pdundas

Sorry for the delay in responding. I was stuck up a mountain. No, really :-)

And thanks for the help. I've got back to the PC, installed the recovery console, and run combofix. The combofix log is below. I'll add HijackThis next.
------------------------------------------
ComboFix 08-06-11.7 - Smith 2008-06-16 20:44:39.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.74 [GMT 1:00]
Running from: C:\Documents and Settings\Smith\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\All Users\Desktop\AXPDefender.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender\Advanced XP Defender.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender\How to register.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender\License Agreement.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender\Register.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Advanced XP Defender\Uninstall.lnk
C:\Documents and Settings\Smith\Application Data\Microsoft\Internet Explorer\Quick Launch\AXPDefender.lnk
C:\Program Files\AXPDefender
C:\Program Files\AXPDefender\AXPDefender.exe.local
C:\Program Files\AXPDefender\AXPDefenderSkin.dll
C:\Program Files\AXPDefender\database.dat
C:\Program Files\AXPDefender\license.txt
C:\Program Files\AXPDefender\MFC71.dll
C:\Program Files\AXPDefender\MFC71ENU.DLL
C:\Program Files\AXPDefender\msvcp71.dll
C:\Program Files\AXPDefender\msvcr71.dll
C:\Program Files\AXPDefender\Uninstall.exe
C:\WINDOWS\Fonts\CALIBRIB.TTF
C:\WINDOWS\system32\3.tmp

.
((((((((((((((((((((((((( Files Created from 2008-05-16 to 2008-06-16 )))))))))))))))))))))))))))))))
.

2008-06-09 20:59 . 2008-06-09 21:07 <DIR> d-------- C:\ZonedOut
2008-06-09 20:09 . 2008-06-09 20:09 <DIR> d-------- C:\Program Files\Trend Micro
2008-06-07 18:09 . 2008-06-07 18:09 <DIR> d-------- C:\Deckard
2008-06-07 17:58 . 2008-06-07 17:58 <DIR> d-------- C:\Program Files\Panda Security
2008-06-07 17:49 . 2008-06-07 17:49 <DIR> d-------- C:\Program Files\SpywareBlaster
2008-06-07 17:49 . 2008-06-07 22:35 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-06-07 17:49 . 2005-04-15 19:58 1,071,088 --a------ C:\WINDOWS\system32\MSCOMCTL.OCX
2008-06-07 17:49 . 2005-08-25 18:18 118,784 --a------ C:\WINDOWS\system32\MSSTDFMT.DLL
2008-06-07 17:49 . 2005-08-25 18:19 115,920 --a------ C:\WINDOWS\system32\MSINET.OCX
2008-06-05 22:02 . 2008-06-05 22:04 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-06-05 21:59 . 2008-06-05 21:59 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-06-05 14:07 . 2008-06-05 14:07 <DIR> d-------- C:\AthomePC
2008-06-05 14:07 . 2008-06-05 14:18 97 --a------ C:\WINDOWS\AtHomePC.Ini
2008-05-30 10:27 . 2008-06-14 14:20 <DIR> d--h----- C:\$AVG8.VAULT$
2008-05-30 10:26 . 2008-06-06 10:06 160,256 --a------ C:\WINDOWS\system32\blackster.scr
2008-05-27 16:00 . 2008-06-16 20:20 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg
2008-05-27 16:00 . 2008-06-07 17:58 <DIR> d-------- C:\Documents and Settings\Smith\Application Data\AVGTOOLBAR
2008-05-27 16:00 . 2008-05-27 16:00 96,520 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys
2008-05-27 16:00 . 2008-05-27 16:00 75,272 --a------ C:\WINDOWS\system32\drivers\avgtdix.sys
2008-05-27 16:00 . 2008-05-27 16:00 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll
2008-05-27 15:59 . 2008-05-27 15:59 <DIR> d-------- C:\Program Files\AVG
2008-05-27 15:59 . 2008-05-27 15:59 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg8
2008-05-16 11:58 . 2008-05-16 11:58 12,632 --a------ C:\WINDOWS\system32\lsdelete.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-05 21:04 --------- d-----w C:\Program Files\Lavasoft
2008-06-05 21:04 --------- d-----w C:\Documents and Settings\Smith\Application Data\Lavasoft
2008-05-03 10:18 --------- d-----w C:\Program Files\MSECache
2008-04-29 10:20 15,648 ----a-w C:\WINDOWS\system32\drivers\NSDriver.sys
2008-04-29 10:19 15,648 ----a-w C:\WINDOWS\system32\drivers\Awrtrd.sys
2008-04-29 10:19 12,960 ----a-w C:\WINDOWS\system32\drivers\Awrtpd.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe" [2003-04-29 11:40 524288]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 13:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-22 09:50 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-01-04 17:55 98304]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 12:50 155648]
"InCD"="C:\Program Files\Ahead\InCD\InCD.exe" [2004-03-24 11:41 1294446]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-08-13 09:44 1838592]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-03-22 19:50 185896]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-05-27 15:59 1177368]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
CorrectConnect.lnk - C:\Program Files\CConnect\CConnect.exe [2006-01-11 15:27:31 114814]
EPSON Status Monitor 3 Environment Check 2.lnk - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE [2007-11-14 14:57:49 121856]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL,avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgemc.exe"=

R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-05-27 16:00]
R2 avg8wd;AVG8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-05-27 15:59]
R2 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-05-27 16:00]
R3 ham50;Intel HaM Data Fax Voice;C:\WINDOWS\system32\DRIVERS\ham50.sys [2000-09-05 07:48]
S1 as6eio;as6eio;C:\WINDOWS\system32\drivers\as6eio.sys []
S2 avg8emc;AVG8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-05-27 15:59]
S3 MR97310_VGA_DUAL_CAMERA;XDC-300;C:\WINDOWS\system32\DRIVERS\mr97310v.sys [2003-04-17 17:26]
S3 NtApm;NT Apm/Legacy Interface Driver;C:\WINDOWS\system32\DRIVERS\NtApm.sys [2001-08-17 14:47]
S3 Wdm1;USB Bridge Cable Driver;C:\WINDOWS\system32\Drivers\usbbc.sys [2000-05-29 20:54]

*Newly Created Service* - CATCHME
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-16 20:58:00
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-06-16 21:03:11
ComboFix-quarantined-files.txt 2008-06-16 20:03:03

Pre-Run: 10,545,348,608 bytes free
Post-Run: 11,239,268,352 bytes free

121 --- E O F --- 2008-05-28 09:02:53