heres the hijack this
Logfile of HijackThis v1.99.1
Scan saved at 5:42:11 PM, on 6/23/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Icfhapc\Atcd.exe
C:\WINDOWS\seeve.exe
C:\Program Files\Daily Weather Forecast\weather.exe
C:\WINDOWS\System32\umkunu.exe
C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe
C:\WINDOWS\System32\rundll32.exe
C:\program files\180searchassistant\salm.exe
C:\WINDOWS\System32\Vzabdz.exe
C:\WINDOWS\gwhkhj.exe
C:\WINDOWS\System32\msxct.exe
C:\Program Files\Eyeball\Eyeball Chat\EyeballChat.exe
C:\WINDOWS\System32\F?nts\wuauboot.exe
c:\windows\system32\kllvvm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ISTsvc\istsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\BullsEye Network\bin\bargains.exe
C:\Documents and Settings\Ryan\Desktop\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\Ryan\LOCALS~1\Temp\se.dll/sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\Ryan\LOCALS~1\Temp\se.dll/sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\Nail.exe
O1 - Hosts: putStreamTee,{44e8b2c8-1ecb-4a63-8b23-3e3500c34f32},0,-1,1
O1 - Hosts: 235,nsIXmlRpcClientListener,{27e60cd8-6d63-4d87-b7d1-82c09e0c7363},0,-1,1
O1 - Hosts: 236,nsIFontEnumerator,{a6cf9114-15b3-11d2-932e-00805f8add32},0,-1,1
O1 - Hosts: 237,nsIBidiKeyboard,{bb961ae1-7432-11d4-b77a-00104b4119f8},0,-1,1
O1 - Hosts: 238,nsIAppShellService,{e5e5af70-8a38-11d2-9938-0080c7cb1080},0,-1,1
O1 - Hosts: 239,nsISafeOutputStream,{5f914307-5c34-4e1f-8e32-ec749d25b27a},0,-1,1
O1 - Hosts: 240,nsIDOMDOMConfiguration,{cfb5b821-9016-4a79-9d98-87b57c3ea0c7},0,-1,1
O1 - Hosts: 241,nsIAboutModule,{692303c0-2f83-11d3-8cd0-0060b0fc14a3},0,-1,1
O1 - Hosts: 242,nsIFormatConverter,{948a0023-e3a7-11d2-96cf-0060b0fb9956},0,-1,1
O1 - Hosts: 243,nsIChannel,{c63a055a-a676-4e71-bf3c-6cfa11082018},0,-1,1
O1 - Hosts: 244,nsIShellService,{7d8a7a34-f492-43c0-9657-ec7dbbeba236},0,-1,1
O1 - Hosts: 245,nsIDOMParser,{4f45513e-55e5-411c-a844-e899057026c1},0,-1,1
O1 - Hosts: 246,nsIDOMCRMFObject,{16da46c0-208d-11d4-8a7c-006008c844c3},0,-1,1
O1 - Hosts: 247,nsIXPCNativeCallContext,{0fa68a60-8289-11d3-bb1a-00805f8a5dd7},0,-1,0
O1 - Hosts: 248,nsIExternalProtocolHandler,{0e61f3b2-34d7-4c79-bfdc-4860bc7341b7},0,-1,1
O1 - Hosts: 249,nsICertificateDialogs,{a03ca940-09be-11d5-ac5d-000064657374},0,-1,1
O1 - Hosts: 250,nsIFilePicker,{80faf095-c807-4558-a2cc-185ed70754ea},0,-1,1
O1 - Hosts: 251,nsIPropertyElement,{283ee646-1aef-11d4-98b3-00c04fa0ce9a},0,-1,1
O1 - Hosts: 252,nsIStandardURL,{8793370a-311f-11d4-9876-00c04fa0cf4a},0,-1,1
O1 - Hosts: 253,nsIAccessibleEvent,{87f29033-c4a6-40a3-ac7a-3ba391f9992d},0,-1,1
O1 - Hosts: 254,nsIDOMWindowInternal,{f914492c-0138-4123-a634-6ef8e3f126f8},0,-1,1
O1 - Hosts: 255,nsIDOMDOMImplementation,{a6cf9074-15b3-11d2-932e-00805f8add32},0,-1,1
O1 - Hosts: 256,nsISOAPTransport,{99ec6695-535f-11d4-9a58-000064657374},0,-1,1
O1 - Hosts: 257,nsIWindowMediator,{0659cb81-faad-11d2-8e19-b206620a657c},0,-1,1
O1 - Hosts: 258,nsIDocumentLoaderFactory,{df15f850-5d98-11d4-9f4d-0010a4053fd0},0,-1,1
O1 - Hosts: 259,nsIStreamListenerTee,{fb683e76-d42b-41a4-8ae6-65a6c2b146e5},0,-1,1
O1 - Hosts: 260,nsIDOMNSCSS2Properties,{d9651867-7414-41a7-9b4b-af852dc11fcc},0,-1,1
O1 - Hosts: 261,nsINSSCertCache,{6c143dac-bd65-4333-b594-7ed1e748e0f9},0,-1,1
O1 - Hosts: 262,nsISyncStreamListener,{7e1aa658-6e3f-4521-9946-9685a169f764},0,-1,1
O1 - Hosts: 263,nsIDOMLSParserFilter,{10e8893d-ddf5-45d1-8872-615d72065fb4},0,-1,1
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: SABHO - {21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} - c:\program files\180searchassistant\salmhook.dll
O2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O2 - BHO: (no name) - {BF9A0710-12F0-4236-909B-460AFDE2B187} - C:\WINDOWS\System32\eloc.dll
O2 - BHO: ADP UrlCatcher Class - {F4E04583-354E-4076-BE7D-ED6A80FD66DA} - C:\WINDOWS\System32\msbe.dll
O3 - Toolbar: ISTbar - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - C:\Program Files\ISTbar\istbarcm.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AdTools Service] C:\Program Files\AdTools Service\AdTools.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [version] C:\WINDOWS\System32\Cguyvv.exe
O4 - HKLM\..\Run: [ASDPLUGIN] C:\WINDOWS\System32\canada.exe -N
O4 - HKLM\..\Run: [Gbmtxxf] C:\Program Files\Icfhapc\Atcd.exe
O4 - HKLM\..\Run: [seeve] C:\WINDOWS\seeve.exe
O4 - HKLM\..\Run: [checkrun] C:\windows\system32\eliteehz32.exe
O4 - HKLM\..\Run: [HELPER] C:\WINDOWS\System32\temp532.exe -N
O4 - HKLM\..\Run: [Daily Weather Forecast] C:\Program Files\Daily Weather Forecast\weather.exe
O4 - HKLM\..\Run: [KavSvc] C:\WINDOWS\System32\umkunu.exe reg_run
O4 - HKLM\..\Run: [IPPDetect] IPP4Detect.exe
O4 - HKLM\..\Run: [Smart Start UP] C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe /Automation
O4 - HKLM\..\Run: [sp] rundll32 C:\DOCUME~1\Ryan\LOCALS~1\Temp\se.dll,DllInstall
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
O4 - HKLM\..\Run: [salm] c:\program files\180searchassistant\salm.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [bcz] C:\WINDOWS\bcz.exe
O4 - HKLM\..\Run: [PSGuard] C:\Program Files\PSGuard\PSGuard.exe
O4 - HKLM\..\Run: [secure] C:\WINDOWS\System32\Vzabdz.exe
O4 - HKLM\..\Run: [JGFRK] C:\WINDOWS\gwhkhj.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [msxct] msxct.exe
O4 - HKLM\..\Run: [bezjzyo] c:\windows\system32\kllvvm.exe r
O4 - HKLM\..\RunServices: [Microsoft Update] viwfzlt.exe
O4 - HKCU\..\Run: [Eyeball Chat] "C:\Program Files\Eyeball\Eyeball Chat\EyeballChat.exe" -min
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [Tayijijk] C:\WINDOWS\System32\F?nts\wuauboot.exe
O4 - HKCU\..\Run: [Dsds] C:\Program Files\etah\spac.exe
O4 - HKCU\..\Run: [Windows installer] C:\winstall.exe
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll
O9 - Extra button: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dll
O9 - Extra 'Tools' menuitem: Yahoo! Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Rogers Yahoo! Sidebar - {51085E3D-A958-42A2-A6BE-A6A9B0BAF276} - C:\Program Files\Yahoo!\browser\ysidebarIE.dll
O9 - Extra 'Tools' menuitem: Rogers &Yahoo! Sidebar - {51085E3D-A958-42A2-A6BE-A6A9B0BAF276} - C:\Program Files\Yahoo!\browser\ysidebarIE.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
O10 - Unknown file in Winsock LSP: c:\windows\system32\dolsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\dolsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\dolsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\dolsp.dll
O15 - Trusted Zone: *.media-motor.net
O15 - Trusted Zone: *.popuppers.com
O15 - Trusted Zone: http://ny.contentmatch.net (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) - http://www.180search...com/180saax.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.co...aploader_v6.cab
O18 - Filter: text/html - {4405A5A7-16FC-463E-B240-FEE7DCCDA6C9} - C:\WINDOWS\System32\eloc.dll
O18 - Filter: text/plain - {4405A5A7-16FC-463E-B240-FEE7DCCDA6C9} - C:\WINDOWS\System32\eloc.dll
O20 - Winlogon Notify: RunServices - C:\WINDOWS\system32\t2r8lc9u1f.dll (file missing)
O21 - SSODL: mtklef - {EF1BB2BD-2958-4E5B-FEB9-4DEDED331A77} - C:\WINDOWS\System32\ppdqo32.dll
O21 - SSODL: mtklefap - {D312BFA5-F816-4A13-15B4-419645AE5B92} - C:\WINDOWS\System32\rxcv32.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: System Startup Service (SvcProc) - Unknown owner - C:\WINDOWS\svcproc.exe
O23 - Service: YPCService - Yahoo! Inc. - C:\WINDOWS\system32\YPCSER~1.EXE