ComboFix 08-08-30.03 - Administrator 2008-09-01 13:54:49.1 - NTFSx86 NETWORK
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1044.18.1788 [GMT 2:00]
Running from: C:\Documents and Settings\Administrator\Skrivebord\ComboFix.exe

[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Administrator\Cookies\administrator@clicktorrent[2].txt
C:\Documents and Settings\Administrator\Programdata\macromedia\Flash Player\#SharedObjects\2WA6XPWU\bin.clearspring.com
C:\Documents and Settings\Administrator\Programdata\macromedia\Flash Player\#SharedObjects\2WA6XPWU\bin.clearspring.com\clearspring.sol
C:\Documents and Settings\Administrator\Programdata\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#bin.clearspring.com
C:\Documents and Settings\Administrator\Programdata\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#bin.clearspring.com\settings.sol

.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_TDSSserv


(((((((((((((((((((((((((   Files Created from 2008-08-01 to 2008-09-01  )))))))))))))))))))))))))))))))
.

2008-09-01 13:42 . 2008-09-01 13:42	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\Malwarebytes
2008-09-01 13:42 . 2008-09-01 13:42	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\Malwarebytes
2008-09-01 13:42 . 2008-08-17 15:01	38,472	--a------	C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-09-01 13:42 . 2008-08-17 15:01	17,144	--a------	C:\WINDOWS\system32\drivers\mbam.sys
2008-09-01 05:29 . 2008-08-31 11:10	102,400	--a------	C:\WINDOWS\rvoelbxt.exe
2008-09-01 02:52 . 2008-09-01 02:52	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\iWin
2008-09-01 02:51 . 2008-09-01 02:51	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\iWinArcade
2008-09-01 02:50 . 2008-09-01 02:50	<DIR>	d--------	C:\Programfiler\iWin.com
2008-09-01 02:48 . 2008-09-01 02:48	<DIR>	d--------	C:\Programfiler\iWin Games
2008-09-01 02:48 . 2008-09-01 02:48	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\iWin Games
2008-08-30 23:41 . 2008-08-30 23:41	<DIR>	d--------	C:\progz
2008-08-30 23:32 . 2008-08-30 23:39	<DIR>	d--------	C:\spill
2008-08-29 22:44 . 2008-09-01 01:18	136,888	--a------	C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-08-29 22:44 . 2008-09-01 01:17	111,928	--a------	C:\WINDOWS\system32\PnkBstrB.exe
2008-08-29 22:44 . 2008-08-29 22:44	66,872	--a------	C:\WINDOWS\system32\PnkBstrA.exe
2008-08-29 04:22 . 2008-08-29 04:22	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\Summer Athletics 2008
2008-08-29 04:21 . 2005-05-26 15:34	2,297,552	--a------	C:\WINDOWS\system32\d3dx9_26.dll
2008-08-27 22:56 . 2008-08-27 22:56	<DIR>	d--------	C:\Programfiler\QuickTime
2008-08-27 22:56 . 2008-08-27 22:56	<DIR>	d--------	C:\Programfiler\Apple Software Update
2008-08-27 22:56 . 2008-08-27 22:56	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\Apple
2008-08-27 22:54 . 2008-08-27 22:54	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\Apple Computer
2008-08-27 22:53 . 2008-08-27 22:53	54,156	--ah-----	C:\WINDOWS\QTFont.qfn
2008-08-27 22:53 . 2008-08-27 22:53	1,409	--a------	C:\WINDOWS\QTFont.for
2008-08-27 22:52 . 2008-08-27 22:52	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\InterVideo
2008-08-27 22:50 . 2008-08-27 22:50	<DIR>	d--------	C:\Programfiler\InterVideo Information Service
2008-08-27 22:50 . 2008-08-27 22:50	<DIR>	d--------	C:\Programfiler\Fellesfiler\Ulead
2008-08-27 22:50 . 2008-08-27 22:56	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\Apple Computer
2008-08-27 22:50 . 2006-05-11 18:41	654	---------	C:\WINDOWS\remove.iss
2008-08-27 22:49 . 2008-08-27 22:49	<DIR>	d--------	C:\Programfiler\InterVideo
2008-08-27 22:49 . 2008-08-27 22:49	<DIR>	d--------	C:\Programfiler\Fellesfiler\InterVideo
2008-08-27 22:49 . 2008-08-27 22:49	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\InstallShield
2008-08-27 22:12 . 2008-08-27 22:12	<DIR>	d--------	C:\Programfiler\Fellesfiler\CyberLink
2008-08-27 22:12 . 2008-08-27 22:12	<DIR>	d--------	C:\Programfiler\CyberLink
2008-08-27 22:12 . 2008-08-27 22:12	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\CyberLink
2008-08-27 22:12 . 2008-08-27 22:12	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\CyberLink
2008-08-27 22:11 . 2008-08-27 22:11	29,480	--a------	C:\WINDOWS\system32\msxml3a.dll
2008-08-26 14:18 . 2008-08-26 14:18	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\dvdcss
2008-08-25 17:31 . 2008-08-25 17:31	<DIR>	d--------	C:\Programfiler\MSXML 4.0
2008-08-25 13:17 . 2008-08-25 13:17	<DIR>	d--------	C:\Programfiler\Fellesfiler\DirectX
2008-08-25 13:12 . 2005-03-09 20:50	46,592	--a------	C:\WINDOWS\system32\libusb0.dll
2008-08-25 13:12 . 2005-03-09 20:50	33,792	--a------	C:\WINDOWS\system32\drivers\libusb0.sys
2008-08-25 13:06 . 2008-04-13 20:45	60,032	--a------	C:\WINDOWS\system32\drivers\USBAUDIO.sys
2008-08-25 13:06 . 2008-04-13 20:45	60,032	--a--c---	C:\WINDOWS\system32\dllcache\usbaudio.sys
2008-08-25 10:13 . 2008-09-01 02:36	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\TrackMania
2008-08-25 01:41 . 2008-08-25 01:41	<DIR>	d--------	C:\Programfiler\Fellesfiler\Nokia
2008-08-25 01:41 . 2008-08-25 01:41	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\Nokia
2008-08-25 01:18 . 2008-08-25 01:18	<DIR>	d--------	C:\Programfiler\SimBin
2008-08-25 01:17 . 2008-08-25 01:17	<DIR>	d--------	C:\WINDOWS\Logs
2008-08-25 01:12 . 2008-08-25 01:23	<DIR>	d--------	C:\WINDOWS\Downloaded Installations
2008-08-25 01:12 . 2008-08-25 11:54	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\PC Suite
2008-08-25 01:12 . 2008-08-25 01:12	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\Nokia
2008-08-25 00:13 . 2008-08-25 00:13	<DIR>	d--------	C:\Programfiler\Fellesfiler\PCSuite
2008-08-24 23:47 . 2008-08-24 23:47	<DIR>	d--------	C:\Programfiler\PC Connectivity Solution
2008-08-24 23:47 . 2008-08-25 01:12	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\PC Suite
2008-08-24 23:31 . 2008-08-25 01:41	<DIR>	d--------	C:\Programfiler\Nokia
2008-08-24 23:31 . 2007-02-22 10:15	137,216	--a------	C:\WINDOWS\system32\drivers\nmwcd.sys
2008-08-24 23:31 . 2007-02-22 10:15	65,536	--a------	C:\WINDOWS\system32\nmwcdcocls.dll
2008-08-24 23:31 . 2007-02-22 10:15	12,288	--a------	C:\WINDOWS\system32\drivers\nmwcdcm.sys
2008-08-24 23:31 . 2007-02-22 10:15	12,288	--a------	C:\WINDOWS\system32\drivers\nmwcdcj.sys
2008-08-24 23:31 . 2007-02-22 10:15	8,320	--a------	C:\WINDOWS\system32\drivers\nmwcdc.sys
2008-08-24 23:15 . 2008-04-13 20:45	26,112	--a------	C:\WINDOWS\system32\drivers\usbser.sys
2008-08-24 23:15 . 2008-04-13 20:45	26,112	--a--c---	C:\WINDOWS\system32\dllcache\usbser.sys
2008-08-24 23:07 . 2008-08-24 23:07	0	--ah-----	C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2008-08-24 22:24 . 2008-08-24 22:24	<DIR>	d--------	C:\Programfiler\VideoLAN
2008-08-24 22:24 . 2008-08-24 22:24	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\vlc
2008-08-24 21:23 . 2008-08-24 21:23	361,600	--a------	C:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-08-24 21:19 . 2008-08-24 21:19	<DIR>	d--------	C:\Programfiler\Alwil Software
2008-08-24 19:44 . 2008-08-24 19:44	268	--ah-----	C:\sqmdata02.sqm
2008-08-24 19:44 . 2008-08-24 19:44	244	--ah-----	C:\sqmnoopt02.sqm
2008-08-24 18:43 . 2008-08-24 18:44	<DIR>	d--------	C:\Programfiler\BitLord
2008-08-24 18:39 . 2008-08-24 18:39	268	--ah-----	C:\sqmdata01.sqm
2008-08-24 18:39 . 2008-08-24 18:39	244	--ah-----	C:\sqmnoopt01.sqm
2008-08-23 23:52 . 2008-08-23 23:52	268	--ah-----	C:\sqmdata00.sqm
2008-08-23 23:52 . 2008-08-23 23:52	244	--ah-----	C:\sqmnoopt00.sqm
2008-08-23 13:27 . 2008-08-23 13:27	<DIR>	d--------	C:\Programfiler\Zoo Digital Publishing
2008-08-23 13:26 . 2008-08-25 13:32	<DIR>	d--------	C:\Programfiler\DAEMON Tools Toolbar
2008-08-23 13:26 . 2008-08-24 18:37	<DIR>	d--------	C:\Programfiler\DAEMON Tools Lite
2008-08-23 13:17 . 2008-08-23 13:17	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\DAEMON Tools
2008-08-23 13:17 . 2008-08-23 13:17	717,296	--a------	C:\WINDOWS\system32\drivers\sptd.sys
2008-08-22 18:20 . 2008-08-24 20:22	<DIR>	d--------	C:\Programfiler\uTorrent
2008-08-22 18:20 . 2008-09-01 05:36	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\uTorrent
2008-08-22 11:20 . 2008-08-24 19:44	<DIR>	d--------	C:\Documents and Settings\Administrator\Contacts
2008-08-22 11:18 . 2008-08-22 11:19	<DIR>	d--------	C:\Programfiler\Windows Live
2008-08-22 11:18 . 2008-08-22 11:18	<DIR>	d--hsc---	C:\Programfiler\Fellesfiler\WindowsLiveInstaller
2008-08-22 11:18 . 2008-08-22 11:18	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\WLInstaller
2008-08-22 11:08 . 2008-08-22 11:08	<DIR>	d--------	C:\Programfiler\mIRC
2008-08-22 11:08 . 2008-08-23 13:17	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\mIRC
2008-08-22 10:50 . 2008-08-22 10:50	0	--a------	C:\WINDOWS\nsreg.dat
2008-08-22 10:43 . 2008-08-22 10:43	<DIR>	d--------	C:\Programfiler\Microsoft Silverlight
2008-08-22 10:43 . 2008-08-22 10:43	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\Windows Search
2008-08-22 10:42 . 2008-08-22 10:42	<DIR>	d--------	C:\WINDOWS\system32\GroupPolicy
2008-08-22 10:42 . 2008-08-22 10:42	<DIR>	d--------	C:\Programfiler\Windows Media Connect 2
2008-08-22 10:42 . 2008-08-22 10:43	<DIR>	d--------	C:\Programfiler\Windows Desktop Search
2008-08-22 10:42 . 2008-03-07 19:02	192,000	-----c---	C:\WINDOWS\system32\dllcache\offfilt.dll
2008-08-22 10:42 . 2008-03-07 19:02	98,304	-----c---	C:\WINDOWS\system32\dllcache\nlhtml.dll
2008-08-22 10:42 . 2008-03-07 19:02	29,696	-----c---	C:\WINDOWS\system32\dllcache\mimefilt.dll
2008-08-22 10:41 . 2008-08-29 22:44	<DIR>	d--------	C:\WINDOWS\system32\LogFiles
2008-08-22 10:41 . 2008-08-25 11:54	<DIR>	d--------	C:\WINDOWS\system32\drivers\UMDF
2008-08-22 10:41 . 2008-08-22 10:41	<DIR>	d--------	C:\Documents and Settings\Administrator\Programdata\.BitTornado
2008-08-22 10:40 . 2008-08-22 17:29	<DIR>	d--------	C:\Programfiler\BitTornado
2008-08-22 10:39 . 2008-08-22 10:39	<DIR>	d--------	C:\WINDOWS\system32\URTTemp
2008-08-22 10:39 . 2008-07-22 17:06	1,214,526	-----c---	C:\WINDOWS\system32\dllcache\sysmain.sdb
2008-08-22 10:39 . 2008-07-22 17:06	790,846	-----c---	C:\WINDOWS\system32\dllcache\apph_sp.sdb
2008-08-22 10:39 . 2008-07-22 17:06	9,696	-----c---	C:\WINDOWS\system32\dllcache\drvmain.sdb
2008-08-22 10:31 . 2008-08-22 10:31	0	--ah-----	C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-08-22 10:31 . 2008-08-22 10:31	0	--ah-----	C:\WINDOWS\system32\drivers\Msft_Kernel_xusb21_01005.Wdf
2008-08-22 05:14 . 2008-06-23 18:57	6,066,176	-----c---	C:\WINDOWS\system32\dllcache\ieframe.dll
2008-08-22 05:14 . 2007-04-17 11:32	2,455,488	-----c---	C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-08-22 05:14 . 2007-03-08 07:11	1,007,616	-----c---	C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-08-22 05:14 . 2008-06-23 18:57	459,264	-----c---	C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-08-22 05:14 . 2008-06-23 18:57	383,488	-----c---	C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-08-22 05:14 . 2008-06-23 18:57	267,776	-----c---	C:\WINDOWS\system32\dllcache\iertutil.dll
2008-08-22 05:14 . 2008-06-23 18:57	63,488	-----c---	C:\WINDOWS\system32\dllcache\icardie.dll
2008-08-22 05:14 . 2008-06-23 18:57	52,224	-----c---	C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-08-22 05:14 . 2008-06-23 11:20	13,824	-----c---	C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-08-22 04:56 . 2008-08-30 19:13	<DIR>	d--------	C:\Programfiler\ASUS
2008-08-22 04:55 . 2008-08-24 23:47	<DIR>	d----c---	C:\WINDOWS\system32\DRVSTORE
2008-08-22 04:55 . 2008-08-24 23:47	<DIR>	d--------	C:\Programfiler\DIFX
2008-08-22 04:55 . 2008-08-22 04:55	<DIR>	d--------	C:\Programfiler\Analog Devices
2008-08-22 04:52 . 2008-04-11 21:06	691,712	-----c---	C:\WINDOWS\system32\dllcache\inetcomm.dll
2008-08-22 04:52 . 2008-05-01 16:38	331,776	-----c---	C:\WINDOWS\system32\dllcache\msadce.dll
2008-08-22 04:52 . 2008-06-14 19:36	272,256	-----c---	C:\WINDOWS\system32\dllcache\bthport.sys
2008-08-22 04:52 . 2008-05-08 16:02	203,136	-----c---	C:\WINDOWS\system32\dllcache\rmcast.sys
2008-08-22 04:51 . 2008-08-24 22:05	<DIR>	d--------	C:\Programfiler\Fellesfiler\Panda Software
2008-08-22 04:45 . 2008-08-22 04:45	<DIR>	d--------	C:\WINDOWS\system32\no

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-30 17:13	---------	d--h--w	C:\Programfiler\InstallShield Installation Information
2008-08-27 20:49	---------	d-----w	C:\Programfiler\Fellesfiler\InstallShield
2008-08-24 19:23	361,600	----a-w	C:\WINDOWS\system32\drivers\TCPIP.SYS
2008-08-21 22:57	---------	d-----w	C:\Programfiler\Fellesfiler\Adobe
2008-08-21 22:53	---------	d-----w	C:\Programfiler\NVIDIA Corporation
2008-08-21 22:46	---------	d-----w	C:\Programfiler\microsoft frontpage
2008-08-21 22:44	---------	d-----w	C:\Programfiler\Fellesfiler\Tjenester
2008-08-21 22:43	---------	d-----w	C:\Programfiler\Elektroniske tjenester
.

------- Sigcheck -------

2006-04-20 13:51  359808  1dbf125862891817f374f407626967f4	C:\WINDOWS\$hf_mig$\KB917953\SP2GDR\tcpip.sys
2006-04-20 14:18  360576  b2220c618b42a2212a59d91ebd6fc4b4	C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys
2008-06-20 13:59  361600  ad978a1b783b5719720cff204b666c8e	C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
2006-04-20 13:51  359808  1dbf125862891817f374f407626967f4	C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
2004-08-04 08:14  359040  9f4b36614a0fc234525ba224957de55c	C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
2002-08-29 10:58  332928  244a2f9816bc9b593957281ef577d976	C:\WINDOWS\$NtUninstallKB917953_0$\tcpip.sys
2008-04-13 21:20  361344  93ea8d04ec73a85db02eb8805988f733	C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
2008-04-13 21:20  361344  93ea8d04ec73a85db02eb8805988f733	C:\WINDOWS\ServicePackFiles\i386\TCPIP.SYS
2008-08-24 21:23  361600  d24ea301e2b36c4e975fd216ca85d8e7	C:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-08-24 21:23  361600  d24ea301e2b36c4e975fd216ca85d8e7	C:\WINDOWS\system32\drivers\TCPIP.SYS

2004-08-04 10:03  501248  765b39061ca16d01abfea752c5e2db8f	C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
2002-09-09 23:13  515584  6d0c4ec1a62d7b95b1cc2f15879968ca	C:\WINDOWS\$NtUninstallKB841533$\winlogon.exe
2008-04-14 18:23  506880  15ccfec060818dab936b8c5faeee21f9	C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
2008-08-25 14:06  506880  d7d3e5cca5fadcce635d1d766c4e83ea	C:\WINDOWS\system32\winlogon.exe
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 18:22 15360]
"MsnMsgr"="C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"DAEMON Tools Lite"="C:\Programfiler\DAEMON Tools Lite\daemon.exe" [2008-08-08 14:11 490952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gainward"="C:\WINDOWS\TBPanel.exe" [2007-04-23 13:18 2173744]
"NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2007-04-12 17:44 8429568]
"NvMediaCenter"="C:\WINDOWS\System32\NvMcTray.dll" [2007-04-12 17:44 81920]
"SunJavaUpdateSched"="C:\Programfiler\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"SoundMAXPnP"="C:\Programfiler\Analog Devices\Core\smax4pnp.exe" [2006-12-18 15:34 868352]
"AsusStartupHelp"="C:\Programfiler\ASUS\AASP\1.00.15\AsRunHelp.exe" [2006-11-14 08:25 363008]
"NSLauncher"="C:\Programfiler\Nokia\Nokia Software Launcher\NSLauncher.exe" [2007-09-07 14:44 3100672]
"RemoteControl8"="C:\Programfiler\CyberLink\PowerDVD8\PDVD8Serv.exe" [2008-03-20 20:23 83240]
"PDVD8LanguageShortcut"="C:\Programfiler\CyberLink\PowerDVD8\Language\Language.exe" [2007-12-14 11:36 50472]
"BDRegion"="C:\Programfiler\Cyberlink\Shared Files\brs.exe" [2008-03-21 10:21 91432]
"ISUSPM"="C:\Programfiler\Fellesfiler\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 17:34 213936]
"QuickTime Task"="C:\Programfiler\QuickTime\QTTask.exe" [2008-05-27 10:50 413696]
"Malwarebytes Anti-Malware (reboot)"="C:\Documents and Settings\Administrator\Skrivebord\Malwarebytes' Anti-Malware\mbam.exe" [2008-08-17 15:01 1195640]
"nwiz"="nwiz.exe" [2007-04-12 17:44 1626112 C:\WINDOWS\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2008-04-14 18:22 15360]

C:\Documents and Settings\Administrator\Start-meny\Programmer\Oppstart\
iWin Desktop Alerts.lnk - C:\Documents and Settings\All Users\Programdata\iWin Games\DesktopAlerts\DesktopAlerts.exe [2008-09-01 02:48:33 108032]

C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\
Adobe Reader Speed Launch.lnk - C:\Programfiler\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders	msapsspc.dllschannel.dlldigest.dllmsnsspc.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programfiler\\Mozilla Firefox\\firefox.exe"=
"C:\\Programfiler\\mIRC\\mirc.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Programfiler\\BitTornado\\btdownloadgui.exe"=
"C:\\Programfiler\\uTorrent\\uTorrent.exe"=
"C:\\Programfiler\\BitLord\\BitLord.exe"=
"C:\\Programfiler\\InterVideo\\DVD8\\WinDVD.exe"=
"C:\\progz\\steam\\SteamApps\\common\\trackmania nations forever\\TmForever.exe"=
"C:\\progz\\steam\\SteamApps\\common\\call of duty 4\\iw3mp.exe"=
"C:\\Programfiler\\iWin Games\\iWinGames.exe"=
"C:\\Programfiler\\iWin Games\\WebUpdater.exe"=

S2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};C:\Programfiler\CyberLink\PowerDVD8\[u]0[/u]00.fcl [2008-02-01 17:24]
S2 iWinGamesInstaller;iWinGamesInstaller;C:\Programfiler\iWin Games\iWinGamesInstaller.exe [2008-07-18 00:21]
S3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;C:\WINDOWS\system32\drivers\libusb0.sys [2005-03-09 20:50]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{293d6d1c-6fe9-11dd-aeab-806d6172696f}]
\Shell\AutoRun\command - E:\CDSETUP.EXE
.
Contents of the 'Scheduled Tasks' folder

2008-08-27 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Programfiler\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORPHANS REMOVED - - - -

Toolbar-{5371FF76-9602-4029-9626-BE8CD757EB36} - (no file)
HKCU-Run-Steam - F:\progz\steam\Steam.exe
SSODL-rqbmvpso-{E63CCA42-C5DA-44AC-B097-2DAF9BB06472} - C:\WINDOWS\rqbmvpso.dll


.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Administrator\Programdata\Mozilla\Firefox\Profiles\wytu97l8.default\
FF -: plugin - C:\Programfiler\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF -: plugin - C:\Programfiler\Mozilla Firefox\plugins\npqtplugin8.dll
FF -: plugin - C:\Programfiler\Mozilla Firefox\plugins\npqtplugin9.dll
FF -: plugin - C:\Programfiler\QuickTime\Plugins\npqtplugin8.dll
FF -: plugin - C:\Programfiler\QuickTime\Plugins\npqtplugin9.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-01 13:58:41
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ... 

scanning hidden autostart entries ...

scanning hidden files ... 

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet003\Services\{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}]
"ImagePath"="\??\C:\Programfiler\CyberLink\PowerDVD8\[u]0[/u]00.fcl"
.
------------------------ Other Running Processes ------------------------
.
C:\Programfiler\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Completion time: 2008-09-01 14:01:38 - machine was rebooted
ComboFix-quarantined-files.txt  2008-09-01 12:01:36

Pre-Run: 387,190,493,184 byte ledig
Post-Run: 387,413,286,912 byte ledig

265	--- E O F ---	2008-08-27 11:34:04