
DDS (Ver_09-01-19.01) - NTFSx86  
Run by Alexander at 11:44:17,45 on 28.01.2009
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Professional  5.1.2600.2.1251.7.1049.18.2047.1662 [GMT 2:00]

AV: Kaspersky Internet Security *On-access scanning disabled* (Updated)
AV: ESET NOD32 Antivirus 3.0 *On-access scanning disabled* (Outdated)
FW: Kaspersky Internet Security *disabled*

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Documents and Settings\Alexander\ \dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://meta.ua/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [NBJ] "c:\program files\ahead\nero backitup\NBJ.exe"
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [NSLauncher] c:\program files\nokia\nokia software launcher\NSLauncher.exe /startup
mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [IE7_011] regsvr32 /s /n /i:u shell32
dRunOnce: [IE7_012] rundll32 advpack.dll,LaunchINFSectionEx IE7int.inf,AfterUserStart,,4,N
dRunOnce: [IE7_013] rebuild.exe
uPolicies-explorer: Start_NotifyNewApps = 0 (0x0)
dPolicies-explorer: Start_NotifyNewApps = 0 (0x0)
IE: &  Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky internet security 2009\SCIEPlgn.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: klogon - c:\windows\system32\klogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2008-7-21 121872]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 32784]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2008-10-30 213008]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-3-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-4-30 24592]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2008-12-29 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2008-12-29 8320]
S4 AVP;Kaspersky Internet Security;c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe [2008-7-29 206088]

=============== Created Last 30 ================

2009-01-28 11:44	<DIR>	--d-----	c:\temp\RarSFX0
2009-01-28 11:31	<DIR>	--d-----	c:\temp\WPDNSE
2009-01-28 11:23	<DIR>	--d-----	c:\temp\Temporary Internet Files
2009-01-28 11:23	<DIR>	--d-----	C:\_OTMoveIt
2009-01-28 11:18	<DIR>	--d-----	c:\windows\system32\NtmsData
2009-01-28 01:10	81,984	a-------	c:\windows\system32\bdod.bin
2009-01-27 23:03	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\Malwarebytes
2009-01-27 23:02	15,504	a-------	c:\windows\system32\drivers\mbam.sys
2009-01-27 23:02	38,496	a-------	c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-27 23:02	<DIR>	--d-----	c:\program files\Malwarebytes' Anti-Malware
2009-01-27 23:02	<DIR>	--d-----	c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-01-27 15:11	250	a-------	c:\windows\gmer.ini
2009-01-27 14:59	161,792	a-------	c:\windows\SWREG.exe
2009-01-27 14:59	98,816	a-------	c:\windows\sed.exe
2009-01-27 14:39	<DIR>	--d-----	c:\windows\ERUNT
2009-01-27 14:38	<DIR>	--d-----	C:\SDFix
2009-01-27 00:53	83	a-------	c:\windows\wwp.INI
2009-01-27 00:18	<DIR>	a-dshr--	C:\autorun.inf
2009-01-26 15:38	<DIR>	--d-----	c:\program files\Trend Micro
2009-01-26 12:23	<DIR>	--d-----	c:\documents and settings\alexander\DoctorWeb
2009-01-24 12:03	107,888	a-------	c:\windows\system32\CmdLineExt.dll
2009-01-24 11:51	<DIR>	--d-----	c:\temp\{98AED1C3-5806-4150-9AE8-FFF07EC68F79}
2009-01-21 23:10	<DIR>	--d-----	c:\temp\is-RL2LM.tmp
2009-01-21 00:59	<DIR>	--d-----	c:\windows\system32\appmgmt
2009-01-18 22:53	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\Simply Super Software
2009-01-18 10:52	<DIR>	--d-----	c:\temp\{BF9E9991-5094-4B7A-ACFB-AF422AE5C422}
2009-01-17 17:46	<DIR>	--d-----	c:\temp\{E56849F0-7F95-4D1D-8D04-DE9CE97B1463}
2009-01-17 17:44	<DIR>	--d-----	c:\temp\{7BE7DF0E-447A-4543-8A8A-A8D8F19C0574}
2009-01-14 20:19	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\TranslateIt6.5
2009-01-09 21:40	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\TeamViewer
2009-01-08 00:00	<DIR>	--d-----	c:\program files\uTorrent
2009-01-08 00:00	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\uTorrent
2009-01-02 18:55	<DIR>	--d-----	c:\docume~1\alexan~1\applic~1\Thinstall
2008-12-29 22:36	<DIR>	--d-----	c:\windows\system32\LogFiles
2008-12-29 22:35	<DIR>	--d-h---	c:\temp\NccTemp
2008-12-29 22:34	<DIR>	--d-h---	c:\temp\NGLATempNokia
2008-12-29 22:31	<DIR>	--d-----	c:\program files\common files\Nokia
2008-12-29 22:31	18,816	a-------	c:\windows\system32\drivers\pccsmcfd.sys
2008-12-29 22:31	<DIR>	--d-----	c:\program files\PC Connectivity Solution
2008-12-29 13:49	25,600	ac------	c:\windows\system32\dllcache\usbser.sys
2008-12-29 13:49	25,600	a-------	c:\windows\system32\drivers\usbser.sys
2008-12-29 13:48	0	a---h---	c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2008-12-29 13:48	0	a---h---	c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2008-12-29 13:48	14,640	--------	c:\windows\system32\spmsgXP_2k3.dll
2008-12-29 13:42	<DIR>	--d-----	c:\docume~1\alluse~1\applic~1\Nokia
2008-12-29 13:40	8,064	a-------	c:\windows\system32\drivers\usbser_lowerfltj.sys
2008-12-29 13:40	8,064	a-------	c:\windows\system32\drivers\usbser_lowerflt.sys
2008-12-29 13:40	1,112,288	a-------	c:\windows\system32\wdfcoinstaller01007.dll
2008-12-29 13:40	659,968	a-------	c:\windows\system32\nmwcdcocls.dll
2008-12-29 13:40	22,016	a-------	c:\windows\system32\drivers\ccdcmbo.sys
2008-12-29 13:40	17,664	a-------	c:\windows\system32\drivers\ccdcmb.sys
2008-12-29 13:39	8,320	a-------	c:\windows\system32\drivers\nmwcdnsuc.sys
2008-12-29 13:39	138,112	a-------	c:\windows\system32\drivers\nmwcdnsu.sys
2008-12-29 13:38	<DIR>	--d-----	c:\program files\MSXML 6.0

==================== Find3M  ====================

2009-01-28 11:25	4,150,304	a--sh---	c:\windows\system32\drivers\fidbox.dat
2009-01-28 11:25	532,512	a--sh---	c:\windows\system32\drivers\fidbox2.dat
2009-01-28 11:25	36,648	a--sh---	c:\windows\system32\drivers\fidbox.idx
2009-01-28 11:25	6,044	a--sh---	c:\windows\system32\drivers\fidbox2.idx
2009-01-27 14:51	436,596	a-------	c:\windows\system32\perfh019.dat
2009-01-27 14:51	72,214	a-------	c:\windows\system32\perfc019.dat
2009-01-24 12:19	413,696	a-------	c:\windows\system32\wrap_oal.dll
2009-01-24 12:19	110,592	a-------	c:\windows\system32\OpenAL32.dll
2008-12-11 14:10	1,186	a-------	c:\docume~1\alluse~1\applic~1\firstlsp.reg.dat
2008-12-04 15:06	134	a---h---	c:\docume~1\alexan~1\applic~1\brara1985.sys
2008-12-04 14:56	137	a---h---	c:\docume~1\alexan~1\applic~1\lakerda1967.sys
2008-12-04 14:55	360,580	a-------	c:\windows\eSellerateEngine.dll
2008-10-19 21:09	16,384	a--sh---	c:\windows\system32\config\systemprofile\cookies\index.dat
2008-10-19 21:09	32,768	a--sh---	c:\windows\system32\config\systemprofile\local settings\history\history.ie5\index.dat
2008-10-19 21:09	32,768	a--sh---	c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008101920081020\index.dat
2008-10-19 21:09	32,768	a--sh---	c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\index.dat

============= FINISH: 11:44:29,35 ===============
