FD,sorry I took so long getting back to you, but I was busy running and rerunning my three anti-virus programs – McAfee’s Security Suite, MalwareBytes 30 day Trial Program, and Panda Cloud AntiVirus to see what they would do. The Answer NADA.Finally because of its excellent reviews*** I decided to give the latest version of SuperAntiSpyware a whirl, with the following great results. SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 08/04/2011 at 11:41 AM Application Version : 5.0.1108 Core Rules Database Version : 7508 Trace Rules Database Version: 5320 Scan type : Quick Scan Total Scan Time : 00:56:51 Operating System Information Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600) Administrator Memory items scanned : 769 Memory threats detected : 0 Registry items scanned : 33138 Registry threats detected : 16 File items scanned : 8838 File threats detected : 79 Needless to say No More Aggravating IP- Block 184.108.40.206 (Type: outgoing) pop-up messages. However, in the course of trying to find a solution I came across the following on the bleepingcomputer forum. 08/03/2011 - Security researcher Xylitol recently wrote an article about a new malware that performs some tricks to make you think your computer is running normally, when it is in fact infected with a variety of malware. Typically when a brand new computer infection is released, your antivirus program is hard-pressed to update its malware database fast enough to protect you from it. Even if the malware is installed before your antivirus can detect it, the hopes are that once the malware is added to the security software's virus database, it will then be detected and removed. What is a malware to do then to protect itself from this tactic? Most malware will terminate known antivirus programs and other security programs when they are started. This, though, can quickly become suspicious when various programs you try to run are immediately terminated. This new malware offers a sneakier solution; simply uninstall the antivirus software installed on the computer and then run a malware that pretends to be it This is exactly what Xylitol found when researching a new Trojan that has been labeled Trojan.FakeAV.LVT See http://www.bleepingcomputer.com/forums/topic412702.html/page__p__2357986__hl__superantispyware__fromsearch__1#entry2357986 for rest of comment about this new really sneaky piece of s__t malware Gramps33 *** http://www.ghacks.net/2011/08/04/superantisypware-pro-5-review-giveaway/ http://www.thejakartapost.com/news/2011/08/01/my-pc-slow-now-what.html http://www.marketwatch.com/story/supportcom-announces-superantispywarer-5-major-update-of-popular-malware-and-spyware-detection-removal-and-protection-software-2011-08-02?reflink=MW_news_stmp http://www.betanews.com/article/SUPERAntiSpyware-5-Big-changes-in-a-small-package/1312381872 PS: What is a "packet log", and how would I get one to you?