thanks Quads step 2 is complete.

Step 3.

Please read carefully Read all of this message first

Download Combofix http://www.bleepingcomputer.com/download/anti-virus/combofix

• Ensure that Combofix is saved directly to the Desktop <--- Very important  (Not in the Download(s) or Temp folders)
  
  
• Disable all security programs as they will have a negative effect on Combofix, Disabled for say 1 hour or more.
• Close any open browsers and any other programs you might have running

Right click the combofix.exe on the desktop and select from the menu "Run as Administrator"

• If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?" Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
• When finished, it will produce a report for you. Please post the "C:\ComboFix.txt" for further review

****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.

*EXTRA NOTES*

• If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
• If Combofix reboot's due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
• If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

Quads

Step 3 is complete! combofix log is attached

Quads,

I just did a quick norton scan and the virus is gone!! was this the last step?

Thanks!!

No, there are 4 major steps, and I state when a user can go.  items are still around.  But now at least services.exe has been fixed.

Why do people think they are completely fixed,   just because Norton is not alerting anymore.

step 4. (a)

Please read carefully and Slowly

 Please scan with ESET next 

I'd like us to scan your machine with ESET OnlineScan

• Hold down Control and click on the following link to open ESET OnlineScan in a new window.
  ESET OnlineScan
• Click the  button.
• For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on  to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the  icon on your desktop.
• Check 
• Click the  button.
• Accept any security warnings from your browser.
• Under scan settings, check  and DON'T (NO) check Remove found threats (reason for this is we don't want something deleted and then Windows won't load).
• Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
• ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
• Attach the resulting log in your next reply

If you think a log should have been generated then go to C:\Program Files\ESET\ESET Online Scanner\log.txt to find it. 

Quads

oops I think I jumped the gun (got a little excited) I will execute step 4 this evening when I get home. Thanks for your patients.

The ESET scan is complete. The log which was created is very short I am wondering if I did something wrong  (attached log.txt) and I have also attached a copy of the virus it found (ESET.txt).

much thanks, I will await further instruction.

Ok before we do step 4 (b)

You can uninstall 

ESET Online Scanner

Then can you find this folder

C:\Qoobox\Quarantine\C\WINDOWS\system32    ( It's the Combofix quarantine)

Quads

I uninstalled ESET by checking the uninstall box upon closing it, and yes I can locate the folder in question.