DDS Please Check Admin

DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 1/16/2011 7:15:58 PM
System Uptime: 4/6/2011 7:47:31 AM (1 hours ago)
.
Motherboard: | | P4M266A-8235
Processor: Intel(R) Celeron(R) CPU 1.70GHz | Socket 478 | 1691/100mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (FAT32) - 19 GiB total, 10.687 GiB free.
D: is FIXED (FAT32) - 10 GiB total, 9.563 GiB free.
E: is FIXED (FAT32) - 10 GiB total, 9.552 GiB free.
F: is CDROM ()
G: is FIXED (NTFS) - 17 GiB total, 16.432 GiB free.
H: is FIXED (NTFS) - 15 GiB total, 14.714 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ROOT\MEDIA\0000
Manufacturer:
Name:
PNP Device ID: ROOT\MEDIA\0000
Service:
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Shockwave Player 11.5
Ares 2.1.7
Auslogics BoostSpeed
Avance AC'97 Audio
avast! Pro Antivirus
BeFaster
CCleaner
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox 4.0 (x86 en-US)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB975713)
Skype™ 5.1
SpeedConnect Internet Accelerator v.7.5
TSP_CODEC
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2447568)
VIA Rhine-Family Fast-Ethernet Adapter
WebFldrs XP
Windows Internet Explorer 8
Windows Media Format Runtime
WinRAR 4.00 beta 4 (32-bit)
Yahoo! Messenger
.
==== End Of File ===========================

DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 1/16/2011 7:15:58 PM
System Uptime: 4/6/2011 7:47:31 AM (1 hours ago)
.
Motherboard: | | P4M266A-8235
Processor: Intel(R) Celeron(R) CPU 1.70GHz | Socket 478 | 1691/100mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (FAT32) - 19 GiB total, 10.686 GiB free.
D: is FIXED (FAT32) - 10 GiB total, 9.563 GiB free.
E: is FIXED (FAT32) - 10 GiB total, 9.552 GiB free.
F: is CDROM ()
G: is FIXED (NTFS) - 17 GiB total, 16.432 GiB free.
H: is FIXED (NTFS) - 15 GiB total, 14.714 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ROOT\MEDIA\0000
Manufacturer:
Name:
PNP Device ID: ROOT\MEDIA\0000
Service:
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Shockwave Player 11.5
Ares 2.1.7
Auslogics BoostSpeed
Avance AC'97 Audio
avast! Pro Antivirus
BeFaster
CCleaner
Google Toolbar for Internet Explorer
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox 4.0 (x86 en-US)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB975713)
Skype™ 5.1
SpeedConnect Internet Accelerator v.7.5
TSP_CODEC
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2447568)
VIA Rhine-Family Fast-Ethernet Adapter
WebFldrs XP
Windows Internet Explorer 8
Windows Media Format Runtime
WinRAR 4.00 beta 4 (32-bit)
Yahoo! Messenger
.
==== End Of File ===========================

Run Combofix n post your results Here..

ComboFix 11-04-04.02 - PopO Time 04/06/2011 16:00:33.1.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.479.115 [GMT 8:00]
Running from: c:\documents and settings\PopO Time\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\YAHELITE.INI
.
.
((((((((((((((((((((((((( Files Created from 2011-03-06 to 2011-04-06 )))))))))))))))))))))))))))))))
.
.
2011-04-06 01:34 . 2011-04-06 01:34 -------- d-----w- c:\program files\Microsoft.NET
2011-04-03 15:30 . 2011-04-03 15:30 -------- d-----w- C:\FOUND.007
2011-04-03 13:15 . 2011-04-03 13:15 -------- d-----w- C:\FOUND.006
2011-04-02 20:43 . 2011-04-02 20:43 81920 ---ha-w- c:\windows\system32\v3shrtkgn.dll
2011-04-02 20:38 . 2011-04-02 20:38 -------- d-----w- c:\documents and settings\PopO Time\Local Settings\Application Data\Thinstall
2011-04-02 18:48 . 2011-04-02 18:48 -------- d-----w- c:\program files\CBS Software
2011-04-01 14:02 . 2011-04-01 14:02 -------- d-----w- C:\FOUND.005
2011-03-31 13:08 . 2011-03-31 13:08 -------- d-----w- C:\FOUND.004
2011-03-29 23:56 . 2011-03-29 23:56 -------- d-----w- C:\FOUND.003
2011-03-23 18:04 . 2011-03-23 18:04 -------- d-----w- c:\program files\BeFaster
2011-03-22 00:10 . 2011-03-22 00:10 -------- d-----w- C:\FOUND.002
2011-03-21 01:30 . 2011-03-21 01:30 -------- d-----w- C:\FOUND.001
2011-03-20 02:33 . 2011-03-20 02:33 -------- d-----w- C:\FOUND.000
2011-03-18 18:08 . 2011-03-18 18:08 -------- d--h--w- c:\windows\PIF
2011-03-17 10:58 . 2011-03-17 10:58 118784 ----a-w- c:\windows\system32\MSSTDFMT.DLL
2011-03-14 10:59 . 2011-03-14 10:59 -------- d-----w- c:\program files\CCleaner
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-23 15:04 . 2011-02-25 00:34 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 15:04 . 2011-02-25 00:34 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-02-25 00:35 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-02-23 14:56 . 2011-02-25 00:35 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2011-02-25 00:35 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2011-02-25 00:35 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-02-23 14:55 . 2011-02-25 00:35 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-02-23 14:55 . 2011-02-25 00:35 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:54 . 2011-02-25 00:35 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-02-23 14:54 . 2011-02-25 00:35 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-17 00:18 . 2011-02-17 00:17 109248 ----a-w- c:\windows\system32\MSWINSCN.OCX
2011-02-12 11:54 . 2011-02-12 11:54 360448 ----a-w- c:\windows\system32\kdu_v32r.dll
2011-02-12 11:54 . 2011-02-12 11:54 253952 ----a-w- c:\windows\system32\ywcupl.dll
2011-02-12 11:54 . 2011-02-12 11:54 204800 ----a-w- c:\windows\system32\yuplapp.dll
2011-02-12 11:54 . 2011-02-12 11:54 192512 ----a-w- c:\windows\system32\yvwrctl.dll
2011-02-12 11:54 . 2011-02-12 11:54 274432 ----a-w- c:\windows\system32\ywcvwr.dll
2011-02-12 11:54 . 2011-01-28 08:30 274432 ----a-w- c:\windows\system32\yacscom.dll
2011-02-12 11:54 . 2001-08-23 04:00 8192 ----a-w- c:\windows\system32\tssoft32.acm
2011-02-12 11:54 . 2001-08-23 04:00 15360 ----a-w- c:\windows\system32\tsd32.dll
2011-02-09 13:53 . 2008-04-13 19:42 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2008-04-13 19:41 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2011-01-16 11:02 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-28 08:38 . 2011-01-28 08:38 152848 ----a-w- c:\windows\system32\COMDLG32.OCX
2011-01-27 11:57 . 2011-01-16 11:02 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2008-04-13 19:42 439296 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2008-04-13 19:39 290048 ----a-w- c:\windows\system32\atmfd.dll
2011-03-18 17:53 . 2011-03-23 12:32 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-01-17 39408]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2010-06-01 5252408]
"ares"="c:\program files\Ares\Ares.exe" [2010-10-27 1015808]
"SpeedConnectStartUp"="c:\program files\CBS Software\SpeedConnect Internet Accelerator\SpeedConnectStartUp.exe" [2009-04-27 603136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="soundman.exe" [2001-05-29 124416]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-02-23 3451496]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2/25/2011 8:35 AM 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2/25/2011 8:35 AM 301528]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2/25/2011 8:35 AM 19544]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys --> c:\windows\system32\DRIVERS\ewusbnet.sys [?]
S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys --> c:\windows\system32\DRIVERS\ewusbdev.sys [?]
S3 RAMDiskXP;RAMDiskXP;c:\windows\system32\drivers\RAMDiskXP.sys [11/11/2010 7:12 AM 54528]
.
Contents of the 'Scheduled Tasks' folder
.
2011-04-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-17 14:32]
.
2011-04-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-17 14:32]
.
2011-04-06 c:\windows\Tasks\Auslogics Boost Speed Integrator Start On Windows Logon.job
- c:\program files\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe [2011-02-26 05:10]
.
2011-04-04 c:\windows\Tasks\Auslogics Boost Speed Integrator Scan and Repair.job
- c:\program files\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe [2011-02-26 05:10]
.
.
------- Supplementary Scan -------
.
uStart Page = [You must be registered and logged in to see this link.]
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = [You must be registered and logged in to see this link.]
uSearchURL,(Default) = [You must be registered and logged in to see this link.]
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\PopO Time\Application Data\Mozilla\Firefox\Profiles\uelyu93p.default\
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - prefs.js: network.proxy.type - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2011-04-06 16:13
Windows 5.1.2600 Service Pack 3 FAT NTAPI
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2011-04-06 16:17:20
ComboFix-quarantined-files.txt 2011-04-06 08:17
.
Pre-Run: 10,639,523,840 bytes free
Post-Run: 10,680,352,768 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 9D23E03F8E72BF1051B5565689CDD3F9

Run Malwarebytes to Be Complate Finish..