Sorry.got you confused with another thread I was working on....yest you do have SP2.
Please start by putting HJT in SAFE MODE. During reboot, tap the F8 key. Select Safe Mode and then run "Hijack This"
To show hidden files instructions (WinXP)
Doubleclick My Computer | Tools | Folder Options | View tab
Select Show Hidden Files and Folders
Uncheck Hide extensions for known file types
Uncheck Hide protected operating system files (Recommended)
Select Apply to All Folders | Yes | Apply | OK
Open Windows Explorer and delete the following highlighted file/s
C:\WINDOWS\
n_prisyk.dat
C:\WINDOWS\
n_yxmdli.txt
C:\WINDOWS\
iuqsz.txt
============================
While in safe mode run Ewido.
Update to the latest definition files.On the left of the main screen
click Update.Then click on
Start Update.Let it complete the updates.
Now Click on
Scanner and Click on
Complete System Scan and the scan will start.
During some scans it may find cases of false positives so you will need to step through the process of cleaning files one-by-one.
If a file is detected you
KNOW to be legitimate, select
None as the action.
Do NOT select 'Perform action on all infections'
If you are unsure of any entry found play safe and select
None as the action.
Press the button marked
Save Report
Save the report .txt file to your desktop or somewhere you can find it.Post it back with your next HJT log.
========================