Webuser Forums: Popup problems

Heres my combofix file..........

ComboFix 08-02.05.3 - Nash 2008-02-08 10:01:54.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.58 [GMT 0:00]
Running from: C:\Documents and Settings\Nash\Desktop\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Nash\Application Data\FunWebProducts
C:\Documents and Settings\Nash\Application Data\FunWebProducts\Data\Nash\avatar.dat
C:\Program Files\Helper
C:\Program Files\Video Add-on
C:\Program Files\Video Add-on\uninst.exe

.
((((((((((((((((((((((((( Files Created from 2008-01-08 to 2008-02-08 )))))))))))))))))))))))))))))))
.

2008-02-07 11:09 . 2004-08-03 23:00 260,272 --a------ C:\cmldr
2008-02-06 14:37 . 2008-02-06 14:37 <DIR> d-------- C:\Program Files\Lavasoft
2008-02-06 13:47 . 2008-02-06 13:47 <DIR> d-------- C:\Program Files\Trend Micro
2008-02-04 22:34 . 2008-02-04 22:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:33 . 2008-02-04 22:33 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-02-04 21:37 . 2008-02-04 21:42 <DIR> d-------- C:\WINDOWS\SxsCaPendDel
2008-02-04 16:49 . 2008-02-04 20:52 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SITEguard
2008-02-04 16:48 . 2008-02-04 16:48 <DIR> d-------- C:\Program Files\Common Files\iS3
2008-02-04 16:48 . 2008-02-04 21:37 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\STOPzilla!
2008-01-24 19:15 . 2008-01-24 19:27 <DIR> d-------- C:\Program Files\MadMagic
2008-01-11 14:11 . 2008-01-11 14:11 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-11 14:11 . 2008-01-11 14:11 1,409 --a------ C:\WINDOWS\QTFont.for
2008-01-10 09:29 . 2008-01-10 09:29 <DIR> d-------- C:\Documents and Settings\All Users\SonicStage
2008-01-10 09:15 . 2001-09-13 02:15 90,112 --------- C:\WINDOWS\snymsico.dll
2008-01-10 09:15 . 2002-08-08 15:51 38,951 --------- C:\WINDOWS\system32\drivers\NETMDUSB.sys
2008-01-10 09:15 . 2005-10-31 10:46 36,679 --------- C:\WINDOWS\system32\drivers\NETMD052.sys
2008-01-10 09:15 . 2003-11-10 12:31 36,232 --------- C:\WINDOWS\system32\drivers\NETMD033.sys
2008-01-10 09:15 . 2003-04-01 18:55 35,319 --------- C:\WINDOWS\system32\drivers\NETMD031.sys
2008-01-10 09:13 . 2008-01-10 09:13 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sony Corporation
2008-01-10 09:12 . 2008-01-10 09:15 <DIR> d-------- C:\Program Files\Sony
2008-01-10 09:11 . 2008-01-10 09:15 <DIR> d-------- C:\Program Files\Common Files\Sony Shared
2008-01-10 09:11 . 2008-01-10 09:29 <DIR> d-------- C:\Documents and Settings\Nash\Application Data\Sony Corporation

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-08 10:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kontiki
2008-02-04 23:03 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-04 21:42 --------- d-----w C:\Program Files\Web Wipe
2008-01-30 09:53 13,312 --s-a-w C:\WINDOWS\system32\ofcpi.dll
2008-01-19 10:05 --------- d-----w C:\Program Files\iMesh Applications
2008-01-18 15:50 --------- d-----w C:\Program Files\Google
2008-01-05 09:23 --------- d-----w C:\Program Files\Kontiki
2007-12-23 11:19 --------- d-----w C:\Program Files\AMT
2007-12-14 11:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-06-04 10:20 1,581 ----a-w C:\Program Files\Remote Assistance.lnk
2006-08-12 10:08 774,144 ----a-w C:\Program Files\RngInterstitial.dll
2005-09-21 20:49 792 ----a-w C:\Program Files\Windows Media Player.lnk
2005-03-04 13:21 1,615 ----a-w C:\Program Files\Wanadoo Help.lnk
2005-03-02 15:09 738 ----a-w C:\Program Files\Outlook Express.lnk
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77701e16-9bfe-4b63-a5b4-7bd156758a37}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 12:00 15360]
"MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2006-05-02 16:04 190024]
"kdx"="C:\Program Files\Kontiki\KHost.exe" [2007-11-27 11:58 1032376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [2004-01-15 12:33 49152 C:\WINDOWS\system32\VTTimer.exe]
"SoundMan"="SOUNDMAN.EXE" [2004-01-08 18:54 65536 C:\WINDOWS\SOUNDMAN.EXE]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"SpeedTouch USB Diagnostics"="C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-01-26 11:38 866816]
"EPSON Stylus C46 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0T1.exe" [2004-01-13 18:00 99840]
"MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2006-05-02 16:04 190024]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2005-12-20 20:54 278528]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-02-09 16:49 155648]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-02-02 09:49 185896]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 13:00 79224]
"COMODO Firewall Pro"="C:\Program Files\Comodo\Firewall\CPF.exe" [2007-02-07 17:30 1115728]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 12:00 15360]

C:\Documents and Settings\Nash\Start Menu\Programs\Startup\
Event Reminder.lnk - C:\pmw\PMREMIND.EXE [1998-01-07 17:25:40 253520]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 03:44:06 29696]
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2004-11-29 18:55:44 569405]
PI Monitor.lnk - C:\Program Files\ArcSoft\PhotoImpression 5\PI Monitor.exe [2005-03-28 18:05:48 86016]
Windows Desktop Search.lnk - C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearch.exe [2005-09-20 17:10:04 238080]

R2 Machnm32;Machnm32 Driver;C:\WINDOWS\system32\Machnm32.sys [2004-07-26 11:44]
S0 viasraid;viasraid;C:\WINDOWS\system32\DRIVERS\viasraid.sys []
S2 Ca533av;Polaroid Digital Cam Video;C:\WINDOWS\system32\Drivers\Ca533av.sys [2002-10-20 20:37]
S3 Fadpu16E;Fadpu16E;C:\DOCUME~1\Nash\LOCALS~1\Temp\Fadpu16E.sys []
S3 JL2005;JL2005A Toy Camera;C:\WINDOWS\system32\Drivers\toywdm.sys []
S3 USBCamera;Icatch(IV) Still Camera Device;C:\WINDOWS\system32\Drivers\Bulk533.sys [2002-07-24 20:19]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{200394a2-f592-11db-9314-000e50129f5a}]
\Shell\AutoRun\command - E:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ab2d89dc-ef4e-11db-9313-000e50129f5a}]
\Shell\AutoRun\command - E:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3e6dc9a-b148-11dc-9373-000272c53c80}]
\Shell\AutoRun\command - E:\start.exe

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-08 10:04:27
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-02-08 10:05:37
ComboFix-quarantined-files.txt 2008-02-08 10:05:28
.
2008-01-09 03:02:31 --- E O F ---

Post Extras