Reloading from my windows XP CD

Try this:

http://www.michaelstevenstech.com/XPrepairinstall.htm

Scroll down to "XP Repair install"

Good luck!


Randy

Boot to the WinXP disc, and choose the first option to repair Windows when it prompts.

combining leetutor and willcomp worked to get me past the windows login and onto my desktop. Now, I don't have any internet connection. I have tried repairing the connection, searching for a connection, etc... without any luck. Any suggestions?

Well, I think that really ought to be another question, since your original question is answered.  However, one suggestion that comes to mind from willcomp's comment above is that you should do a thorough check for viruses, spyware, and other malware.   Some free online virus scanners:

http://housecall.antivirus.com 

http://www.pcpitstop.com/antivirus/default.asp 

http://www.pandasoftware.com/activescan/com/activescan_principal.htm 

Also try these free programs to rid your system of spyware, trojans, and other malware:

http://download.com.com/3000-2144-10194058.html?tag=lst-0-1
Spybot - Search & Destroy

http://download.com.com/3000-2094-10045910.html?legacy=cnet
LavaSoft Ad-aware  

I use BOTH of the above programs on my 3 Windows systems; what one program misses, the other catches.  Also make sure to download the most up-to-date data before you run the programs.

Another very good freeware program for ridding yourself of spyware is this:

http://www.superantispyware.com/
SuperAntiSpyware

If critter is same one I've seen lately, you can bypass all the ones Lee Tutor listed above. They probably won't remove the infection. It's possible that SuperAntiSpyware may help if it has been updated in the last few days.

The best bet is ComboFix. Read instructions thoroughly and disable AV software. I recommend using msconfig to disable all non MS services and all startup items prior to using ComboFix.
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

After using ComboFix, scan with SuperAntiSpyware or Malware Bytes Anti-Malware.

Here is the log report from ComboFix. This is all related. When the virus/malware first appeared it disabled my internet connection. And from there it went downhill
log.txt

I don't see anything left of concern, but I'm not one of our spyware removal super experts (rpggamergirl and IndiGenus). You may want to ask a question and post the ComboFix log and a Hijack This log in the Anti Spyware TA.

Appears you had SuperAntiSpyware, MBAM, and Spyware Doctor installed. All are good programs -- they just won't clean what you had.

If you still don't have internet access, run WinsockFix: http://www.tacktech.com/display.cfm?ttid=257

Willcomp, what sort of malware is ComboFix good for that cannot be removed by SuperAntiSpyware or MBAM?  I have had occasion to use both of those on someone else's computer, but not ComboFix yet...  

I have Windows Vista, and keep User Account Control ON, and I think that is a large part of my NEVER having had any malware problem on this pc in the over two years I've had it...  On the other hand, despite my very careful surfing of the internet, I was ALWAYS getting attacked by malware when I had Windows XP, on an average having to run the antispyware programs I mentioned above about every few weeks.

A lot of what I know has been gathered from EE and the expertise of rpggamergirl and IndiGenus. sUBs, the individual(s) responsible for ComboFix is/are the best in the business and keeps up with new malware. ComboFix primarily targets the latest and/or difficult to remove malware and is a scanner/remover only.

I clean several heavily infected systems each week and have had occasion to use nearly every decent adware/spyware removal tool since the beginning --- starting with SpyBot Search and Destroy. The best today may not be the best in the future.

Experience has shown that ComboFix will remove malware that SuperAntiSpyware and MBAM will not -- usually the most malicious and difficult to remove -- and that's why I recommend it so highly. You still need to scan with one of the other two to remove the remaining critters that ComboFix leaves behind.

I still mostly run XP and have had minimal problems. The current install is over 4 years old, there are no files in the minidump folder (meaning no BSODs), and have had only a few malware programs crop up which I usually knew were coming because of the sites visited-- it's sometimes necessary to use disreputable sites. I do use FireFox instead of IE. AVG Free, Comodo firewall, NAT router, and common sense are all that are used otherwise.

All right, thanks.  That bleepingcomputer site on ComboFix program seems like it would be a bit intimidating for the average user, from their initial warning given...

Well, I've tried all of the above and still no internet connection. I have even added a wireless USB and that doesn't work either. I can see all the devices when I check network connections. However, when I try to Repair all I get back is a message about not being able to connect to the internet. I have run IPCONFIG and get no response back when I do a renew. I can't ping anything either. I know my modem//router (new) is working because other machines are connecting properly.

Post a Hijack This log so we can look at Host settings.

Lee, one of the strongest features I like about CF is the <30 days report, for files generated. Thats usually the first sign of how bad you are infected, and with what..... Plus the automatic deletions dont hurt.....

IMHO, SuperAntiSpyware will catch most everything that I have seen, with best removal if you customize the settings (uncheck the top 4 in prefs?), and scan in Safe Mode..... I would recommend that as a next step after the hjt logfile.....

The biggest thing I dont like in the logfile is the following.....

2009-03-03 15:35 . 2004-08-03 19:56      24,576      --a------      c:\windows\system32\userinit.exe

That file was created 2 days ago..... I would right click it, and select the properties, and then look at the details tab to check for the presence of a Microsoft Signature..... If no Signature, then it prolly is not the legit one, and should be replaced....

Of course that might be from the process above......

To restore network connectivity, try the following.....

U:ninstall the Network Adapters from the Device Manager. Dont reboot if prompted....

start>run>cmd

netsh int ip reset reset.log
netsh firewall reset
netsh winsock reset

Then reboot..... And disable the SP2 Firewall.....

Retest. If no network connection,,  try Safe Mode with Networking.....

Here is the Hijack This log. Any thoughts?
hijackthis.log

I posted your log at this site and clicked on the Analyze button at the bottom of the page (you can do so too to see the results):

http://www.hijackthis.de/index.php?langselect=english

It found one entry that says "This entry should be fixed by HijackThis! ", but otherwise there apparently weren't any problems.  The entry:

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s


In case you would like to learn more yourself how to use HijackThis, here are a couple of urls:

http://www.whatthetech.com/hijackthis/
HijackThis Quick Start

http://www.castlecops.com/HijackThis.html
HijackThis log tutorial

Well, that Castle Cops link doesn't seem to work any more.  Try this instead:

http://www.pchell.com/support/hijackthistutorial.shtml

The biggest problem I see is that there are at least 3 AV programs and SpySweeper all loading and presumably running. Never have more than one AV program or more than one resident anti-spyware program installed and running.

As for userinit.exe being recent -- that's expected since it was recently replaced. Some folks just jump in without reading the whole thread :) I've been guilty a time or two myself.

Error above --- Spyware Doctor not SpySweeper --- comment still applies.

Glad to be of help, but I wonder why you didn't split the points?

A points split between LeeTutor and myself would be appropriate. I intended to provide instructions but FAQ and Help have changed. Here's the general help: https://www.experts-exchange.com/help.jsp?hi=407

If you wish to reopen question and accept more than one answer (split points), LeeTutor can assist. Just leave a comment requesting that question be re-opened.

@LeeTutor -- you posted while I was looking for instructions. We obviously agree.

Didn't know I could split points (or that it mattered).

From the E-E Help page:

Points

This section includes information about points. You earn points when one of your comments is chosen as the correct answer to the question. More information about earning points and getting certificates and ranks can be found in this section of the help pages. If you have additional questions please Contact Us.


How do the points work?
There are two kinds of points: Question points that are the ones you offer for your question, and Expert points, that the Expert receives when you close your question.

When you close your question, the points you offered are multiplied by a factor dependent on the grade; an A uses a factor of 4, a B uses a factor of 3, and a C uses a factor of 2. So if your question is worth 300 points, and you give a B grade, the Expert will receive 900 points.

Those points are added to his overall total, and are also added to his total for each of the zones you ask your question in.



So as experts, both willcomp and I are in this effort (for which we are not paid financially) not only for the purpose of helping others, but for collecting those "expert points", which are really just for prestige purposes, I suppose. When you split points (as explained in willcomp's link), then you acknowledge each expert that cooperated in the effort to solve your problem.

Since I am a "Page Editor" at this site, I have the power to reopen any answered question so as to let the questioner change its disposition. So, if you understand our concerns, and agree with them, let me know and I can reopen the question so that you can split the points in any way you desire...

I am more than happy to see it your way. Therefore, please go ahead and reopen the question.  What I didn't understand is that the "sysem" posted a rating of 8.2. Let me tell you, it was worth a 10.

Thanks again.

willcomp and leetutor were a great help with a complicated problem. I appreciate their sticking with it until all the issues were resolved. I have already recommended this site to others. Thanks.

>> What I didn't understand is that the "sysem" posted a rating of 8.2. Let me tell you, it was worth a 10. <<
I have been monitoring and wanted to respond to this.  A question when it is closed will most likely never be able to get a 10.  The rank is meant to provide a way to show how useful a PAQ is to all the members.  When closed, even if the asker gives it the highest grade and ranks possible, the rank will not be "perfect."  As other members find the question, view it and especially provide feedback using the "Was this helpful" link/button the rank will be raised.  This way it can be more accurate and really reflect how the thread helped the members of the site.
As an asker you assign the grade letter and post the grading comment as the main way to show how you appreciate the help of the experts and rate their comments.  Whether you see the 5, an 8.2 or a 10 the A grade is the same and the points the expert gets are the same.
Just thought this might help.  Let me know if there is a question.
bol

Thanks, b0lsc0tt.  That's useful info to know...

I had asked Leetutor to reopen the question so that I could reassign points to both him and willcomp. However, I have been very busy (out of the office) all week and unable to do so. Now you have closed the question. If you can, please split the points between the two. They were of great help.

Thanks.

Points were split evenly -- all is well.