of Ewido a free trial version or a paid version?

Why do you have Spybot run at startup?
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck

Do you leave your PC running all the time and thus having it always run at Startup is not an issue for you since you don't do restart all the time.?

You have the latest version of Sun Java install (5.0_07) but you still have old unsafe versions running. Uninstall ALL old versions of Sun Java.

Is the below Start Page valid?
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freeride.com/


You need to manually cleanup all the stuff in your Outlook Express folders that Bitdefender and Panda found but could not fix.
That includes the below from Panda

Make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {3FE36807-69ED-45D1-B9BE-85C0E3F75B6A} - (no file)

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\Documents and Settings\HP_Owner\Desktop\1stpage2.zip
C:\Documents and Settings\HP_Owner\Local Settings\Temp\ngpcjnwo.exe
C:\Documents and Settings\HP_Owner\Local Settings\Temp\qtbbxvwg.exe
D:\do_work\vkxqusex.exe

If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again. Other wise open Task Manager and kill the process if running then delete the file.

Now if running Win XP goto c:\windows\Prefetch and delete all files in this folder.
Now run Ccleaner (installed while running the READ ME FIRST).

Now reboot in normal mode and post a new HJT log.

Make sure you tell me how things are working now.

Reminder Note: Once we have determined you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 1 of the READ & RUN ME. This only applies to if using WinXP or WinMe.

 

Okay! Then uninstall Windows Defender to avoid potential conflicts and the waste of additional system resources.

Let's take a look and I will tell you what to uninstall.

Get an installed programs list from HijackThis!

• Run HijackThis, click Open the Misc Tools section
• Click Open Uninstall Manager
• Click Save List (generates uninstall_list.txt)
• Click Save, to save it to a file where you can find it.
• Attach the uninstall_list.txt file to your next message.

The only way I know is to run Outlook! If you don't use Outlook, which you are implying that you do not, then your could just delete the folders or files that were mentioned. Note, you can always unplug your cable to the internet too while running Outlook. That way you can work offline to remove things.

 

Uninstall the below (the second is a leftover from Windows Defender):
Java 2 Runtime Environment, SE v1.4.2_03
Windows Defender Signatures


How are things working now?

 

This is not malware.

We are done unless you have other malware problems.

If you are not having any other malware problems, it is time to go back to step 1 of the READ & RUN ME to Disable System Restore which will flush your Restore Points. Then reboot and enable System Restore to create a new clean Restore Point.

After that, you should work thru the below link:

How to Protect yourself from malware!