I got a call from a friend running XP _Pro who advised that her computer suddenly was running slow and full of popups and misdirected IE URLs. I literally found hundreds of malcoded spyware and assorted nasties, and was able to remove most before I tried a demo TDS3 on her XP. TDS3 found 4 more and I was able to delete 3, but TDS3 could not delete \system32\lspak.dll which TDS3 ID'd as Adware.VirtuMonde. (and there may be some other still hidden exploit in there?). symtoms include two running but in background IE processes, which are very hard to kill, and same with 1 MSN_messenger background process. TDS3 could not delete lspak.dll, and neither could I manually. Lavasoft Adaware would find 1 misdirected IE hijack in registry which it would "fix" only to find it reappear. something is running reinstalling these nasties. somewhat curious to me that TDS3 can and will ID this lspak.dll as trojan but that it cannot kill or delete it. anyone know how to permanently remove this nasty. also my friend claims that NAV 2004 with current defs was running at the time, and a NAV scan will also find this nasty but it also cannot repair, fix or delete it.