Hi again UKBiker, OK, all done...correctly i hope. The only complication I have noticed is that my pc is now running very slowly. Anyways, here's the logs. Many thanks.
Logfile of HijackThis v1.99.1
Scan saved at 20:42:28, on 12/06/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\Java\jre1.5.0_01\bin\jusched.exe
C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\HJT\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.co.uk/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: Class - {FF539AEB-0A7D-AC37-9E12-A0854F3ADCBC} - C:\WINDOWS\system32\netix32.dll (file missing)
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_01\bin\jusched.exe
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ipgw.exe] C:\WINDOWS\system32\ipgw.exe
O4 - HKLM\..\Run: [atlbv32.exe] C:\WINDOWS\system32\atlbv32.exe
O4 - Global Startup: Ulead Photo Express 4.0 SE Calendar Checker .lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: ChatSpace Full Java Client 3.1.0.248 -
http://chat-a1.wanad...va/cfs31248.cabO16 - DPF: ChatSpace Full Java Client 4.0.0.320 -
http://69.31.7.116/Java/cfs40320.cabO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://www.bitdefend...can8/oscan8.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://v5.windowsupd...b?1103159494169O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -
http://a840.g.akamai...all/xscan53.cabO16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zon...nt.cab31267.cabO16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -
http://messenger.msn...pDownloader.cabO16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) -
http://chat.msn.com/bin/msnchat45.cabO23 - Service: Remote Procedure Call (RPC) Helper ( 11Fßä#·ºÄÖ`I) - Unknown owner - C:\WINDOWS\system32\iecz32.exe (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
AboutBuster 5.0 reference file 30
Scan started on [12/06/2005] at [19:46:16]
------------------------------------------------
Removed Stream! C:\WINDOWS\ACROGRAF.INI:yyixie
Removed Stream! C:\WINDOWS\ACROREAD.INI:qruiom
Removed Stream! C:\WINDOWS\antpl.txt:iknnqp
Removed Stream! C:\WINDOWS\antpl.txt:jztdco
Removed Stream! C:\WINDOWS\axvwo.dat:bamiez
Removed Stream! C:\WINDOWS\bheck.txt:tlqgmj
Removed Stream! C:\WINDOWS\BICYCLE.INI:pokwow
Removed Stream! C:\WINDOWS\Big8Sol(3).ini:scpcmv
Removed Stream! C:\WINDOWS\Big8Sol.ini:abvjyd
Removed Stream! C:\WINDOWS\biqbd.txt:swrwqx
Removed Stream! C:\WINDOWS\Blue Lace 16.bmp:scnpaf
Removed Stream! C:\WINDOWS\bootstat.dat:ddbmii
Removed Stream! C:\WINDOWS\cgkio.log:kdyuvq
Removed Stream! C:\WINDOWS\chipset.log:ddrzxa
Removed Stream! C:\WINDOWS\Coffee Bean.bmp:puvgh
Removed Stream! C:\WINDOWS\djkue.dat:hcmul
Removed Stream! C:\WINDOWS\DogsOWar.INI:caqixn
Removed Stream! C:\WINDOWS\EA.INI:leawct
Removed Stream! C:\WINDOWS\EP.INI:eetjev
Removed Stream! C:\WINDOWS\eReg.dat:gclgok
Removed Stream! C:\WINDOWS\ES.INI:wfdozg
Removed Stream! C:\WINDOWS\essol.txt:rabqcl
Removed Stream! C:\WINDOWS\exfpr.dat:tfzkiu
Removed Stream! C:\WINDOWS\exjny.dat:ovharz
Removed Stream! C:\WINDOWS\EZLANG.INI:hgwttq
Removed Stream! C:\WINDOWS\FaxSetup.log:jstvfv
Removed Stream! C:\WINDOWS\FeatherTexture.bmp:aqlzq
Removed Stream! C:\WINDOWS\FS(2).INI:trves
Removed Stream! C:\WINDOWS\FS(3).INI:trves
Removed Stream! C:\WINDOWS\FUNCRD.INI:yiylhb
Removed Stream! C:\WINDOWS\Gemstorm(2).ini:lkorn
Removed Stream! C:\WINDOWS\Gemstorm(3).ini:lkorn
Removed Stream! C:\WINDOWS\Gemstorm.ini:umgfyq
Removed Stream! C:\WINDOWS\Greenstone.bmp:jkbwdo
Removed Stream! C:\WINDOWS\grfir.log:elgxp
Removed Stream! C:\WINDOWS\hfhrb.log:ffrxvl
Removed Stream! C:\WINDOWS\ibxgg.log:sxleub
Removed Stream! C:\WINDOWS\ikdfg.log:gzxxrg
Removed Stream! C:\WINDOWS\imsins.log:lyejwl
Removed Stream! C:\WINDOWS\IMSI_EZN.INI:dropqw
Removed Stream! C:\WINDOWS\IMSI_EZN.INI:wnbmjg
Removed Stream! C:\WINDOWS\iycwn.txt:vrhuty
Removed Stream! C:\WINDOWS\jautoexp.dat:ontrdr
Removed Stream! C:\WINDOWS\jrxmz.log:hoexft
Removed Stream! C:\WINDOWS\KB834707-IE6-20040929.115007.log:xeqwtp
Removed Stream! C:\WINDOWS\KB840987.log:hfiboa
Removed Stream! C:\WINDOWS\KB842773.log:agboqk
Removed Stream! C:\WINDOWS\KB890175.log:yyvyqp
Removed Stream! C:\WINDOWS\knrdu.dat:imwzlh
Removed Stream! C:\WINDOWS\kssah.log:sklmud
Removed Stream! C:\WINDOWS\kvjun.txt:izodsr
Removed Stream! C:\WINDOWS\lampron.ini:bnpfns
Removed Stream! C:\WINDOWS\llfix.dat:dfufut
Removed Stream! C:\WINDOWS\lnsvq.dat:bahqmc
Removed Stream! C:\WINDOWS\MAGICWRD.INI:vymkow
Removed Stream! C:\WINDOWS\mmric.txt:tbrwpm
Removed Stream! C:\WINDOWS\MSCHOMP(2).INI:qyhsap
Removed Stream! C:\WINDOWS\MSCHOMP(5).INI:aqrxuz
Removed Stream! C:\WINDOWS\MSCHOMP(5).INI:thlcog
Removed Stream! C:\WINDOWS\MSCHOMP.INI:wiqusm
Removed Stream! C:\WINDOWS\MSDraw(2).ini:didirj
Removed Stream! C:\WINDOWS\MSDraw(3).ini:jpouw
Removed Stream! C:\WINDOWS\MSDraw(4).ini:jpouw
Removed Stream! C:\WINDOWS\MSDraw(4).ini:oiihmx
Removed Stream! C:\WINDOWS\MSDraw(4).ini:oqpowx
Removed Stream! C:\WINDOWS\MSDraw(5).ini:jpouw
Removed Stream! C:\WINDOWS\MSDraw(5).ini:wjwnlt
Removed Stream! C:\WINDOWS\msgsocm.log:ezxsm
Removed Stream! C:\WINDOWS\msgsocm.log:hjbmoh
Removed Stream! C:\WINDOWS\msnavpklog.txt:sdoagj
Removed Stream! C:\WINDOWS\msnsetuplog.txt:cqyhq
Removed Stream! C:\WINDOWS\msnsetuplog.txt:okgand
Removed Stream! C:\WINDOWS\NimSim.ini:cdgfat
Removed Stream! C:\WINDOWS\ocgen.log:frksm
Removed Stream! C:\WINDOWS\ocmsn.log:udbxds
Removed Stream! C:\WINDOWS\opmtq.txt:eemdfc
Removed Stream! C:\WINDOWS\Patolli.INI:untiof
Removed Stream! C:\WINDOWS\POGO(2).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(2).INI:wfeize
Removed Stream! C:\WINDOWS\POGO(3).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(5).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(5).INI:pyxvup
Removed Stream! C:\WINDOWS\POGO(6).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(6).INI:tlcpd
Removed Stream! C:\WINDOWS\POGO(6).INI:xpxbka
Removed Stream! C:\WINDOWS\POGO(8).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(9).INI:kjklx
Removed Stream! C:\WINDOWS\POGO(9).INI:qppgnc
Removed Stream! C:\WINDOWS\PROBACK.INI:iqilhm
Removed Stream! C:\WINDOWS\PYROWARE.ini:ptgdtw
Removed Stream! C:\WINDOWS\Q308387.log:hmrqwg
Removed Stream! C:\WINDOWS\Q312368.log:znkvqi
Removed Stream! C:\WINDOWS\Q315000.log:uajyiq
Removed Stream! C:\WINDOWS\Q315403Uninst.log:cobbz
Removed Stream! C:\WINDOWS\Q316134.log:fwaaw
Removed Stream! C:\WINDOWS\Q316134.log:matdca
Removed Stream! C:\WINDOWS\Q316134Uninst.log:lhliif
Removed Stream! C:\WINDOWS\Q329115.log:ebmied
Removed Stream! C:\WINDOWS\Q329115.log:eieoch
Removed Stream! C:\WINDOWS\Q329441.log:hblhkw
Removed Stream! C:\WINDOWS\Q810577.log:krksmg
Removed Stream! C:\WINDOWS\Q810833.log:hbhgyc
Removed Stream! C:\WINDOWS\Q817606.log:csdfor
Removed Stream! C:\WINDOWS\qgeip.dat:dcsgxz
Removed Stream! C:\WINDOWS\QTW.INI:wymtkk
Removed Stream! C:\WINDOWS\regopt.log:vtwlit
Removed Stream! C:\WINDOWS\River Sumida.bmp:ftgqkd
Removed Stream! C:\WINDOWS\setupapi.log:dfomqu
Removed Stream! C:\WINDOWS\setuperr.log:jeaowb
Removed Stream! C:\WINDOWS\setuperr.log:xxriq
Removed Stream! C:\WINDOWS\setuperr.log:zmwgj
Removed Stream! C:\WINDOWS\setuplog.txt:oghrsw
Removed Stream! C:\WINDOWS\simpleplanB_800.bmp:azuam
Removed Stream! C:\WINDOWS\smscfg.ini:ghaxmh
Removed Stream! C:\WINDOWS\spuninst.log:npkpbd
Removed Stream! C:\WINDOWS\spuninst.log:yakkpr
Removed Stream! C:\WINDOWS\ssonu.txt:fqcudf
Removed Stream! C:\WINDOWS\Sti_Trace.log:goyvxz
Removed Stream! C:\WINDOWS\switchagreement.txt:yrnaxq
Removed Stream! C:\WINDOWS\TANTRIX.INI:rqjfut
Removed Stream! C:\WINDOWS\Tasho(2).INI:kimwzv
Removed Stream! C:\WINDOWS\Tasho(3).INI:nzxqgg
Removed Stream! C:\WINDOWS\tb96.ini:cixbtf
Removed Stream! C:\WINDOWS\tb96.ini:jiutww
Removed Stream! C:\WINDOWS\toeuf.dat:cjnyqg
Removed Stream! C:\WINDOWS\tsoc.log:pzzlu
Removed Stream! C:\WINDOWS\tsoc.log:vjqpvi
Removed Stream! C:\WINDOWS\ujxwz.txt:jgcxiz
Removed Stream! C:\WINDOWS\vb(2)(2).ini:stvjs
Removed Stream! C:\WINDOWS\vb(2)(2).ini:zwecv
Removed Stream! C:\WINDOWS\vb(2).ini:zwecv
Removed Stream! C:\WINDOWS\vb(3).ini:zwecv
Removed Stream! C:\WINDOWS\vb(4)(2).ini:dzjgnz
Removed Stream! C:\WINDOWS\vb(4).ini:dzjgnz
Removed Stream! C:\WINDOWS\vb(4).ini:ejinvw
Removed Stream! C:\WINDOWS\vb(5)(2).ini:lunom
Removed Stream! C:\WINDOWS\vb(5)(2).ini:zwecv
Removed Stream! C:\WINDOWS\vb(5).ini:zwecv
Removed Stream! C:\WINDOWS\vb.ini:pkbtpz
Removed Stream! C:\WINDOWS\vbaddin.ini:vabthc
Removed Stream! C:\WINDOWS\Viewer.ini:hltyjj
Removed Stream! C:\WINDOWS\vminst.log:oauybm
Removed Stream! C:\WINDOWS\WATCH.INI:zymgkz
Removed Stream! C:\WINDOWS\WBLOCKER.INI:zledmt
Removed Stream! C:\WINDOWS\Wgid.ini:szflek
Removed Stream! C:\WINDOWS\wiaservc.log:rnwiam
Removed Stream! C:\WINDOWS\win.ini:bctlim
Removed Stream! C:\WINDOWS\WIN16EX_.Z@2:bvxcqd
Removed Stream! C:\WINDOWS\WIN16EX_.Z@5:jopwcp
Removed Stream! C:\WINDOWS\WIN31EX_.Z@4:tdmrdp
Removed Stream! C:\WINDOWS\Windows Update.log:bpzbxz
Removed Stream! C:\WINDOWS\WindowsUpdate.log:mdewfz
Removed Stream! C:\WINDOWS\WINHELP.BMK:mxamnp
Removed Stream! C:\WINDOWS\winnt.bmp:eepbzk
Removed Stream! C:\WINDOWS\winnt256.bmp:fytsha
Removed Stream! C:\WINDOWS\WORDPAD(2).INI:iesvnz
Removed Stream! C:\WINDOWS\WSQUARE.INI:afdahk
Removed Stream! C:\WINDOWS\XCGC.INI:tgvnbu
Removed Stream! C:\WINDOWS\yncqo.dat:lyotdx
Removed Stream! C:\WINDOWS\yvfmi.txt:mpncrf
Removed Stream! C:\WINDOWS\~GLC0001.TMP:balogk
------------------------------------------------
Removed File! : C:\Windows\aaspy.dat
Removed File! : C:\Windows\dmsgd.dat
Removed File! : C:\Windows\evzel.dat
Removed File! : C:\Windows\exfpr.dat
Removed File! : C:\Windows\exjny.dat
Removed File! : C:\Windows\fmbwm.dat
Removed File! : C:\Windows\fqgmm.dat
Removed File! : C:\Windows\fywsl.dat
Removed File! : C:\Windows\hpmch.dat
Removed File! : C:\Windows\kfbzs.dat
Removed File! : C:\Windows\llfix.dat
Removed File! : C:\Windows\ngwxf.dat
Removed File! : C:\Windows\niuyt.dat
Removed File! : C:\Windows\onagn.dat
Removed File! : C:\Windows\syswk32.exe
Removed File! : C:\Windows\uxdtq.dat
Removed File! : C:\Windows\wymtk.dat
Removed File! : C:\Windows\xrzro.dat
Removed File! : C:\Windows\ywylh.dat
Removed File! : C:\Windows\zddsv.dat
Removed File! : C:\Windows\zeaxr.dat
Removed File! : C:\Windows\System32\atltj.exe
Removed File! : C:\Windows\System32\cooct.dat
Removed File! : C:\Windows\System32\d3vd32.exe
Removed File! : C:\Windows\System32\esedh.dat
Removed File! : C:\Windows\System32\gesoj.dat
Removed File! : C:\Windows\System32\hqezs.dat
Removed File! : C:\Windows\System32\iekw.exe
Removed File! : C:\Windows\System32\ipfi32.exe
Removed File! : C:\Windows\System32\kfdin.dat
Removed File! : C:\Windows\System32\ntgz32.exe
Removed File! : C:\Windows\System32\ntmn.exe
Removed File! : C:\Windows\System32\seruy.dat
Removed File! : C:\Windows\System32\ulxlq.dat
Removed File! : C:\Windows\System32\uytsl.dat
Removed File! : C:\Windows\System32\vnlmx.dat
Removed File! : C:\Windows\System32\vrmxn.dat
------------------------------------------------
Scan was COMPLETED SUCCESSFULLY at 19:47:09