What Malke said.

This is one of the Bad Guys:

> C:\Program Files\WinAce\WinAce.exe

<QP>
W32.HLLW.Yoof is a worm that spreads by using the KaZaA file-sharing
program. It tricks KaZaA users into downloading and executing the worm.
</QP>
http://securityresponse.symantec.com...hllw.yoof.html

P2P file sharing is not without its risks: Though you may not use KaZaA
yourself, any files you got from a KaZaA user may be infected with
W32.HLL.Yoof (AKA W32/Duload.worm [McAfee], W32/Duload-A [Sophos],
WORM_DULOAD.A [Trend]).
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE, Shell/User, Security), Aumha.org VSOP, DTS-L.org

seanpaul99 wrote:
> not sure if i am posting this in the correct place, have been advised to
> scan my system with "hijack this" and wait for a kind hearted expert to
> analyse and advise.
> Logfile of HijackThis v1.99.1
> Scan saved at 04:13:38, on 20/12/2005
> Platform: Windows XP SP2 (WinNT 5.01.2600)
> MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
<snip>