remnants of xp antivirus 08 and possibly a worm

ok im working on recleaning my dads laptop.. obviously last time i tried i didnt get it all.. it would seem that whatever i left on it is still going out and downloading trojan downloaders as in the past 2 weeks dad has gotten 51 in one week and 8 in the next(as marked by zonealarm)..

i ran the read and run first..

i must appologize before i go any further because instead of making notes i decided to try to remember the errors and such.. and now i cant remember them after the 3hours of scans... so.. sorry... will do better in that area in the future..


a couple of notes:
was unable to defrag.. both by the windows defrag and i tried diskkeeper... neither worked..

superantispyware free edition ran just fine.. but on shutdown it hung and i had to force shutdown(i waited about 15 minutes while staring at a black screen for it to shutdown)...
it rebooted just fine though..

everything else ran fine except mgtools.. it gave me an error that i still didnt write down.. but this error was different from the ones listed in the guide to running mgtool in read and run first.. again sorry for my idiot decision to not write the error down... but it gave me the option to hit ok to terminate or cancel to debug.. i hit ok to terminate and mgtools seemed to go on and finish...

ok heres the logs.. i hope there isnt anthing i missed in the read and run first as i uninstalled almost everything dad had on the computer that didnt come preinstalled.. if i did miss something let me know so ill know to look for it in the future..

thx in advance for any help xD

 

and the combofix log..

again thx for help

 

oook.. now... i ran HJT and had it fix that line... but i couldnt get the java or windowsmessenger remover downloads due to a http 403 forbidden error..

is that from one of the scans or somthing else..

all other webpages seem to load fine.. just downloads give me the 403 error

what you think?

 

nope i dont think so.. on my laptop which i have sitting right next to me i can download the files.. but not on here.. i relize i could just get the files from my laptop.. but if this is going to cause a headache for all downloads i would like to address that now as well...

 

iight here you go.. sory im just now gettin back to you.. bloody school and work too.. i wanna break.. lol xD

odd that this is saying it cant find the specified files and listing all the system services..

ok i got a processDll.exe - common language runtime debugging services error

the exact text of the error is:

application has generated an exception that could not be handled.

process id=0x970 (2416), thread id= 0xdc0 (3520).

click ok to terminat the application
click cancel to debug the application

...i hit ok...

crap im typing this on the wrong computer.. will post the mgtools.zip from the laptop we are dealing with in just a second...

 

ok slightly longer than one second.. but here it is..

and i think i typed mgtool.zip earlier.. i meant mglogs.zip...my bad.. been a long day..

 

hmm.. trying now.. yes i have an xp pro oem cd.. but not the full fledged version... dont remember if this computer was xp pro or not... too many of them.. >.<

ok its asking for xp pro service pack 3 cd.. the one i have is sp2.. any ideas there?

 

check edit.. i thought i got it before you posted again.. sry

 

ight will do.. and thx for all the help.. xD