Can someone please help?!
Here is my log:
Logfile of HijackThis v1.99.1
Scan saved at 11:22:29 PM, on 3/18/2005
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v5.51 SP2 (5.51.4807.2300)
Running processes:
C:\Program Files\Personal Communications\PCS_AGNT.EXE
C:\WINNT\Explorer.Exe
C:\WINNT\winll.exe
C:\Program Files\NavNT\vptray.exe
C:\Program Files\FileNET\IDM\fnsysmgr.exe
C:\WINNT\system32\carpserv.exe
C:\Program Files\6in1 Driver\shwicon.exe
C:\Program Files\Tivoli\lcf\bin\w32-ix86\mrt\lcfep.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINNT\system32\spool\DRIVERS\W32X86\3\LMPDPSRV.EXE
C:\WINNT\system32\winnn.exe
C:\Program Files\Lexmark X125\LEX125SU.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
C:\Documents and Settings\uswrte42\Local Settings\Temporary Internet Files\Content.IE5\NERVIBFX\HijackThis[1].exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINNT\ntngy.dll/sp.html#28129
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINNT\ntngy.dll/sp.html#28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINNT\ntngy.dll/sp.html#28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINNT\ntngy.dll/sp.html#28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINNT\ntngy.dll/sp.html#28129
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINNT\ntngy.dll/sp.html#28129
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = EGhost_Reg_Fail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: Shell=C:\WINNT\Explorer.Exe,
O2 - BHO: (no name) - {BFCC5487-4B10-FC8D-DEFC-18A15DD56877} - C:\WINNT\system32\iemx32.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [0FileNET System Manager] C:\Program Files\FileNET\IDM\fnsysmgr.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINNT\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe
O4 - HKLM\..\Run: [0FileNET IDM Upgrade] C:\Program Files\FileNET\IDM\fnupgrade.exe
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [ShowIcon_AboCom Systems, Inc._6in1 Card Reader's Driver v1.15e005] "C:\Program Files\6in1 Driver\shwicon.exe" -t"AboCom Systems, Inc.\6in1 Card Reader's Driver v1.15e005"
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [lcfep] "C:\Program Files\Tivoli\lcf\bin\w32-ix86\mrt\lcfep.exe"
O4 - HKLM\..\Run: [FNLocalDB] cmd /c del "C:\Program Files\FileNet\IDM\LocalDB\fnlocaldb.fnldb"
O4 - HKLM\..\Run: [3rdparty] "C:\WINNT\system32\cmd.exe" /c copy "C:\WINNT\system32\3rdparty.ini" "C:\Program Files\Xactware\Xactimate\XCentral\3rdparty.ini"
O4 - HKLM\..\Run: [FIG_ExtAssignment] regedit.exe /s "C:\WINNT\system32\Xact_2002_CRN.reg"
O4 - HKLM\..\Run: [CacheFix] regedit.exe /s "C:\WINNT\maxcache.reg"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [LMPDPSRV] C:\WINNT\system32\spool\DRIVERS\W32X86\3\LMPDPSRV.EXE
O4 - HKLM\..\Run: [CRN4.30.04] C:\Program Files\CRN\Setup\crn_4.30.04_production.exe /s
O4 - HKLM\..\Run: [atlab32.exe] C:\WINNT\system32\atlab32.exe
O4 - HKLM\..\Run: [crad32.exe] C:\WINNT\system32\crad32.exe
O4 - HKLM\..\Run: [nethb.exe] C:\WINNT\system32\nethb.exe
O4 - HKLM\..\Run: [winnn.exe] C:\WINNT\system32\winnn.exe
O4 - Global Startup: Lexmark X125 Settings Utility.lnk = C:\Program Files\Lexmark X125\LEX125SU.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....467&clcid=0x409
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akama...meInstaller.exe
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = farmersinsurance.com
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = farmersinsurance.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = farmersinsurance.com
O20 - Winlogon Notify: igfxcui - C:\WINNT\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: NavLogon - C:\WINNT\System32\NavLogon.dll
O23 - Service: Asset Insight Client (AICLIENT) - Tangram® Enterprise Solutions, Inc - C:\INSIGHT\TOOLS\Aiclient.EXE
O23 - Service: Local Client Administrator (APS) - Unknown owner - C:\WINNT\System32\APSSRV.EXE
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINNT\System32\Ati2evxx.exe
O23 - Service: BlackICE - Internet Security Systems, Inc. - C:\Program Files\Network ICE\BlackICE\blackd.exe
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: ErrorSocketService - Farmers Insurance Group - C:\Program Files\CRN\Common\Bin\Errorsockservice.exe
O23 - Service: Contivity VPN Service (ExtranetAccess) - Nortel Networks NA, Inc. - C:\Program Files\Nortel Networks\Extranet_serv.exe
O23 - Service: Tivoli Endpoint (lcfd) - Unknown owner - C:\Program Files\Tivoli\lcf\bin\w32-ix86\mrt\LCFD.EXE
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: OracleOraHome81ClientCache - Unknown owner - C:\Oracle\Ora81\BIN\ONRSD.EXE
O23 - Service: Tardis time service (Tardis) - Unknown owner - C:\WINNT\System32\tardisnt.exe
O23 - Service: TrcBoot - Unknown owner - C:\WINNT\System32\drivers\trcboot.exe
O23 - Service: VitalAgent - Lucent Technologies, VitalSoft division - C:\PROGRA~1\INS\VitalAgent\Program\VtlAgent.exe
O23 - Service: VNC Server (winvnc) - Tridia Corporation - C:\Program Files\ORL\VNC\WinVNC.exe