I've been having IE pop-ups on various sites (casino, porn, virus/spyware removal). Also, there are script errors on some pages that pop up, and it always asks me to debug (I've said no this whole time). Sometimes, a triangular box appears in systray and tells me that I've been infected with so and so many spyware and that I need to install antivirus and whatnot, and if I click there, an IE window pops up with an ad about some program that they want me to buy. This got onto my computer immediately after a clean install of Windows but before ZoneAlarm was activated. Here are my Panda Online Scan log and my HiJackThis log. Please help. Thank you. =]

This is my Panda Online Scan log.
--------------------------------

Incident Status Location

Adware:Adware/PurityScan Not disinfected c:\docume~1\mystic~1\applic~1\fnts~1\hkntfs~1.exe
Adware:Adware/PurityScan Not disinfected C:\WINDOWS\system32\svticxhb.dll
Adware:Adware/SystemDoctor Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Application Data\3e0652b7.exe
Adware:Adware/SuperSpider Not disinfected C:\WINDOWS\system32\winkmu32.dll
Adware:Adware/PurityScan Not disinfected C:\WINDOWS\system32\wowexec.dll
Adware:adware/mediatickets Not disinfected C:\WINDOWS\system32\oins.exe
Adware:adware/securityerror Not disinfected c:\windows\system32\ts.ico
Adware:adware/yazzle Not disinfected c:\windows\downloaded program files\YazzleActiveX.ocx
Dialer:dialer.avv Not disinfected c:\windows\downloaded program files\gdnUS2339.exe
Spyware:spyware/virtumonde Not disinfected Windows Registry
Potentially unwanted tool:Application/Restart Not disinfected C:\WINDOWS\system32\Tools\Restart.exe
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx5.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx2.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx4.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx8.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx10.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx12.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx14.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx16.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx18.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx20.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx22.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx24.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx26.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx28.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx30.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx32.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx34.dll
Adware:Adware/SpywareQuake Not disinfected C:\WINDOWS\system32\components\flx35.dll
Adware:Adware/SystemDoctor Not disinfected C:\WINDOWS\system32\3e0652b7.exe
Adware:Adware/SystemDoctor Not disinfected C:\WINDOWS\Temp\win108.tmp.exe
Dialer:Dialer.HIX Not disinfected C:\WINDOWS\Temp\win124.tmp.exe
Dialer:Dialer.HIX Not disinfected C:\WINDOWS\Temp\win611.tmp.exe
Dialer:Dialer.HIX Not disinfected C:\WINDOWS\Temp\win622.tmp.exe
Adware:Adware/SystemDoctor Not disinfected C:\WINDOWS\Temp\win630.tmp.exe
Adware:Adware/MediaTickets Not disinfected C:\Program Files\Cowabanga\uninstaller.exe
Adware:Adware/SystemDoctor Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temp\h91746.exe
Adware:Adware/SuperSpider Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temp\mst133.tmp
Adware:Adware/Yazzle Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temp\win135.tmp.exe
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temp\win13C.tmp.exe
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temp\!update.exe
Adware:Adware/Yazzle Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\OD0PUNGZ\mulbin32[1].exe
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\OD0PUNGZ\!update-4020[1].0000
Adware:Adware/SystemDoctor Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\OD0PUNGZ\srvuwd[1].exe
Spyware:Spyware/Virtumonde Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\5X9FCU8C\anti4[1].exe
Adware:Adware/Yazzle Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\5X9FCU8C\YazzleActiveX[1].cab
Adware:Adware/SystemDoctor Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\5X9FCU8C\srvzey[1].exe
Dialer:Dialer.HIX Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\5X9FCU8C\bgates[1].exe
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\MysticHLE\Local Settings\Temporary Internet Files\Content.IE5\HRAJTRX9\wind32[1].exe
Spyware:Cookie/Malwarewipe Not disinfected C:\Documents and Settings\MysticHLE\Cookies\mystichle@malwarewipe[1].txt
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\MysticHLE\Application Data\F?nts\?hkntfs.exe
Spyware:Spyware/Virtumonde Not disinfected C:\VundoFix Backups\tuvstro.dll
Potentially unwanted tool:Application/Restart Not disinfected F:\Install\Tools\Restart.exe

This is my HiJackThis log.
-----------------------
Logfile of HijackThis v1.99.1
Scan saved at 10:32:06 AM, on 7/14/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ishost.exe
C:\WINDOWS\system32\isnotify.exe
C:\WINDOWS\system32\Tablet.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\ismon.exe
C:\WINDOWS\system32\issearch.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\DOCUME~1\MYSTIC~1\APPLIC~1\FNTS~1\HKNTFS~1.EXE
C:\Documents and Settings\MysticHLE\Local Settings\Application Data\3e0652b7.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\Wtablet\TabUserW.exe
C:\Program Files\Zone Labs\ZoneAlarm\MailFrontier\mantispm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\MYSTIC~1\LOCALS~1\Temp\Rar$EX00.406\HijackThis.exe

R3 - URLSearchHook: (no name) - {61EE15C0-AF07-AEA0-069A-874A46DFF59E} - C:\WINDOWS\system32\svticxhb.dll
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {61EE15C0-AF07-AEA0-069A-874A46DFF59E} - C:\WINDOWS\system32\svticxhb.dll
O2 - BHO: (no name) - {873eb32d-ae1a-4183-89bd-45a77f761be4} - C:\WINDOWS\system32\ixt2.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - (no file)
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [DeadAIM] rundll32.exe "C:\PROGRA~1\AIM\\DeadAIM.ocm",ExportedCheckODLs
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [Srto] "C:\PROGRA~1\YMANTE~1\logonui.exe" -vt yazr
O4 - HKCU\..\Run: [Azxyua] C:\DOCUME~1\MYSTIC~1\APPLIC~1\FNTS~1\HKNTFS~1.EXE
O4 - HKCU\..\Run: [3e0652b7.exe] C:\Documents and Settings\MysticHLE\Local Settings\Application Data\3e0652b7.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: TabUserW.exe.lnk = C:\WINDOWS\system32\Wtablet\TabUserW.exe
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/YazzleActiveX.cab?refid=1123
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\wowexec.dll
O20 - Winlogon Notify: winkmu32 - C:\WINDOWS\SYSTEM32\winkmu32.dll
O21 - SSODL: cinnamomum - {93ac7c30-3878-4eaa-9420-7977285df5b1} - C:\WINDOWS\system32\pmnqguh.dll (file missing)
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe

Hello and sorry for the wait.
If you are still in need of assistance please go here and post a link back to this topic to flag a helper.

If you have waited four days for advice post here. (http://forums.spybot.info/showthread.php?p=4836#post4836)

This topic is closed.

If you need it re-opened please send me a pm and provide a link to the thread.
Applies only to the original topic starter.