ComboFix 08-11-13.01 -  2008-11-16  0:16:22.3 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.3.1251.1.1049.18.2586 [GMT 3:00]
Running from: c:\documents and settings\\ \ComboFix.exe
Command switches used :: -u

[COLOR=RED][B]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/B][/COLOR]
.

(((((((((((((((((((((((((   Files Created from 2008-10-15 to 2008-11-15  )))))))))))))))))))))))))))))))
.

2008-11-15 22:47 . 2008-11-15 22:57	<DIR>	d--------	C:\SDFix
2008-11-15 20:07 . 2008-11-15 20:07	<DIR>	d--------	c:\windows\ERUNT
2008-11-15 17:41 . 2008-11-15 17:41	<DIR>	d--------	c:\program files\Malwarebytes' Anti-Malware
2008-11-15 17:41 . 2008-11-15 17:41	<DIR>	d--------	c:\documents and settings\All Users\Application Data\Malwarebytes
2008-11-15 17:41 . 2008-11-15 17:41	<DIR>	d--------	c:\documents and settings\\Application Data\Malwarebytes
2008-11-15 17:41 . 2008-10-22 16:10	38,496	--a------	c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-15 17:41 . 2008-10-22 16:10	15,504	--a------	c:\windows\system32\drivers\mbam.sys
2008-11-14 21:06 . 2008-11-16 00:01	177,348	--a------	c:\windows\system32\nvapps.xml
2008-11-14 21:05 . 2008-11-14 21:18	<DIR>	d--------	c:\windows\nview
2008-11-14 21:05 . 2008-05-03 04:46	18,070	--a------	c:\windows\system32\nvdisp.nvu
2008-11-14 21:04 . 2008-05-03 04:46	6,554,496	--a------	c:\windows\system32\drivers\nv4_mini.sys
2008-11-14 21:04 . 2008-05-03 04:46	6,554,496	--a--c---	c:\windows\system32\dllcache\nv4_mini.sys
2008-11-14 21:04 . 2008-05-03 04:46	6,108,160	--a------	c:\windows\system32\nv4_disp.dll
2008-11-14 21:04 . 2008-05-03 04:46	6,108,160	--a--c---	c:\windows\system32\dllcache\nv4_disp.dll
2008-11-14 20:50 . 2008-05-03 04:46	442,368	--a------	c:\windows\system32\nvuhda.exe
2008-11-14 20:50 . 2008-04-13 23:49	146,048	--a------	c:\windows\system32\drivers\portcls.sys
2008-11-14 20:50 . 2008-04-13 23:46	141,056	--a------	c:\windows\system32\drivers\ks.sys
2008-11-14 20:50 . 2008-04-14 20:41	129,536	--a------	c:\windows\system32\ksproxy.ax
2008-11-14 20:50 . 2008-04-13 23:15	60,160	--a------	c:\windows\system32\drivers\drmk.sys
2008-11-14 20:50 . 2008-04-13 23:15	49,408	--a------	c:\windows\system32\drivers\stream.sys
2008-11-14 20:50 . 2008-05-03 04:46	40,960	--a------	c:\windows\system32\nvcohda.dll
2008-11-14 20:50 . 2008-05-03 04:46	38,176	--a------	c:\windows\system32\drivers\nvhda32.sys
2008-11-14 20:50 . 2008-04-15 00:41	23,552	--a------	c:\windows\system32\wdmaud.drv
2008-11-14 20:50 . 2008-04-15 00:40	4,096	--a------	c:\windows\system32\ksuser.dll
2008-11-14 20:50 . 2008-05-03 04:46	354	--a------	c:\windows\system32\nvhda.nvu
2008-11-14 19:46 . 2008-11-14 19:46	<DIR>	d--------	c:\documents and settings\\Application Data\Disney Interactive Studios
2008-11-14 18:18 . 2008-07-12 08:18	3,851,784	--a------	c:\windows\system32\D3DX9_39.dll
2008-11-14 18:18 . 2008-07-12 08:18	1,493,528	--a------	c:\windows\system32\D3DCompiler_39.dll
2008-11-14 18:18 . 2008-07-31 10:40	509,448	--a------	c:\windows\system32\XAudio2_2.dll
2008-11-14 18:18 . 2008-07-12 08:18	467,984	--a------	c:\windows\system32\d3dx10_39.dll
2008-11-14 18:18 . 2008-07-31 10:41	238,088	--a------	c:\windows\system32\xactengine3_2.dll
2008-11-14 18:18 . 2008-07-31 10:41	68,616	--a------	c:\windows\system32\XAPOFX1_1.dll
2008-11-14 18:15 . 2008-11-14 18:15	<DIR>	d--------	c:\documents and settings\\Application Data\InstallShield
2008-11-14 18:15 . 2008-11-14 18:40	872	--a------	c:\windows\disney.ini
2008-11-14 18:09 . 2008-11-14 21:29	<DIR>	d--------	C:\Gamez
2008-11-13 19:46 . 2008-11-13 19:46	<DIR>	d--------	c:\documents and settings\\DoctorWeb
2008-11-13 19:46 . 2008-11-13 19:46	<DIR>	d--------	c:\documents and settings\\DoctorWeb
2008-11-13 19:37 . 2008-11-13 19:37	<DIR>	d--------	c:\program files\Kaspersky Lab Tool
2008-11-13 19:37 . 2008-11-15 21:48	303,276,064	--ahs----	c:\windows\system32\drivers\fidbox.dat
2008-11-13 19:37 . 2008-11-15 21:48	3,556,136	--ahs----	c:\windows\system32\drivers\fidbox.idx
2008-11-12 21:28 . 2008-11-13 19:31	<DIR>	d--------	c:\documents and settings\All Users\Application Data\Lavasoft
2008-11-12 13:46 . 2008-11-12 13:46	<DIR>	d--------	c:\documents and settings\All Users\Application Data\ESET
2008-11-09 08:24 . 2008-11-09 08:24	<DIR>	d--------	c:\documents and settings\\Application Data\R-Wipe&Clean
2008-11-08 18:38 . 2008-11-13 14:44	<DIR>	d--------	c:\documents and settings\\Application Data\VMware
2008-11-08 18:30 . 2008-11-08 18:30	<DIR>	d--------	c:\program files\Rhymes
2008-11-08 18:13 . 2008-11-16 00:03	<DIR>	d--------	c:\documents and settings\LocalService\Application Data\VMware
2008-11-08 18:12 . 2008-11-16 00:03	<DIR>	d--------	c:\documents and settings\All Users\Application Data\VMware
2008-11-08 18:12 . 2005-11-18 14:08	385,024	--a------	c:\windows\system32\vnetlib.dll
2008-11-08 18:12 . 2005-11-18 14:08	135,168	--a------	c:\windows\system32\vmnat.exe
2008-11-08 18:12 . 2005-11-18 14:08	106,496	--a------	c:\windows\system32\vmnetdhcp.exe
2008-11-08 18:12 . 2005-11-18 14:08	15,616	--a------	c:\windows\system32\drivers\vmnetuserif.sys
2008-11-08 18:12 . 2005-11-18 14:08	10,240	-ra------	c:\windows\system32\drivers\vmnet.sys
2008-11-08 18:12 . 2005-11-18 14:08	9,600	-ra------	c:\windows\system32\drivers\vmnetadapter.sys
2008-11-08 18:12 . 2005-11-18 14:08	5,120	-ra------	c:\windows\system32\vnetinst.dll
2008-11-08 18:10 . 2008-11-09 08:46	<DIR>	d--------	c:\program files\Creative
2008-11-08 18:10 . 2008-11-08 18:35	<DIR>	d--------	c:\documents and settings\All Users\Application Data\Creative
2008-11-08 18:10 . 2006-10-06 14:17	53,248	---------	c:\windows\Ctregrun.exe
2008-11-08 18:07 . 2008-11-08 18:07	<DIR>	d--------	c:\program files\VMware
2008-11-08 18:07 . 2008-11-08 18:07	<DIR>	d--------	c:\program files\Common Files\VMware
2008-11-08 17:52 . 2008-11-08 17:52	<DIR>	d--------	c:\program files\VSO Image Resizer
2008-11-08 17:52 . 2008-11-08 17:53	<DIR>	d--------	c:\documents and settings\\Application Data\Vso
2008-11-08 13:43 . 2008-11-14 07:36	<DIR>	d--------	c:\documents and settings\\Application Data\R-Wipe&Clean
2008-11-08 13:43 . 2008-11-08 13:43	36	--a------	c:\windows\hdd.ini
2008-11-07 20:19 . 2008-11-07 20:19	2,208	--a------	c:\windows\system32\drivers\nxsIO32.sys
2008-11-07 20:13 . 2008-11-10 06:51	<DIR>	d--------	c:\documents and settings\\Application Data\KomaMail
2008-11-07 20:07 . 2008-11-07 20:08	<DIR>	d-a------	c:\documents and settings\All Users\Application Data\TEMP
2008-11-07 19:51 . 2008-11-15 22:42	<DIR>	d--------	c:\program files\Blaze Media Pro
2008-11-07 19:51 . 2008-11-07 19:51	<DIR>	d--------	c:\documents and settings\All Users\Application Data\{4C2CB1B6-C45E-4307-ACEE-27BE65138599}
2008-11-07 19:48 . 2008-11-07 19:48	<DIR>	d--------	c:\documents and settings\\Application Data\Seven Zip
2008-11-07 12:09 . 2008-11-07 12:09	<DIR>	d--------	c:\documents and settings\\Application Data\ICQ Toolbar
2008-11-06 18:11 . 2008-11-06 18:11	<DIR>	d--------	c:\windows\system32\drivers\Avg
2008-11-06 18:11 . 2008-11-06 19:42	<DIR>	d--------	c:\documents and settings\All Users\Application Data\avg8
2008-11-06 18:11 . 2008-11-06 18:11	<DIR>	d--------	c:\documents and settings\\Application Data\AVGTOOLBAR
2008-11-01 09:30 . 2008-11-01 09:30	262,144	--a------	c:\windows\system32\default_user_class.dat
2008-10-28 13:44 . 2008-10-28 13:44	<DIR>	d--------	c:\program files\GLOBEtrotter Software Inc
2008-10-28 13:43 . 2008-10-28 13:43	<DIR>	d--------	c:\program files\Common Files\Alias Shared
2008-10-28 13:43 . 2008-10-28 13:50	<DIR>	d--------	c:\program files\Alias
2008-10-28 13:43 . 2008-10-28 13:43	<DIR>	d--------	c:\documents and settings\\WINDOWS
2008-10-28 13:43 . 2008-10-28 13:43	<DIR>	d--------	c:\documents and settings\\WINDOWS
2008-10-28 13:42 . 2008-10-28 13:53	<DIR>	d--------	C:\FLEXLM
2008-10-26 21:30 . 2008-10-26 21:30	22,328	--a------	c:\documents and settings\\Application Data\PnkBstrK.sys
2008-10-26 21:26 . 2008-11-15 21:51	<DIR>	d--------	c:\windows\system32\LogFiles
2008-10-26 21:26 . 2008-10-26 21:26	2,250,024	--a------	c:\windows\system32\pbsvc.exe
2008-10-26 21:26 . 2008-10-26 21:26	107,832	--a------	c:\windows\system32\PnkBstrB.exe
2008-10-26 21:26 . 2008-10-26 21:26	107,832	--a------	c:\documents and settings\\Application Data\PnkBstrB.exe
2008-10-26 21:26 . 2008-10-26 21:26	66,872	--a------	c:\windows\system32\PnkBstrA.exe
2008-10-25 19:10 . 2008-10-25 19:10	<DIR>	d--------	c:\program files\TryMedia
2008-10-25 15:00 . 2008-10-25 15:00	<DIR>	d--------	c:\documents and settings\\Application Data\Video DVD Maker FREE
2008-10-25 10:01 . 2008-10-25 10:52	<DIR>	d--------	c:\program files\Stamina
2008-10-24 20:09 . 2008-11-15 23:23	115,222	---h-----	C:\treeinfo.wc
2008-10-23 12:52 . 2008-10-23 12:52	<DIR>	d--------	c:\program files\Common Files\BioWare
2008-10-19 17:45 . 2008-10-19 18:01	139,264	--a------	c:\windows\War3Unin.exe
2008-10-19 17:45 . 2008-10-23 12:48	68,380	--a------	c:\windows\War3Unin.dat
2008-10-19 17:45 . 2008-10-19 18:01	2,829	--a------	c:\windows\War3Unin.pif
2008-10-18 20:04 . 2008-04-15 15:00	221,184	--a------	c:\windows\system32\wmpns.dll
2008-10-18 20:03 . 2008-10-04 17:03	<DIR>	d--h-----	c:\documents and settings\\
2008-10-18 20:03 . 2008-10-04 17:03	<DIR>	d--h-----	c:\documents and settings\\
2008-10-18 20:03 . 2008-10-04 20:56	<DIR>	d--------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-10-04 20:56	<DIR>	d--------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-11-09 08:42	<DIR>	dr-------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-11-09 08:42	<DIR>	dr-------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-10-04 20:56	<DIR>	dr-------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-10-04 20:56	<DIR>	dr-------	c:\documents and settings\\ 
2008-10-18 20:03 . 2008-10-18 20:04	<DIR>	dr-------	c:\documents and settings\\
2008-10-18 20:03 . 2008-10-18 20:04	<DIR>	dr-------	c:\documents and settings\\
2008-10-18 20:03 . 2008-11-06 18:11	<DIR>	d--------	c:\documents and settings\
2008-10-17 21:59 . 2008-11-13 19:16	<DIR>	d--------	C:\
2008-10-17 21:49 . 2008-11-06 11:29	<DIR>	d--------	C:\
2008-10-17 21:30 . 2008-10-17 21:30	<DIR>	d--------	C:\PHP5
2008-10-17 21:28 . 2008-10-17 21:28	<DIR>	d--------	c:\documents and settings\\Application Data\CDBurnerXP_Soft
2008-10-17 20:20 . 2008-10-17 20:20	<DIR>	d--------	c:\program files\OpenAL
2008-10-17 20:19 . 2008-10-17 20:19	<DIR>	d--------	c:\windows\system32\xlive
2008-10-17 11:41 . 2008-10-17 21:41	7,058	--a------	c:\windows\system32\ealregsnapshot1.reg

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-14 17:34	---------	d-----w	c:\program files\AIMP2
2008-11-14 15:33	---------	d--h--w	c:\program files\InstallShield Installation Information
2008-11-13 16:31	---------	d-----w	c:\program files\Common Files\Wise Installation Wizard
2008-11-06 16:47	---------	d-----w	c:\program files\Opera
2008-11-06 16:42	---------	d-----w	c:\program files\Unlocker
2008-10-28 10:44	6,656	----a-w	c:\windows\system32\haspvdd.dll
2008-10-28 10:44	47,616	----a-w	c:\windows\system32\drivers\Haspnt.sys
2008-10-28 10:44	453,632	----a-w	c:\windows\system32\drivers\hardlock.sys
2008-10-26 20:34	413,696	----a-w	c:\windows\system32\wrap_oal.dll
2008-10-26 20:34	110,592	----a-w	c:\windows\system32\OpenAL32.dll
2008-10-25 07:52	---------	d-----w	c:\program files\Punto Switcher
2008-10-25 07:38	---------	d-----w	c:\program files\The KMPLayer!
2008-10-18 17:01	107,888	----a-w	c:\windows\system32\CmdLineExt.dll
2008-10-17 08:55	---------	d-----w	c:\documents and settings\\Application Data\Download Master
2008-10-12 07:35	---------	d-----w	c:\program files\XP Tweaker
2008-10-12 07:11	---------	d-----w	c:\program files\AGEIA Technologies
2008-10-09 08:38	---------	d-----w	c:\program files\ICQ6
2008-10-08 09:47	---------	d-----w	c:\program files\Total Commander Podarok Edition
2008-10-06 07:01	---------	d-----w	c:\program files\Synaptics
2008-10-06 07:01	---------	d-----w	c:\program files\Common Files\InstallShield
2008-10-06 06:56	---------	d-----w	c:\program files\Intel
2008-10-06 06:54	---------	d-----w	c:\program files\Marvell
2008-10-06 06:53	---------	d-----w	c:\program files\Winbond Electronics
2008-10-05 08:43	---------	d-----w	c:\documents and settings\\Application Data\Media Player Classic
2008-10-05 02:54	---------	d-----w	c:\program files\TrueLaunchBar
2008-10-05 02:53	---------	d-----w	c:\program files\AlfaClock Free Edition
2008-10-05 02:41	---------	d-----w	c:\documents and settings\\Application Data\uTorrent
2008-10-04 17:59	---------	d-----w	c:\documents and settings\\Application Data\ICQ
2008-10-04 17:50	---------	d-----w	c:\program files\DIFX
2008-10-04 17:39	---------	d-----w	c:\documents and settings\\Application Data\Talkback
2008-10-04 17:29	---------	d-----w	c:\documents and settings\All Users\Application Data\Microsoft Help
2008-10-04 17:28	---------	d-----w	c:\program files\Microsoft Works
2008-10-04 17:27	---------	d-----w	c:\program files\Microsoft.NET
2008-10-04 16:15	---------	d-----w	c:\documents and settings\\Application Data\Bioshock
2008-10-04 16:10	---------	d-----w	c:\program files\PROWiSe
2008-10-04 16:09	---------	d--h--r	c:\documents and settings\\Application Data\SecuROM
2008-10-04 15:57	---------	d-----w	c:\program files\IObit
2008-10-04 15:54	---------	d-----w	c:\program files\uTorrent
2008-10-04 15:51	---------	d-----w	c:\program files\ICQToolbar
2008-10-04 15:48	---------	d-----w	c:\documents and settings\All Users\Application Data\comodo
2008-10-04 15:47	249,592	----a-w	c:\windows\system32\cssdll32.dll
2008-10-04 15:46	143,104	----a-w	c:\windows\system32\guard32.dll
2008-10-04 15:46	---------	d-----w	c:\documents and settings\\Application Data\Comodo
2008-10-04 15:40	737,280	----a-w	c:\windows\iun6002.exe
2008-10-04 15:31	---------	d-----w	c:\program files\DAEMON Tools Toolbar
2008-10-04 15:31	---------	d-----w	c:\program files\DAEMON Tools Lite
2008-10-04 15:27	717,296	----a-w	c:\windows\system32\drivers\sptd.sys
2008-10-04 15:27	---------	d-----w	c:\documents and settings\\Application Data\DAEMON Tools
2008-10-04 15:23	---------	d-----w	c:\program files\CursorXP
2008-10-04 15:23	---------	d-----w	c:\program files\CCleaner
2008-10-04 15:05	319,488	----a-w	c:\windows\HideWin.exe
2008-10-04 15:05	---------	d-----w	c:\program files\Realtek
2008-10-04 14:27	---------	d-----w	c:\program files\STDU Viewer
2008-10-04 14:27	---------	d-----w	c:\program files\PC Wizard 2008
2008-10-04 14:26	---------	d-----w	c:\program files\K-Lite Codec Pack
2008-10-04 14:26	---------	d-----w	c:\program files\FSImgViewer
2008-10-04 14:26	---------	d-----w	c:\program files\CDBurnerXP
2008-10-04 14:26	---------	d-----w	c:\documents and settings\\Application Data\FastStone
2008-10-04 14:23	---------	d-----w	c:\program files\Total Commander
2008-10-04 14:23	---------	d-----w	c:\program files\NetSetMan
2008-10-04 14:22	---------	d-----w	c:\program files\MSBuild
2008-10-04 14:20	---------	d-----w	c:\program files\Reference Assemblies
2008-10-04 14:17	---------	d-----w	c:\program files\MSXML 6.0
2008-10-04 14:17	---------	d-----w	c:\program files\msi InstallSource .NET Framework 3.0
2008-10-04 14:16	---------	d-----w	c:\program files\Java
2008-10-04 14:16	---------	d-----w	c:\program files\Common Files\Java
2008-10-04 14:08	---------	d-----w	c:\program files\microsoft frontpage
2008-10-04 14:08	---------	d-----w	c:\program files\Common Files\Adobe
2008-10-04 14:03	---------	d-----w	c:\program files\Windows Media Connect 2
2008-09-16 18:27	453,152	----a-w	c:\windows\system32\NVUNINST.EXE
.

(((((((((((((((((((((((((((((   snapshot@2008-11-15_20.26.07.75   )))))))))))))))))))))))))))))))))))))))))
.
- 2008-11-15 17:07:58	2,883,584	----a-w	c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000001\NTUSER.DAT
+ 2008-11-15 19:51:05	2,883,584	----a-w	c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000001\NTUSER.DAT
- 2008-11-15 17:07:58	409,600	----a-w	c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000002\UsrClass.dat
+ 2008-11-15 19:51:06	409,600	----a-w	c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000002\UsrClass.dat
- 2008-11-15 17:20:33	71,668	----a-w	c:\windows\system32\perfc009.dat
+ 2008-11-15 21:08:04	71,668	----a-w	c:\windows\system32\perfc009.dat
- 2008-11-15 17:20:33	84,060	----a-w	c:\windows\system32\perfc019.dat
+ 2008-11-15 21:08:04	84,060	----a-w	c:\windows\system32\perfc019.dat
- 2008-11-15 17:20:33	439,378	----a-w	c:\windows\system32\perfh009.dat
+ 2008-11-15 21:08:04	439,378	----a-w	c:\windows\system32\perfh009.dat
- 2008-11-15 17:20:33	482,108	----a-w	c:\windows\system32\perfh019.dat
+ 2008-11-15 21:08:04	482,108	----a-w	c:\windows\system32\perfh019.dat
+ 2008-11-15 21:03:58	16,384	----atw	c:\windows\Temp\Perflib_Perfdata_318.dat
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlfaClock Classic"="c:\program files\AlfaClock Free Edition\AlfaClock.exe" [2005-07-13 405504]
"Punto Switcher"="c:\program files\Punto Switcher\ps.exe" [2007-11-14 201728]
"CursorXP"="c:\program files\CursorXP\CursorXP.exe" [2003-03-01 125440]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PLFSetI"="c:\windows\PLFSetI.exe" [2007-10-23 200704]
"TLBHost"="c:\program files\TrueLaunchBar\tlbHost.exe" [2006-06-02 110592]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-02-22 1032192]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-03 86016]
"RTHDCPL"="RTHDCPL.EXE" [2008-07-23 c:\windows\RTHDCPL.exe]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 c:\windows\system32\bthprops.cpl]
"nwiz"="nwiz.exe" [2008-05-03 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IE7_011"="shell32" [X]
"ZZZZ2_FirstLogonSetting"="advpack.dll" [2008-05-04 c:\windows\system32\advpack.dll]
"IE7_012"="advpack.dll" [2008-05-04 c:\windows\system32\advpack.dll]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
"NoThumbnailCache"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.X264"= x264vfw.dll
"VIDC.HFYU"= huffyuv.dll
"vidc.i263"= i263_32.drv
"SENTINEL"= snti386.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableNotifications"= 1 (0x1)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Games\\MassEfct\\Binaries\\MassEffect.exe"=
"d:\\Games\\FlatOut Ultimate Carnage\\Fouc.exe"=

R0 pe3amd6b;DiRT Environment Driver (pe3amd6b);c:\windows\system32\drivers\pe3amd6b.sys [2007-07-17 64616]
R0 pf2amd6b;DiRT File System Driver (pf2amd6b);c:\windows\system32\drivers\pf2amd6b.sys [2007-07-17 83560]
R0 ps6amd6b;DiRT Synchronization Driver (ps6amd6b);c:\windows\system32\drivers\ps6amd6b.sys [2007-07-17 68208]
R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
R2 nxsIO32;NextSensor Kernel I/O Driver;c:\windows\System32\DRIVERS\nxsIO32.sys [2008-11-07 2208]
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit;c:\windows\system32\DRIVERS\NETw5x32.sys [2008-06-26 3630080]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32.sys [2008-05-03 38176]
S2 pr2amd6b;DiRT Drivers Auto Removal (pr2amd6b);c:\windows\system32\pr2amd6b.exe svc [ ]
S3 Ext2Fsd;Linux ext2 File system driver;c:\windows\system32\drivers\Ext2Fsd.sys [2008-01-27 644240]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-04-01 81296]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);c:\windows\system32\DRIVERS\w300bus.sys [2005-12-28 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;c:\windows\system32\DRIVERS\w300mdfl.sys [2005-12-28 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;c:\windows\system32\DRIVERS\w300mdm.sys [2005-12-28 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\w300mgmt.sys [2005-12-28 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\w300obex.sys [2005-12-28 85696]
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - c:\documents and settings\\Application Data\Mozilla\Firefox\Profiles\dt7jl9l8.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - 
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-16 00:17:05
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ... 

scanning hidden autostart entries ...

scanning hidden files ... 

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-11-16  0:17:35
ComboFix-quarantined-files.txt  2008-11-15 21:17:29
ComboFix2.txt  2008-11-15 19:45:25

Pre-Run: 13843214336  
Post-Run: 13,830,942,720  

295
